$ rpki-client -vvf rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/C41538940B4711EC99840631C4F9AE02.roa File: C41538940B4711EC99840631C4F9AE02.roa (raw, json) Hash identifier: xDOP2UJve02vyF5meHGaC2ZZRzQVk68R72yk6cvo904= Subject key identifier: AB:6E:C5:E4:EE:8D:37:B6:77:7E:A0:30:FB:0C:15:76:0A:03:ED:4C Certificate issuer: /CN=A9115CB5/serialNumber=91F4939ABAED40FA366ECC76359DCA2BCB68CE47 Certificate serial: 0413 Authority key identifier: 91:F4:93:9A:BA:ED:40:FA:36:6E:CC:76:35:9D:CA:2B:CB:68:CE:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/C41538940B4711EC99840631C4F9AE02.roa Signing time: Tue 19 Sep 2023 00:42:28 +0000 ROA not before: Tue 19 Sep 2023 00:42:28 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 142600 IP address blocks: 103.170.174.0/23 maxlen: 24 2001:df7:2080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1043 (0x413) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115CB5/serialNumber=91F4939ABAED40FA366ECC76359DCA2BCB68CE47 Validity Not Before: Sep 19 00:42:28 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6508ee74-439b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4f:82:63:1c:37:11:7d:b4:ce:a8:ad:ba:ae: 91:5c:14:e3:d5:da:db:46:70:2c:71:c4:8a:c7:d5: 82:80:4a:90:c6:a7:83:36:80:6a:49:68:df:a0:bc: 0f:2c:81:ca:68:df:7e:aa:30:02:32:fc:b4:ef:5e: d0:40:4e:40:a1:dc:e7:cd:c3:c3:d1:1c:1b:a9:e1: 8b:6c:d3:b4:b3:dd:0b:5c:58:f3:ed:ca:ab:50:1b: 5d:4e:6d:cf:50:a9:c7:5e:3b:db:7a:19:89:d7:2d: fa:89:13:6e:c0:25:fa:6a:56:a3:8e:db:3a:a3:76: f0:e2:13:18:3f:f8:ec:29:62:80:bb:bc:c8:57:9d: 45:55:98:ec:3a:bc:6d:0c:73:a6:5c:01:b2:71:ad: 66:3f:29:6c:d3:ee:6f:9a:b4:1f:ac:5b:62:3e:5a: d6:bf:9b:db:32:2f:bd:6c:0c:91:5a:b7:0d:66:9b: e1:11:57:7b:a4:5f:0c:ce:ae:02:55:d2:17:90:a4: 3c:9a:c7:5a:65:2c:4d:dd:38:cf:d6:e3:b3:21:98: 11:7a:93:7a:06:aa:00:07:d2:af:e2:fd:0d:45:42: 14:6f:51:98:55:78:a2:26:35:61:ee:b1:be:d1:86: c6:52:c3:3e:b8:0f:c6:36:e1:0b:78:a9:86:cf:22: 3c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:6E:C5:E4:EE:8D:37:B6:77:7E:A0:30:FB:0C:15:76:0A:03:ED:4C X509v3 Authority Key Identifier: keyid:91:F4:93:9A:BA:ED:40:FA:36:6E:CC:76:35:9D:CA:2B:CB:68:CE:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/C41538940B4711EC99840631C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.174.0/23 IPv6: 2001:df7:2080::/48 Signature Algorithm: sha256WithRSAEncryption 3e:40:1c:c3:be:06:14:95:f6:cd:e1:e1:c6:70:03:fb:4c:17: 1f:0b:80:b0:f9:e1:75:54:2b:4e:81:44:66:17:6c:c3:b7:ba: 