$ rpki-client -vvf rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/4D6D5554DB8011ED91D54A2BC4F9AE02.roa File: 4D6D5554DB8011ED91D54A2BC4F9AE02.roa (raw, json) Hash identifier: tpBOafHjcxlWvsxkyGf/tSGmXbmg8u9JQTte1n/Ress= Subject key identifier: 0F:68:FA:D5:60:5B:A1:3B:E9:5B:12:86:AC:14:C0:12:19:1D:B5:FC Certificate issuer: /CN=A917E951/serialNumber=1A0F786F11B8E17D45DE1EDCE61E1600DD4930A4 Certificate serial: 04 Authority key identifier: 1A:0F:78:6F:11:B8:E1:7D:45:DE:1E:DC:E6:1E:16:00:DD:49:30:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg94bxG44X1F3h7c5h4WAN1JMKQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/4D6D5554DB8011ED91D54A2BC4F9AE02.roa Signing time: Sat 15 Apr 2023 11:26:02 +0000 ROA not before: Sat 15 Apr 2023 11:26:02 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 151183 IP address blocks: 103.131.102.0/24 maxlen: 24 103.131.103.0/24 maxlen: 24 2001:df2:43c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/Gg94bxG44X1F3h7c5h4WAN1JMKQ.crl rsync://rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/Gg94bxG44X1F3h7c5h4WAN1JMKQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg94bxG44X1F3h7c5h4WAN1JMKQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:17:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E951/serialNumber=1A0F786F11B8E17D45DE1EDCE61E1600DD4930A4 Validity Not Before: Apr 15 11:26:02 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=643a89ca-32cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7b:55:26:bb:a4:2b:56:f2:49:dd:a7:df:71: 8f:3c:df:70:37:cd:f7:06:b3:12:5b:8c:1d:4c:b1: f0:54:d3:75:8a:ff:5c:2e:fe:d0:aa:14:f7:a4:e0: 9f:ea:a6:1f:ad:c0:ac:82:20:29:be:a2:2f:c4:58: 1e:9f:c4:ee:40:08:74:36:b7:4b:18:62:8b:65:db: 37:9f:61:a0:2a:aa:8d:33:fb:9e:34:18:be:6f:59: 9d:83:cb:1d:f4:63:aa:e3:27:5e:ed:69:c0:a2:3a: e5:c1:ff:a0:7f:e0:ad:b8:e0:7b:81:3f:60:34:8a: 78:6a:ac:6d:a3:4a:22:b5:76:1d:f9:d2:6f:a7:7d: 93:9a:8c:f4:9a:ee:37:cd:e9:df:d6:d1:d6:94:33: 2e:63:f3:d0:16:9f:ac:c2:64:a1:8b:99:f0:b6:11: 43:f3:3f:4c:13:e2:2d:8c:3e:f3:a3:bb:8f:af:a6: 2b:76:be:2a:58:1c:07:8d:6c:0c:f3:ef:5b:99:97: ae:23:b1:ca:3c:80:c3:31:f9:ad:ff:81:2f:ac:b5: dd:87:8f:de:73:9a:36:0e:98:80:52:2e:74:17:b8: 38:da:69:c0:b9:30:e5:66:e3:5d:52:08:c9:c1:0f: 51:92:ae:bc:cf:e7:1e:c1:d7:ea:70:ef:00:3f:22: e1:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:68:FA:D5:60:5B:A1:3B:E9:5B:12:86:AC:14:C0:12:19:1D:B5:FC X509v3 Authority Key Identifier: keyid:1A:0F:78:6F:11:B8:E1:7D:45:DE:1E:DC:E6:1E:16:00:DD:49:30:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/Gg94bxG44X1F3h7c5h4WAN1JMKQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg94bxG44X1F3h7c5h4WAN1JMKQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/4D6D5554DB8011ED91D54A2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.131.102.0/23 