$ rpki-client -vvf rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/172E487A416911ECB6B11742C4F9AE02.roa File: 172E487A416911ECB6B11742C4F9AE02.roa (raw, json) Hash identifier: r+d8NCKdA0Ovbmc/tPJxptoL53Q7O1fSWcLr3/i/uuA= Subject key identifier: CB:77:FE:16:2A:A1:21:61:63:F3:E8:2A:B2:A5:79:43:20:CE:E6:1A Certificate issuer: /CN=A914BF33/serialNumber=1F9A20289CE9316E65B3DB724E8C73606C8F864B Certificate serial: 0AA9 Authority key identifier: 1F:9A:20:28:9C:E9:31:6E:65:B3:DB:72:4E:8C:73:60:6C:8F:86:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/172E487A416911ECB6B11742C4F9AE02.roa Signing time: Thu 04 May 2023 20:37:31 +0000 ROA not before: Thu 04 May 2023 20:37:31 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 25478 IP address blocks: 103.111.224.0/22 maxlen: 22 103.111.225.0/24 maxlen: 24 103.111.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.crl rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2729 (0xaa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BF33/serialNumber=1F9A20289CE9316E65B3DB724E8C73606C8F864B Validity Not Before: May 4 20:37:31 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=6454178a-de31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:1f:bb:a7:4c:b1:af:37:64:91:47:4e:a4:cb: e7:25:fe:90:43:67:61:5e:70:03:10:26:42:7d:61: 77:58:5e:f9:ed:89:9f:0d:51:f0:6e:17:dd:d7:fb: aa:ec:d5:73:a7:dd:a5:e2:62:e6:77:9b:d5:a8:2f: 4b:a9:ea:7e:b9:70:d1:52:bd:cc:f4:f4:f6:56:5f: 52:9b:71:68:99:67:e5:21:aa:47:d4:fb:d5:53:73: bb:5d:d2:ba:a4:3a:57:36:04:01:7e:72:d9:0a:9d: a2:52:4f:3c:d9:53:3a:b5:2f:3c:34:39:8c:f4:4e: 59:9a:ed:49:1d:a4:26:43:30:29:86:e1:d2:fc:ee: f6:83:89:a8:c8:d1:7a:e2:25:3e:12:19:c0:b9:a3: c1:10:76:43:41:fb:17:ee:d3:e2:6d:37:ff:b6:f8: 6c:09:a4:2f:10:96:e7:ef:0f:e2:d9:8b:c9:57:f8: 11:26:81:32:a4:55:c6:b7:97:3f:f0:f3:fe:fa:74: 1d:13:9a:1c:6c:5e:a7:d0:36:aa:bc:cd:9a:13:bd: e1:61:05:70:2b:21:ee:7f:f6:e8:ff:13:e0:6b:82: b6:34:0c:d1:02:99:a2:b5:aa:e4:3b:ef:d0:37:c0: cf:d1:a5:41:b8:c7:5f:0f:9a:41:47:d8:7b:35:f3: d5:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:77:FE:16:2A:A1:21:61:63:F3:E8:2A:B2:A5:79:43:20:CE:E6:1A X509v3 Authority Key Identifier: keyid:1F:9A:20:28:9C:E9:31:6E:65:B3:DB:72:4E:8C:73:60:6C:8F:86:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/172E487A416911ECB6B11742C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.111.224.0/22 Signature Algorithm: sha256WithRSAEncryption 