$ rpki-client -vvf rpki.apnic.net/member_repository/A915568B/1F7B1D08C38D11EDA7E1CA64C4F9AE02/4FD4AF70C39511ED99703D2AC4F9AE02.roa File: 4FD4AF70C39511ED99703D2AC4F9AE02.roa (raw, json) Hash identifier: yVDFnQt9cf/d3+ksneSwJXDPRru2sbLDqWqSJrBgk6w= Subject key identifier: 47:FA:12:F6:06:DF:0F:12:A6:4B:4E:A0:13:47:75:35:C8:0A:D1:88 Certificate issuer: /CN=A915568B/serialNumber=B5E9DDC6BF09F89458556087442D948C44034530 Certificate serial: 6D Authority key identifier: B5:E9:DD:C6:BF:09:F8:94:58:55:60:87:44:2D:94:8C:44:03:45:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tendxr8J-JRYVWCHRC2UjEQDRTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915568B/1F7B1D08C38D11EDA7E1CA64C4F9AE02/4FD4AF70C39511ED99703D2AC4F9AE02.roa Signing time: Fri 29 Sep 2023 04:45:23 +0000 ROA not before: Fri 29 Sep 2023 04:45:23 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 150287 IP address blocks: 103.41.168.0/24 maxlen: 24 103.74.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915568B/1F7B1D08C38D11EDA7E1CA64C4F9AE02/tendxr8J-JRYVWCHRC2UjEQDRTA.crl rsync://rpki.apnic.net/member_repository/A915568B/1F7B1D08C38D11EDA7E1CA64C4F9AE02/tendxr8J-JRYVWCHRC2UjEQDRTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tendxr8J-JRYVWCHRC2UjEQDRTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 05:34:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915568B/serialNumber=B5E9DDC6BF09F89458556087442D948C44034530 Validity Not Before: Sep 29 04:45:23 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65165663-96bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2d:4e:98:6e:3c:4b:09:c2:b7:77:61:4f:e0: 72:02:e4:ce:cc:d4:3d:37:fa:01:59:20:59:3b:6e: 3d:55:c9:29:39:80:98:62:ec:3a:bd:b1:92:20:de: 78:4b:49:86:2f:46:28:79:12:7d:93:3a:29:b8:8a: ce:83:6e:37:45:c2:d9:ac:1e:b6:7c:bf:3f:79:01: de:66:3e:a9:37:e4:89:32:a8:a9:7c:29:16:24:3d: 23:66:1f:df:41:d1:af:b1:c2:84:d4:9b:12:b0:e3: 7d:8e:08:29:2e:e0:9b:b4:50:c9:07:52:88:0c:95: 3f:da:9b:d0:c3:f9:3a:ea:09:28:bb:af:b1:7c:54: 75:0b:45:fe:08:bb:60:e9:c6:c9:cd:c8:80:11:b0: 26:02:dd:55:36:25:60:b6:52:7e:c2:38:86:3b:0e: 38:34:76:3f:1e:8a:ba:f7:a9:cd:bb:40:5b:22:f8: bf:65:bd:02:03:d6:94:56:4e:bd:80:f5:fd:38:bc: 7d:fc:7e:b4:70:e9:ef:da:aa:d2:91:69:d5:cf:f2: 31:17:51:1d:4a:3a:08:f9:77:ac:01:d1:34:96:fb: cf:9b:9d:08:6d:21:96:68:36:f5:53:ac:95:e5:b6: 2f:38:a3:8a:7f:d2:c2:29:50:88:89:06:16:81:c3: 9e:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:FA:12:F6:06:DF:0F:12:A6:4B:4E:A0:13:47:75:35:C8:0A:D1:88 X509v3 Authority Key Identifier: keyid:B5:E9:DD:C6:BF:09:F8:94:58:55:60:87:44:2D:94:8C:44:03:45:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915568B/1F7B1D08C38D11EDA7E1CA64C4F9AE02/tendxr8J-JRYVWCHRC2UjEQDRTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tendxr8J-JRYVWCHRC2UjEQDRTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915568B/1F7B1D08C38D11EDA7E1CA64C4F9AE02/4FD4AF70C39511ED99703D2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.41.168.0/24 