$ rpki-client -vvf rpki.apnic.net/member_repository/A9123431/C17B7C64ACC311ED8EC42111C4F9AE02/A7B59636ACCB11EDA8DAFF4AC4F9AE02.roa File: A7B59636ACCB11EDA8DAFF4AC4F9AE02.roa (raw, json) Hash identifier: j0ChLZQYnt+8lZ/OeZVExebmUV2rXob/vuBqFbvGr0Q= Subject key identifier: 61:96:FC:F7:6A:3F:84:7D:E7:5C:E2:A5:16:B9:94:F6:45:BC:FC:B3 Certificate issuer: /CN=A9123431/serialNumber=2D2E2C569D4B639967E658AD5C497C331AAB885F Certificate serial: 45 Authority key identifier: 2D:2E:2C:56:9D:4B:63:99:67:E6:58:AD:5C:49:7C:33:1A:AB:88:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LS4sVp1LY5ln5litXEl8MxqriF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123431/C17B7C64ACC311ED8EC42111C4F9AE02/A7B59636ACCB11EDA8DAFF4AC4F9AE02.roa Signing time: Wed 21 Jun 2023 05:45:31 +0000 ROA not before: Wed 21 Jun 2023 05:45:31 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 134359 IP address blocks: 103.233.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123431/C17B7C64ACC311ED8EC42111C4F9AE02/LS4sVp1LY5ln5litXEl8MxqriF8.crl rsync://rpki.apnic.net/member_repository/A9123431/C17B7C64ACC311ED8EC42111C4F9AE02/LS4sVp1LY5ln5litXEl8MxqriF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LS4sVp1LY5ln5litXEl8MxqriF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 05:34:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123431/serialNumber=2D2E2C569D4B639967E658AD5C497C331AAB885F Validity Not Before: Jun 21 05:45:31 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64928e7b-d268 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:7d:e5:d4:38:0d:7e:7a:25:9e:1d:54:37:55: fe:f3:7a:55:b4:b9:f7:33:b8:ad:71:4f:b0:4e:f8: 4d:7b:fa:82:69:3c:1a:36:52:f0:99:a4:d5:37:a1: c7:23:9e:da:ac:d0:e5:73:c8:67:27:ed:ab:b0:2c: a4:2b:3f:1b:c5:fb:2d:42:1b:01:a9:2b:85:10:31: 46:5c:62:99:d8:fd:26:f0:7c:f5:53:e4:74:ad:71: 28:dc:ea:19:b1:01:6b:e1:86:dd:70:c9:e3:c2:c0: 55:56:fd:3d:93:ae:2c:b2:40:26:07:aa:da:e6:f1: 5d:6c:3e:f5:ea:c1:86:ac:c4:ad:0d:c0:46:19:32: 4a:ef:46:03:11:41:03:77:9a:df:cf:12:12:6b:ed: 54:3b:d5:8a:f4:10:fe:34:ae:1b:ed:1d:76:de:b9: fa:ef:93:d7:64:a2:d1:92:66:e4:15:4e:41:af:2d: 8c:4a:d6:5f:32:b8:d1:ab:5a:c6:91:e5:83:30:c3: a5:c6:4c:d9:0b:9c:8b:31:72:4d:05:29:68:ca:c8: bf:fc:16:ea:11:e2:73:23:11:0f:08:96:1e:ef:76: b5:fc:ab:b3:2c:5a:d6:66:53:51:ea:2e:90:0e:f8: 5a:37:df:16:f3:6c:4f:b2:71:f7:47:b6:53:9f:ed: 75:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:96:FC:F7:6A:3F:84:7D:E7:5C:E2:A5:16:B9:94:F6:45:BC:FC:B3 X509v3 Authority Key Identifier: keyid:2D:2E:2C:56:9D:4B:63:99:67:E6:58:AD:5C:49:7C:33:1A:AB:88:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123431/C17B7C64ACC311ED8EC42111C4F9AE02/LS4sVp1LY5ln5litXEl8MxqriF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LS4sVp1LY5ln5litXEl8MxqriF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123431/C17B7C64ACC311ED8EC42111C4F9AE02/A7B59636ACCB11EDA8DAFF4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.233.132.0/22 