$ rpki-client -vvf rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/32509B68EDAE11E595DF6C28C4F9AE02.roa File: 32509B68EDAE11E595DF6C28C4F9AE02.roa (raw, json) Hash identifier: unX4U7vjrWbMRsfP4blBuADgCRj9x/Ccf3D+JmpWjmY= Subject key identifier: 88:30:54:20:B3:6E:4D:60:AF:AA:99:71:79:83:42:34:38:98:7C:E5 Certificate issuer: /CN=A9154657/serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72 Certificate serial: 339E Authority key identifier: 20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/32509B68EDAE11E595DF6C28C4F9AE02.roa Signing time: Thu 02 Nov 2023 14:40:11 +0000 ROA not before: Thu 02 Nov 2023 14:40:11 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 9443 IP address blocks: 103.5.92.0/22 maxlen: 22 103.5.94.0/24 maxlen: 24 2402:8700::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 14:20:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13214 (0x339e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154657/serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72 Validity Not Before: Nov 2 14:40:11 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6543b4cb-668a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:40:1a:53:aa:91:1a:a6:1d:82:47:70:37:c6: e5:49:88:3d:a1:82:f0:79:5d:02:05:f0:5b:f8:2a: b6:e5:21:19:2a:ed:75:b9:2a:26:e6:32:3b:41:06: 5e:73:a5:16:82:f0:7f:be:fd:c8:af:8a:0c:48:f0: 7a:c1:8e:17:68:08:a6:42:23:91:2a:5c:a5:bf:d4: 1c:f7:ff:4d:05:49:33:30:e8:d0:48:36:cf:c3:ff: 0d:f7:51:09:86:34:5e:84:a9:c7:3e:20:ac:fd:be: c3:f2:f2:6b:15:08:08:83:f5:06:82:83:7c:7b:f3: 2b:2b:d1:96:83:be:86:77:c2:81:e4:ec:53:39:9b: 5f:45:77:89:fc:c5:2e:3d:6c:08:c7:93:f2:7c:fc: e7:b3:84:31:d1:ba:fa:5c:98:6a:44:32:d9:a6:7c: 09:da:0f:46:6e:43:8c:96:56:b4:69:35:97:c8:9f: 12:b7:37:ab:c7:59:e7:ac:ed:c3:fc:e9:4f:16:60: 87:fc:75:f0:23:7d:cf:b0:0f:e0:e5:c2:5f:f6:87: de:d9:88:01:79:47:f7:9d:de:c9:6e:87:e2:75:a0: fc:50:be:db:66:b3:4f:71:40:39:87:f6:1f:4f:37: 79:d6:6f:ff:fb:16:8a:5a:71:66:99:15:44:4f:ea: 55:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:30:54:20:B3:6E:4D:60:AF:AA:99:71:79:83:42:34:38:98:7C:E5 X509v3 Authority Key Identifier: keyid:20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/32509B68EDAE11E595DF6C28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.92.0/22 IPv6: 2402:8700::/32 Signature Algorithm: sha256WithRSAEncryption c6:f1:73:0a:3a:46:e9:71:fb:b4:77:4b:21:3f:20:0e:1c:ad: 7e:45:c8:47:32:8f:f1:bf:f1:76:e8:4c:8c:68:20:70:2b:35: e5:c8:2a:e3:1b:d9:93:5a:7a:63:94:58:eb:7c:65:ca:85:6a: 5f:7f:fe:0b:af:a4:bc:f0:e2:b8:7d:35:71:db:20:37:e9:b8: a5:1c:9f:f7:f7:0e:fd:70:d8:cb:53:8c:56:46:97:cc:6c:d0: d6:74:12:21:5e:7e:e6:d5:ee:4a:01:79:2c:81:98:df:c8:49: 43:cd:8f:0f:11:7a:3e:a8:4d:96:ef:7f:17:5e:00:9b:15:01: 24:2f:a5:0e:11:61:c8:7b:9e:d9:51:9e:bb:74:4c:f3:e5:68: ba:1e:ca:60:e3:5d:05:b5:f8:e8:65:5b:10:a5:4a:99:39:e7: 6d:19:94:d0:2e:52:db:db:e4:78:79:23:5f:7e:9c:4d:69:00: 0e:0f:29:f7:75:fe:bc:09:8d:fa:15:6a:f6:85:54:d7:1c:d7: d6:b0:69:89:f2:c9:a5:68:58:cb:b3:b0:cf:ae:37:b0:2f:2d: 16:fe:13:a8:02:cf:da:a3:cb:a3:71:c6:10:70:b6:1e:d1:b0: c4:a5:ee:ff:37:01:21:63:cd:aa:a6:b5:95:57:98:26:07:d7: 27:84:2d:97 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICM54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ2NTcxMTAvBgNVBAUTKDIwOTNBOThCMERBNTQ4Q0MwRDFDNUZCQ0EzRDcyNTE0 NkY0NDRENzIwHhcNMjMxMTAyMTQ0MDExWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQzYjRjYi02NjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA30AaU6qRGqYdgkdwN8blSYg9oYLweV0CBfBb+Cq25SEZKu11uSom5jI7QQZe c6UWgvB/vv3Ir4oMSPB6wY4XaAimQiORKlylv9Qc9/9NBUkzMOjQSDbPw/8N91EJ hjRehKnHPiCs/b7D8vJrFQgIg/UGgoN8e/MrK9GWg76Gd8KB5OxTOZtfRXeJ/MUu PWwIx5PyfPzns4Qx0br6XJhqRDLZpnwJ2g9GbkOMlla0aTWXyJ8Stzerx1nnrO3D /OlPFmCH/HXwI33PsA/g5cJf9ofe2YgBeUf3nd7JbofidaD8UL7bZrNPcUA5h/Yf Tzd51m//+xaKWnFmmRVET+pVMwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIgwVCCz bk1gr6qZcXmDQjQ4mHzlMB8GA1UdIwQYMBaAFCCTqYsNpUjMDRxfvKPXJRRvRE1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDY1Ny83MTVGMzMzNDFE NzExMUUyQTJEQjQ0QjYwOEIwMkNEMi9JSk9waXcybFNNd05IRi04bzljbEZHOUVU WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lKT3BpdzJsU013TkhGLThvOWNsRkc5RVRYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTQ2NTcvNzE1RjMzMzQxRDcxMTFFMkEyREI0NEI2MDhCMDJDRDIvMzI1MDlCNjhF REFFMTFFNTk1REY2QzI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnBVwwDQQCAAIwBwMFACQChwAwDQYJKoZIhvcNAQELBQAD ggEBAMbxcwo6Rulx+7R3SyE/IA4crX5FyEcyj/G/8XboTIxoIHArNeXIKuMb2ZNa emOUWOt8ZcqFal9//guvpLzw4rh9NXHbIDfpuKUcn/f3Dv1w2MtTjFZGl8xs0NZ0 EiFefubV7koBeSyBmN/ISUPNjw8Rej6oTZbvfxdeAJsVASQvpQ4RYch7ntlRnrt0 TPPlaLoeymDjXQW1+OhlWxClSpk5520ZlNAuUtvb5Hh5I19+nE1pAA4PKfd1/rwJ jfoVavaFVNcc19awaYnyyaVoWMuzsM+uN7AvLRb+E6gCz9qjy6NxxhBwth7RsMSl 7v83ASFjzaqmtZVXmCYH1yeELZc= -----END CERTIFICATE-----Generated at Mon May 20 17:23:14 2024 by rpki-client on console-ams.rpki-client.org