$ rpki-client -vvf rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/C3BF0EF80A5F11EC8EDB0221C4F9AE02.roa File: C3BF0EF80A5F11EC8EDB0221C4F9AE02.roa (raw, json) Hash identifier: WFXX4UmF86zpOxHqIS+f0NCV866umMyT/tuApJ3cViE= Subject key identifier: BA:BA:E2:1A:42:6B:0F:16:C6:59:35:A6:4E:C4:A0:99:CF:71:39:AE Certificate issuer: /CN=A912A1E7/serialNumber=D623A3925808BAE84C2714E16A878404E06048D1 Certificate serial: 03E9 Authority key identifier: D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/C3BF0EF80A5F11EC8EDB0221C4F9AE02.roa Signing time: Sat 23 Sep 2023 00:42:25 +0000 ROA not before: Sat 23 Sep 2023 00:42:25 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 136428 IP address blocks: 103.172.14.0/23 maxlen: 23 103.172.14.0/24 maxlen: 24 103.172.15.0/24 maxlen: 24 2001:df7:5b80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.crl rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1001 (0x3e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A1E7/serialNumber=D623A3925808BAE84C2714E16A878404E06048D1 Validity Not Before: Sep 23 00:42:25 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=650e3471-cce7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:83:b1:50:e8:ca:21:23:a4:08:80:c8:73:dd: 70:ad:d1:34:9c:eb:a4:41:f5:cb:35:89:8c:e7:2b: bd:ea:f0:8e:27:60:07:0f:0d:7c:ff:56:99:66:8c: c9:60:35:8c:ab:9b:9f:ae:da:e6:16:38:a4:c7:18: 22:74:75:7d:9a:87:df:d5:67:28:97:b0:5f:eb:9d: 41:f3:25:d2:67:c1:23:02:e7:1d:f4:60:3e:0e:ab: 40:4e:72:ac:d3:59:8b:79:e8:d7:11:af:93:bd:16: 9d:07:c3:27:78:38:9c:e7:3c:c1:3c:8d:67:02:5b: d8:3e:85:f1:06:a6:a2:20:3a:7a:62:99:92:06:9e: 0e:28:b1:b6:4c:4e:9d:9a:2e:a6:d2:08:25:d3:04: db:18:57:65:6e:69:67:37:17:14:d7:9a:0c:95:64: 89:4f:ca:11:bc:7d:08:25:dc:23:1e:b2:bc:c1:36: ea:00:b2:a5:0d:2d:73:b7:a6:cd:2c:1a:92:e8:4c: 39:ba:b6:bd:3f:3d:b4:85:d7:b9:3f:42:4b:fa:db: 25:bc:a1:4c:d1:f7:b3:b2:d9:4d:89:36:17:69:f7: 15:dc:63:e7:34:92:71:05:98:41:07:8c:24:94:00: 1a:46:ba:17:ad:e0:b1:34:f3:81:f7:11:9e:d4:4e: eb:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:BA:E2:1A:42:6B:0F:16:C6:59:35:A6:4E:C4:A0:99:CF:71:39:AE X509v3 Authority Key Identifier: keyid:D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/C3BF0EF80A5F11EC8EDB0221C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.14.0/23 IPv6: 2001:df7:5b80::/48 Signature Algorithm: sha256WithRSAEncryption 94:86:fa:c8:50:cc:7b:d2:52:19:df:65:95:73:fa:ba:23:be: 