$ rpki-client -vvf rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/D277F83CD3A411ED8C51160FC4F9AE02.roa File: D277F83CD3A411ED8C51160FC4F9AE02.roa (raw, json) Hash identifier: zaoKS/Y1Ph1TfzBJvxVJTzMA+iBbcn26uLQGnZGKNrU= Subject key identifier: 92:52:67:88:32:82:26:1B:72:10:F2:DB:E8:59:CB:ED:39:31:B4:00 Certificate issuer: /CN=A919676F/serialNumber=EBBA143B28663718CD8C7DA3F631009A9804EE5F Certificate serial: 8D Authority key identifier: EB:BA:14:3B:28:66:37:18:CD:8C:7D:A3:F6:31:00:9A:98:04:EE:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67oUOyhmNxjNjH2j9jEAmpgE7l8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/D277F83CD3A411ED8C51160FC4F9AE02.roa Signing time: Wed 27 Dec 2023 05:37:40 +0000 ROA not before: Wed 27 Dec 2023 05:37:40 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 137880 IP address blocks: 103.157.90.0/23 maxlen: 23 103.157.90.0/24 maxlen: 24 103.157.91.0/24 maxlen: 24 2406:9cc0::/32 maxlen: 32 2406:9cc0:1::/48 maxlen: 48 2406:9cc0:5::/48 maxlen: 48 2406:9cc0:100::/48 maxlen: 48 2406:9cc0:200::/48 maxlen: 48 2406:9cc0:fce::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.crl rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67oUOyhmNxjNjH2j9jEAmpgE7l8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919676F/serialNumber=EBBA143B28663718CD8C7DA3F631009A9804EE5F Validity Not Before: Dec 27 05:37:40 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=658bb824-7027 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:12:2b:1e:85:56:c3:b4:e0:82:40:36:09:43: 64:6d:7a:d3:be:86:20:31:a9:16:8d:2b:c7:7c:03: 8c:98:c3:b2:14:b6:bb:43:02:9a:e1:58:4e:1b:ed: 03:38:a6:24:ed:57:25:bf:ef:80:33:6c:31:bb:c1: 40:b5:65:6a:e7:93:97:04:2e:f0:8a:ee:25:28:06: 44:00:7a:96:6c:26:6e:53:7f:4b:57:12:d5:62:1c: 57:24:1a:ff:52:1b:f9:56:2c:f0:39:7f:98:59:93: 31:da:65:5d:93:f9:b7:52:a6:10:99:09:95:66:9a: b7:81:69:25:aa:49:85:e7:9c:c3:84:31:0a:43:23: f5:1b:93:99:9b:4f:bc:b7:38:12:c7:f3:63:aa:30: 8c:c2:f3:35:75:21:6d:50:48:e1:75:a4:51:60:eb: a5:08:f2:d5:de:fa:cc:31:48:69:cf:0f:f9:3f:2f: bf:0a:93:cc:f9:3f:6c:07:24:e0:48:ee:66:47:c9: 40:5f:d6:b5:4b:32:b8:47:5e:80:bf:47:88:85:13: 66:5f:62:1e:62:68:ca:8b:62:94:24:49:f4:1d:32: d2:f2:3f:f2:ee:d2:1f:1d:98:0a:52:54:47:57:2e: b1:a7:35:15:9a:c9:c1:15:d8:90:f0:41:79:08:86: db:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:52:67:88:32:82:26:1B:72:10:F2:DB:E8:59:CB:ED:39:31:B4:00 X509v3 Authority Key Identifier: keyid:EB:BA:14:3B:28:66:37:18:CD:8C:7D:A3:F6:31:00:9A:98:04:EE:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67oUOyhmNxjNjH2j9jEAmpgE7l8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/D277F83CD3A411ED8C51160FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.157.90.0/23 