$ rpki-client -vvf rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/531416ACD5CB11ECA4E7EB2AC4F9AE02.roa File: 531416ACD5CB11ECA4E7EB2AC4F9AE02.roa (raw, json) Hash identifier: f4cy+G+YntmqzMv+xjmdLs0/cMka1Iwc+8ACKfQldw4= Subject key identifier: 8D:E0:26:E1:11:1E:68:7C:71:83:BD:04:99:2E:B5:F7:53:AE:76:30 Certificate issuer: /CN=A9116B5E/serialNumber=FA356029FC772A5B43269C316AD685C4BB5A656D Certificate serial: 0500 Authority key identifier: FA:35:60:29:FC:77:2A:5B:43:26:9C:31:6A:D6:85:C4:BB:5A:65:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-jVgKfx3KltDJpwxataFxLtaZW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/531416ACD5CB11ECA4E7EB2AC4F9AE02.roa Signing time: Tue 05 Dec 2023 00:32:15 +0000 ROA not before: Tue 05 Dec 2023 00:32:15 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 138658 IP address blocks: 103.159.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/-jVgKfx3KltDJpwxataFxLtaZW0.crl rsync://rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/-jVgKfx3KltDJpwxataFxLtaZW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-jVgKfx3KltDJpwxataFxLtaZW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1280 (0x500) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116B5E/serialNumber=FA356029FC772A5B43269C316AD685C4BB5A656D Validity Not Before: Dec 5 00:32:15 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656e6f8f-e816 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:96:b8:43:1b:b4:3d:6b:07:4e:92:b9:65:81: f8:26:82:a4:0c:7e:6b:a8:c6:14:1d:b9:d5:ed:a9: 20:81:e7:d2:1c:1c:2a:eb:db:45:4c:a2:de:56:77: f4:8e:25:74:4a:c4:d2:fb:ef:46:18:1f:eb:fe:65: 67:23:55:fb:2b:c0:c5:3c:2b:cd:2a:10:da:37:4c: cd:29:28:d6:98:71:d9:cf:f2:b3:55:02:71:dc:83: f7:02:bc:dc:08:f4:be:05:25:e6:3e:80:50:dc:bc: 5e:b7:04:55:66:2e:2d:a1:41:7f:7e:83:43:2b:8a: 87:9b:e0:e6:b1:0a:6e:b5:29:94:b5:09:18:ef:a8: 73:89:90:64:46:ea:c4:81:98:22:a2:1b:24:6a:8d: 7e:f9:56:9b:2e:54:0e:02:56:1a:aa:43:7f:cf:d4: ec:4b:7c:c1:05:55:02:3c:7e:6a:7e:f5:db:2e:55: 2a:fd:ef:eb:49:26:ca:2b:46:66:eb:d5:59:c9:2f: 78:3c:6c:37:bd:32:9c:24:8d:90:4d:fc:e8:9e:84: c3:b4:b7:b8:08:c7:31:1b:b0:a3:03:43:2a:3f:55: df:ea:ce:7e:3d:13:55:0b:91:9a:59:ff:03:95:9e: bf:61:ac:61:71:0f:b9:a1:57:bc:77:7e:93:ba:10: 90:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:E0:26:E1:11:1E:68:7C:71:83:BD:04:99:2E:B5:F7:53:AE:76:30 X509v3 Authority Key Identifier: keyid:FA:35:60:29:FC:77:2A:5B:43:26:9C:31:6A:D6:85:C4:BB:5A:65:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/-jVgKfx3KltDJpwxataFxLtaZW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-jVgKfx3KltDJpwxataFxLtaZW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/531416ACD5CB11ECA4E7EB2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.5.0/24 