$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/63B7CB76D0E511EA9916E053C4F9AE02.roa File: 63B7CB76D0E511EA9916E053C4F9AE02.roa (raw, json) Hash identifier: IA8RKSjSMHtlCg0VWWLv9mcy72TVUgTJoTJ/w4ZseJE= Subject key identifier: 07:21:B5:4B:1E:9A:68:D0:69:C0:3C:BE:57:F9:A6:80:9F:8E:72:E5 Certificate issuer: /CN=A911AE4B/serialNumber=8236BBCD702D4822FDDD5BB05660CF1038EC8C7E Certificate serial: 06BC Authority key identifier: 82:36:BB:CD:70:2D:48:22:FD:DD:5B:B0:56:60:CF:10:38:EC:8C:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gja7zXAtSCL93VuwVmDPEDjsjH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/63B7CB76D0E511EA9916E053C4F9AE02.roa Signing time: Sun 04 Jun 2023 23:35:24 +0000 ROA not before: Sun 04 Jun 2023 23:35:24 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 140659 IP address blocks: 103.151.116.0/23 maxlen: 24 2406:19c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.crl rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gja7zXAtSCL93VuwVmDPEDjsjH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1724 (0x6bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE4B/serialNumber=8236BBCD702D4822FDDD5BB05660CF1038EC8C7E Validity Not Before: Jun 4 23:35:24 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=647d1fbc-0631 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:78:c2:42:6a:a3:28:88:a6:f3:4b:0e:c5:06: c6:43:6b:de:c2:76:c0:a6:36:3f:08:ca:c5:a8:f3: 44:d9:d9:70:7e:aa:1f:90:c2:7e:e9:a9:2e:c1:a6: db:73:36:bb:aa:96:fb:fc:ee:0d:33:98:56:c5:a3: fa:23:c7:f2:77:e4:0d:e0:5a:8a:f9:c3:88:23:29: b8:b9:2a:65:df:a9:bc:37:78:7e:03:94:01:30:ee: 60:6a:97:e9:15:52:fc:b6:4c:86:dc:f5:c0:70:40: e2:f5:85:c9:9a:47:39:bd:a5:2a:70:4d:d5:cb:f0: 8f:72:d6:28:3b:55:8e:fa:f7:6e:2e:95:c8:a1:39: b9:16:7d:95:50:9d:7a:97:03:cc:e7:eb:f6:41:6a: c6:d8:d5:24:40:97:76:04:2c:ef:78:e1:ef:71:22: 51:b4:d6:90:6a:26:c9:4e:87:d8:4b:44:5c:fb:79: a2:47:f8:74:1e:ba:09:2e:36:c3:e6:e3:5a:8a:d6: 51:75:a4:02:af:ee:be:d1:0e:df:55:91:0e:49:6d: 07:4f:a8:7c:35:da:fc:e1:e7:a5:b2:13:5c:7a:6f: b8:2e:b2:a3:59:fc:89:d7:4d:c3:07:89:c2:43:ec: 62:7a:63:23:bf:a3:d8:79:25:75:9e:79:d1:f2:67: 2f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:21:B5:4B:1E:9A:68:D0:69:C0:3C:BE:57:F9:A6:80:9F:8E:72:E5 X509v3 Authority Key Identifier: keyid:82:36:BB:CD:70:2D:48:22:FD:DD:5B:B0:56:60:CF:10:38:EC:8C:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gja7zXAtSCL93VuwVmDPEDjsjH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/63B7CB76D0E511EA9916E053C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.116.0/23 IPv6: 2406:19c0::/32 