22:b7:72:52:49:30:79:15:ce:b6:4b:d4:5a:7b:fa:83:c2:f8: 44:93:04:c9:31:f4:03:f7:7e:df:97:32:a3:c2:ef:68:e3:80: 69:e4:c7:f8:86:7c:5a:ae:24:da:36:41:68:4a:09:44:06:b7: 4a:81:c2:5c:d4:2f:84:c8:53:25:40:74:54:20:8a:1d:9b:71: 9b:ea:4e:31:fb:43:e9:cb:3d:d6:bd:bc:ac:9a:8b:5a:8d:ed: d2:67:37:e9:82:d3:f4:9b:70:db:04:7e:01:eb:57:2c:c8:7c: e1:24:1a:30:39:cd:57:d7:c2:03:a7:89:39:9b:39:45:80:59: 6d:f0:5b:d4:d4:86:7f:08:74:78:2d:f9:14:f4:46:ec:14:bc: f0:99:c9:f5:65:a2:84:29:1e:d0:5d:51:7e:bb:ae:23:78:65: 20:72:3c:c8:22:36:72:08:26:c6:17:7f:c5:59:9a:63:d3:98: b3:b4:24:f9:f7:fe:bf:12:90:59:96:a5:c7:a3:38:c0:c7:58: 3b:32:d7:a8:d5:3b:fc:74:7a:75:c7:fe:2c:45:0b:5d:90:a3: f0:31:99:8f:53:76:17:d1:c2:35:bc:80:a4:a9:21:48:a9:2f: 8f:21:44:a4 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkExRTcxMTAvBgNVBAUTKEQ2MjNBMzkyNTgwOEJBRTg0QzI3MTRFMTZBODc4NDA0 RTA2MDQ4RDEwHhcNMjMwOTIzMDA0MjI1WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTBlMzQ3MS1jY2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsYOxUOjKISOkCIDIc91wrdE0nOukQfXLNYmM5yu96vCOJ2AHDw18/1aZZozJ YDWMq5ufrtrmFjikxxgidHV9moff1Wcol7Bf651B8yXSZ8EjAucd9GA+DqtATnKs 01mLeejXEa+TvRadB8MneDic5zzBPI1nAlvYPoXxBqaiIDp6YpmSBp4OKLG2TE6d mi6m0ggl0wTbGFdlbmlnNxcU15oMlWSJT8oRvH0IJdwjHrK8wTbqALKlDS1zt6bN LBqS6Ew5ura9Pz20hde5P0JL+tslvKFM0fezstlNiTYXafcV3GPnNJJxBZhBB4wk lAAaRroXreCxNPOB9xGe1E7rBQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLq64hpC aw8Wxlk1pk7EoJnPcTmuMB8GA1UdIwQYMBaAFNYjo5JYCLroTCcU4WqHhATgYEjR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTFFNy8xMEZBQkVEMjAy NTUxMUVDOEVEMjQwODVDNEY5QUUwMi8xaU9qa2xnSXV1aE1KeFRoYW9lRUJPQmdT TkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFpT2prbGdJdXVoTUp4VGhhb2VFQk9CZ1NORS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkExRTcvMTBGQUJFRDIwMjU1MTFFQzhFRDI0MDg1QzRGOUFFMDIvQzNCRjBFRjgw QTVGMTFFQzhFREIwMjIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnrA4wDwQCAAIwCQMHACABDfdbgDANBgkqhkiG9w0BAQsF AAOCAQEAlIb6yFDMe9JSGd9llXP6uiO+IrdyUkkweRXOtkvUWnv6g8L4RJMEyTH0 A/d+35cyo8LvaOOAaeTH+IZ8Wq4k2jZBaEoJRAa3SoHCXNQvhMhTJUB0VCCKHZtx m+pOMftD6cs91r28rJqLWo3t0mc36YLT9Jtw2wR+AetXLMh84SQaMDnNV9fCA6eJ OZs5RYBZbfBb1NSGfwh0eC35FPRG7BS88JnJ9WWihCke0F1RfruuI3hlIHI8yCI2 cggmxhd/xVmaY9OYs7Qk+ff+vxKQWZalx6M4wMdYOzLXqNU7/HR6dcf+LEULXZCj 8DGZj1N2F9HCNbyApKkhSKkvjyFEpA== -----END CERTIFICATE-----Generated at Sun May 19 02:59:04 2024 by rpki-client on console-ams.rpki-client.org