17:8d:48:66:a4:1f:8f:de:20:20:54:73:93:40:60:ff:08:69: 16:11:36:a9:0b:5a:f6:a7:16:d0:6f:ac:f2:e7:aa:24:15:8f: 26:c9:a1:f6:9c:ef:8a:1b:ae:15:44:10:55:17:80:2c:10:ca: 29:2f:cc:e2:b9:5c:b7:2e:1f:30:09:be:d3:f5:9c:ec:03:f4: 5f:83:73:2e:41:eb:81:07:d5:b9:f4:ab:82:12:cc:90:f7:fa: 50:17:2e:03:46:fb:ee:ee:60:18:d1:2b:3d:ec:18:59:c9:2c: 31:2f:48:b1:c4:3d:fd:57:b9:89:a8:c8:9d:82:28:17:14:ad: 0e:99:8e:bd:8c:7a:7f:0e:9e:d5:13:f7:b7:e1:d7:46:27:d0: 56:0a:b6:3b:ee:ae:db:17:31:95:84:01:c9:c1:71:19:40:c1: d9:b7:4f:84:cb:7e:e8:b4:32:c5:00:da:a8:cb:92:30:38:7e: bf:65:67:15:06:0e:e4:76:b6:7e:7c:61:19:46:1d:9a:c0:4f: 51:9e:26:03:c7:6e:79:fa:d1:d1:43:af:73:8d:cc:40:45:1e: 03:d2:51:14 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBBMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTVDQjUxMTAvBgNVBAUTKDkxRjQ5MzlBQkFFRDQwRkEzNjZFQ0M3NjM1OURDQTJC Q0I2OENFNDcwHhcNMjMwOTE5MDA0MjI4WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTA4ZWU3NC00MzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqU+CYxw3EX20zqituq6RXBTj1drbRnAsccSKx9WCgEqQxqeDNoBqSWjfoLwP LIHKaN9+qjACMvy0717QQE5AodznzcPD0RwbqeGLbNO0s90LXFjz7cqrUBtdTm3P UKnHXjvbehmJ1y36iRNuwCX6alajjts6o3bw4hMYP/jsKWKAu7zIV51FVZjsOrxt DHOmXAGyca1mPyls0+5vmrQfrFtiPlrWv5vbMi+9bAyRWrcNZpvhEVd7pF8Mzq4C VdIXkKQ8msdaZSxN3TjP1uOzIZgRepN6BqoAB9Kv4v0NRUIUb1GYVXiiJjVh7rG+ 0YbGUsM+uA/GNuELeKmGzyI8QwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKtuxeTu jTe2d36gMPsMFXYKA+1MMB8GA1UdIwQYMBaAFJH0k5q67UD6Nm7MdjWdyivLaM5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNUNCNS9EOUZEMkRGRUYz N0YxMUVCQjI4M0U3NEFDNEY5QUUwMi9rZlNUbXJydFFQbzJic3gyTlozS0s4dG96 a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmU1RtcnJ0UVBvMmJzeDJOWjNLSzh0b3prYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTVDQjUvRDlGRDJERkVGMzdGMTFFQkIyODNFNzRBQzRGOUFFMDIvQzQxNTM4OTQw QjQ3MTFFQzk5ODQwNjMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnqq4wDwQCAAIwCQMHACABDfcggDANBgkqhkiG9w0BAQsF AAOCAQEAPkAcw74GFJX2zeHhxnAD+0wXHwuAsPnhdVQrToFEZhdsw7e6F41IZqQf j94gIFRzk0Bg/whpFhE2qQta9qcW0G+s8ueqJBWPJsmh9pzvihuuFUQQVReALBDK KS/M4rlcty4fMAm+0/Wc7AP0X4NzLkHrgQfVufSrghLMkPf6UBcuA0b77u5gGNEr PewYWcksMS9IscQ9/Ve5iajInYIoFxStDpmOvYx6fw6e1RP3t+HXRifQVgq2O+6u 2xcxlYQBycFxGUDB2bdPhMt+6LQyxQDaqMuSMDh+v2VnFQYO5Ha2fnxhGUYdmsBP UZ4mA8duefrR0UOvc43MQEUeA9JRFA== -----END CERTIFICATE-----Generated at Fri May 17 02:38:37 2024 by rpki-client on console-fra.rpki-client.org