$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/1BCA5982656311ECA4E81323C4F9AE02.roa File: 1BCA5982656311ECA4E81323C4F9AE02.roa (raw, json) Hash identifier: n+N7ciJqykBWnnfMyAsAHqMToDoVYmulmumBAfKqd1M= Subject key identifier: CE:EA:8C:93:AC:F2:56:C1:3E:3B:82:C5:48:95:BB:5B:6E:90:27:E2 Certificate issuer: /CN=A9148B6A/serialNumber=A9712CCB7EEE024AEB88767B762E1093B140FF6E Certificate serial: 0EA7 Authority key identifier: A9:71:2C:CB:7E:EE:02:4A:EB:88:76:7B:76:2E:10:93:B1:40:FF:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXEsy37uAkrriHZ7di4Qk7FA_24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/1BCA5982656311ECA4E81323C4F9AE02.roa Signing time: Tue 18 Jul 2023 18:15:21 +0000 ROA not before: Tue 18 Jul 2023 18:15:21 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 59382 IP address blocks: 103.237.36.0/22 maxlen: 24 160.202.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.crl rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXEsy37uAkrriHZ7di4Qk7FA_24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3751 (0xea7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B6A/serialNumber=A9712CCB7EEE024AEB88767B762E1093B140FF6E Validity Not Before: Jul 18 18:15:21 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64b6d6b9-6391 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:96:01:7c:0a:ac:ec:b7:61:08:07:47:df:8b: 3a:6a:0e:6a:35:03:34:59:05:38:9d:f8:dc:f1:e2: f3:00:bf:23:44:8c:83:bd:a7:d7:04:b2:a6:d1:5a: 7f:4d:4d:23:88:da:a3:ce:c6:cc:40:95:df:84:6c: 68:17:df:38:57:df:45:93:d0:ea:be:4e:22:34:6d: e9:af:16:78:b2:87:6e:2a:3a:27:a6:a3:3e:3a:99: 06:87:57:c6:98:bb:98:89:ca:f3:36:06:d7:58:92: aa:a7:40:6f:ed:b4:f2:a2:a6:36:dd:24:10:c5:6b: 0a:9e:2c:21:0f:75:d4:a0:9a:0e:dc:8d:ec:84:62: d3:f9:ba:e8:0c:23:40:2c:93:60:90:b6:74:18:b6: b4:fb:4d:57:7a:0c:23:46:a4:37:b0:a6:81:30:e2: 0a:59:da:fe:78:c2:fd:f0:93:ad:43:5a:2c:f4:01: 9d:da:c9:ee:6f:f0:f4:60:cb:c7:77:c6:41:c2:d7: 88:67:50:1d:74:bb:86:21:e0:5f:1c:b1:fe:d1:77: 0c:9a:92:da:87:70:32:5c:71:b4:14:54:61:6a:fb: 05:a5:96:01:4c:70:88:0e:15:7e:11:09:b7:bc:8c: e1:85:72:b6:5e:f1:84:e5:c4:24:65:78:86:05:7d: 1a:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:EA:8C:93:AC:F2:56:C1:3E:3B:82:C5:48:95:BB:5B:6E:90:27:E2 X509v3 Authority Key Identifier: keyid:A9:71:2C:CB:7E:EE:02:4A:EB:88:76:7B:76:2E:10:93:B1:40:FF:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXEsy37uAkrriHZ7di4Qk7FA_24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/1BCA5982656311ECA4E81323C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.237.36.0/22 