$ rpki-client -vvf rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/A9321C0A1B2A11EE84F40B3AC4F9AE02.roa File: A9321C0A1B2A11EE84F40B3AC4F9AE02.roa (raw, json) Hash identifier: pUYwtk7H4SErO0RmecDKwte6PxJGNXwb2vfQgoNABbY= Subject key identifier: 99:56:BC:42:5C:9A:3B:0A:11:17:CE:69:22:89:C1:DA:0F:02:AF:70 Certificate issuer: /CN=A913FBB2/serialNumber=AD85B7E18B3A16F53E92938A334EC6BB3EB8B630 Certificate serial: 7E Authority key identifier: AD:85:B7:E1:8B:3A:16:F5:3E:92:93:8A:33:4E:C6:BB:3E:B8:B6:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYW34Ys6FvU-kpOKM07Guz64tjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/A9321C0A1B2A11EE84F40B3AC4F9AE02.roa Signing time: Fri 09 Feb 2024 06:08:02 +0000 ROA not before: Fri 09 Feb 2024 06:08:02 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 51170 IP address blocks: 103.73.186.0/24 maxlen: 24 103.73.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.crl rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYW34Ys6FvU-kpOKM07Guz64tjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:59:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FBB2/serialNumber=AD85B7E18B3A16F53E92938A334EC6BB3EB8B630 Validity Not Before: Feb 9 06:08:02 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c5c142-a8de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d7:0f:8b:b5:98:73:9f:2f:a0:10:9d:c3:05: b2:14:c1:d3:f5:e4:40:b0:b4:26:36:2d:40:7a:94: 19:4d:af:1d:da:fb:1f:85:cb:8b:f3:0f:40:a4:fc: e1:1f:af:03:d4:b1:f8:46:68:78:81:40:05:a5:63: df:1e:b8:58:28:51:ef:8a:11:f1:00:31:c9:24:c5: 9e:1e:cb:f4:dd:e4:0c:91:3e:89:60:bf:09:38:be: 38:8e:a8:6d:ad:0b:56:ee:11:bd:29:8d:1a:37:c6: 42:4e:e7:a2:86:20:04:11:97:07:e6:a1:de:fa:f0: 0f:50:0a:1b:f9:d1:4f:f6:7d:3d:42:6c:30:70:b3: bb:97:09:b3:ea:45:d0:40:8e:0c:d9:1d:7f:4e:b0: c7:0b:b9:64:40:eb:fd:05:d0:b3:72:02:cf:43:b4: 3a:5f:83:9d:b8:16:64:4b:86:ae:cc:31:16:b4:43: cb:ea:38:cb:de:af:2c:81:9a:16:6a:29:a3:c7:62: 28:75:da:6e:d2:ba:f6:9c:80:72:5a:c0:c8:22:3d: 18:58:5f:8c:c3:70:99:49:d0:96:42:32:ff:66:1c: ba:97:51:e5:32:33:fa:6f:91:39:a7:05:ef:cb:e4: 41:42:03:43:83:ea:cb:01:e0:24:96:c4:a6:2e:0a: b0:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:56:BC:42:5C:9A:3B:0A:11:17:CE:69:22:89:C1:DA:0F:02:AF:70 X509v3 Authority Key Identifier: keyid:AD:85:B7:E1:8B:3A:16:F5:3E:92:93:8A:33:4E:C6:BB:3E:B8:B6:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYW34Ys6FvU-kpOKM07Guz64tjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/A9321C0A1B2A11EE84F40B3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.186.0/23 