Signature Algorithm: sha256WithRSAEncryption 00:1e:0e:25:41:10:a2:ce:7f:d0:a5:96:c8:c7:fc:45:93:03: 9d:28:f7:74:74:11:f0:0c:2c:00:34:f2:ba:d7:74:5a:1f:1b: c5:0c:5f:ec:3e:6c:53:b6:40:1a:32:66:01:7b:e1:7a:c4:ec: b4:2f:22:7f:e9:64:12:d4:a6:59:1b:fb:06:08:34:85:45:0d: c9:5f:26:c8:91:60:e8:17:09:ec:78:7c:d5:46:53:69:a2:b9: 8c:d6:67:16:cc:da:66:b6:35:45:5f:8b:0e:c8:f3:a8:e8:d5: 19:65:af:62:b2:5e:d4:ab:61:25:70:7b:5e:df:98:91:62:8e: 19:10:cf:ff:e9:7b:b8:d0:03:cd:01:59:88:05:3a:eb:79:db: 37:4d:b6:8a:fa:08:0c:f5:50:c6:d5:5d:9e:2e:7d:ff:0d:20: 9c:20:21:99:ae:45:5f:63:af:da:f0:41:62:e6:98:47:b8:b9: 3a:63:d0:eb:7c:9a:1a:c1:ae:16:6a:ec:3c:e6:1b:94:cf:7f: 5b:41:2f:75:42:8e:e5:b3:10:09:a5:01:a2:a6:ca:32:8b:18: a9:cf:9c:5d:67:84:9b:12:1e:b0:55:b8:9f:94:e5:46:b1:7b: 59:c4:19:17:f5:03:f5:3c:5f:e9:28:55:13:b1:e0:2c:61:4e: ba:84:26:2f -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBrwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFNEIxMTAvBgNVBAUTKDgyMzZCQkNENzAyRDQ4MjJGRERENUJCMDU2NjBDRjEw MzhFQzhDN0UwHhcNMjMwNjA0MjMzNTI0WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdkMWZiYy0wNjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHjCQmqjKIim80sOxQbGQ2vewnbApjY/CMrFqPNE2dlwfqofkMJ+6akuwabb cza7qpb7/O4NM5hWxaP6I8fyd+QN4FqK+cOIIym4uSpl36m8N3h+A5QBMO5gapfp FVL8tkyG3PXAcEDi9YXJmkc5vaUqcE3Vy/CPctYoO1WO+vduLpXIoTm5Fn2VUJ16 lwPM5+v2QWrG2NUkQJd2BCzveOHvcSJRtNaQaibJTofYS0Rc+3miR/h0HroJLjbD 5uNaitZRdaQCr+6+0Q7fVZEOSW0HT6h8Ndr84eelshNcem+4LrKjWfyJ103DB4nC Q+xiemMjv6PYeSV1nnnR8mcvBQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAchtUse mmjQacA8vlf5poCfjnLlMB8GA1UdIwQYMBaAFII2u81wLUgi/d1bsFZgzxA47Ix+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUU0Qi8yNEE2OEU5Q0Qw RTMxMUVBOUE3M0I5NEZDNEY5QUUwMi9namE3elhBdFNDTDkzVnV3Vm1EUEVEanNq SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dqYTd6WEF0U0NMOTNWdXdWbURQRURqc2pINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFFNEIvMjRBNjhFOUNEMEUzMTFFQTlBNzNCOTRGQzRGOUFFMDIvNjNCN0NCNzZE MEU1MTFFQTk5MTZFMDUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnl3QwDQQCAAIwBwMFACQGGcAwDQYJKoZIhvcNAQELBQAD ggEBAAAeDiVBEKLOf9CllsjH/EWTA50o93R0EfAMLAA08rrXdFofG8UMX+w+bFO2 QBoyZgF74XrE7LQvIn/pZBLUplkb+wYINIVFDclfJsiRYOgXCex4fNVGU2miuYzW ZxbM2ma2NUVfiw7I86jo1Rllr2KyXtSrYSVwe17fmJFijhkQz//pe7jQA80BWYgF Out52zdNtor6CAz1UMbVXZ4uff8NIJwgIZmuRV9jr9rwQWLmmEe4uTpj0Ot8mhrB rhZq7DzmG5TPf1tBL3VCjuWzEAmlAaKmyjKLGKnPnF1nhJsSHrBVuJ+U5Uaxe1nE GRf1A/U8X+koVROx4CxhTrqEJi8= -----END CERTIFICATE-----Generated at Thu May 16 23:39:13 2024 by rpki-client on console-ams.rpki-client.org