$ rpki-client -vvf rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/EFA17F260FEA11EB8FA8CB2AC4F9AE02.roa File: EFA17F260FEA11EB8FA8CB2AC4F9AE02.roa (raw, json) Hash identifier: YLnBBdEHbwfh9d/VxrGK1vhLnLXi/RrFFevgHHajgZQ= Subject key identifier: 07:1C:98:EA:04:FC:3F:ED:9F:74:05:31:8F:22:26:E5:2D:B6:4A:DB Certificate issuer: /CN=A917B51E/serialNumber=0C47EDE3048E35A6E6E8CB0CE44FC8437271EB3D Certificate serial: 069A Authority key identifier: 0C:47:ED:E3:04:8E:35:A6:E6:E8:CB:0C:E4:4F:C8:43:72:71:EB:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEft4wSONabm6MsM5E_IQ3Jx6z0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/EFA17F260FEA11EB8FA8CB2AC4F9AE02.roa Signing time: Sat 03 Feb 2024 17:43:08 +0000 ROA not before: Sat 03 Feb 2024 17:43:08 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 141346 IP address blocks: 103.157.94.0/23 maxlen: 23 103.157.94.0/24 maxlen: 24 103.157.95.0/24 maxlen: 24 2406:9d40::/32 maxlen: 32 2406:9d40::/40 maxlen: 40 2406:9d40::/48 maxlen: 48 2406:9d40:100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/DEft4wSONabm6MsM5E_IQ3Jx6z0.crl rsync://rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/DEft4wSONabm6MsM5E_IQ3Jx6z0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEft4wSONabm6MsM5E_IQ3Jx6z0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 23:50:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1690 (0x69a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B51E/serialNumber=0C47EDE3048E35A6E6E8CB0CE44FC8437271EB3D Validity Not Before: Feb 3 17:43:08 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65be7b2c-9ca6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7e:15:f7:17:b3:5d:23:ee:c5:cd:98:27:85: 8a:5c:86:9f:89:e4:46:7d:9b:55:5e:c6:d8:28:47: 9d:50:b5:07:54:68:88:4b:60:28:3d:cc:5f:a5:0b: 2c:3f:ec:e5:9b:3c:a7:7a:59:13:d8:ce:9f:03:bf: 81:2d:4f:c3:8c:91:2d:50:4c:77:6a:fa:0b:ac:d9: 3c:8c:d9:3e:e1:b7:44:9a:b1:2e:d9:f0:28:27:04: b5:fd:54:dd:b6:d1:d1:d0:4d:3c:98:55:2f:e5:24: 71:96:fb:f5:93:6c:0c:8c:0f:e9:4e:1c:c0:ee:05: 27:4a:21:bc:7d:c0:20:ae:dd:6b:09:87:0e:51:71: 22:af:2d:f4:c4:76:d5:d3:ea:cc:f7:34:5f:25:a8: ba:d0:52:ec:a0:cd:fa:53:c7:37:e5:39:ab:67:18: a1:1e:58:0e:f6:a5:41:49:62:20:7d:07:24:19:93: 1d:8a:d4:63:c5:74:df:e0:24:3f:64:61:bc:66:b1: 5f:df:1c:04:37:5e:2a:02:e2:7c:08:35:31:eb:eb: 7a:c6:64:33:1a:67:c0:48:2d:43:ab:e3:33:c0:21: 6f:3a:88:5f:79:4a:17:bc:60:39:0f:bf:a1:51:cc: ac:2c:a2:e4:08:cb:a7:49:04:5a:c1:80:19:7f:c4: 85:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:1C:98:EA:04:FC:3F:ED:9F:74:05:31:8F:22:26:E5:2D:B6:4A:DB X509v3 Authority Key Identifier: