$ rpki-client -vvf rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/1E69B82CAD5311EBA93CEB69C4F9AE02.roa File: 1E69B82CAD5311EBA93CEB69C4F9AE02.roa (raw, json) Hash identifier: n7GugqZc6lCW1P+9Zs/i+8alh8fvUnkW70Vuh3B/7tA= Subject key identifier: B5:E2:A4:6F:20:03:FB:EB:77:A3:76:32:C8:E9:91:9E:32:EF:2A:0A Certificate issuer: /CN=A9157BF7/serialNumber=9B4601B6B0B78FB8FE9E39334A81B5A5DD595629 Certificate serial: 06A3 Authority key identifier: 9B:46:01:B6:B0:B7:8F:B8:FE:9E:39:33:4A:81:B5:A5:DD:59:56:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m0YBtrC3j7j-njkzSoG1pd1ZVik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/1E69B82CAD5311EBA93CEB69C4F9AE02.roa Signing time: Fri 20 Oct 2023 22:10:34 +0000 ROA not before: Fri 20 Oct 2023 22:10:34 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 135386 IP address blocks: 103.155.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/m0YBtrC3j7j-njkzSoG1pd1ZVik.crl rsync://rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/m0YBtrC3j7j-njkzSoG1pd1ZVik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m0YBtrC3j7j-njkzSoG1pd1ZVik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 21:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1699 (0x6a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157BF7/serialNumber=9B4601B6B0B78FB8FE9E39334A81B5A5DD595629 Validity Not Before: Oct 20 22:10:34 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6532fada-ec70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d9:a8:56:b0:c9:f0:30:cd:95:5c:b3:46:9f: 7a:1d:15:8c:96:86:0e:61:c3:77:b7:c9:1d:3c:60: 8d:de:12:48:27:4a:59:c7:82:84:6f:7f:d4:27:7d: 58:b5:8c:53:90:2c:90:01:52:c5:72:8c:9c:b9:b8: 5d:e6:3b:ea:04:2f:95:05:19:6b:7f:d7:ed:de:2c: 8e:87:5b:e1:2d:ef:2f:68:5c:da:a9:04:61:37:df: b0:f8:37:72:45:fb:f3:96:53:03:3c:10:b0:4e:f3: da:e3:2b:8a:f7:da:08:bb:d0:ed:60:e8:5c:c0:27: f6:bd:fd:1c:ff:96:68:4a:f4:80:aa:c5:b7:74:1d: e9:41:2e:8e:e7:21:6a:dc:bf:26:d9:b2:f8:a8:e2: 03:2c:6e:1f:67:82:19:84:07:c0:77:6a:0f:90:69: 12:dd:eb:a2:83:be:45:f2:45:c1:a3:8c:bd:01:40: 8a:d1:f0:3c:70:28:86:65:9c:ff:ed:ac:72:f8:65: a3:12:db:6b:d5:40:6f:f9:5c:97:d4:07:1d:69:b3: 16:c9:a0:59:f7:9d:e8:8a:d0:f6:aa:6b:2c:b9:59: e3:19:85:68:7d:a4:6b:30:94:27:e9:90:1d:41:e6: 43:a9:78:4c:38:74:80:29:85:8f:20:1e:30:fb:a3: b2:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:E2:A4:6F:20:03:FB:EB:77:A3:76:32:C8:E9:91:9E:32:EF:2A:0A X509v3 Authority Key Identifier: keyid:9B:46:01:B6:B0:B7:8F:B8:FE:9E:39:33:4A:81:B5:A5:DD:59:56:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/m0YBtrC3j7j-njkzSoG1pd1ZVik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m0YBtrC3j7j-njkzSoG1pd1ZVik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/1E69B82CAD5311EBA93CEB69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.120.