$ rpki-client -vvf rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/5FEAFF2082EB11EEB854FA63C4F9AE02.roa File: 5FEAFF2082EB11EEB854FA63C4F9AE02.roa (raw, json) Hash identifier: zyPJEBN9OhrONmnlGPIVrxz1MzOdL5M5XjHLz01e0Hs= Subject key identifier: A9:79:CB:FB:B9:54:1D:2E:F2:C2:D0:E9:90:73:4D:C6:51:5E:05:EA Certificate issuer: /CN=A9183B95/serialNumber=FAD7ECC9C05CD8EB2056909D6C614715E2C5133E Certificate serial: 0302 Authority key identifier: FA:D7:EC:C9:C0:5C:D8:EB:20:56:90:9D:6C:61:47:15:E2:C5:13:3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tfsycBc2OsgVpCdbGFHFeLFEz4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/5FEAFF2082EB11EEB854FA63C4F9AE02.roa Signing time: Thu 11 Jan 2024 02:44:26 +0000 ROA not before: Thu 11 Jan 2024 02:44:26 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 9009 IP address blocks: 43.228.159.0/24 maxlen: 24 103.47.144.0/24 maxlen: 24 103.47.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/-tfsycBc2OsgVpCdbGFHFeLFEz4.crl rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/-tfsycBc2OsgVpCdbGFHFeLFEz4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tfsycBc2OsgVpCdbGFHFeLFEz4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 03:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 770 (0x302) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183B95/serialNumber=FAD7ECC9C05CD8EB2056909D6C614715E2C5133E Validity Not Before: Jan 11 02:44:26 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=659f560a-9e31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a8:e4:09:cf:f4:e2:cf:b4:1f:3b:51:ec:b9: 8d:87:0d:02:39:62:cb:ba:25:c5:e4:ba:c2:d2:12: 92:b5:a8:24:81:3b:50:30:0f:61:f3:4c:b5:4f:ff: a4:26:67:01:10:e6:4a:bd:85:bb:c9:e3:7e:47:79: 2f:5b:be:9f:dc:fc:da:c7:00:3a:15:0b:33:23:e6: 78:f7:59:e1:9f:a9:f2:10:d8:40:55:a2:3e:2b:e3: 16:43:ff:12:e4:c2:40:5e:6e:e4:13:ee:cd:95:47: 39:00:a3:97:2f:62:c6:00:90:01:a6:a0:9c:1b:61: 78:85:a1:20:89:e9:7e:dc:0f:f0:24:bc:42:9a:3c: 00:ec:fe:57:73:54:c0:50:a4:f8:47:2e:1e:ab:80: f3:b5:79:91:94:fa:3b:d7:d3:da:03:65:1c:b1:96: ac:0f:be:34:94:3a:b0:e7:43:42:fa:83:33:39:bf: 92:bd:75:38:1f:08:32:0a:a2:a9:24:b0:ad:e1:7b: 12:99:9a:d3:c8:92:8c:ab:0a:15:61:08:9e:87:fb: fb:1d:2d:18:04:47:80:ee:57:bf:1f:d2:ee:0c:45: 3b:84:a8:b5:50:b3:65:b4:29:d7:52:76:af:b5:f2: 69:e2:0f:22:d9:21:52:68:4e:6e:a9:5f:2a:79:19: 33:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:79:CB:FB:B9:54:1D:2E:F2:C2:D0:E9:90:73:4D:C6:51:5E:05:EA X509v3 Authority Key Identifier: keyid:FA:D7:EC:C9:C0:5C:D8:EB:20:56:90:9D:6C:61:47:15:E2:C5:13:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/-tfsycBc2OsgVpCdbGFHFeLFEz4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tfsycBc2OsgVpCdbGFHFeLFEz4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/5FEAFF2082EB11EEB854FA63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.228.159.0/24 