$ rpki-client -vvf rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/EF9395EA6A1511E9808D417CC4F9AE02.roa File: EF9395EA6A1511E9808D417CC4F9AE02.roa (raw, json) Hash identifier: 05qJ0sn8rQBNFNv369WrDd8tR/TB9GEAXezZf+eaYaA= Subject key identifier: 5C:8B:72:15:AA:1E:27:F9:19:6A:99:01:71:27:FF:FA:08:89:10:58 Certificate issuer: /CN=A9154657/serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72 Certificate serial: 339D Authority key identifier: 20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/EF9395EA6A1511E9808D417CC4F9AE02.roa Signing time: Thu 02 Nov 2023 14:40:10 +0000 ROA not before: Thu 02 Nov 2023 14:40:10 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 58979 IP address blocks: 103.5.92.0/24 maxlen: 24 103.5.93.0/24 maxlen: 24 103.5.94.0/24 maxlen: 24 103.5.95.0/24 maxlen: 24 2402:8700::/32 maxlen: 32 2402:8700:53::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 14:20:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13213 (0x339d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154657/serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72 Validity Not Before: Nov 2 14:40:10 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6543b4ca-b17c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:18:d3:4e:f8:92:46:59:e1:11:b8:34:89:a8: f3:08:29:21:92:ef:ea:dd:08:20:86:04:04:16:8f: 4e:c8:5b:97:db:fd:7c:a9:1e:b5:cd:5b:bf:d7:04: a5:18:8c:90:f4:98:69:46:e8:97:ec:98:16:42:3e: ed:00:bf:e7:59:99:03:77:2c:f1:3b:0d:84:2b:7c: fa:e4:29:36:40:58:84:df:d5:d2:d9:e6:cb:6c:2b: e4:fd:c7:5f:c4:4d:da:3d:e8:10:a4:42:ce:28:9e: 15:87:3f:27:fa:43:ea:02:69:ea:22:a5:4c:87:a8: 7f:7b:57:21:95:1a:28:9a:20:43:9c:a0:1c:09:0e: e3:1c:10:3a:93:1d:4b:c4:6b:ed:e2:0b:3d:fd:92: 17:27:fc:37:6f:63:72:47:55:eb:32:58:83:7e:09: 2f:de:63:1f:bc:de:e4:a6:88:96:10:e9:be:28:4d: 09:58:fe:1f:ef:fb:fe:ab:06:bf:20:ff:d7:2e:25: a2:b1:47:91:34:c7:54:60:a0:50:5d:b8:1f:d5:c4: b3:be:e1:8b:f1:42:83:4a:99:2d:6c:94:7c:1d:58: 58:99:76:13:c6:8d:0d:a4:8e:77:a1:ea:b6:cc:83: c5:73:8f:80:db:63:0b:78:c0:88:25:ef:57:8e:a0: b0:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:8B:72:15:AA:1E:27:F9:19:6A:99:01:71:27:FF:FA:08:89:10:58 X509v3 Authority Key Identifier: keyid:20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/EF9395EA6A1511E9808D417CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.92.0/22 IPv6: 2402:8700::/32 Signature Algorithm: sha256WithRSAEncryption 27:fc:7c:37:1c:bb:e5:79:72:6a:37:67:1a:07:05:49:5f:1b: 