$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/65FE79B8885D11EB81454E41C4F9AE02.roa File: 65FE79B8885D11EB81454E41C4F9AE02.roa (raw, json) Hash identifier: yJcXIOHZrZvQNo0ukdJEKm6dbG3rbyIaGjIEhNXIugs= Subject key identifier: 60:0F:F6:E1:91:BD:27:86:B7:2B:04:78:3F:EA:49:3B:32:F8:34:56 Certificate issuer: /CN=A9148B83/serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Certificate serial: 053E Authority key identifier: C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/65FE79B8885D11EB81454E41C4F9AE02.roa Signing time: Sun 19 Nov 2023 00:02:16 +0000 ROA not before: Sun 19 Nov 2023 00:02:16 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 58507 IP address blocks: 103.103.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 01:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1342 (0x53e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B83/serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Validity Not Before: Nov 19 00:02:16 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65595088-4d52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:29:6a:44:98:20:57:58:78:af:f8:21:ce:72: 21:79:e7:25:f6:ad:73:24:7d:b8:2d:16:4e:be:0b: 6a:cc:08:94:09:cf:2b:78:23:59:92:2c:8c:c4:4f: f9:99:cc:f4:44:f5:da:9a:e9:f5:49:6a:d1:73:93: b3:c7:29:f5:05:2c:2f:66:a6:c3:60:fa:8b:41:22: 5d:6a:08:22:68:3b:b4:3e:8f:51:fa:e0:d1:70:c2: e1:c0:c8:00:58:ce:50:78:bc:a6:4c:e3:43:97:31: fb:45:d9:28:a8:ca:29:e2:99:47:2a:50:00:b4:29: dc:d4:94:4d:d5:46:f9:34:63:95:fd:8a:9d:77:af: 76:99:24:77:47:80:0d:a3:a0:fd:2f:16:26:e4:58: 4a:cb:99:bf:86:3c:19:b6:19:16:fe:33:ed:36:ae: ad:9f:49:3d:97:af:00:93:2e:ba:3f:e8:26:34:0e: 46:d6:72:09:fa:bb:bb:55:71:81:d2:7c:42:5b:0d: 5f:9b:cc:e0:b4:8f:74:a3:aa:75:ec:e3:ca:2b:68: 73:2f:41:80:98:00:25:df:eb:fa:4a:7f:10:78:d5: 6a:63:f7:34:12:6a:5b:c2:f2:b3:f0:ef:34:eb:50: 9c:96:25:13:97:49:ca:fb:e8:34:f0:75:2b:12:bd: 9b:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:0F:F6:E1:91:BD:27:86:B7:2B:04:78:3F:EA:49:3B:32:F8:34:56 X509v3 Authority Key Identifier: keyid:C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/65FE79B8885D11EB81454E41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.103.108.0/22 Signature Algorithm: sha256WithRSAEncryption 8d:04:25:b0:ef:61:5d:20:ac:12:20:25:49:75:ad:3c:3a:c2: c0:6e:30:71:7b:76:5d:11:5b:c0:a8:74:d4:68:ae:9f:0c:bc: 0e:82:de:66:b6:7a:c3:19:75:4e:2e:0f:12:a2:88:d4:cf:e8: 6c:ef:eb:a6:5d:f3:9c:94:6e:c9:82:10:1e:e1:2b:58:a9:19: 49:8b:3b:fd:9f:c8:1b:16:b7:e5:16:0d:ed:d5:12:20:ca:32: 1a:d4:1e:3a:e2:df:3f:0e:a7:4a:56:b5:6a:d6:37:4d:c2:db: e4:7c:69:73:4b:37:a5:b5:a1:61:d2:3c:f9:c5:c3:83:9b:c9: c3:99:3b:01:56:24:39:ee:68:22:6b:56:bc:fd:dd:0b:3f:a7: 48:2e:27:4a:9d:b7:a3:f2:34:9e:01:aa:e1:80:57:47:ba:11: a1:48:c1:d8:19:01:7f:fd:ec:76:aa:32:49:7a:92:30:c3:31: 34:0f:b8:6a:c7:14:03:9c:08:b1:e0:f5:f2:7e:e1:6a:db:fb: 20:a0:6d:e6:07:47:ee:aa:6c:46:67:b0:cd:c5:b5:93:fc:84: b3:b9:aa:30:e4:a3:71:48:d8:a7:31:e8:17:7a:c4:6b:56:c8: f7:9a:a3:99:c0:cb:48:b6:9c:e9:60:af:14:e0:9b:31:82:e2: 16:c0:b0:1f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCODMxMTAvBgNVBAUTKEM0NkQ1OTEzRjZDMjUwQzZBRUUyRjMyNzQ1MzVDRTg2 NjI5NUI5RkEwHhcNMjMxMTE5MDAwMjE2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTU5NTA4OC00ZDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArClqRJggV1h4r/ghznIheecl9q1zJH24LRZOvgtqzAiUCc8reCNZkiyMxE/5 mcz0RPXamun1SWrRc5Ozxyn1BSwvZqbDYPqLQSJdaggiaDu0Po9R+uDRcMLhwMgA WM5QeLymTONDlzH7RdkoqMop4plHKlAAtCnc1JRN1Ub5NGOV/Yqdd692mSR3R4AN o6D9LxYm5FhKy5m/hjwZthkW/jPtNq6tn0k9l68Aky66P+gmNA5G1nIJ+ru7VXGB 0nxCWw1fm8zgtI90o6p17OPKK2hzL0GAmAAl3+v6Sn8QeNVqY/c0EmpbwvKz8O80 61CcliUTl0nK++g08HUrEr2bFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGAP9uGR vSeGtysEeD/qSTsy+DRWMB8GA1UdIwQYMBaAFMRtWRP2wlDGruLzJ0U1zoZilbn6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEI4My83N0FBNDE0Njg3 RTExMUVCQjUwMUNCMjVDNEY5QUUwMi94RzFaRV9iQ1VNYXU0dk1uUlRYT2htS1Z1 Zm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hHMVpFX2JDVU1hdTR2TW5SVFhPaG1LVnVmby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhCODMvNzdBQTQxNDY4N0UxMTFFQkI1MDFDQjI1QzRGOUFFMDIvNjVGRTc5Qjg4 ODVEMTFFQjgxNDU0RTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnZ2wwDQYJKoZIhvcNAQELBQADggEBAI0EJbDvYV0grBIg JUl1rTw6wsBuMHF7dl0RW8CodNRorp8MvA6C3ma2esMZdU4uDxKiiNTP6Gzv66Zd 85yUbsmCEB7hK1ipGUmLO/2fyBsWt+UWDe3VEiDKMhrUHjri3z8Op0pWtWrWN03C 2+R8aXNLN6W1oWHSPPnFw4ObycOZOwFWJDnuaCJrVrz93Qs/p0guJ0qdt6PyNJ4B quGAV0e6EaFIwdgZAX/97HaqMkl6kjDDMTQPuGrHFAOcCLHg9fJ+4Wrb+yCgbeYH R+6qbEZnsM3FtZP8hLO5qjDko3FI2Kcx6Bd6xGtWyPeao5nAy0i2nOlgrxTgmzGC 4hbAsB8= -----END CERTIFICATE-----Generated at Sat Jun 1 02:01:12 2024 by rpki-client on console-ams.rpki-client.org