160.202.144.0/22 Signature Algorithm: sha256WithRSAEncryption 2d:06:0d:74:8a:20:db:50:1a:82:14:a9:a6:ad:97:61:71:07: 44:96:0b:df:6e:95:36:a6:75:27:77:99:03:a7:60:62:4b:5e: 50:2e:1f:c9:99:3e:75:ab:ac:37:07:f0:b9:0c:36:65:6f:f3: ca:3f:e5:59:7c:55:5a:26:41:ab:d9:8a:1b:fa:ae:6a:e1:21: fe:50:84:d1:b3:12:80:dd:60:f0:a0:90:92:11:8a:eb:6b:86: 3e:73:ff:00:73:e3:82:67:1d:fc:37:5d:25:5d:5f:45:20:c6: 9d:1a:21:ae:22:0d:9a:57:c1:20:a1:c7:4a:5d:d8:f3:63:02: 07:17:85:6e:ac:ec:b0:cd:71:2c:96:ee:74:d2:8c:79:ad:be: ba:65:84:2c:85:30:ed:4c:a7:ed:4e:41:68:14:9a:c1:27:b9: da:53:61:df:9d:5b:62:ab:39:49:71:43:4d:d5:f7:02:90:b9: 76:94:f1:74:03:fa:e6:7b:f9:d7:38:ff:f6:dd:ed:e8:d5:55: fb:58:f7:2e:88:5a:be:c2:d6:84:a5:3b:86:07:be:19:ca:3a: f8:7e:b2:d9:e5:b2:68:d5:45:c0:6b:ba:69:9d:4b:4a:17:d9: a5:ff:45:67:cd:bb:4f:74:9a:4d:a1:fe:2e:66:a3:6c:ab:5c: ba:28:2d:99 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCNkExMTAvBgNVBAUTKEE5NzEyQ0NCN0VFRTAyNEFFQjg4NzY3Qjc2MkUxMDkz QjE0MEZGNkUwHhcNMjMwNzE4MTgxNTIxWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGI2ZDZiOS02MzkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5YBfAqs7LdhCAdH34s6ag5qNQM0WQU4nfjc8eLzAL8jRIyDvafXBLKm0Vp/ TU0jiNqjzsbMQJXfhGxoF984V99Fk9Dqvk4iNG3prxZ4soduKjonpqM+OpkGh1fG mLuYicrzNgbXWJKqp0Bv7bTyoqY23SQQxWsKniwhD3XUoJoO3I3shGLT+broDCNA LJNgkLZ0GLa0+01XegwjRqQ3sKaBMOIKWdr+eML98JOtQ1os9AGd2snub/D0YMvH d8ZBwteIZ1AddLuGIeBfHLH+0XcMmpLah3AyXHG0FFRhavsFpZYBTHCIDhV+EQm3 vIzhhXK2XvGE5cQkZXiGBX0awwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFM7qjJOs 8lbBPjuCxUiVu1tukCfiMB8GA1UdIwQYMBaAFKlxLMt+7gJK64h2e3YuEJOxQP9u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEI2QS8wODc1RjQ5NjRD NzQxMUU5OTc5MDBGNTVDNEY5QUUwMi9xWEVzeTM3dUFrcnJpSFo3ZGk0UWs3RkFf MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FYRXN5Mzd1QWtycmlIWjdkaTRRazdGQV8yNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhCNkEvMDg3NUY0OTY0Qzc0MTFFOTk3OTAwRjU1QzRGOUFFMDIvMUJDQTU5ODI2 NTYzMTFFQ0E0RTgxMzIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn7SQDBAKgypAwDQYJKoZIhvcNAQELBQADggEBAC0GDXSK INtQGoIUqaatl2FxB0SWC99ulTamdSd3mQOnYGJLXlAuH8mZPnWrrDcH8LkMNmVv 88o/5Vl8VVomQavZihv6rmrhIf5QhNGzEoDdYPCgkJIRiutrhj5z/wBz44JnHfw3 XSVdX0Ugxp0aIa4iDZpXwSChx0pd2PNjAgcXhW6s7LDNcSyW7nTSjHmtvrplhCyF MO1Mp+1OQWgUmsEnudpTYd+dW2KrOUlxQ03V9wKQuXaU8XQD+uZ7+dc4//bd7ejV VftY9y6IWr7C1oSlO4YHvhnKOvh+stnlsmjVRcBrummdS0oX2aX/RWfNu090mk2h /i5mo2yrXLooLZk= -----END CERTIFICATE-----Generated at Sat May 18 19:15:24 2024 by rpki-client on console-ams.rpki-client.org