IPv6: 2406:9cc0::/32 Signature Algorithm: sha256WithRSAEncryption 47:11:cd:31:28:11:59:2f:54:40:05:bf:d1:5c:e7:8a:79:60: 61:d7:fb:ce:0b:b9:57:7e:79:b8:19:81:e0:4f:6c:68:11:1d: 60:bc:69:94:8e:5c:dd:86:f8:2e:e1:d9:5a:10:3c:bc:9f:e8: 69:96:af:71:a7:64:02:9a:ef:45:25:2f:c0:03:84:f4:98:f7: 81:c0:66:09:68:b0:cd:c0:ed:c7:e2:ce:90:0c:fd:ab:44:65: f3:97:6d:58:8b:36:36:75:a8:22:e0:f7:0d:7d:5e:7d:13:58: d7:e4:5f:80:fa:a3:9d:1a:fc:c5:69:0c:ea:83:a7:22:55:a1: c4:37:d0:7e:92:62:34:76:40:d6:f9:ed:b4:e4:45:b2:f3:eb: b8:ca:3a:92:0c:d9:1c:65:10:15:bb:4a:c0:36:92:42:2f:9e: b7:d4:ef:44:1c:51:ef:ab:cd:69:91:e5:69:54:5f:b6:1a:a5: 65:64:fb:4f:28:d2:65:91:52:0d:a2:67:89:24:18:84:7e:e8: 93:e1:6e:4e:25:ac:fa:22:57:0b:e0:84:41:d5:2c:87:fa:7d: df:68:1a:27:70:cd:8c:5a:a0:53:54:30:8c:f6:0b:6d:49:92: ed:ef:fe:73:d2:13:4f:5a:4e:d1:65:6c:5d:1c:0b:46:97:2d: 27:34:91:5a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY3NkYxMTAvBgNVBAUTKEVCQkExNDNCMjg2NjM3MThDRDhDN0RBM0Y2MzEwMDlB OTgwNEVFNUYwHhcNMjMxMjI3MDUzNzQwWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NThiYjgyNC03MDI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxIrHoVWw7TggkA2CUNkbXrTvoYgMakWjSvHfAOMmMOyFLa7QwKa4VhOG+0D OKYk7Vclv++AM2wxu8FAtWVq55OXBC7wiu4lKAZEAHqWbCZuU39LVxLVYhxXJBr/ Uhv5VizwOX+YWZMx2mVdk/m3UqYQmQmVZpq3gWklqkmF55zDhDEKQyP1G5OZm0+8 tzgSx/NjqjCMwvM1dSFtUEjhdaRRYOulCPLV3vrMMUhpzw/5Py+/CpPM+T9sByTg SO5mR8lAX9a1SzK4R16Av0eIhRNmX2IeYmjKi2KUJEn0HTLS8j/y7tIfHZgKUlRH Vy6xpzUVmsnBFdiQ8EF5CIbbbwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJJSZ4gy giYbchDy2+hZy+05MbQAMB8GA1UdIwQYMBaAFOu6FDsoZjcYzYx9o/YxAJqYBO5f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Njc2Ri9GRTQ5RkFDMkQz QTAxMUVEODE0QzRDMThDNEY5QUUwMi82N29VT3lobU54ak5qSDJqOWpFQW1wZ0U3 bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY3b1VPeWhtTnhqTmpIMmo5akVBbXBnRTdsOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTY3NkYvRkU0OUZBQzJEM0EwMTFFRDgxNEM0QzE4QzRGOUFFMDIvRDI3N0Y4M0NE M0E0MTFFRDhDNTExNjBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnnVowDQQCAAIwBwMFACQGnMAwDQYJKoZIhvcNAQELBQAD ggEBAEcRzTEoEVkvVEAFv9Fc54p5YGHX+84LuVd+ebgZgeBPbGgRHWC8aZSOXN2G +C7h2VoQPLyf6GmWr3GnZAKa70UlL8ADhPSY94HAZglosM3A7cfizpAM/atEZfOX bViLNjZ1qCLg9w19Xn0TWNfkX4D6o50a/MVpDOqDpyJVocQ30H6SYjR2QNb57bTk RbLz67jKOpIM2RxlEBW7SsA2kkIvnrfU70QcUe+rzWmR5WlUX7YapWVk+08o0mWR Ug2iZ4kkGIR+6JPhbk4lrPoiVwvghEHVLIf6fd9oGidwzYxaoFNUMIz2C21Jku3v /nPSE09aTtFlbF0cC0aXLSc0kVo= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:45 2024 by rpki-client on console-ams.rpki-client.org