$ rpki-client -vvf rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/4911720A694F11ECB6F9B541C4F9AE02.roa File: 4911720A694F11ECB6F9B541C4F9AE02.roa (raw, json) Hash identifier: fkrNxXxWgmaMq1BuB3BwVSEW05xfQZ/eCq+CsEV5b8Y= Subject key identifier: FF:70:CA:D5:89:46:4C:44:07:BC:18:64:28:39:75:FA:57:0A:4A:BD Certificate issuer: /CN=A9138C14/serialNumber=BB0E550379FEA281A881A67479B77C8602D01314 Certificate serial: 0317 Authority key identifier: BB:0E:55:03:79:FE:A2:81:A8:81:A6:74:79:B7:7C:86:02:D0:13:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uw5VA3n-ooGogaZ0ebd8hgLQExQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/4911720A694F11ECB6F9B541C4F9AE02.roa Signing time: Thu 05 Oct 2023 01:43:20 +0000 ROA not before: Thu 05 Oct 2023 01:43:20 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 146962 IP address blocks: 103.172.106.0/24 maxlen: 24 103.172.107.0/24 maxlen: 24 2407:d040::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/uw5VA3n-ooGogaZ0ebd8hgLQExQ.crl rsync://rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/uw5VA3n-ooGogaZ0ebd8hgLQExQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uw5VA3n-ooGogaZ0ebd8hgLQExQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:51:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 791 (0x317) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138C14/serialNumber=BB0E550379FEA281A881A67479B77C8602D01314 Validity Not Before: Oct 5 01:43:20 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651e14b8-b8ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:99:8a:98:3b:2f:fd:03:2d:e6:32:f4:6e:aa: 78:4c:0d:07:83:2c:05:12:62:d1:a3:78:64:e9:75: cf:af:1b:f3:10:ba:82:37:d8:81:fb:b7:74:67:61: 5d:91:61:ca:62:7d:72:de:e5:68:2b:24:ff:ab:a8: 0d:8d:e9:a5:ed:b2:86:2b:57:93:22:40:20:66:de: 62:d1:a9:a1:b3:d6:b7:1c:4a:65:1f:cc:18:84:ed: d8:06:a6:b1:0b:87:c6:87:71:b2:b0:13:61:4f:f1: b5:10:41:47:70:2c:7b:0f:ae:98:5f:38:7d:cd:f2: 40:c4:da:cd:06:9a:05:5a:55:75:79:e6:5a:ff:7a: b3:6a:75:3e:be:7c:17:e3:ee:3b:80:fc:58:4c:a2: 6c:15:21:e7:44:68:03:ac:c4:1b:bf:83:c9:b1:fb: fd:ae:90:2b:bb:4d:52:43:61:17:cf:8a:30:a8:f7: ab:07:de:f4:d0:e9:16:2b:c4:f8:8e:4c:d6:5a:9d: 9f:56:bc:de:5c:41:b6:0f:a8:54:ab:7b:38:37:13: 58:2f:33:70:03:4c:7b:c3:ba:32:03:c9:c1:18:aa: db:e2:da:0b:8c:04:0d:e8:4b:54:fb:c1:8b:e9:29: af:f1:87:3d:b3:c0:f8:39:56:51:4b:28:84:a5:fd: 95:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:70:CA:D5:89:46:4C:44:07:BC:18:64:28:39:75:FA:57:0A:4A:BD X509v3 Authority Key Identifier: keyid:BB:0E:55:03:79:FE:A2:81:A8:81:A6:74:79:B7:7C:86:02:D0:13:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/uw5VA3n-ooGogaZ0ebd8hgLQExQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uw5VA3n-ooGogaZ0ebd8hgLQExQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/4911720A694F11ECB6F9B541C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.106.0/23 