103.74.225.0/24 Signature Algorithm: sha256WithRSAEncryption 07:26:31:bd:04:d2:ee:3c:36:b8:92:3c:03:b0:3d:58:b4:2f: 53:0a:aa:c6:96:09:19:62:9c:44:03:b5:ee:64:9b:4b:ed:cb: 11:8a:c5:9c:21:43:06:ec:f4:16:61:88:56:0f:7f:bc:29:af: ce:51:eb:8f:00:e5:95:72:ea:e2:cb:f3:59:72:8d:3b:4a:84: eb:39:fc:2d:a1:95:6a:1d:0e:96:61:7e:16:50:01:9b:3b:0e: fd:7d:da:14:e4:4f:86:f2:7b:e4:97:84:68:a3:51:f7:3b:8d: 87:1f:64:9b:9e:39:f3:c5:3a:3f:43:bb:32:7f:66:3d:20:41: 84:e7:5b:cd:dd:55:a2:95:f8:19:79:99:15:2c:a6:86:31:58: eb:16:f3:12:f1:ba:de:c3:2a:76:b7:23:98:1f:a4:45:80:9a: f6:c2:63:b8:f9:5c:cc:fd:76:94:fb:3a:5f:c9:d2:98:49:a9: e6:88:63:27:73:23:1c:b2:91:16:36:11:49:5f:26:f8:68:95: aa:41:87:92:56:e7:97:1d:ee:3b:20:e9:43:bd:fb:0f:d7:3d: 17:2a:ed:67:9f:b6:09:6c:60:4d:d4:5d:ad:dd:a6:48:26:88: cb:b0:08:cb:b0:5d:05:9b:1a:e1:7f:ad:1f:67:4e:53:7c:1d: ab:27:11:38 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NTY4QjExMC8GA1UEBRMoQjVFOUREQzZCRjA5Rjg5NDU4NTU2MDg3NDQyRDk0OEM0 NDAzNDUzMDAeFw0yMzA5MjkwNDQ1MjNaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MTY1NjYzLTk2YmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7LU6YbjxLCcK3d2FP4HIC5M7M1D03+gFZIFk7bj1VySk5gJhi7Dq9sZIg3nhL SYYvRih5En2TOim4is6DbjdFwtmsHrZ8vz95Ad5mPqk35IkyqKl8KRYkPSNmH99B 0a+xwoTUmxKw432OCCku4Ju0UMkHUogMlT/am9DD+TrqCSi7r7F8VHULRf4Iu2Dp xsnNyIARsCYC3VU2JWC2Un7COIY7Djg0dj8eirr3qc27QFsi+L9lvQID1pRWTr2A 9f04vH38frRw6e/aqtKRadXP8jEXUR1KOgj5d6wB0TSW+8+bnQhtIZZoNvVTrJXl ti84o4p/0sIpUIiJBhaBw55rAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUR/oS9gbf DxKmS06gE0d1NcgK0YgwHwYDVR0jBBgwFoAUtendxr8J+JRYVWCHRC2UjEQDRTAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1NjhCLzFGN0IxRDA4QzM4 RDExRURBN0UxQ0E2NEM0RjlBRTAyL3RlbmR4cjhKLUpSWVZXQ0hSQzJVakVRRFJU QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdGVuZHhyOEotSlJZVldDSFJDMlVqRVFEUlRBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTY4Qi8xRjdCMUQwOEMzOEQxMUVEQTdFMUNBNjRDNEY5QUUwMi80RkQ0QUY3MEMz OTUxMUVEOTk3MDNEMkFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAGcpqAMEAGdK4TANBgkqhkiG9w0BAQsFAAOCAQEAByYxvQTS 7jw2uJI8A7A9WLQvUwqqxpYJGWKcRAO17mSbS+3LEYrFnCFDBuz0FmGIVg9/vCmv zlHrjwDllXLq4svzWXKNO0qE6zn8LaGVah0OlmF+FlABmzsO/X3aFORPhvJ75JeE aKNR9zuNhx9km54588U6P0O7Mn9mPSBBhOdbzd1VopX4GXmZFSymhjFY6xbzEvG6 3sMqdrcjmB+kRYCa9sJjuPlczP12lPs6X8nSmEmp5ohjJ3MjHLKRFjYRSV8m+GiV qkGHklbnlx3uOyDpQ737D9c9FyrtZ5+2CWxgTdRdrd2mSCaIy7AIy7BdBZsa4X+t H2dOU3wdqycROA== -----END CERTIFICATE-----Generated at Fri May 17 06:46:22 2024 by rpki-client on console-ams.rpki-client.org