$ rpki-client -vvf rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/BD4D8A2C1C4811ECBAA21A3CC4F9AE02.roa File: BD4D8A2C1C4811ECBAA21A3CC4F9AE02.roa (raw, json) Hash identifier: 4pCEg43C3YXhwnTLmmwZT0tjSLlfqno83qPsCxPv2wg= Subject key identifier: 80:34:F3:1E:3D:42:10:28:68:65:7F:47:19:4E:0C:34:CC:C9:7F:7C Certificate issuer: /CN=A9138271/serialNumber=01724BA2F40532B7E08D720F4C096641B4A1C8C4 Certificate serial: 03B5 Authority key identifier: 01:72:4B:A2:F4:05:32:B7:E0:8D:72:0F:4C:09:66:41:B4:A1:C8:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXJLovQFMrfgjXIPTAlmQbShyMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/BD4D8A2C1C4811ECBAA21A3CC4F9AE02.roa Signing time: Sun 29 Oct 2023 01:33:25 +0000 ROA not before: Sun 29 Oct 2023 01:33:25 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 147029 IP address blocks: 103.173.60.0/23 maxlen: 23 103.173.60.0/24 maxlen: 24 103.173.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.crl rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXJLovQFMrfgjXIPTAlmQbShyMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 02:04:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 949 (0x3b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138271/serialNumber=01724BA2F40532B7E08D720F4C096641B4A1C8C4 Validity Not Before: Oct 29 01:33:25 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=653db665-f68f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ea:98:74:75:04:5b:e6:66:2f:f1:04:54:b6: 47:11:11:71:ee:9f:59:8a:a1:94:5a:44:1e:7d:22: 5d:bf:c7:40:bb:51:08:c9:4f:f5:4c:4e:15:0c:05: 8f:68:09:01:67:8d:da:b1:c5:42:a1:d5:bd:71:b3: f0:db:ff:31:fd:81:8a:d1:9b:d5:e2:34:47:c5:02: db:ec:4f:6d:87:94:d1:71:28:81:3f:39:f2:4e:2b: bd:52:12:df:42:d2:5a:48:51:46:f8:8b:f5:06:e9: 9d:c6:e5:b4:98:89:5c:86:bd:d5:4f:55:2f:39:fb: 68:ab:d4:bc:26:1c:94:e3:6e:76:1d:ef:8a:06:50: 05:fe:07:f4:19:2a:d3:b2:59:f7:14:35:09:1f:4c: cc:d0:81:09:b4:db:4b:0b:31:5b:52:89:ff:a0:0f: 0e:53:09:27:c8:c9:eb:9e:81:75:67:91:98:05:fc: bd:be:33:f7:7c:78:bf:32:4f:1c:c7:6f:9a:b0:9e: 0d:cb:4f:ed:d5:c6:94:48:f9:8a:d8:2a:c9:43:58: 44:95:9a:5c:d0:5f:d5:00:09:41:a1:c8:48:f0:05: 43:84:17:8a:07:ab:c8:9e:be:05:34:a9:1c:c1:67: c7:b7:a1:f4:0d:15:88:c9:ec:66:c2:32:62:c2:48: 7f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:34:F3:1E:3D:42:10:28:68:65:7F:47:19:4E:0C:34:CC:C9:7F:7C X509v3 Authority Key Identifier: keyid:01:72:4B:A2:F4:05:32:B7:E0:8D:72:0F:4C:09:66:41:B4:A1:C8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXJLovQFMrfgjXIPTAlmQbShyMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/BD4D8A2C1C4811ECBAA21A3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.60.