$ rpki-client -vvf rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/1DC10D94AD5311EBA93CEB69C4F9AE02.roa File: 1DC10D94AD5311EBA93CEB69C4F9AE02.roa (raw, json) Hash identifier: xDIcHShdwoZDTNrQIz/TpvtSpZFRPeZd6r7ws3r0B7Y= Subject key identifier: E3:EE:3C:E1:5C:FD:0A:39:C0:3B:88:7D:AC:C6:56:4E:8D:2D:38:67 Certificate issuer: /CN=A9157BF7/serialNumber=9B4601B6B0B78FB8FE9E39334A81B5A5DD595629 Certificate serial: 06A2 Authority key identifier: 9B:46:01:B6:B0:B7:8F:B8:FE:9E:39:33:4A:81:B5:A5:DD:59:56:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m0YBtrC3j7j-njkzSoG1pd1ZVik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/1DC10D94AD5311EBA93CEB69C4F9AE02.roa Signing time: Fri 20 Oct 2023 22:10:33 +0000 ROA not before: Fri 20 Oct 2023 22:10:33 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 132825 IP address blocks: 103.155.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/m0YBtrC3j7j-njkzSoG1pd1ZVik.crl rsync://rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/m0YBtrC3j7j-njkzSoG1pd1ZVik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m0YBtrC3j7j-njkzSoG1pd1ZVik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1698 (0x6a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157BF7/serialNumber=9B4601B6B0B78FB8FE9E39334A81B5A5DD595629 Validity Not Before: Oct 20 22:10:33 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6532fad8-2e4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:03:4d:55:a4:97:ca:4f:e7:fe:25:41:15:45: 5f:1a:48:34:b1:db:12:34:b8:e4:e4:d3:cd:54:d8: 17:d9:e1:2b:ba:49:a2:e1:89:aa:87:88:e7:2f:b1: f9:63:d1:d3:5a:20:50:20:4c:3b:9f:ce:39:4a:0c: 01:aa:7a:ef:f3:54:a7:78:01:4e:42:05:49:4d:79: f7:1c:73:80:e8:b9:de:7e:10:50:3d:af:0c:62:49: 08:76:3d:2e:31:59:bb:64:75:9b:83:fe:ab:f9:12: b2:19:9e:05:f5:ee:f6:9b:a6:0a:79:31:ce:a9:21: 88:fc:a5:9b:74:58:e6:5d:da:0f:1a:74:f8:04:cc: 2f:3b:64:f7:6d:53:42:81:af:bc:5f:6c:12:2a:21: dd:36:1f:e9:02:1f:31:96:41:1e:0e:8f:6e:90:03: 5d:72:47:c9:19:d3:90:f8:48:ad:d3:68:f3:38:53: bd:37:a7:f9:f8:d7:fd:02:ca:a4:d4:80:07:19:92: e4:81:50:ef:3f:64:7e:99:0f:d0:ba:e8:4f:8c:06: 3d:ad:49:d3:37:05:c5:47:2f:97:a4:24:b4:00:3b: 9a:cd:cd:fd:f8:b4:ee:b9:c1:a3:77:00:4d:4b:39: 9d:d9:7c:e6:33:c4:a1:c4:5d:27:70:73:5e:9f:57: 94:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:EE:3C:E1:5C:FD:0A:39:C0:3B:88:7D:AC:C6:56:4E:8D:2D:38:67 X509v3 Authority Key Identifier: keyid:9B:46:01:B6:B0:B7:8F:B8:FE:9E:39:33:4A:81:B5:A5:DD:59:56:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/m0YBtrC3j7j-njkzSoG1pd1ZVik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m0YBtrC3j7j-njkzSoG1pd1ZVik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/1DC10D94AD5311EBA93CEB69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.120.0/23 