73:a3:ee:eb:09:7b:7b:0d:ab:e5:fd:10:3b:14:ac:3a:3d:34: 79:45:56:b7:8e:22:eb:e5:9a:e0:27:45:be:32:00:18:44:2a: 5e:e5:2b:f0:54:0d:c2:93:57:c5:c6:95:20:79:f1:71:f0:65: 62:6c:aa:24:d7:ce:8d:ba:02:fb:ff:46:a0:c2:2f:d5:d4:90: 2f:32:2c:b4:52:2e:d9:b8:10:a2:6d:a3:ba:e4:7a:94:27:ac: b0:82:c7:c9:09:6b:a3:db:dc:47:49:a6:03:c4:38:25:a4:86: 45:8a:99:87:30:eb:e8:e7:62:b7:e1:08:78:25:c4:69:82:2e: f0:8d:8d:26:70:e4:9b:6c:24:c9:e0:a8:44:06:54:aa:74:ab: 31:d4:1f:2e:d1:77:d1:5b:ae:e8:b4:57:2d:94:35:bb:8d:98: 49:97:39:02:88:2e:21:4d:22:a3:94:14:63:02:b2:09:3a:72: 04:38:51:b2:d3:60:2a:11:30:f8:a0:34:c9:35:3c:c0:8b:65: da:76:5b:3f:a0:fa:78:c0:81:96:d2:ce:2e:4a:34:08:73:46: a9:76:68:6c:e1:53:b1:4a:aa:dc:27:46:70:a8:c7:b7:11:32: f9:a8:a2:66:79:7b:45:cf:06:c9:28:40:c7:aa:4e:8f:95:0f: 38:e2:b7:5a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJGMzMxMTAvBgNVBAUTKDFGOUEyMDI4OUNFOTMxNkU2NUIzREI3MjRFOEM3MzYw NkM4Rjg2NEIwHhcNMjMwNTA0MjAzNzMxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDU0MTc4YS1kZTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsB+7p0yxrzdkkUdOpMvnJf6QQ2dhXnADECZCfWF3WF757YmfDVHwbhfd1/uq 7NVzp92l4mLmd5vVqC9Lqep+uXDRUr3M9PT2Vl9Sm3FomWflIapH1PvVU3O7XdK6 pDpXNgQBfnLZCp2iUk882VM6tS88NDmM9E5Zmu1JHaQmQzAphuHS/O72g4moyNF6 4iU+EhnAuaPBEHZDQfsX7tPibTf/tvhsCaQvEJbn7w/i2YvJV/gRJoEypFXGt5c/ 8PP++nQdE5ocbF6n0DaqvM2aE73hYQVwKyHuf/bo/xPga4K2NAzRApmitarkO+/Q N8DP0aVBuMdfD5pBR9h7NfPVnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMt3/hYq oSFhY/PoKrKleUMgzuYaMB8GA1UdIwQYMBaAFB+aICic6TFuZbPbck6Mc2Bsj4ZL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkYzMy80NjA2NjFEQzBC ODMxMUVBOTcxQTg2NERDNEY5QUUwMi9INW9nS0p6cE1XNWxzOXR5VG94ellHeVBo a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g1b2dLSnpwTVc1bHM5dHlUb3h6WUd5UGhrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJGMzMvNDYwNjYxREMwQjgzMTFFQTk3MUE4NjREQzRGOUFFMDIvMTcyRTQ4N0E0 MTY5MTFFQ0I2QjExNzQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnb+AwDQYJKoZIhvcNAQELBQADggEBAHOj7usJe3sNq+X9 EDsUrDo9NHlFVreOIuvlmuAnRb4yABhEKl7lK/BUDcKTV8XGlSB58XHwZWJsqiTX zo26Avv/RqDCL9XUkC8yLLRSLtm4EKJto7rkepQnrLCCx8kJa6Pb3EdJpgPEOCWk hkWKmYcw6+jnYrfhCHglxGmCLvCNjSZw5JtsJMngqEQGVKp0qzHUHy7Rd9Fbrui0 Vy2UNbuNmEmXOQKILiFNIqOUFGMCsgk6cgQ4UbLTYCoRMPigNMk1PMCLZdp2Wz+g +njAgZbSzi5KNAhzRql2aGzhU7FKqtwnRnCox7cRMvmoomZ5e0XPBskoQMeqTo+V Dzjit1o= -----END CERTIFICATE-----Generated at Sat May 18 20:15:59 2024 by rpki-client on console-ams.rpki-client.org