keyid:0C:47:ED:E3:04:8E:35:A6:E6:E8:CB:0C:E4:4F:C8:43:72:71:EB:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/DEft4wSONabm6MsM5E_IQ3Jx6z0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEft4wSONabm6MsM5E_IQ3Jx6z0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/EFA17F260FEA11EB8FA8CB2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.157.94.0/23 IPv6: 2406:9d40::/32 Signature Algorithm: sha256WithRSAEncryption c9:c0:3c:06:3b:d4:31:f5:8b:5d:f2:bd:89:69:df:e9:e5:50: ba:fa:36:5a:50:4e:2c:c7:fd:1b:36:d7:e7:24:e7:02:89:67: 9c:ad:9d:fe:aa:a8:bc:dc:65:96:84:ef:2f:2f:2e:8e:b5:5e: 92:03:42:ce:c9:60:94:a3:4e:c5:2b:52:bb:6b:d5:79:69:bd: bc:fb:3e:af:51:3b:8f:d7:79:84:27:49:c8:7e:65:33:d0:24: dd:6d:b9:24:bb:7f:24:6b:9b:be:4e:03:ac:21:c1:c5:41:2b: a8:85:d5:fa:31:38:64:f9:a4:6c:68:a1:09:84:e0:27:68:24: 89:bf:e7:64:67:8f:e8:61:99:c6:0c:a9:0b:cb:2d:a1:b4:a9: 60:a3:77:e0:0a:b0:95:ea:5c:e4:c8:af:68:39:a6:05:a4:84: 20:6f:d5:6b:f2:5b:54:e8:9c:fe:fd:0a:cc:89:d4:da:34:25: 39:78:f6:38:29:6c:ae:b7:ef:46:1c:06:98:15:e2:b4:1a:6b: 73:fa:7c:bb:35:f8:dd:c7:36:0b:b9:6a:f3:2c:25:d0:00:44: 20:c6:af:28:91:b2:77:eb:46:70:a6:32:ec:d9:42:2e:c7:ee: 6a:9e:ba:4c:4c:19:53:fa:f4:2e:76:de:18:fc:a2:98:9d:42: b1:35:37:00 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MUUxMTAvBgNVBAUTKDBDNDdFREUzMDQ4RTM1QTZFNkU4Q0IwQ0U0NEZDODQz NzI3MUVCM0QwHhcNMjQwMjAzMTc0MzA4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJlN2IyYy05Y2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuH4V9xezXSPuxc2YJ4WKXIafieRGfZtVXsbYKEedULUHVGiIS2AoPcxfpQss P+zlmzynelkT2M6fA7+BLU/DjJEtUEx3avoLrNk8jNk+4bdEmrEu2fAoJwS1/VTd ttHR0E08mFUv5SRxlvv1k2wMjA/pThzA7gUnSiG8fcAgrt1rCYcOUXEiry30xHbV 0+rM9zRfJai60FLsoM36U8c35TmrZxihHlgO9qVBSWIgfQckGZMditRjxXTf4CQ/ ZGG8ZrFf3xwEN14qAuJ8CDUx6+t6xmQzGmfASC1Dq+MzwCFvOohfeUoXvGA5D7+h UcysLKLkCMunSQRawYAZf8SFawIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAccmOoE /D/tn3QFMY8iJuUttkrbMB8GA1UdIwQYMBaAFAxH7eMEjjWm5ujLDORPyENyces9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUxRS81OUNERDU0QTBG RTkxMUVCOUYzMEM3MjVDNEY5QUUwMi9ERWZ0NHdTT05hYm02TXNNNUVfSVEzSng2 ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RFZnQ0d1NPTmFibTZNc001RV9JUTNKeDZ6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I1MUUvNTlDREQ1NEEwRkU5MTFFQjlGMzBDNzI1QzRGOUFFMDIvRUZBMTdGMjYw RkVBMTFFQjhGQThDQjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnnV4wDQQCAAIwBwMFACQGnUAwDQYJKoZIhvcNAQELBQAD ggEBAMnAPAY71DH1i13yvYlp3+nlULr6NlpQTizH/Rs21+ck5wKJZ5ytnf6qqLzc ZZaE7y8vLo61XpIDQs7JYJSjTsUrUrtr1Xlpvbz7Pq9RO4/XeYQnSch+ZTPQJN1t uSS7fyRrm75OA6whwcVBK6iF1foxOGT5pGxooQmE4CdoJIm/52Rnj+hhmcYMqQvL LaG0qWCjd+AKsJXqXOTIr2g5pgWkhCBv1WvyW1TonP79CsyJ1No0JTl49jgpbK63 70YcBpgV4rQaa3P6fLs1+N3HNgu5avMsJdAARCDGryiRsnfrRnCmMuzZQi7H7mqe ukxMGVP69C523hj8opidQrE1NwA= -----END CERTIFICATE-----Generated at Sat Jun 1 02:01:16 2024 by rpki-client on console-ams.rpki-client.org