103.47.144.0/24 103.47.146.0/24 Signature Algorithm: sha256WithRSAEncryption 40:3e:ad:71:02:cc:e0:85:b2:a4:d3:27:b0:fc:67:be:a6:d7: ee:14:56:ad:34:e6:eb:58:6f:22:a1:de:8a:09:1a:ae:8c:44: 8e:c9:a3:9b:14:77:9d:2d:83:eb:dd:e8:f1:85:52:94:7e:27: dd:09:9a:c9:31:07:f1:db:17:9d:35:e3:17:83:bc:7f:13:a6: f1:60:25:b6:16:c3:0f:dd:d1:31:1d:f6:13:39:d5:65:c4:ac: 0f:84:65:13:9e:0f:d8:c1:84:51:e7:92:af:a6:1c:7d:12:d8: 33:7d:5c:c1:9e:cc:d2:a5:88:f9:17:a4:11:93:b1:f4:b9:6c: 3b:d6:65:0d:88:db:05:7d:55:ce:ba:67:56:7c:a9:13:35:67: 89:83:c4:7b:82:f6:55:68:aa:98:b7:bd:60:70:53:eb:79:66: 41:67:bd:df:56:95:f3:c7:5d:7d:c7:e4:7b:af:80:37:1e:00: 3e:21:10:4e:db:59:28:00:66:49:73:bd:2a:3d:fb:f7:ce:5d: 9c:e1:19:69:20:49:6c:05:18:f3:f0:55:f1:7c:ac:31:2e:62: 5b:5a:8c:3b:25:0e:c4:ab:16:47:ac:fb:4e:21:b2:6c:2b:b0: 30:f7:60:df:da:84:f9:e2:34:34:b9:43:37:5d:0a:ff:c7:63: 2b:78:08:6e -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCOTUxMTAvBgNVBAUTKEZBRDdFQ0M5QzA1Q0Q4RUIyMDU2OTA5RDZDNjE0NzE1 RTJDNTEzM0UwHhcNMjQwMTExMDI0NDI2WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTlmNTYwYS05ZTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ajkCc/04s+0HztR7LmNhw0COWLLuiXF5LrC0hKStagkgTtQMA9h80y1T/+k JmcBEOZKvYW7yeN+R3kvW76f3PzaxwA6FQszI+Z491nhn6nyENhAVaI+K+MWQ/8S 5MJAXm7kE+7NlUc5AKOXL2LGAJABpqCcG2F4haEgiel+3A/wJLxCmjwA7P5Xc1TA UKT4Ry4eq4DztXmRlPo719PaA2UcsZasD740lDqw50NC+oMzOb+SvXU4HwgyCqKp JLCt4XsSmZrTyJKMqwoVYQieh/v7HS0YBEeA7le/H9LuDEU7hKi1ULNltCnXUnav tfJp4g8i2SFSaE5uqV8qeRkz2QIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFKl5y/u5 VB0u8sLQ6ZBzTcZRXgXqMB8GA1UdIwQYMBaAFPrX7MnAXNjrIFaQnWxhRxXixRM+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0I5NS9CNTRBM0MzNDgw MzUxMUVDOUFEREE1NEZDNEY5QUUwMi8tdGZzeWNCYzJPc2dWcENkYkdGSEZlTEZF ejQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy10ZnN5Y0JjMk9zZ1ZwQ2RiR0ZIRmVMRkV6NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODNCOTUvQjU0QTNDMzQ4MDM1MTFFQzlBRERBNTRGQzRGOUFFMDIvNUZFQUZGMjA4 MkVCMTFFRUI4NTRGQTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAAr5J8DBABnL5ADBABnL5IwDQYJKoZIhvcNAQELBQADggEB AEA+rXECzOCFsqTTJ7D8Z76m1+4UVq005utYbyKh3ooJGq6MRI7Jo5sUd50tg+vd 6PGFUpR+J90JmskxB/HbF5014xeDvH8TpvFgJbYWww/d0TEd9hM51WXErA+EZROe D9jBhFHnkq+mHH0S2DN9XMGezNKliPkXpBGTsfS5bDvWZQ2I2wV9Vc66Z1Z8qRM1 Z4mDxHuC9lVoqpi3vWBwU+t5ZkFnvd9WlfPHXX3H5HuvgDceAD4hEE7bWSgAZklz vSo9+/fOXZzhGWkgSWwFGPPwVfF8rDEuYltajDslDsSrFkes+04hsmwrsDD3YN/a hPniNDS5QzddCv/HYyt4CG4= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:18 2024 by rpki-client on console-ams.rpki-client.org