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:42:ed:7f:fa:c2:ec:05:91:3a:38:79:51:6e:b7:f4:1d:fb: 59:42:08:ae:9d:4c:f3:41:ca:b6:e8:dc:20:d9:57:6b:18:c9: e1:cc:99:4a:82:c7:5d:23:43:6e:71:f3:f1:d0:0a:85:6c:7b: 96:8c:e5:06:26:dc:f1:01:ad:db:56:8f:5b:de:41:5d:2d:66: 16:9c:82:62:91:6a:f6:4c:f7:37:e7:d1:2f:33:4d:94:96:60: fe:db:3d:23:17:98:60:0d:b2:42:6e:9b:88:7b:8a:2b:a1:1f: c0:14:87:ea:61:36:4f:7c:29:8a:a1:a7:bb:ea:c0:63:fa:b2: b8:ef:24:68:4a:66:4a:5e:7b:bf:e6:4f:dd:cc:10:7f:ed:e1: 15:07:eb:e1:1e:7b:cf:69:ef:2b:27:bc:e0:5e:19:04:ce:d2: 30:a3:1a:a8:db:81:6e:02:20:79:12:b2:d7:cd:d1:5d:85:c9: 41:ad:29:b1:29:03:5f:7b:c1:56:d8:93:e5:4a:e6:1e:dd:be: 0a:a8:38:30:3f:41:4a:18:e5:af:fe:43:e5:69:e9:36:77:d8: 5b:b9:9d:7f:7d:3b:d2:ca:ca:4f:d6:48:9a:09:6c:e7:3d:a0: ea:c1:7c:10:9c:d5:51:98:f5:ba:98:9b:d3:48:59:bd:63:69: b6:4b:c0:f0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCRjcxMTAvBgNVBAUTKDlCNDYwMUI2QjBCNzhGQjhGRTlFMzkzMzRBODFCNUE1 REQ1OTU2MjkwHhcNMjMxMDIwMjIxMDM0WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTMyZmFkYS1lYzcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3tmoVrDJ8DDNlVyzRp96HRWMloYOYcN3t8kdPGCN3hJIJ0pZx4KEb3/UJ31Y tYxTkCyQAVLFcoycubhd5jvqBC+VBRlrf9ft3iyOh1vhLe8vaFzaqQRhN9+w+Ddy RfvzllMDPBCwTvPa4yuK99oIu9DtYOhcwCf2vf0c/5ZoSvSAqsW3dB3pQS6O5yFq 3L8m2bL4qOIDLG4fZ4IZhAfAd2oPkGkS3euig75F8kXBo4y9AUCK0fA8cCiGZZz/ 7axy+GWjEttr1UBv+VyX1AcdabMWyaBZ953oitD2qmssuVnjGYVofaRrMJQn6ZAd QeZDqXhMOHSAKYWPIB4w+6OykwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLXipG8g A/vrd6N2MsjpkZ4y7yoKMB8GA1UdIwQYMBaAFJtGAbawt4+4/p45M0qBtaXdWVYp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0JGNy9BRDJBQzcyRUZC RUExMUVBQTBBQzMzMUFDNEY5QUUwMi9tMFlCdHJDM2o3ai1uamt6U29HMXBkMVpW aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20wWUJ0ckMzajdqLW5qa3pTb0cxcGQxWlZpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdCRjcvQUQyQUM3MkVGQkVBMTFFQUEwQUMzMzFBQzRGOUFFMDIvMUU2OUI4MkNB RDUzMTFFQkE5M0NFQjY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnm3gwDQYJKoZIhvcNAQELBQADggEBAFtC7X/6wuwFkTo4 eVFut/Qd+1lCCK6dTPNByrbo3CDZV2sYyeHMmUqCx10jQ25x8/HQCoVse5aM5QYm 3PEBrdtWj1veQV0tZhacgmKRavZM9zfn0S8zTZSWYP7bPSMXmGANskJum4h7iiuh H8AUh+phNk98KYqhp7vqwGP6srjvJGhKZkpee7/mT93MEH/t4RUH6+Eee89p7ysn vOBeGQTO0jCjGqjbgW4CIHkSstfN0V2FyUGtKbEpA197wVbYk+VK5h7dvgqoODA/ QUoY5a/+Q+Vp6TZ32Fu5nX99O9LKyk/WSJoJbOc9oOrBfBCc1VGY9bqYm9NIWb1j abZLwPA= -----END CERTIFICATE-----Generated at Wed Apr 24 23:34:25 2024 by rpki-client on console-ams.rpki-client.org