7d:2a:9e:2f:a6:17:f5:c4:3f:74:ad:e4:a9:f6:96:08:2b:b7: 08:bf:88:d1:1d:ca:5d:97:6c:ca:a0:26:29:f3:14:09:cf:af: d0:fe:94:c2:a9:6e:0a:40:38:09:76:5b:0a:30:b5:e3:ee:12: 3f:32:46:6e:d7:70:f8:40:62:4c:ad:75:b5:3f:4a:9d:85:76: 9d:fc:89:19:04:47:e8:0f:49:d9:18:e2:8d:d0:b5:3c:79:2f: 4d:8d:53:44:3c:0e:fb:15:61:1b:87:f8:c0:7e:b4:74:22:e1: 26:b0:a1:42:b3:0d:f4:58:13:2b:97:1e:6b:96:99:d6:c3:a3: 73:fb:ee:8b:8d:cc:c1:b9:c3:40:96:a5:a4:34:d6:01:1f:b3: 4e:95:a2:6c:ce:74:b3:e0:47:d4:1c:d1:4f:af:b2:03:c5:4c: c3:d4:a4:81:14:8e:5e:77:75:33:24:fc:8c:a1:3b:b1:f1:70: 7a:0a:19:45:cc:87:9c:c0:6e:21:f5:c1:10:18:be:aa:63:32: 66:62:aa:42:1f:a9:ce:6e:56:98:92:71:e3:55:01:d1:2f:55: f9:88:a2:26:5d:44:5a:bf:fa:f0:a9:fd:87:6a:a7:a1:c6:f7: 15:4b:b6:11 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICM50wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ2NTcxMTAvBgNVBAUTKDIwOTNBOThCMERBNTQ4Q0MwRDFDNUZCQ0EzRDcyNTE0 NkY0NDRENzIwHhcNMjMxMTAyMTQ0MDEwWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQzYjRjYS1iMTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuBjTTviSRlnhEbg0iajzCCkhku/q3QgghgQEFo9OyFuX2/18qR61zVu/1wSl GIyQ9JhpRuiX7JgWQj7tAL/nWZkDdyzxOw2EK3z65Ck2QFiE39XS2ebLbCvk/cdf xE3aPegQpELOKJ4Vhz8n+kPqAmnqIqVMh6h/e1chlRoomiBDnKAcCQ7jHBA6kx1L xGvt4gs9/ZIXJ/w3b2NyR1XrMliDfgkv3mMfvN7kpoiWEOm+KE0JWP4f7/v+qwa/ IP/XLiWisUeRNMdUYKBQXbgf1cSzvuGL8UKDSpktbJR8HVhYmXYTxo0NpI53oeq2 zIPFc4+A22MLeMCIJe9XjqCwqQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFyLchWq Hif5GWqZAXEn//oIiRBYMB8GA1UdIwQYMBaAFCCTqYsNpUjMDRxfvKPXJRRvRE1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDY1Ny83MTVGMzMzNDFE NzExMUUyQTJEQjQ0QjYwOEIwMkNEMi9JSk9waXcybFNNd05IRi04bzljbEZHOUVU WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lKT3BpdzJsU013TkhGLThvOWNsRkc5RVRYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTQ2NTcvNzE1RjMzMzQxRDcxMTFFMkEyREI0NEI2MDhCMDJDRDIvRUY5Mzk1RUE2 QTE1MTFFOTgwOEQ0MTdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnBVwwDQQCAAIwBwMFACQChwAwDQYJKoZIhvcNAQELBQAD ggEBACf8fDccu+V5cmo3ZxoHBUlfG30qni+mF/XEP3St5Kn2lggrtwi/iNEdyl2X bMqgJinzFAnPr9D+lMKpbgpAOAl2WwowtePuEj8yRm7XcPhAYkytdbU/Sp2Fdp38 iRkER+gPSdkY4o3QtTx5L02NU0Q8DvsVYRuH+MB+tHQi4SawoUKzDfRYEyuXHmuW mdbDo3P77ouNzMG5w0CWpaQ01gEfs06VomzOdLPgR9Qc0U+vsgPFTMPUpIEUjl53 dTMk/IyhO7HxcHoKGUXMh5zAbiH1wRAYvqpjMmZiqkIfqc5uVpiSceNVAdEvVfmI oiZdRFq/+vCp/Ydqp6HG9xVLthE= -----END CERTIFICATE-----Generated at Mon May 20 17:23:14 2024 by rpki-client on console-ams.rpki-client.org