$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/AE27A8A671B311EBB90BB364C4F9AE02.roa File: AE27A8A671B311EBB90BB364C4F9AE02.roa (raw, json) Hash identifier: YpKPPRjvZay6AfBO/f+Z23/o4Pt74yWgYQZvoPLBwlY= Subject key identifier: 08:F7:EE:92:AA:50:FC:F2:AD:7A:8B:44:E4:59:42:41:B1:C9:67:87 Certificate issuer: /CN=A9157B7F/serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Certificate serial: 0574 Authority key identifier: 34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/AE27A8A671B311EBB90BB364C4F9AE02.roa Signing time: Sat 18 Nov 2023 23:41:36 +0000 ROA not before: Sat 18 Nov 2023 23:41:36 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 137978 IP address blocks: 103.158.198.0/23 maxlen: 23 103.158.198.0/24 maxlen: 24 103.158.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1396 (0x574) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B7F/serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Validity Not Before: Nov 18 23:41:36 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65594baf-0bcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:31:50:e9:48:5f:ff:ee:57:ef:6c:ad:93:1e: 91:77:2c:fb:ba:f6:4f:bc:02:69:66:11:53:6c:e0: 05:c1:18:89:c0:d1:93:61:32:4e:db:c2:b6:e4:4d: 4a:37:d4:c5:3e:b5:7e:06:7d:7b:db:2e:a7:74:fc: ff:71:ac:4f:e8:14:5a:ac:20:ab:db:ea:b3:00:a4: 8a:1f:54:44:61:f6:b8:56:d5:3c:ee:16:b1:e8:b6: 18:76:fb:6e:77:19:b2:48:ab:29:70:dd:0e:65:e6: b6:56:31:64:b8:f6:5f:7e:f5:72:2b:b7:14:9a:68: 3f:db:a7:27:64:70:0d:69:98:ee:75:a7:1f:4f:eb: f3:f4:4a:e6:fe:67:96:30:5a:54:24:84:0b:ff:c1: 82:42:a1:13:38:d6:63:ea:26:76:90:c6:dd:d3:e4: 5b:f9:b5:8c:e1:69:39:35:b6:00:dd:17:90:3c:29: 29:57:7f:2d:20:2f:65:88:a2:1f:33:08:dc:b1:35: 44:5d:72:9a:37:bc:6b:7a:63:4f:76:ea:c3:f0:d6: 0f:4d:e9:4a:66:77:74:f1:71:2f:40:38:7a:98:42: be:15:53:10:f0:07:1a:14:44:59:d2:76:aa:24:bb: dd:07:c0:88:53:fe:cb:be:b2:b3:61:b8:b4:84:9a: 6b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:F7:EE:92:AA:50:FC:F2:AD:7A:8B:44:E4:59:42:41:B1:C9:67:87 X509v3 Authority Key Identifier: keyid:34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/AE27A8A671B311EBB90BB364C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.198.0/23 Signature Algorithm: sha256WithRSAEncryption a4:d4:8c:a6:a5:fa:71:2d:d5:8c:40:bc:cd:c6:c7:c6:1a:fd: ac:8c:77:dc:f1:5b:57:91:2d:7b:c5:10:80:d2:7f:4b:31:93: c8:d5:e7:b3:8f:2a:47:81:f6:ac:89:a1:24:51:a8:fb:a4:63: 8d:9b:40:a3:90:47:14:0a:d0:60:96:6f:b2:3c:3a:b6:8c:a8: 40:e0:58:32:d6:2d:5a:72:1b:a0:bd:17:74:ab:b6:14:0d:57: 3f:da:d4:31:67:91:d4:35:01:12:93:2a:28:0e:05:f9:54:ff: cf:ad:63:98:f1:f5:c5:83:ff:23:a3:0a:ef:7c:3e:69:99:48: 6b:c5:03:b6:ea:f3:b8:d8:fc:d4:42:89:b8:16:38:ae:59:4b: de:41:82:0a:6b:06:d9:eb:e0:10:56:69:3a:ac:59:ce:2c:93: 06:c5:34:00:cb:78:1a:b0:97:ab:7a:be:b8:f7:43:ee:4d:c2: 96:ed:5b:f1:24:41:29:98:0b:c5:68:4a:8a:84:68:ca:34:fa: fa:ba:d1:7d:5e:a2:8a:0e:d4:cd:bc:c4:af:73:34:da:32:90: bb:ef:7e:55:99:cd:07:51:ce:14:23:fb:2c:f6:01:50:c3:14: 3c:43:34:86:d1:e5:55:c2:43:91:46:15:0d:a1:14:1c:e0:3a: f7:02:08:cc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCN0YxMTAvBgNVBAUTKDM0RENGNDcyOUY0NTgyNjI4ODhFRjA3QTJCRDQ2NzVG NkUzMTEzODAwHhcNMjMxMTE4MjM0MTM2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTU5NGJhZi0wYmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuDFQ6Uhf/+5X72ytkx6Rdyz7uvZPvAJpZhFTbOAFwRiJwNGTYTJO28K25E1K N9TFPrV+Bn172y6ndPz/caxP6BRarCCr2+qzAKSKH1REYfa4VtU87hax6LYYdvtu dxmySKspcN0OZea2VjFkuPZffvVyK7cUmmg/26cnZHANaZjudacfT+vz9Erm/meW MFpUJIQL/8GCQqETONZj6iZ2kMbd0+Rb+bWM4Wk5NbYA3ReQPCkpV38tIC9liKIf MwjcsTVEXXKaN7xremNPdurD8NYPTelKZnd08XEvQDh6mEK+FVMQ8AcaFERZ0naq JLvdB8CIU/7LvrKzYbi0hJprDwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAj37pKq UPzyrXqLRORZQkGxyWeHMB8GA1UdIwQYMBaAFDTc9HKfRYJiiI7weivUZ19uMROA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I3Ri8zN0I4MkM1MDcx QjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5RmdtS0lqdkI2SzlSblgyNHhF NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OejBjcDlGZ21LSWp2QjZLOVJuWDI0eEU0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdCN0YvMzdCODJDNTA3MUIyMTFFQkI0NEE4NDYzQzRGOUFFMDIvQUUyN0E4QTY3 MUIzMTFFQkI5MEJCMzY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnnsYwDQYJKoZIhvcNAQELBQADggEBAKTUjKal+nEt1YxA vM3Gx8Ya/ayMd9zxW1eRLXvFEIDSf0sxk8jV57OPKkeB9qyJoSRRqPukY42bQKOQ RxQK0GCWb7I8OraMqEDgWDLWLVpyG6C9F3SrthQNVz/a1DFnkdQ1ARKTKigOBflU /8+tY5jx9cWD/yOjCu98PmmZSGvFA7bq87jY/NRCibgWOK5ZS95BggprBtnr4BBW aTqsWc4skwbFNADLeBqwl6t6vrj3Q+5NwpbtW/EkQSmYC8VoSoqEaMo0+vq60X1e oooO1M28xK9zNNoykLvvflWZzQdRzhQj+yz2AVDDFDxDNIbR5VXCQ5FGFQ2hFBzg OvcCCMw= -----END CERTIFICATE-----Generated at Sun May 19 01:47:13 2024 by rpki-client on console-ams.rpki-client.org