$ rpki-client -vvf rpki.apnic.net/member_repository/A912D072/3A418936FBE611EAB353660CC4F9AE02/43A8A46EACBC11EBB0651B63C4F9AE02.roa File: 43A8A46EACBC11EBB0651B63C4F9AE02.roa (raw, json) Hash identifier: drCFY4ToNIs7h2RZDJgyt7haVpl4pOaDR/k2ylBb2Ho= Subject key identifier: F7:CE:E1:98:04:98:E5:24:7E:47:B0:B6:EE:25:C4:A5:5F:A1:38:50 Certificate issuer: /CN=A912D072/serialNumber=475752844BEA7A49705BC25AA8F0C9EF100C98F8 Certificate serial: 0690 Authority key identifier: 47:57:52:84:4B:EA:7A:49:70:5B:C2:5A:A8:F0:C9:EF:10:0C:98:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1dShEvqeklwW8JaqPDJ7xAMmPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D072/3A418936FBE611EAB353660CC4F9AE02/43A8A46EACBC11EBB0651B63C4F9AE02.roa Signing time: Wed 20 Sep 2023 22:00:04 +0000 ROA not before: Wed 20 Sep 2023 22:00:04 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 137443 IP address blocks: 103.153.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D072/3A418936FBE611EAB353660CC4F9AE02/R1dShEvqeklwW8JaqPDJ7xAMmPg.crl rsync://rpki.apnic.net/member_repository/A912D072/3A418936FBE611EAB353660CC4F9AE02/R1dShEvqeklwW8JaqPDJ7xAMmPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1dShEvqeklwW8JaqPDJ7xAMmPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 22:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1680 (0x690) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D072/serialNumber=475752844BEA7A49705BC25AA8F0C9EF100C98F8 Validity Not Before: Sep 20 22:00:04 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=650b6b64-3199 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1e:c0:f1:85:df:d0:ca:af:a1:d5:f0:e6:d9: f4:79:07:ea:67:63:9e:4a:86:36:1a:88:7a:e0:0f: ff:37:2a:60:39:49:d1:5e:36:7d:b4:85:1c:94:4c: 0c:29:ab:b4:77:aa:e2:80:05:c2:11:56:30:c2:ff: 99:62:59:12:35:6e:43:ff:53:60:e7:7b:84:d0:8d: 73:b0:da:8b:9b:3e:39:10:4b:9d:82:e7:15:bc:3b: 18:41:0d:7d:52:e2:88:0d:59:f4:f0:f7:ae:6f:e2: 7d:f2:c1:b3:2f:05:a9:3c:dd:b9:f1:f6:b1:01:17: 35:1d:dc:01:8d:8f:cb:38:cd:db:8a:6c:c5:11:73: 19:92:9d:83:40:97:a7:62:a6:20:40:b2:ba:56:2b: 41:34:7b:7a:24:10:b5:3c:c0:e0:3a:fd:4d:fc:66: d4:72:1f:3b:3e:ad:3d:41:3d:5f:bb:e9:70:90:ca: 66:b3:9d:ea:eb:c6:20:50:05:92:93:14:57:97:08: 4b:da:dd:89:8e:17:d4:32:4d:20:5f:23:8a:d5:61: 29:b6:d2:8a:4d:07:2e:b1:3e:63:74:2b:57:34:32: ab:3e:25:fc:0e:10:71:57:be:19:46:af:54:2c:74: 49:c2:a5:98:e7:d6:ed:36:1b:ed:04:35:9e:61:5f: ef:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:CE:E1:98:04:98:E5:24:7E:47:B0:B6:EE:25:C4:A5:5F:A1:38:50 X509v3 Authority Key Identifier: keyid:47:57:52:84:4B:EA:7A:49:70:5B:C2:5A:A8:F0:C9:EF:10:0C:98:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D072/3A418936FBE611EAB353660CC4F9AE02/R1dShEvqeklwW8JaqPDJ7xAMmPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1dShEvqeklwW8JaqPDJ7xAMmPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D072/3A418936FBE611EAB353660CC4F9AE02/43A8A46EACBC11EBB0651B63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.138.