IPv6: 2001:df2:43c0::/48 Signature Algorithm: sha256WithRSAEncryption 1b:4e:7b:9e:6c:eb:0b:9b:07:50:e4:bf:59:5e:0a:c8:6a:d0: 06:16:4c:0a:7f:9b:78:ae:6c:2b:67:af:31:6e:62:81:99:9c: f5:99:20:42:73:2f:11:3f:3d:20:c6:7b:7d:aa:86:7a:66:27: 34:ae:e1:5b:1d:26:3c:5e:8d:22:05:33:14:73:aa:38:c4:bc: 69:5c:f6:af:fc:25:64:0f:d4:8e:c0:c8:39:81:b5:b1:8e:ca: 3e:c2:d5:22:26:a8:4a:a0:2e:88:b0:4c:e4:3c:61:43:62:86: 91:51:71:2e:50:17:52:45:71:36:c7:18:80:be:7c:30:8d:2c: 39:2d:66:51:a3:92:ff:2c:c8:4b:7d:9b:8c:b4:a1:02:05:1a: b5:9b:41:fb:ba:d1:d0:59:a8:d8:91:10:eb:ee:17:72:d0:26: 3e:d3:73:8b:45:02:c7:79:1e:f2:2b:da:f8:5a:d6:69:65:8b: 55:4a:81:62:ba:6e:18:34:8d:b9:aa:63:3d:5e:e7:f9:10:ef: 83:70:7c:68:b1:dc:5e:c0:a4:87:58:f3:62:6d:b4:15:13:ef: 5f:8c:3b:1b:2b:d0:9f:0e:a2:23:91:69:bc:86:28:60:51:c1: 4b:ba:9b:af:14:b9:1e:25:64:37:b6:cc:35:b8:30:84:8e:1f: b6:02:a2:55 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RTk1MTExMC8GA1UEBRMoMUEwRjc4NkYxMUI4RTE3RDQ1REUxRURDRTYxRTE2MDBE RDQ5MzBBNDAeFw0yMzA0MTUxMTI2MDJaFw0yNDA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0M2E4OWNhLTMyY2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2e1Umu6QrVvJJ3affcY8833A3zfcGsxJbjB1MsfBU03WK/1wu/tCqFPek4J/q ph+twKyCICm+oi/EWB6fxO5ACHQ2t0sYYotl2zefYaAqqo0z+540GL5vWZ2Dyx30 Y6rjJ17tacCiOuXB/6B/4K244HuBP2A0inhqrG2jSiK1dh350m+nfZOajPSa7jfN 6d/W0daUMy5j89AWn6zCZKGLmfC2EUPzP0wT4i2MPvOju4+vpit2vipYHAeNbAzz 71uZl64jsco8gMMx+a3/gS+std2Hj95zmjYOmIBSLnQXuDjaacC5MOVm411SCMnB D1GSrrzP5x7B1+pw7wA/IuEjAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUD2j61WBb oTvpWxKGrBTAEhkdtfwwHwYDVR0jBBgwFoAUGg94bxG44X1F3h7c5h4WAN1JMKQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFOTUxLzZGNDlCOTkyREI3 MTExRUQ5NTAzRDg1REM0RjlBRTAyL0dnOTRieEc0NFgxRjNoN2M1aDRXQU4xSk1L US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR2c5NGJ4RzQ0WDFGM2g3YzVoNFdBTjFKTUtRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTk1MS82RjQ5Qjk5MkRCNzExMUVEOTUwM0Q4NURDNEY5QUUwMi80RDZENTU1NERC ODAxMUVEOTFENTRBMkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWeDZjAPBAIAAjAJAwcAIAEN8kPAMA0GCSqGSIb3DQEBCwUA A4IBAQAbTnuebOsLmwdQ5L9ZXgrIatAGFkwKf5t4rmwrZ68xbmKBmZz1mSBCcy8R Pz0gxnt9qoZ6Zic0ruFbHSY8Xo0iBTMUc6o4xLxpXPav/CVkD9SOwMg5gbWxjso+ wtUiJqhKoC6IsEzkPGFDYoaRUXEuUBdSRXE2xxiAvnwwjSw5LWZRo5L/LMhLfZuM tKECBRq1m0H7utHQWajYkRDr7hdy0CY+03OLRQLHeR7yK9r4WtZpZYtVSoFium4Y NI25qmM9Xuf5EO+DcHxosdxewKSHWPNibbQVE+9fjDsbK9CfDqIjkWm8hihgUcFL upuvFLkeJWQ3tsw1uDCEjh+2AqJV -----END CERTIFICATE-----Generated at Sat Jun 1 08:15:59 2024 by rpki-client on console-ams.rpki-client.org