$ rpki-client -vvf rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/A1E87910832A11ECA409521EC4F9AE02.roa File: A1E87910832A11ECA409521EC4F9AE02.roa (raw, json) Hash identifier: GHZUJVUiu7TjOQPlC9Czp21OsffLY36D9ErlKj0Wa3A= Subject key identifier: 65:76:E2:C2:9B:AD:52:6A:93:EB:2C:72:18:EA:EC:D9:12:00:7E:BA Certificate issuer: /CN=A9193C85/serialNumber=185FF6647E1E9677501377B5515479B9E9461067 Certificate serial: 1097 Authority key identifier: 18:5F:F6:64:7E:1E:96:77:50:13:77:B5:51:54:79:B9:E9:46:10:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GF_2ZH4elndQE3e1UVR5uelGEGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/A1E87910832A11ECA409521EC4F9AE02.roa Signing time: Wed 31 Jan 2024 18:05:57 +0000 ROA not before: Wed 31 Jan 2024 18:05:57 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 45766 IP address blocks: 103.127.4.0/22 maxlen: 22 103.127.4.0/23 maxlen: 23 103.127.4.0/24 maxlen: 24 103.127.5.0/24 maxlen: 24 103.127.6.0/23 maxlen: 23 103.127.6.0/24 maxlen: 24 103.127.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.crl rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GF_2ZH4elndQE3e1UVR5uelGEGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 18:10:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4247 (0x1097) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193C85/serialNumber=185FF6647E1E9677501377B5515479B9E9461067 Validity Not Before: Jan 31 18:05:57 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65ba8c05-379c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2f:24:af:40:f9:a8:b1:0e:1c:46:a8:e0:44: d6:c5:dc:0b:6a:85:b8:7b:e6:f8:b8:27:64:08:93: a5:25:c0:32:ce:d3:88:da:4f:e7:37:d5:59:7b:4d: 45:71:50:e1:8b:bb:6a:79:60:b9:c2:e5:94:b3:4c: df:4b:d9:16:6a:75:a3:8d:6e:d9:ca:82:24:49:11: 02:60:ab:7c:1e:ed:06:e4:f1:28:37:ec:7e:95:3a: 27:87:7a:90:a8:76:29:ba:81:ce:d8:80:db:81:21: 97:f3:d8:71:3f:7d:3f:8c:e6:35:c6:70:37:97:78: fc:10:d5:24:d3:58:b3:87:ab:26:35:11:75:2b:2d: 3a:2a:66:7e:97:9a:95:39:42:df:51:06:9d:52:47: fb:c8:57:9a:65:97:03:a2:6a:7b:49:ab:07:ca:96: a9:0f:1a:f8:28:88:db:52:a4:af:c9:12:20:a7:e8: 6b:39:52:b7:3a:a8:88:f7:f5:f0:e8:cf:91:33:ef: c6:1d:e5:4d:21:d7:af:7a:ea:85:c5:10:73:31:42: 17:81:a8:fb:e8:d1:a8:7b:15:44:34:0a:9f:ef:97: 1f:7f:62:a8:d0:f5:65:5b:ce:d8:8c:8f:2c:64:19: 91:08:a5:89:c6:f3:6d:3c:59:93:21:2c:b8:a2:02: 4b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:76:E2:C2:9B:AD:52:6A:93:EB:2C:72:18:EA:EC:D9:12:00:7E:BA X509v3 Authority Key Identifier: keyid:18:5F:F6:64:7E:1E:96:77:50:13:77:B5:51:54:79:B9:E9:46:10:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GF_2ZH4elndQE3e1UVR5uelGEGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/A1E87910832A11ECA409521EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.127.4.0/22 