$ rpki-client -vvf rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/AFAC764C2C1711EC817C5912C4F9AE02.roa File: AFAC764C2C1711EC817C5912C4F9AE02.roa (raw, json) Hash identifier: 5G6YI2kkXdN56VMnX9IV+S4sbfoJ9J7826nrCVQnRZY= Subject key identifier: 8D:99:83:17:7E:3F:90:64:DB:F9:73:D7:37:99:E7:3B:11:99:24:77 Certificate issuer: /CN=A9149CEF/serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Certificate serial: 0377 Authority key identifier: D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/AFAC764C2C1711EC817C5912C4F9AE02.roa Signing time: Thu 07 Sep 2023 01:12:45 +0000 ROA not before: Thu 07 Sep 2023 01:12:45 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 9927 IP address blocks: 103.170.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:20:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 887 (0x377) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149CEF/serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Validity Not Before: Sep 7 01:12:45 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f9238d-b1f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:04:b7:5f:a4:7d:19:ea:4e:8e:99:0e:40:81: c4:d2:bf:58:e2:ff:b7:9a:8f:50:50:bf:7d:d8:7d: 20:7a:39:64:d3:a7:f1:c3:2c:91:e9:23:15:7f:34: 39:b2:65:af:ac:80:18:c4:f3:4a:0b:8e:7e:96:a3: 25:01:6b:c2:a0:36:62:24:ea:12:2c:26:71:70:f8: 2d:4b:b1:c9:8a:8c:25:a3:4b:7b:7f:fd:23:8d:31: 28:ca:f8:1d:16:82:66:5f:b9:30:7c:87:5f:e6:d2: 9e:ea:1e:6f:d1:da:0e:a1:ca:9f:03:c4:e6:fe:05: 13:8c:5c:ed:ad:cd:73:98:81:06:75:20:bf:01:a8: a2:10:cf:9b:fe:71:18:92:f7:69:60:61:33:12:71: e8:e6:cb:a3:a2:73:71:ee:5c:3c:bf:73:38:fe:4d: 8f:33:ba:9f:db:23:88:bf:17:bd:ab:3f:50:1a:bd: 5f:de:ac:aa:43:46:36:9f:d2:50:d5:f1:51:86:e6: 03:83:c1:ed:bf:52:be:5e:cd:a9:f8:0c:a3:86:ed: 79:95:e1:76:9b:af:bb:1e:3d:cc:5a:11:0b:ba:9b: 59:c0:52:f0:ab:7f:fe:77:ab:37:bc:0c:31:15:91: 08:f9:1e:35:6b:de:1d:1d:6e:ba:d6:5d:9a:34:bb: 7a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:99:83:17:7E:3F:90:64:DB:F9:73:D7:37:99:E7:3B:11:99:24:77 X509v3 Authority Key Identifier: keyid:D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/AFAC764C2C1711EC817C5912C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.126.0/24 Signature Algorithm: sha256WithRSAEncryption 33:af:e9:f4:60:e9:a0:a3:53:05:50:c8:4a:29:1c:8e:a2:b6: da:10:7c:62:45:4d:d2:f8:c8:90:03:a3:c7:11:7d:3c:8c:c0: 93:80:3f:aa:71:46:17:f2:8d:1d:8a:a3:39:1d:be:ed:31:37: ee:73:29:d4:af:2a:f5:1f:0d:7c:26:f6:3a:ed:c3:fd:e8:00: f4:4c:36:1c:62:40:38:14:58:7a:f3:a9:59:98:a0:cf:e2:06: 36:1b:15:74:c9:bb:a5:e1:35:64:1e:ac:c2:2c:36:3c:e7:79: b0:3e:38:42:1b:47:52:18:9d:b1:4b:d7:48:65:a5:d6:a7:20: 42:e8:96:f6:40:40:f2:11:e5:24:27:16:bb:bc:6a:e4:b7:be: e1:b2:96:ab:88:e6:20:80:4c:b6:71:c3:61:e1:fd:b3:e7:f3: ae:8b:73:b8:28:07:e7:4d:35:4e:e0:99:c6:24:1d:a8:21:f9: 81:0c:52:cf:6f:03:16:5c:b9:ca:16:24:aa:39:4c:0e:f2:f4: bc:88:ac:b4:36:6d:99:5e:4c:94:ce:2d:88:62:59:2c:86:e9: a4:6e:04:de:91:a3:b6:e4:a4:34:87:ac:b7:8c:3d:f2:84:f0: 55:98:16:aa:c8:6d:9a:44:f9:92:ab:40:29:41:90:c5:55:9c: 58:d6:de:57 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDRUYxMTAvBgNVBAUTKEQ5NDVCNjBGMDA5Q0RGMTU1QzQyOUQ0MDg1QUVCNkNG RTA2QkNFMDAwHhcNMjMwOTA3MDExMjQ1WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY5MjM4ZC1iMWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArgS3X6R9GepOjpkOQIHE0r9Y4v+3mo9QUL992H0gejlk06fxwyyR6SMVfzQ5 smWvrIAYxPNKC45+lqMlAWvCoDZiJOoSLCZxcPgtS7HJiowlo0t7f/0jjTEoyvgd FoJmX7kwfIdf5tKe6h5v0doOocqfA8Tm/gUTjFztrc1zmIEGdSC/AaiiEM+b/nEY kvdpYGEzEnHo5sujonNx7lw8v3M4/k2PM7qf2yOIvxe9qz9QGr1f3qyqQ0Y2n9JQ 1fFRhuYDg8Htv1K+Xs2p+Ayjhu15leF2m6+7Hj3MWhELuptZwFLwq3/+d6s3vAwx FZEI+R41a94dHW661l2aNLt6OQIDAQABo4IClTCCApEwHQYDVR0OBBYEFI2Zgxd+ P5Bk2/lz1zeZ5zsRmSR3MB8GA1UdIwQYMBaAFNlFtg8AnN8VXEKdQIWuts/ga84A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUNFRi9DNDAxOUQyNDJD MTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4VmNRcDFBaGE2MnotQnJ6 Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJVVzJEd0NjM3hWY1FwMUFoYTYyei1CcnpnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlDRUYvQzQwMTlEMjQyQzEzMTFFQ0I0NTgwODQyQzRGOUFFMDIvQUZBQzc2NEMy QzE3MTFFQzgxN0M1OTEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnqn4wDQYJKoZIhvcNAQELBQADggEBADOv6fRg6aCjUwVQ yEopHI6ittoQfGJFTdL4yJADo8cRfTyMwJOAP6pxRhfyjR2Kozkdvu0xN+5zKdSv KvUfDXwm9jrtw/3oAPRMNhxiQDgUWHrzqVmYoM/iBjYbFXTJu6XhNWQerMIsNjzn ebA+OEIbR1IYnbFL10hlpdanIELolvZAQPIR5SQnFru8auS3vuGylquI5iCATLZx w2Hh/bPn866Lc7goB+dNNU7gmcYkHagh+YEMUs9vAxZcucoWJKo5TA7y9LyIrLQ2 bZleTJTOLYhiWSyG6aRuBN6Ro7bkpDSHrLeMPfKE8FWYFqrIbZpE+ZKrQClBkMVV nFjW3lc= -----END CERTIFICATE-----Generated at Fri May 17 03:16:58 2024 by rpki-client on console-fra.rpki-client.org