Signature Algorithm: sha256WithRSAEncryption a7:cd:97:9f:0b:16:89:e2:b1:ae:1b:fd:68:4c:29:4d:a3:30: d9:df:59:82:10:ad:d2:a9:af:ac:18:bf:4a:04:cb:ae:61:09: d6:ad:54:72:e2:32:24:c9:1b:60:76:f9:81:c5:f9:99:18:fa: c6:29:c4:82:4f:54:54:0c:a1:b8:93:f8:52:cf:80:45:c7:07: 85:a0:64:ad:f1:30:67:be:08:05:97:f0:6e:f2:91:7a:fa:fe: 17:13:33:1a:48:38:10:fb:fa:92:dc:22:26:29:d2:57:3f:10: e6:19:82:49:d4:36:44:3e:59:5e:9a:4a:57:29:da:2d:6e:b0: d8:b3:b0:ea:ae:e7:b4:65:5b:d6:9b:63:30:20:f1:d1:b5:f2: cf:ef:38:d4:fd:82:14:44:fb:10:f6:26:28:77:63:c9:5e:b5: 68:02:dd:52:66:60:2e:f1:11:3a:0e:49:31:df:7f:0f:38:d0: 6b:75:5a:87:4b:a4:c8:03:e6:59:10:e2:4d:81:9d:75:48:9e: 24:80:ee:ff:40:22:c0:eb:81:3e:97:6a:58:f2:ac:fb:d9:29: ae:fb:ac:73:e0:c2:5c:56:31:22:3c:18:f0:98:0e:ba:38:63: 81:96:c3:a7:14:52:41:82:97:20:6b:5a:e8:f7:31:66:b6:1a: b9:f1:72:0a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MzQzMTExMC8GA1UEBRMoMkQyRTJDNTY5RDRCNjM5OTY3RTY1OEFENUM0OTdDMzMx QUFCODg1RjAeFw0yMzA2MjEwNTQ1MzFaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0OTI4ZTdiLWQyNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDvfeXUOA1+eiWeHVQ3Vf7zelW0ufczuK1xT7BO+E17+oJpPBo2UvCZpNU3occj ntqs0OVzyGcn7auwLKQrPxvF+y1CGwGpK4UQMUZcYpnY/SbwfPVT5HStcSjc6hmx AWvhht1wyePCwFVW/T2TriyyQCYHqtrm8V1sPvXqwYasxK0NwEYZMkrvRgMRQQN3 mt/PEhJr7VQ71Yr0EP40rhvtHXbeufrvk9dkotGSZuQVTkGvLYxK1l8yuNGrWsaR 5YMww6XGTNkLnIsxck0FKWjKyL/8FuoR4nMjEQ8Ilh7vdrX8q7MsWtZmU1HqLpAO +Fo33xbzbE+ycfdHtlOf7XVvAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUYZb892o/ hH3nXOKlFrmU9kW8/LMwHwYDVR0jBBgwFoAULS4sVp1LY5ln5litXEl8MxqriF8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIzNDMxL0MxN0I3QzY0QUND MzExRUQ4RUM0MjExMUM0RjlBRTAyL0xTNHNWcDFMWTVsbjVsaXRYRWw4TXhxcmlG OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTFM0c1ZwMUxZNWxuNWxpdFhFbDhNeHFyaUY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzQzMS9DMTdCN0M2NEFDQzMxMUVEOEVDNDIxMTFDNEY5QUUwMi9BN0I1OTYzNkFD Q0IxMUVEQThEQUZGNEFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmfphDANBgkqhkiG9w0BAQsFAAOCAQEAp82XnwsWieKxrhv9 aEwpTaMw2d9ZghCt0qmvrBi/SgTLrmEJ1q1UcuIyJMkbYHb5gcX5mRj6xinEgk9U VAyhuJP4Us+ARccHhaBkrfEwZ74IBZfwbvKRevr+FxMzGkg4EPv6ktwiJinSVz8Q 5hmCSdQ2RD5ZXppKVynaLW6w2LOw6q7ntGVb1ptjMCDx0bXyz+841P2CFET7EPYm KHdjyV61aALdUmZgLvEROg5JMd9/DzjQa3Vah0ukyAPmWRDiTYGddUieJIDu/0Ai wOuBPpdqWPKs+9kprvusc+DCXFYxIjwY8JgOujhjgZbDpxRSQYKXIGta6PcxZrYa ufFyCg== -----END CERTIFICATE-----Generated at Fri May 17 06:46:20 2024 by rpki-client on console-ams.rpki-client.org