Signature Algorithm: sha256WithRSAEncryption 6f:98:3d:f4:d3:9f:2f:c7:81:47:d4:b7:0c:d4:30:fa:53:58: 8f:2b:c5:b4:e3:2c:1d:2c:6e:46:e8:8a:ce:e1:d3:74:eb:ba: c1:92:43:cb:a5:64:e0:1f:d6:96:94:99:93:b1:b7:34:9f:56: dd:94:b6:56:ed:62:bc:04:ed:6d:3e:6a:23:ff:20:c1:0b:93: 59:d9:86:5e:4d:7b:25:47:7c:69:21:a4:5c:23:66:78:e4:10: 78:17:da:62:82:25:c4:74:78:27:3e:87:3c:f2:9c:3e:55:b0: 1f:02:02:69:5b:a2:92:97:c8:6b:37:bf:4f:9a:0a:37:17:cf: 0d:de:9f:b7:c0:ed:b1:16:d3:11:8a:b1:9e:80:58:f2:83:b7: 6e:fe:f7:79:06:d6:97:25:af:3e:8b:44:87:59:01:77:3a:03: 5d:f0:21:96:4a:20:10:23:c1:9a:4b:4c:3e:03:cd:ca:e3:0b: 43:80:1c:36:53:b8:12:99:ca:24:ea:ea:ba:36:da:67:79:17: 8f:1e:6f:67:16:90:eb:08:f1:4a:2b:ec:aa:b6:32:10:f6:dc: 5d:6b:f0:88:8d:65:6c:92:8c:6e:3d:d8:57:f4:6e:bb:68:13: 25:3c:a7:b0:ab:b6:91:a0:e4:cf:e9:5a:49:c8:d4:f0:17:38: 73:f5:e8:67 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTNDODUxMTAvBgNVBAUTKDE4NUZGNjY0N0UxRTk2Nzc1MDEzNzdCNTUxNTQ3OUI5 RTk0NjEwNjcwHhcNMjQwMTMxMTgwNTU3WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJhOGMwNS0zNzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0C8kr0D5qLEOHEao4ETWxdwLaoW4e+b4uCdkCJOlJcAyztOI2k/nN9VZe01F cVDhi7tqeWC5wuWUs0zfS9kWanWjjW7ZyoIkSRECYKt8Hu0G5PEoN+x+lTonh3qQ qHYpuoHO2IDbgSGX89hxP30/jOY1xnA3l3j8ENUk01izh6smNRF1Ky06KmZ+l5qV OULfUQadUkf7yFeaZZcDomp7SasHypapDxr4KIjbUqSvyRIgp+hrOVK3OqiI9/Xw 6M+RM+/GHeVNIdeveuqFxRBzMUIXgaj76NGoexVENAqf75cff2Ko0PVlW87YjI8s ZBmRCKWJxvNtPFmTISy4ogJL9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFGV24sKb rVJqk+sschjq7NkSAH66MB8GA1UdIwQYMBaAFBhf9mR+HpZ3UBN3tVFUebnpRhBn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5M0M4NS80RkY0Q0I3MkZE RTAxMUU4OEVERTQ1MTNDNEY5QUUwMi9HRl8yWkg0ZWxuZFFFM2UxVVZSNXVlbEdF R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dGXzJaSDRlbG5kUUUzZTFVVlI1dWVsR0VHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTNDODUvNEZGNENCNzJGREUwMTFFODhFREU0NTEzQzRGOUFFMDIvQTFFODc5MTA4 MzJBMTFFQ0E0MDk1MjFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnfwQwDQYJKoZIhvcNAQELBQADggEBAG+YPfTTny/HgUfU twzUMPpTWI8rxbTjLB0sbkbois7h03TrusGSQ8ulZOAf1paUmZOxtzSfVt2Utlbt YrwE7W0+aiP/IMELk1nZhl5NeyVHfGkhpFwjZnjkEHgX2mKCJcR0eCc+hzzynD5V sB8CAmlbopKXyGs3v0+aCjcXzw3en7fA7bEW0xGKsZ6AWPKDt27+93kG1pclrz6L RIdZAXc6A13wIZZKIBAjwZpLTD4DzcrjC0OAHDZTuBKZyiTq6ro22md5F48eb2cW kOsI8Uor7Kq2MhD23F1r8IiNZWySjG492Ff0brtoEyU8p7CrtpGg5M/pWknI1PAX OHP16Gc= -----END CERTIFICATE-----Generated at Thu Jun 6 21:11:25 2024 by rpki-client on console-ams.rpki-client.org