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:af:9a:f7:84:24:cb:8b:41:70:fe:b6:21:d3:e7:42:9f:c4: fe:15:f4:05:b6:4f:10:52:36:fe:d7:64:35:bb:67:e5:5e:90: df:e0:13:5c:10:61:91:cf:c2:b2:6c:94:f3:7a:e9:55:de:19: fc:6c:0a:09:db:dd:a7:46:7b:78:0a:03:14:b9:54:b7:9f:b7: 6c:e3:0b:8e:28:9b:50:00:58:b3:a6:60:0a:6b:9c:b0:e8:17: 88:dd:0e:ca:b4:ff:66:1c:14:5f:81:35:82:2c:dc:37:eb:8e: e2:15:a3:7b:3d:f7:96:f0:5b:79:e5:71:cb:3e:33:a6:40:46: f4:a9:45:25:21:fa:4f:d2:15:03:74:23:1e:80:f8:69:06:24: cd:1d:54:c9:67:1f:be:b0:42:85:b3:1d:fd:57:25:3f:99:4b: ad:b8:5b:a5:53:03:4a:c8:5e:2f:75:07:3e:1f:1f:31:67:5e: 4a:70:9c:06:c0:42:bf:4a:7b:c5:2c:57:e7:c6:54:93:ad:e3: 1d:91:4f:6b:8b:e3:d2:8e:5f:28:79:c3:6e:a0:93:24:35:08: 91:dc:91:0f:6c:0f:42:4e:51:9b:e0:a1:d4:6b:44:10:69:cf: 66:27:a2:d9:7e:5e:11:2e:82:d9:1f:41:0d:91:36:21:2b:22: 63:32:87:03 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQwNzIxMTAvBgNVBAUTKDQ3NTc1Mjg0NEJFQTdBNDk3MDVCQzI1QUE4RjBDOUVG MTAwQzk4RjgwHhcNMjMwOTIwMjIwMDA0WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTBiNmI2NC0zMTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqB7A8YXf0MqvodXw5tn0eQfqZ2OeSoY2Goh64A//NypgOUnRXjZ9tIUclEwM Kau0d6rigAXCEVYwwv+ZYlkSNW5D/1Ng53uE0I1zsNqLmz45EEudgucVvDsYQQ19 UuKIDVn08Peub+J98sGzLwWpPN258faxARc1HdwBjY/LOM3bimzFEXMZkp2DQJen YqYgQLK6VitBNHt6JBC1PMDgOv1N/GbUch87Pq09QT1fu+lwkMpms53q68YgUAWS kxRXlwhL2t2JjhfUMk0gXyOK1WEpttKKTQcusT5jdCtXNDKrPiX8DhBxV74ZRq9U LHRJwqWY59btNhvtBDWeYV/vnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPfO4ZgE mOUkfkewtu4lxKVfoThQMB8GA1UdIwQYMBaAFEdXUoRL6npJcFvCWqjwye8QDJj4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDA3Mi8zQTQxODkzNkZC RTYxMUVBQjM1MzY2MENDNEY5QUUwMi9SMWRTaEV2cWVrbHdXOEphcVBESjd4QU1t UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IxZFNoRXZxZWtsd1c4SmFxUERKN3hBTW1QZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkQwNzIvM0E0MTg5MzZGQkU2MTFFQUIzNTM2NjBDQzRGOUFFMDIvNDNBOEE0NkVB Q0JDMTFFQkIwNjUxQjYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmYowDQYJKoZIhvcNAQELBQADggEBAJyvmveEJMuLQXD+ tiHT50KfxP4V9AW2TxBSNv7XZDW7Z+VekN/gE1wQYZHPwrJslPN66VXeGfxsCgnb 3adGe3gKAxS5VLeft2zjC44om1AAWLOmYAprnLDoF4jdDsq0/2YcFF+BNYIs3Dfr juIVo3s995bwW3nlccs+M6ZARvSpRSUh+k/SFQN0Ix6A+GkGJM0dVMlnH76wQoWz Hf1XJT+ZS624W6VTA0rIXi91Bz4fHzFnXkpwnAbAQr9Ke8UsV+fGVJOt4x2RT2uL 49KOXyh5w26gkyQ1CJHckQ9sD0JOUZvgodRrRBBpz2Ynotl+XhEugtkfQQ2RNiEr ImMyhwM= -----END CERTIFICATE-----Generated at Fri Apr 19 00:06:05 2024 by rpki-client on console-ams.rpki-client.org