$ rpki-client -vvf rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/3726AAFA0C0011EAA414FC4AC4F9AE02.roa File: 3726AAFA0C0011EAA414FC4AC4F9AE02.roa (raw, json) Hash identifier: O7/1GkgMEHQQodITlwVqElLcPlYbuqeUKvs7BDhU9AU= Subject key identifier: F9:26:C9:3C:77:EC:0D:81:13:3F:1B:45:E4:94:5E:33:45:66:45:B7 Certificate issuer: /CN=A9131ABD/serialNumber=2E9C91F4E394A4AFA976D6BC3F65DF2D9F079EBD Certificate serial: 0AF9 Authority key identifier: 2E:9C:91:F4:E3:94:A4:AF:A9:76:D6:BC:3F:65:DF:2D:9F:07:9E:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/3726AAFA0C0011EAA414FC4AC4F9AE02.roa Signing time: Sun 02 Jul 2023 19:05:45 +0000 ROA not before: Sun 02 Jul 2023 19:05:45 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 20473 IP address blocks: 103.77.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Apr 2024 18:55:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2809 (0xaf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131ABD/serialNumber=2E9C91F4E394A4AFA976D6BC3F65DF2D9F079EBD Validity Not Before: Jul 2 19:05:45 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64a1ca89-7751 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1f:d7:b5:11:a9:fd:26:a2:4f:17:42:78:d5: 73:f4:ae:ac:bb:ce:6f:a3:fe:10:52:f9:67:3f:e5: b0:f6:a8:63:40:38:af:49:6e:97:52:bb:cb:ca:59: 78:00:9f:1f:38:19:fe:b1:84:ae:37:6f:ac:91:65: 25:d1:69:dd:cd:f8:ff:91:5c:88:b7:eb:1a:77:26: d4:22:ab:f0:3d:4d:4f:19:27:48:d6:be:09:1c:01: 07:da:d1:82:21:68:de:a8:cc:66:bc:e4:fc:51:cd: 32:ef:19:6d:eb:67:cd:c1:85:48:23:09:2e:40:83: 8f:c7:6f:b6:e3:eb:86:03:78:9d:59:94:35:d6:ea: 04:e0:10:28:2f:8b:b0:d1:46:5a:09:df:bd:f8:99: ba:60:41:4d:95:04:d6:e0:d2:7a:02:06:03:95:87: a8:a2:4f:4b:d8:68:c9:36:30:7b:66:35:85:5a:80: c0:e7:35:76:3e:0e:ea:4c:25:c0:8d:ee:86:ff:96: b5:23:d7:fc:1b:4e:43:f0:04:17:4b:98:84:40:53: 65:c7:ca:f1:e7:b9:05:a7:1b:6e:45:c1:6e:20:d2: 0a:41:7c:58:fc:a4:39:fc:bd:ea:1e:c1:a9:54:5d: d2:24:25:76:46:30:24:b8:cb:d2:dd:ec:32:4b:52: 19:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:26:C9:3C:77:EC:0D:81:13:3F:1B:45:E4:94:5E:33:45:66:45:B7 X509v3 Authority Key Identifier: keyid:2E:9C:91:F4:E3:94:A4:AF:A9:76:D6:BC:3F:65:DF:2D:9F:07:9E:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/3726AAFA0C0011EAA414FC4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.77.224.0/24 Signature Algorithm: sha256WithRSAEncryption b4:71:16:35:be:f5:33:5d:31:ee:13:1f:67:43:00:29:58:45: 