IPv6: 2407:d040::/32 Signature Algorithm: sha256WithRSAEncryption 18:dc:40:55:16:6e:d3:f5:52:0f:3d:b4:1a:de:f2:ed:4e:59: 1d:22:c2:8e:f7:67:5e:52:3d:37:3f:95:ce:7e:69:a5:29:4a: 0a:7d:4d:e5:0f:e5:7c:ef:1a:57:99:12:9c:3e:53:81:62:c6: 8f:45:ae:e6:fb:fc:0b:8c:ba:03:5d:e8:79:43:27:10:21:08: ef:57:2d:a5:39:fc:27:a4:4a:55:22:7a:d0:ac:e6:28:3a:98: 05:77:2f:c2:cd:f9:3f:b9:6a:e9:42:2d:c8:47:a9:0e:3d:c0: 64:a7:e7:80:af:d2:b6:6d:9d:84:a2:eb:85:ba:86:46:64:7c: 0f:1e:81:4b:e2:3c:d0:55:1c:77:2a:6a:ff:de:9d:48:8c:cb: 33:a8:0f:23:66:08:93:2b:58:ac:7b:6f:a8:32:37:76:5e:0b: d3:c8:a0:f2:b4:01:53:35:90:a5:4f:ab:86:51:06:ff:51:92: 4e:bf:10:b8:78:af:63:45:94:f5:0b:08:50:43:24:24:bf:21: 03:76:22:0a:f5:c4:4f:10:1c:cd:ee:d0:ad:db:71:bc:f5:a8: 53:8b:d2:db:af:1d:4c:a0:0b:c2:af:06:d5:ce:51:14:41:7a: 7a:80:e9:49:9e:6d:33:d6:96:66:a4:55:e0:cd:8f:a4:35:e4: 8b:e2:0e:4b -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhDMTQxMTAvBgNVBAUTKEJCMEU1NTAzNzlGRUEyODFBODgxQTY3NDc5Qjc3Qzg2 MDJEMDEzMTQwHhcNMjMxMDA1MDE0MzIwWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFlMTRiOC1iOGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZmKmDsv/QMt5jL0bqp4TA0HgywFEmLRo3hk6XXPrxvzELqCN9iB+7d0Z2Fd kWHKYn1y3uVoKyT/q6gNjeml7bKGK1eTIkAgZt5i0amhs9a3HEplH8wYhO3YBqax C4fGh3GysBNhT/G1EEFHcCx7D66YXzh9zfJAxNrNBpoFWlV1eeZa/3qzanU+vnwX 4+47gPxYTKJsFSHnRGgDrMQbv4PJsfv9rpAru01SQ2EXz4owqPerB9700OkWK8T4 jkzWWp2fVrzeXEG2D6hUq3s4NxNYLzNwA0x7w7oyA8nBGKrb4toLjAQN6EtU+8GL 6Smv8Yc9s8D4OVZRSyiEpf2V6wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFP9wytWJ RkxEB7wYZCg5dfpXCkq9MB8GA1UdIwQYMBaAFLsOVQN5/qKBqIGmdHm3fIYC0BMU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEMxNC8zRTRDNDYzMDVC QzQxMUVDOTYyNzkzNTRDNEY5QUUwMi91dzVWQTNuLW9vR29nYVowZWJkOGhnTFFF eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V3NVZBM24tb29Hb2dhWjBlYmQ4aGdMUUV4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzhDMTQvM0U0QzQ2MzA1QkM0MTFFQzk2Mjc5MzU0QzRGOUFFMDIvNDkxMTcyMEE2 OTRGMTFFQ0I2RjlCNTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnrGowDQQCAAIwBwMFACQH0EAwDQYJKoZIhvcNAQELBQAD ggEBABjcQFUWbtP1Ug89tBre8u1OWR0iwo73Z15SPTc/lc5+aaUpSgp9TeUP5Xzv GleZEpw+U4Fixo9Frub7/AuMugNd6HlDJxAhCO9XLaU5/CekSlUietCs5ig6mAV3 L8LN+T+5aulCLchHqQ49wGSn54Cv0rZtnYSi64W6hkZkfA8egUviPNBVHHcqav/e nUiMyzOoDyNmCJMrWKx7b6gyN3ZeC9PIoPK0AVM1kKVPq4ZRBv9Rkk6/ELh4r2NF lPULCFBDJCS/IQN2Igr1xE8QHM3u0K3bcbz1qFOL0tuvHUygC8KvBtXOURRBenqA 6UmebTPWlmakVeDNj6Q15IviDks= -----END CERTIFICATE-----Generated at Fri May 17 03:52:20 2024 by rpki-client on console-ams.rpki-client.org