Signature Algorithm: sha256WithRSAEncryption 83:58:a8:42:f6:30:d2:d6:b7:cf:b7:bc:ed:5c:18:6c:27:7b: 7d:8a:b2:0b:40:6d:99:fb:81:dd:9c:67:d6:22:88:d5:15:79: b3:9f:26:32:fb:c0:52:ca:26:05:e8:cd:11:82:35:72:c9:2d: d9:26:c7:ee:fb:fe:33:a8:9b:00:57:4a:92:af:0c:f7:45:9f: bc:26:fe:f4:74:8d:97:a0:77:6a:07:cf:c5:5f:d7:87:74:59: b9:16:35:2a:4b:2e:26:49:65:b2:ff:ea:57:57:63:fb:d3:a1: 99:ff:ad:86:7e:9f:39:12:a5:b5:bd:e3:a2:09:e5:0d:94:ae: a1:33:79:72:94:9a:3d:d0:9a:6e:10:9c:29:74:f5:98:98:cc: 6a:a6:ee:22:18:70:a8:45:3a:85:e7:78:31:c5:05:e1:a3:ba: 02:55:7c:c1:7e:7d:ef:b5:d3:ef:cc:e9:46:01:87:b6:5e:d8: 49:72:2b:f7:70:80:af:5a:2b:ab:ba:13:d4:ae:93:03:14:cf: a4:42:75:1c:2d:e8:6c:66:68:86:4d:13:ec:57:b1:87:23:4f: 86:0c:66:93:52:60:03:5e:a2:50:63:76:fc:80:2f:24:05:3f: 9d:57:13:7d:9c:67:13:59:d2:07:30:a0:11:51:a5:79:25:54: b9:16:49:17 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCRjcxMTAvBgNVBAUTKDlCNDYwMUI2QjBCNzhGQjhGRTlFMzkzMzRBODFCNUE1 REQ1OTU2MjkwHhcNMjMxMDIwMjIxMDMzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTMyZmFkOC0yZTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2gNNVaSXyk/n/iVBFUVfGkg0sdsSNLjk5NPNVNgX2eErukmi4Ymqh4jnL7H5 Y9HTWiBQIEw7n845SgwBqnrv81SneAFOQgVJTXn3HHOA6LnefhBQPa8MYkkIdj0u MVm7ZHWbg/6r+RKyGZ4F9e72m6YKeTHOqSGI/KWbdFjmXdoPGnT4BMwvO2T3bVNC ga+8X2wSKiHdNh/pAh8xlkEeDo9ukANdckfJGdOQ+Eit02jzOFO9N6f5+Nf9Asqk 1IAHGZLkgVDvP2R+mQ/QuuhPjAY9rUnTNwXFRy+XpCS0ADuazc39+LTuucGjdwBN Szmd2XzmM8ShxF0ncHNen1eUwwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOPuPOFc /Qo5wDuIfazGVk6NLThnMB8GA1UdIwQYMBaAFJtGAbawt4+4/p45M0qBtaXdWVYp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0JGNy9BRDJBQzcyRUZC RUExMUVBQTBBQzMzMUFDNEY5QUUwMi9tMFlCdHJDM2o3ai1uamt6U29HMXBkMVpW aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20wWUJ0ckMzajdqLW5qa3pTb0cxcGQxWlZpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdCRjcvQUQyQUM3MkVGQkVBMTFFQUEwQUMzMzFBQzRGOUFFMDIvMURDMTBEOTRB RDUzMTFFQkE5M0NFQjY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnm3gwDQYJKoZIhvcNAQELBQADggEBAINYqEL2MNLWt8+3 vO1cGGwne32KsgtAbZn7gd2cZ9YiiNUVebOfJjL7wFLKJgXozRGCNXLJLdkmx+77 /jOomwBXSpKvDPdFn7wm/vR0jZegd2oHz8Vf14d0WbkWNSpLLiZJZbL/6ldXY/vT oZn/rYZ+nzkSpbW946IJ5Q2UrqEzeXKUmj3Qmm4QnCl09ZiYzGqm7iIYcKhFOoXn eDHFBeGjugJVfMF+fe+10+/M6UYBh7Ze2ElyK/dwgK9aK6u6E9SukwMUz6RCdRwt 6GxmaIZNE+xXsYcjT4YMZpNSYANeolBjdvyALyQFP51XE32cZxNZ0gcwoBFRpXkl VLkWSRc= -----END CERTIFICATE-----Generated at Sun May 5 00:14:42 2024 by rpki-client on console-ams.rpki-client.org