$ rpki-client -vvf rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/8B97D7A22CD911ECA528B744C4F9AE02.roa File: 8B97D7A22CD911ECA528B744C4F9AE02.roa (raw, json) Hash identifier: kAAXrPn3h6fnDZKcj+NU7y43HflGR++IvUSQGCyuZuM= Subject key identifier: 36:42:E7:0B:A0:5E:79:C5:3F:FF:E1:2F:C6:69:BE:C4:41:7A:7B:CA Certificate issuer: /CN=A9153C50/serialNumber=D37C9CD650C020A3500EDC9B40A546A84C3F260B Certificate serial: 03BE Authority key identifier: D3:7C:9C:D6:50:C0:20:A3:50:0E:DC:9B:40:A5:46:A8:4C:3F:26:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03yc1lDAIKNQDtybQKVGqEw_Jgs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/8B97D7A22CD911ECA528B744C4F9AE02.roa Signing time: Fri 19 Jan 2024 02:03:30 +0000 ROA not before: Fri 19 Jan 2024 02:03:30 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 147303 IP address blocks: 103.174.152.0/23 maxlen: 24 2001:df7:ca80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.crl rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03yc1lDAIKNQDtybQKVGqEw_Jgs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:21:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 958 (0x3be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153C50/serialNumber=D37C9CD650C020A3500EDC9B40A546A84C3F260B Validity Not Before: Jan 19 02:03:30 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65a9d872-1340 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:cd:a6:01:19:30:ce:94:9b:d4:e3:95:a5:83: 30:9b:de:68:b3:48:14:7f:5a:38:e1:95:19:d4:39: 6a:c8:e1:f8:89:63:1d:6d:03:4c:c8:1c:b7:59:f5: 8a:33:a0:a0:0b:e0:d2:f9:38:8d:98:bb:a4:c2:57: 22:d0:b9:b9:b5:ed:45:ff:98:c7:65:f5:6f:7e:76: 43:70:d3:83:82:c2:6f:39:7f:21:cf:dd:a0:d1:57: 19:52:38:8e:28:9c:fb:d9:ff:17:0a:2c:0d:09:0b: 98:d3:d2:76:9f:78:5d:a9:c8:22:cf:20:18:4b:58: b0:fc:9b:75:3f:0d:e4:b5:04:ba:94:c4:84:bc:c6: eb:43:45:de:da:05:f5:6f:94:60:5e:03:66:00:e1: 7e:e6:52:3b:02:3a:16:ea:df:a6:7d:f5:38:dd:c7: de:30:29:4b:d9:f2:63:5b:d1:3b:ab:09:f1:3f:a1: 25:ac:5e:00:ba:68:d6:f8:b8:1a:2b:43:2d:e6:b3: 23:8b:72:05:d8:51:fe:c3:ad:46:27:3d:94:12:2b: 55:ba:4c:69:ab:c1:b3:7a:2f:d5:a6:87:1a:82:d3: dd:f8:53:d3:0e:7a:ee:5a:e6:01:77:07:da:a2:c1: f3:94:6e:ea:a7:67:98:d6:3d:f3:63:34:53:ab:b2: 49:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:42:E7:0B:A0:5E:79:C5:3F:FF:E1:2F:C6:69:BE:C4:41:7A:7B:CA X509v3 Authority Key Identifier: keyid:D3:7C:9C:D6:50:C0:20:A3:50:0E:DC:9B:40:A5:46:A8:4C:3F:26:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03yc1lDAIKNQDtybQKVGqEw_Jgs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/8B97D7A22CD911ECA528B744C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.152.0/23 