$ rpki-client -vvf rpki.apnic.net/member_repository/A9156021/D98761D4692E11E388C8252E5911EA32/5B102332845711EEB3DC4A5EC4F9AE02.roa File: 5B102332845711EEB3DC4A5EC4F9AE02.roa (raw, json) Hash identifier: 2dhOoogqsGMcb3UWzSv3/UObiADQhWvZAnQF3lZBRxw= Subject key identifier: 20:82:47:7E:AD:86:48:45:E9:69:EF:22:94:99:42:9D:06:91:05:BD Certificate issuer: /CN=A9156021/serialNumber=AA4C9B7FFB7760D134DA34FA31129DE11A1DE2AE Certificate serial: 2CFB Authority key identifier: AA:4C:9B:7F:FB:77:60:D1:34:DA:34:FA:31:12:9D:E1:1A:1D:E2:AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkybf_t3YNE02jT6MRKd4Rod4q4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156021/D98761D4692E11E388C8252E5911EA32/5B102332845711EEB3DC4A5EC4F9AE02.roa Signing time: Wed 10 Jan 2024 15:52:04 +0000 ROA not before: Wed 10 Jan 2024 15:52:04 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 133201 IP address blocks: 103.255.44.0/22 maxlen: 22 103.255.44.0/24 maxlen: 24 103.255.45.0/24 maxlen: 24 103.255.46.0/24 maxlen: 24 103.255.47.0/24 maxlen: 24 202.61.84.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156021/D98761D4692E11E388C8252E5911EA32/qkybf_t3YNE02jT6MRKd4Rod4q4.crl rsync://rpki.apnic.net/member_repository/A9156021/D98761D4692E11E388C8252E5911EA32/qkybf_t3YNE02jT6MRKd4Rod4q4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkybf_t3YNE02jT6MRKd4Rod4q4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 15:46:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11515 (0x2cfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156021/serialNumber=AA4C9B7FFB7760D134DA34FA31129DE11A1DE2AE Validity Not Before: Jan 10 15:52:04 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=659ebd24-f300 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:fa:b0:d6:ed:08:d8:1b:c0:0e:68:6c:a9:29: 5b:38:b7:bc:39:bf:00:aa:8c:8b:70:1d:70:80:57: 03:f9:e9:4a:60:f9:3a:39:4f:b8:c5:68:66:2e:63: c0:ed:97:11:5c:1f:b6:9e:4c:38:eb:7a:64:28:b9: 59:db:0a:93:6f:e4:91:45:5e:c7:1b:c9:c7:db:3b: 7a:84:4e:2f:07:64:d7:d3:30:95:6c:c6:20:a8:e0: 48:bd:fb:19:97:6c:0c:9a:3d:3c:c3:e8:3b:0a:7d: f8:a2:1a:cb:b5:da:5f:ae:86:bc:f5:37:b9:70:53: 48:22:81:cf:17:b9:8a:22:7a:c0:11:d8:44:bf:97: dd:32:6f:f2:80:80:2e:94:05:14:a2:67:4a:d2:ef: d3:49:38:6c:89:c6:21:de:ed:03:5f:37:4d:10:21: 44:e9:d2:a5:95:91:56:77:60:df:e2:b9:65:c4:6e: 74:c5:82:eb:fd:69:22:12:89:df:a4:37:41:74:2f: 60:59:ff:4f:12:43:7f:49:47:34:33:8f:43:28:6a: be:47:99:a9:9e:2e:ac:f9:b9:83:3d:6c:33:3e:4a: 1f:b1:10:e0:a5:b2:3c:2f:f6:bd:3d:a1:69:87:d7: a2:44:cd:fb:23:12:d6:b5:22:d4:09:a7:d0:1a:eb: cb:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:82:47:7E:AD:86:48:45:E9:69:EF:22:94:99:42:9D:06:91:05:BD X509v3 Authority Key Identifier: keyid:AA:4C:9B:7F:FB:77:60:D1:34:DA:34:FA:31:12:9D:E1:1A:1D:E2:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156021/D98761D4692E11E388C8252E5911EA32/qkybf_t3YNE02jT6MRKd4Rod4q4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkybf_t3YNE02jT6MRKd4Rod4q4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156021/D98761D4692E11E388C8252E5911EA32/5B102332845711EEB3DC4A5EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.44.0/22 202.61.84.0/22 Signature Algorithm: sha256WithRSAEncryption 31:d7:fb:87:d3:a1:23:d0:04:a4:24:6d:b1:49:73:73:24:24: 04:4a:33:2f:cb:87:48:c8:62:c4:ff:92:cf:e2:28:01:81:21: f0:90:36:68:a6:bd:b2:5c:b3:49:e6:f7:34:5f:2c:2a:0f:9e: 04:c4:46:22:9d:03:1a:c2:95:99:9c:01:be:91:2f:da:5e:a7: 3e:c5:8f:29:95:36:17:04:76:e3:4c:f6:36:eb:b1:0f:88:84: ea:be:64:e7:28:c1:cf:b3:0b:11:89:49:88:57:fd:7a:73:3d: 53:c4:c1:53:b4:0c:cb:95:30:ee:15:ca:9c:75:61:22:ae:f9: ae:2a:87:65:a5:64:b1:9b:9b:3b:53:8d:05:9c:84:2a:c9:d9: d7:74:54:49:fd:c0:94:d3:ac:1f:ea:2c:5d:80:93:bb:de:6e: 3b:80:a8:d4:0b:c2:04:96:d5:ce:ed:8b:47:a6:ad:0c:3e:42: 8a:a1:f5:ed:b5:dc:7e:d2:d3:a7:6f:3e:92:a4:56:90:e9:91: eb:e1:71:4b:e5:87:4f:78:77:b9:65:06:f2:1e:05:5d:5a:48: b7:e7:0a:a2:26:b2:64:e7:7c:6d:0d:75:09:4a:eb:2c:c3:f6: 9d:df:6d:cd:9d:ea:e5:d9:04:36:b4:25:8c:77:68:1b:d2:a9: 70:23:fa:50 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICLPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYwMjExMTAvBgNVBAUTKEFBNEM5QjdGRkI3NzYwRDEzNERBMzRGQTMxMTI5REUx MUExREUyQUUwHhcNMjQwMTEwMTU1MjA0WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTllYmQyNC1mMzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1vqw1u0I2BvADmhsqSlbOLe8Ob8AqoyLcB1wgFcD+elKYPk6OU+4xWhmLmPA 7ZcRXB+2nkw463pkKLlZ2wqTb+SRRV7HG8nH2zt6hE4vB2TX0zCVbMYgqOBIvfsZ l2wMmj08w+g7Cn34ohrLtdpfroa89Te5cFNIIoHPF7mKInrAEdhEv5fdMm/ygIAu lAUUomdK0u/TSThsicYh3u0DXzdNECFE6dKllZFWd2Df4rllxG50xYLr/WkiEonf pDdBdC9gWf9PEkN/SUc0M49DKGq+R5mpni6s+bmDPWwzPkofsRDgpbI8L/a9PaFp h9eiRM37IxLWtSLUCafQGuvL2wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCCCR36t hkhF6WnvIpSZQp0GkQW9MB8GA1UdIwQYMBaAFKpMm3/7d2DRNNo0+jESneEaHeKu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjAyMS9EOTg3NjFENDY5 MkUxMUUzODhDODI1MkU1OTExRUEzMi9xa3liZl90M1lORTAyalQ2TVJLZDRSb2Q0 cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FreWJmX3QzWU5FMDJqVDZNUktkNFJvZDRxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTYwMjEvRDk4NzYxRDQ2OTJFMTFFMzg4QzgyNTJFNTkxMUVBMzIvNUIxMDIzMzI4 NDU3MTFFRUIzREM0QTVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn/ywDBALKPVQwDQYJKoZIhvcNAQELBQADggEBADHX+4fT oSPQBKQkbbFJc3MkJARKMy/Lh0jIYsT/ks/iKAGBIfCQNmimvbJcs0nm9zRfLCoP ngTERiKdAxrClZmcAb6RL9pepz7FjymVNhcEduNM9jbrsQ+IhOq+ZOcowc+zCxGJ SYhX/XpzPVPEwVO0DMuVMO4Vypx1YSKu+a4qh2WlZLGbmztTjQWchCrJ2dd0VEn9 wJTTrB/qLF2Ak7vebjuAqNQLwgSW1c7ti0emrQw+Qoqh9e213H7S06dvPpKkVpDp kevhcUvlh094d7llBvIeBV1aSLfnCqImsmTnfG0NdQlK6yzD9p3fbc2d6uXZBDa0 JYx3aBvSqXAj+lA= -----END CERTIFICATE-----Generated at Thu May 2 17:18:28 2024 by rpki-client on console-ams.rpki-client.org