$ rpki-client -vvf rpki.apnic.net/member_repository/A9127142/966185BA383C11EDB09F0214C4F9AE02/51DC4CFA3E8911EEBAA0A668C4F9AE02.roa File: 51DC4CFA3E8911EEBAA0A668C4F9AE02.roa (raw, json) Hash identifier: gETNMennaw10aPiXd21M18PnUZ+N9oPyo2vnsLtZhks= Subject key identifier: 85:AF:0C:5F:A5:AF:CC:E1:D3:8B:CF:6D:03:5E:14:96:AE:41:4C:1C Certificate issuer: /CN=A9127142/serialNumber=A7E71952DCFB395C42CBD8BC6F52F0329CC76B65 Certificate serial: C3 Authority key identifier: A7:E7:19:52:DC:FB:39:5C:42:CB:D8:BC:6F:52:F0:32:9C:C7:6B:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p-cZUtz7OVxCy9i8b1LwMpzHa2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127142/966185BA383C11EDB09F0214C4F9AE02/51DC4CFA3E8911EEBAA0A668C4F9AE02.roa Signing time: Sat 19 Aug 2023 12:10:00 +0000 ROA not before: Sat 19 Aug 2023 12:10:00 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 135587 IP address blocks: 103.7.122.0/24 maxlen: 24 103.7.123.0/24 maxlen: 24 2001:df1:49c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127142/966185BA383C11EDB09F0214C4F9AE02/p-cZUtz7OVxCy9i8b1LwMpzHa2U.crl rsync://rpki.apnic.net/member_repository/A9127142/966185BA383C11EDB09F0214C4F9AE02/p-cZUtz7OVxCy9i8b1LwMpzHa2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p-cZUtz7OVxCy9i8b1LwMpzHa2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 05:01:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127142/serialNumber=A7E71952DCFB395C42CBD8BC6F52F0329CC76B65 Validity Not Before: Aug 19 12:10:00 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64e0b118-ffe3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:1a:42:44:6e:9d:50:3c:a4:ba:11:6c:21:bb: 27:f5:b6:39:a8:fa:c1:d0:f9:22:4e:78:0d:8d:70: 47:0b:de:b4:e7:b9:0e:e9:b1:5a:c8:e3:0f:35:ab: ee:22:5d:61:da:5f:27:65:54:b3:f7:73:c5:c3:3b: 23:2a:de:87:2e:fa:a5:ce:51:cd:94:06:21:24:73: 4d:5d:84:e7:65:03:4c:0c:d4:21:ea:97:ca:1c:bd: 40:5a:7a:e0:f6:58:10:d4:73:fe:17:eb:a9:31:94: eb:02:db:73:18:b5:eb:c3:71:59:d5:01:56:9d:ee: 16:f2:d7:b5:a6:88:b8:9d:22:97:36:08:07:39:13: 48:9b:c2:a9:bc:45:01:2f:22:15:5d:1b:0e:b3:a8: d6:52:45:d0:6b:53:8b:b6:a2:72:6e:99:17:5b:75: 42:1a:2b:e6:3f:59:88:9a:65:52:27:82:6a:16:ec: fa:8c:0e:ff:a8:1d:77:2c:4a:7e:ca:f1:f4:4b:9e: d6:fe:17:95:5e:e7:f0:b5:11:74:f1:59:70:77:90: 70:40:69:1d:15:af:97:80:dc:30:c4:74:2d:a6:e2: 0e:c2:ea:59:41:b2:fa:c6:14:2b:2e:9f:94:6b:f0: 9e:5d:d0:54:45:c6:eb:96:ce:8a:dc:14:fe:f5:6c: 8c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:AF:0C:5F:A5:AF:CC:E1:D3:8B:CF:6D:03:5E:14:96:AE:41:4C:1C X509v3 Authority Key Identifier: keyid:A7:E7:19:52:DC:FB:39:5C:42:CB:D8:BC:6F:52:F0:32:9C:C7:6B:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127142/966185BA383C11EDB09F0214C4F9AE02/p-cZUtz7OVxCy9i8b1LwMpzHa2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p-cZUtz7OVxCy9i8b1LwMpzHa2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127142/966185BA383C11EDB09F0214C4F9AE02/51DC4CFA3E8911EEBAA0A668C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.7.122.0/23 IPv6: 2001:df1:49c0::/48 Signature Algorithm: sha256WithRSAEncryption 3e:19:0f:48:9d:b7:2d:d8:a0:29:d0:ab:84:32:c5:09:f7:17: fa:a4:2f:41:70:ca:9c:97:c9:91:8e:f7:ea:0e:56:1c:de:2a: 31:cc:c7:ce:72:a7:f6:5a:5e:ed:c0:2a:e4:d0:ba:7c:b9:81: 8a:57:65:bd:6c:45:99:ad:d7:35:68:0c:db:eb:16:df:90:95: 3e:10:5e:65:77:6e:f7:7d:b5:8b:3f:37:0e:bf:fc:f6:34:e6: 8d:25:61:b1:aa:d7:30:ea:3b:d0:ee:20:99:86:de:8f:4e:ab: 70:b4:a2:2b:13:14:e1:01:7d:bd:fb:e2:85:7b:58:5a:32:8d: 03:a2:5a:7b:14:df:8c:fd:aa:fa:aa:04:20:cb:51:30:f4:34: e7:66:61:b9:b6:c3:e0:e5:a9:ba:2a:fe:aa:eb:24:5f:29:e3: d6:47:b6:f1:16:c2:60:b8:d0:64:66:f4:31:1e:7c:c7:4d:06: 67:98:b6:31:c8:cb:6c:6c:9a:08:f8:00:ba:60:4e:f8:b2:c6: 30:f2:3a:a0:28:b9:83:de:4a:7f:6d:f1:ce:55:42:ac:1e:ac: 68:ec:c5:be:10:cb:56:9f:bb:0b:9d:f5:ee:29:2b:f4:aa:44: 82:83:46:02:8f:ac:70:af:c3:6d:75:3b:10:b4:48:bd:be:19: 46:dc:f6:a7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcxNDIxMTAvBgNVBAUTKEE3RTcxOTUyRENGQjM5NUM0MkNCRDhCQzZGNTJGMDMy OUNDNzZCNjUwHhcNMjMwODE5MTIxMDAwWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGUwYjExOC1mZmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0BpCRG6dUDykuhFsIbsn9bY5qPrB0PkiTngNjXBHC96057kO6bFayOMPNavu Il1h2l8nZVSz93PFwzsjKt6HLvqlzlHNlAYhJHNNXYTnZQNMDNQh6pfKHL1AWnrg 9lgQ1HP+F+upMZTrAttzGLXrw3FZ1QFWne4W8te1poi4nSKXNggHORNIm8KpvEUB LyIVXRsOs6jWUkXQa1OLtqJybpkXW3VCGivmP1mImmVSJ4JqFuz6jA7/qB13LEp+ yvH0S57W/heVXufwtRF08Vlwd5BwQGkdFa+XgNwwxHQtpuIOwupZQbL6xhQrLp+U a/CeXdBURcbrls6K3BT+9WyMSwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIWvDF+l r8zh04vPbQNeFJauQUwcMB8GA1UdIwQYMBaAFKfnGVLc+zlcQsvYvG9S8DKcx2tl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzE0Mi85NjYxODVCQTM4 M0MxMUVEQjA5RjAyMTRDNEY5QUUwMi9wLWNaVXR6N09WeEN5OWk4YjFMd01wekhh MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3AtY1pVdHo3T1Z4Q3k5aThiMUx3TXB6SGEyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjcxNDIvOTY2MTg1QkEzODNDMTFFREIwOUYwMjE0QzRGOUFFMDIvNTFEQzRDRkEz RTg5MTFFRUJBQTBBNjY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnB3owDwQCAAIwCQMHACABDfFJwDANBgkqhkiG9w0BAQsF AAOCAQEAPhkPSJ23LdigKdCrhDLFCfcX+qQvQXDKnJfJkY736g5WHN4qMczHznKn 9lpe7cAq5NC6fLmBildlvWxFma3XNWgM2+sW35CVPhBeZXdu9321iz83Dr/89jTm jSVhsarXMOo70O4gmYbej06rcLSiKxMU4QF9vfvihXtYWjKNA6JaexTfjP2q+qoE IMtRMPQ052ZhubbD4OWpuir+quskXynj1ke28RbCYLjQZGb0MR58x00GZ5i2McjL bGyaCPgAumBO+LLGMPI6oCi5g95Kf23xzlVCrB6saOzFvhDLVp+7C5317ikr9KpE goNGAo+scK/DbXU7ELRIvb4ZRtz2pw== -----END CERTIFICATE-----Generated at Fri May 17 06:46:20 2024 by rpki-client on console-ams.rpki-client.org