Signature Algorithm: sha256WithRSAEncryption c4:3a:6c:42:73:8f:a0:11:5a:30:44:87:24:37:af:35:67:a0: 05:66:95:c8:ff:ec:5b:a6:9b:54:bc:98:25:f9:5c:2c:9b:26: d1:67:c7:ab:6c:6f:3c:bd:98:e7:6f:ac:73:f8:a5:ff:b8:1a: 7e:c8:d0:62:78:ae:b8:94:f5:dd:2d:90:7a:76:86:63:22:4f: ff:f3:8f:ab:85:8f:d6:24:eb:0d:a8:ac:d4:31:05:93:44:0b: ba:1c:e8:75:79:a1:6c:1b:a5:df:e4:d6:9a:eb:25:08:e7:0e: 0a:e0:e1:cc:47:34:d3:f3:7c:32:f3:ba:14:0f:8d:c2:9d:17: 5a:b5:47:15:15:43:73:1a:f6:a5:96:5a:4a:2e:21:f9:01:c2: ba:33:28:78:b9:8c:e6:99:16:3d:2a:0c:4a:aa:d5:7d:a9:9f: 27:ca:bc:c4:4e:8d:74:44:7a:83:81:ac:5b:af:38:7f:6e:13: 56:39:54:44:67:8f:6e:c2:4d:c7:91:1c:18:8e:57:b9:6a:15: 4c:91:89:00:9f:2d:65:e5:2a:8f:3c:d9:7f:45:e4:9f:55:23: 55:f9:d9:40:b1:f3:05:7d:8f:18:d8:62:fb:1b:37:ed:bb:70: 9d:9d:7d:bf:b8:28:e4:ba:08:a6:33:38:09:ad:d9:47:1e:6e: a8:a1:72:e5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RkJCMjExMC8GA1UEBRMoQUQ4NUI3RTE4QjNBMTZGNTNFOTI5MzhBMzM0RUM2QkIz RUI4QjYzMDAeFw0yNDAyMDkwNjA4MDJaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YzVjMTQyLWE4ZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC21w+LtZhzny+gEJ3DBbIUwdP15ECwtCY2LUB6lBlNrx3a+x+Fy4vzD0Ck/OEf rwPUsfhGaHiBQAWlY98euFgoUe+KEfEAMckkxZ4ey/Td5AyRPolgvwk4vjiOqG2t C1buEb0pjRo3xkJO56KGIAQRlwfmod768A9QChv50U/2fT1CbDBws7uXCbPqRdBA jgzZHX9OsMcLuWRA6/0F0LNyAs9DtDpfg524FmRLhq7MMRa0Q8vqOMveryyBmhZq KaPHYih12m7SuvacgHJawMgiPRhYX4zDcJlJ0JZCMv9mHLqXUeUyM/pvkTmnBe/L 5EFCA0OD6ssB4CSWxKYuCrB5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUmVa8Qlya OwoRF85pIonB2g8Cr3AwHwYDVR0jBBgwFoAUrYW34Ys6FvU+kpOKM07Guz64tjAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNGQkIyLzBFMjcwNTQ0MUE4 NjExRUVBMEFBODcxNkM0RjlBRTAyL3JZVzM0WXM2RnZVLWtwT0tNMDdHdXo2NHRq QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcllXMzRZczZGdlUta3BPS00wN0d1ejY0dGpBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RkJCMi8wRTI3MDU0NDFBODYxMUVFQTBBQTg3MTZDNEY5QUUwMi9BOTMyMUMwQTFC MkExMUVFODRGNDBCM0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWdJujANBgkqhkiG9w0BAQsFAAOCAQEAxDpsQnOPoBFaMESH JDevNWegBWaVyP/sW6abVLyYJflcLJsm0WfHq2xvPL2Y52+sc/il/7gafsjQYniu uJT13S2QenaGYyJP//OPq4WP1iTrDais1DEFk0QLuhzodXmhbBul3+TWmuslCOcO CuDhzEc00/N8MvO6FA+Nwp0XWrVHFRVDcxr2pZZaSi4h+QHCujMoeLmM5pkWPSoM SqrVfamfJ8q8xE6NdER6g4GsW684f24TVjlURGePbsJNx5EcGI5XuWoVTJGJAJ8t ZeUqjzzZf0Xkn1UjVfnZQLHzBX2PGNhi+xs37btwnZ19v7go5LoIpjM4Ca3ZRx5u qKFy5Q== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:11 2024 by rpki-client on console-ams.rpki-client.org