IPv6: 2001:df7:ca80::/48 Signature Algorithm: sha256WithRSAEncryption d1:9f:01:65:3c:f5:0f:ae:7c:7b:1a:5a:06:20:10:f7:3d:53: 33:12:62:88:63:71:33:68:71:09:69:84:a7:c1:06:de:8b:97: 18:63:b3:7f:17:e0:76:75:3d:fd:0e:ec:e3:49:b8:38:4b:8e: 40:cc:30:b6:52:01:c0:08:c6:f2:af:f8:6c:54:c1:e6:16:57: b2:6f:61:e2:5f:e4:0b:f5:66:73:76:d3:ab:b9:05:d7:fd:12: 92:65:b4:8e:df:9b:1f:27:28:1b:1e:d2:f6:ea:11:4b:2e:85: d8:d9:6d:09:66:4f:fb:d3:21:9a:24:44:3a:1b:e5:b0:7f:8a: 19:bd:08:4d:7e:5d:dd:ca:29:b2:de:e3:ee:39:a5:01:ad:d2: 8d:51:ec:f5:2d:6d:d6:78:ce:a1:c6:1e:e9:a9:97:bb:4b:3a: c2:e2:35:18:17:7b:06:8a:98:30:be:f5:f2:af:d6:e4:67:81: be:24:f7:a4:9c:41:ac:0d:78:00:08:cc:f2:e5:5d:df:cc:64: 43:30:ad:29:cf:e2:84:63:a2:45:7a:24:4b:d6:65:1d:f8:1e: 29:d3:75:65:58:a3:4e:eb:a4:6f:3e:79:60:e6:5d:dc:66:b7: bd:70:91:a4:d4:4d:e9:da:df:9b:9f:9b:f2:02:b8:71:3f:3d: 65:18:bb:45 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNDNTAxMTAvBgNVBAUTKEQzN0M5Q0Q2NTBDMDIwQTM1MDBFREM5QjQwQTU0NkE4 NEMzRjI2MEIwHhcNMjQwMTE5MDIwMzMwWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE5ZDg3Mi0xMzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1c2mARkwzpSb1OOVpYMwm95os0gUf1o44ZUZ1DlqyOH4iWMdbQNMyBy3WfWK M6CgC+DS+TiNmLukwlci0Lm5te1F/5jHZfVvfnZDcNODgsJvOX8hz92g0VcZUjiO KJz72f8XCiwNCQuY09J2n3hdqcgizyAYS1iw/Jt1Pw3ktQS6lMSEvMbrQ0Xe2gX1 b5RgXgNmAOF+5lI7AjoW6t+mffU43cfeMClL2fJjW9E7qwnxP6ElrF4AumjW+Lga K0Mt5rMji3IF2FH+w61GJz2UEitVukxpq8Gzei/VpocagtPd+FPTDnruWuYBdwfa osHzlG7qp2eY1j3zYzRTq7JJCwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDZC5wug XnnFP//hL8ZpvsRBenvKMB8GA1UdIwQYMBaAFNN8nNZQwCCjUA7cm0ClRqhMPyYL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0M1MC80QjkwNjMwMjJD RDYxMUVDQTVEQTM1MzRDNEY5QUUwMi8wM3ljMWxEQUlLTlFEdHliUUtWR3FFd19K Z3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzAzeWMxbERBSUtOUUR0eWJRS1ZHcUV3X0pncy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTNDNTAvNEI5MDYzMDIyQ0Q2MTFFQ0E1REEzNTM0QzRGOUFFMDIvOEI5N0Q3QTIy Q0Q5MTFFQ0E1MjhCNzQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnrpgwDwQCAAIwCQMHACABDffKgDANBgkqhkiG9w0BAQsF AAOCAQEA0Z8BZTz1D658expaBiAQ9z1TMxJiiGNxM2hxCWmEp8EG3ouXGGOzfxfg dnU9/Q7s40m4OEuOQMwwtlIBwAjG8q/4bFTB5hZXsm9h4l/kC/Vmc3bTq7kF1/0S kmW0jt+bHycoGx7S9uoRSy6F2NltCWZP+9MhmiREOhvlsH+KGb0ITX5d3copst7j 7jmlAa3SjVHs9S1t1njOocYe6amXu0s6wuI1GBd7BoqYML718q/W5GeBviT3pJxB rA14AAjM8uVd38xkQzCtKc/ihGOiRXokS9ZlHfgeKdN1ZVijTuukbz55YOZd3Ga3 vXCRpNRN6drfm5+b8gK4cT89ZRi7RQ== -----END CERTIFICATE-----Generated at Fri May 17 03:06:31 2024 by rpki-client on console-ams.rpki-client.org