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:3f:12:f9:6f:54:3d:8e:8d:7a:14:d0:ff:de:84:2b:b5:d9: 54:18:51:16:ae:b8:a7:8d:01:a1:45:3a:2a:90:16:4e:15:12: 15:19:4a:78:0d:0f:f5:99:ab:48:00:6a:9b:84:57:3c:db:9e: 7d:41:b3:b4:57:bf:ec:53:ab:7c:d7:2c:24:54:ad:80:06:fd: 97:35:62:ec:7f:d5:6e:ae:16:59:7b:05:5d:36:04:86:81:4e: 3c:9d:f8:62:43:d1:80:b9:c3:df:d3:23:7c:69:b7:ba:a8:3f: 98:3d:c8:14:62:2b:65:8e:ac:6a:c9:f5:3d:ea:70:e7:c5:7d: b3:7b:77:48:f2:e7:66:f4:2a:8c:37:e9:fa:cb:b9:1d:af:46: 93:44:fc:c6:13:b8:2b:ac:ee:87:4b:80:ff:aa:0b:60:48:60: 9f:ae:e1:00:76:6e:9e:fa:d1:ee:4f:b8:97:10:f0:2b:da:35: e2:d9:6c:d3:2c:99:ca:5a:af:be:ec:c9:b3:b0:44:c2:f4:74: 49:ff:af:92:f1:47:8f:6c:48:0f:8c:9d:2d:73:50:fa:be:6b: 14:c5:6b:68:2c:ec:6b:6a:6f:1f:51:11:98:25:68:09:69:5e: 30:da:2e:7a:47:63:9b:55:3b:42:f0:a7:10:3a:2c:4f:98:72: e2:c7:b6:68 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgyNzExMTAvBgNVBAUTKDAxNzI0QkEyRjQwNTMyQjdFMDhENzIwRjRDMDk2NjQx QjRBMUM4QzQwHhcNMjMxMDI5MDEzMzI1WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTNkYjY2NS1mNjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzuqYdHUEW+ZmL/EEVLZHERFx7p9ZiqGUWkQefSJdv8dAu1EIyU/1TE4VDAWP aAkBZ43ascVCodW9cbPw2/8x/YGK0ZvV4jRHxQLb7E9th5TRcSiBPznyTiu9UhLf QtJaSFFG+Iv1BumdxuW0mIlchr3VT1UvOftoq9S8JhyU4252He+KBlAF/gf0GSrT sln3FDUJH0zM0IEJtNtLCzFbUon/oA8OUwknyMnrnoF1Z5GYBfy9vjP3fHi/Mk8c x2+asJ4Ny0/t1caUSPmK2CrJQ1hElZpc0F/VAAlBochI8AVDhBeKB6vInr4FNKkc wWfHt6H0DRWIyexmwjJiwkh/OQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIA08x49 QhAoaGV/RxlODDTMyX98MB8GA1UdIwQYMBaAFAFyS6L0BTK34I1yD0wJZkG0ocjE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODI3MS84MUY5RTJEMDFD NDQxMUVDOUIyRTZBNUZDNEY5QUUwMi9BWEpMb3ZRRk1yZmdqWElQVEFsbVFiU2h5 TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FYSkxvdlFGTXJmZ2pYSVBUQWxtUWJTaHlNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzgyNzEvODFGOUUyRDAxQzQ0MTFFQzlCMkU2QTVGQzRGOUFFMDIvQkQ0RDhBMkMx QzQ4MTFFQ0JBQTIxQTNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnrTwwDQYJKoZIhvcNAQELBQADggEBAH0/EvlvVD2OjXoU 0P/ehCu12VQYURauuKeNAaFFOiqQFk4VEhUZSngND/WZq0gAapuEVzzbnn1Bs7RX v+xTq3zXLCRUrYAG/Zc1Yux/1W6uFll7BV02BIaBTjyd+GJD0YC5w9/TI3xpt7qo P5g9yBRiK2WOrGrJ9T3qcOfFfbN7d0jy52b0Kow36frLuR2vRpNE/MYTuCus7odL gP+qC2BIYJ+u4QB2bp760e5PuJcQ8CvaNeLZbNMsmcpar77sybOwRML0dEn/r5Lx R49sSA+MnS1zUPq+axTFa2gs7Gtqbx9REZglaAlpXjDaLnpHY5tVO0LwpxA6LE+Y cuLHtmg= -----END CERTIFICATE-----Generated at Tue May 21 03:39:30 2024 by rpki-client on console-ams.rpki-client.org