Signature Algorithm: sha256WithRSAEncryption 23:b8:d3:00:af:04:55:a8:7e:ea:dc:aa:de:82:35:1c:5f:07: c2:04:94:82:7c:4c:92:b8:e3:53:1f:38:93:64:f6:0d:e7:ec: 35:53:7d:a9:61:f4:d5:93:d8:16:55:c9:fc:82:f8:12:c5:8c: c5:da:b3:58:01:c4:fc:62:31:1c:67:92:8a:7e:97:0f:66:af: 7e:37:38:e9:6b:b5:59:82:f2:27:3e:35:1f:f7:b0:44:84:f9: e1:a3:62:82:79:d0:d0:b4:ee:f9:ed:1d:2e:dd:9c:70:68:c7: fa:17:51:de:af:08:d2:3e:d1:a9:5f:4e:2d:96:b7:8c:9d:a4: aa:89:79:90:d2:6c:9c:ec:a5:45:2a:fa:b3:8b:2b:5c:76:a4: 7e:16:3b:96:83:af:64:72:4e:30:66:0e:8c:11:76:9d:ce:28: 75:c7:89:37:27:45:0f:ff:81:7d:ee:b3:31:3f:16:05:18:bf: c3:08:e9:68:a6:21:bf:4f:6e:b6:67:de:76:cc:7f:28:dd:a2: 83:69:6a:b8:b3:29:9a:6a:c0:d5:f1:ca:9b:aa:5d:41:5f:55: c0:80:2d:f5:24:71:ee:e1:9b:86:80:ab:66:72:b9:7b:d1:49: c6:cd:ff:74:61:e7:6a:4d:5f:2e:ac:77:da:90:5a:ad:33:46: 02:45:68:c3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZCNUUxMTAvBgNVBAUTKEZBMzU2MDI5RkM3NzJBNUI0MzI2OUMzMTZBRDY4NUM0 QkI1QTY1NkQwHhcNMjMxMjA1MDAzMjE1WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZlNmY4Zi1lODE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Za4Qxu0PWsHTpK5ZYH4JoKkDH5rqMYUHbnV7akggefSHBwq69tFTKLeVnf0 jiV0SsTS++9GGB/r/mVnI1X7K8DFPCvNKhDaN0zNKSjWmHHZz/KzVQJx3IP3Arzc CPS+BSXmPoBQ3LxetwRVZi4toUF/foNDK4qHm+DmsQputSmUtQkY76hziZBkRurE gZgiohskao1++VabLlQOAlYaqkN/z9TsS3zBBVUCPH5qfvXbLlUq/e/rSSbKK0Zm 69VZyS94PGw3vTKcJI2QTfzonoTDtLe4CMcxG7CjA0MqP1Xf6s5+PRNVC5GaWf8D lZ6/YaxhcQ+5oVe8d36TuhCQnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFI3gJuER Hmh8cYO9BJkutfdTrnYwMB8GA1UdIwQYMBaAFPo1YCn8dypbQyacMWrWhcS7WmVt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkI1RS9GNThDNTY5NEE2 RTAxMUVCQUMxREVCNTdDNEY5QUUwMi8talZnS2Z4M0tsdERKcHd4YXRhRnhMdGFa VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1qVmdLZngzS2x0REpwd3hhdGFGeEx0YVpXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTZCNUUvRjU4QzU2OTRBNkUwMTFFQkFDMURFQjU3QzRGOUFFMDIvNTMxNDE2QUNE NUNCMTFFQ0E0RTdFQjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnnwUwDQYJKoZIhvcNAQELBQADggEBACO40wCvBFWofurc qt6CNRxfB8IElIJ8TJK441MfOJNk9g3n7DVTfalh9NWT2BZVyfyC+BLFjMXas1gB xPxiMRxnkop+lw9mr343OOlrtVmC8ic+NR/3sESE+eGjYoJ50NC07vntHS7dnHBo x/oXUd6vCNI+0alfTi2Wt4ydpKqJeZDSbJzspUUq+rOLK1x2pH4WO5aDr2RyTjBm DowRdp3OKHXHiTcnRQ//gX3uszE/FgUYv8MI6WimIb9PbrZn3nbMfyjdooNpariz KZpqwNXxypuqXUFfVcCALfUkce7hm4aAq2ZyuXvRScbN/3Rh52pNXy6sd9qQWq0z RgJFaMM= -----END CERTIFICATE-----Generated at Fri May 17 02:01:40 2024 by rpki-client on console-ams.rpki-client.org