2c:4c:f0:79:d2:94:bd:7f:ae:32:ba:d6:4e:63:40:57:9a:40: 70:3c:e4:27:52:a5:f7:f3:97:13:3c:b5:97:a3:47:28:e5:b9: cc:19:a5:22:27:83:24:4f:85:34:3c:cd:69:3d:15:6a:f0:21: 34:2b:d4:11:0b:4d:a4:57:5d:f1:7a:7c:ad:cc:cc:ac:9f:4d: a2:48:d0:8c:c1:ba:90:e9:88:71:7b:ca:b5:4e:46:dc:2d:29: ab:66:ca:d8:52:51:91:ad:34:90:8b:c5:5c:d5:ba:80:92:21: 4b:14:2c:66:75:39:6b:3b:d6:02:f6:a6:96:fe:a6:32:01:1e: 41:97:2f:ac:b9:64:76:7a:05:57:31:b2:46:b8:67:8f:ec:eb: cc:d4:19:ed:6c:da:de:9e:55:09:71:1b:a9:88:58:bc:df:86: 82:a8:2d:3e:b7:b0:46:7a:8e:d4:c0:fd:3c:26:d4:df:10:92: 0a:63:fa:04:c7:31:87:da:2e:36:9d:88:55:cf:64:fc:5a:32: 18:bd:5b:ae:06:a5:29:1e:ed:55:cc:0e:04:1d:aa:b4:cf:f5: 94:17:0c:bc:81:04:e3:f7:4f:9e:58:99:0c:e5:f2:c8:44:70: b1:9f:60:de -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBQkQxMTAvBgNVBAUTKDJFOUM5MUY0RTM5NEE0QUZBOTc2RDZCQzNGNjVERjJE OUYwNzlFQkQwHhcNMjMwNzAyMTkwNTQ1WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGExY2E4OS03NzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwB/XtRGp/SaiTxdCeNVz9K6su85vo/4QUvlnP+Ww9qhjQDivSW6XUrvLyll4 AJ8fOBn+sYSuN2+skWUl0Wndzfj/kVyIt+sadybUIqvwPU1PGSdI1r4JHAEH2tGC IWjeqMxmvOT8Uc0y7xlt62fNwYVIIwkuQIOPx2+24+uGA3idWZQ11uoE4BAoL4uw 0UZaCd+9+Jm6YEFNlQTW4NJ6AgYDlYeook9L2GjJNjB7ZjWFWoDA5zV2Pg7qTCXA je6G/5a1I9f8G05D8AQXS5iEQFNlx8rx57kFpxtuRcFuINIKQXxY/KQ5/L3qHsGp VF3SJCV2RjAkuMvS3ewyS1IZJQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPkmyTx3 7A2BEz8bReSUXjNFZkW3MB8GA1UdIwQYMBaAFC6ckfTjlKSvqXbWvD9l3y2fB569 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUFCRC8yMEU4RjlBMDA0 RTkxMUVBOEQyMEVFNUZDNEY5QUUwMi9McHlSOU9PVXBLLXBkdGE4UDJYZkxaOEhu cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xweVI5T09VcEstcGR0YThQMlhmTFo4SG5yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzFBQkQvMjBFOEY5QTAwNEU5MTFFQThEMjBFRTVGQzRGOUFFMDIvMzcyNkFBRkEw QzAwMTFFQUE0MTRGQzRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnTeAwDQYJKoZIhvcNAQELBQADggEBALRxFjW+9TNdMe4T H2dDAClYRSxM8HnSlL1/rjK61k5jQFeaQHA85CdSpffzlxM8tZejRyjlucwZpSIn gyRPhTQ8zWk9FWrwITQr1BELTaRXXfF6fK3MzKyfTaJI0IzBupDpiHF7yrVORtwt KatmythSUZGtNJCLxVzVuoCSIUsULGZ1OWs71gL2ppb+pjIBHkGXL6y5ZHZ6BVcx ska4Z4/s68zUGe1s2t6eVQlxG6mIWLzfhoKoLT63sEZ6jtTA/Twm1N8Qkgpj+gTH MYfaLjadiFXPZPxaMhi9W64GpSke7VXMDgQdqrTP9ZQXDLyBBOP3T55YmQzl8shE cLGfYN4= -----END CERTIFICATE-----Generated at Tue Apr 16 20:13:48 2024 by rpki-client on console-ams.rpki-client.org