$ rpki-client -vvf rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/20BC506CAD5311EBA93CEB69C4F9AE02.roa File: 20BC506CAD5311EBA93CEB69C4F9AE02.roa (raw, json) Hash identifier: Ky6cRIIBW8pUzZxQNFdPjL5PJsGzyzEFO5GU0FDagn0= Subject key identifier: 9F:37:1B:36:C0:77:AB:00:12:36:A0:03:B9:87:9D:D7:5B:F7:D1:BF Certificate issuer: /CN=A9157BF7/serialNumber=9B4601B6B0B78FB8FE9E39334A81B5A5DD595629 Certificate serial: 06A8 Authority key identifier: 9B:46:01:B6:B0:B7:8F:B8:FE:9E:39:33:4A:81:B5:A5:DD:59:56:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m0YBtrC3j7j-njkzSoG1pd1ZVik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/20BC506CAD5311EBA93CEB69C4F9AE02.roa Signing time: Fri 20 Oct 2023 22:10:38 +0000 ROA not before: Fri 20 Oct 2023 22:10:38 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 18013 IP address blocks: 103.155.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/m0YBtrC3j7j-njkzSoG1pd1ZVik.crl rsync://rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/m0YBtrC3j7j-njkzSoG1pd1ZVik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m0YBtrC3j7j-njkzSoG1pd1ZVik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1704 (0x6a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157BF7/serialNumber=9B4601B6B0B78FB8FE9E39334A81B5A5DD595629 Validity Not Before: Oct 20 22:10:38 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6532fade-e540 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:a6:e7:a7:a3:23:d7:96:aa:ea:4b:ae:1d:9a: 10:b7:d4:8a:53:8d:e6:13:db:7e:d1:22:b6:be:52: d6:21:a2:5f:0c:94:09:cd:35:37:22:c8:9b:8f:c3: 21:90:8a:32:c2:9a:03:10:51:24:93:ea:22:06:dd: 9b:24:4b:ca:f4:42:13:40:cd:5c:4a:d9:b1:25:04: 81:a4:3a:5d:d7:3d:96:d9:2d:91:ef:b9:c4:f5:11: 03:c6:94:5f:89:de:41:f3:59:78:0a:4a:a7:b3:25: f3:c6:60:78:b8:14:61:13:f2:82:3b:5a:a2:f1:60: ed:25:4a:fc:c6:34:b8:cc:df:d2:b1:37:c7:0b:31: 1f:0b:0d:cc:20:64:69:4f:8a:16:61:70:bc:27:a9: 48:b8:45:17:01:c6:73:b0:74:6a:76:36:7e:6d:5c: 9a:b1:41:f5:70:17:d5:79:58:46:99:9b:20:56:b4: e7:8f:6c:1c:16:a9:2d:c0:1a:30:19:55:ee:eb:83: 4a:2f:d1:eb:2b:a5:06:9e:55:8b:fd:05:82:8f:ac: cd:7d:dd:c9:32:21:e2:07:2b:4d:05:20:f9:4e:6a: f7:fc:80:c3:06:c0:d1:52:81:f4:f4:27:65:75:d3: 7f:47:61:ee:96:23:5f:aa:d1:d9:a3:35:b8:d4:2a: 9b:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:37:1B:36:C0:77:AB:00:12:36:A0:03:B9:87:9D:D7:5B:F7:D1:BF X509v3 Authority Key Identifier: keyid:9B:46:01:B6:B0:B7:8F:B8:FE:9E:39:33:4A:81:B5:A5:DD:59:56:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/m0YBtrC3j7j-njkzSoG1pd1ZVik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m0YBtrC3j7j-njkzSoG1pd1ZVik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/20BC506CAD5311EBA93CEB69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.120.0/23 Signature Algorithm: sha256WithRSAEncryption 92:99:4c:b1:a7:a4:15:65:f3:5f:58:2b:2a:8e:fa:68:20:d7: 55:c4:77:25:1f:b7:4a:80:6f:36:32:e8:e0:b0:7a:ad:d8:fa: 39:6c:13:5f:f8:cc:94:6f:84:c6:9b:42:68:02:d7:69:84:7e: 42:61:3a:8b:51:22:58:28:8d:65:7c:21:16:a4:a2:c0:7a:20: 4a:2f:08:cd:c1:3b:a2:0d:a1:da:08:de:7c:19:f0:64:d1:a4: 45:17:e4:52:31:6f:b6:38:8b:ba:63:f7:5a:5c:a7:ca:4a:80: 92:93:a0:46:00:b7:d7:0b:da:b7:b5:57:f9:42:87:16:f8:86: 78:3d:55:a5:48:47:56:93:ae:dd:0a:7e:3f:db:5f:1b:d0:d3: e7:1e:32:d6:17:22:f6:1f:4e:b0:b1:a7:d9:81:db:2e:02:9a: 42:14:59:bd:e3:19:39:8d:e0:1a:b4:f7:03:98:d0:d0:30:c0: 1f:4e:9a:7f:77:bf:3d:db:c8:b6:a9:b4:4e:38:c3:3a:a5:3a: 9b:a4:bc:e2:d8:a2:40:b8:c5:0b:35:86:f8:10:fa:19:eb:93: 1b:2d:e7:e4:6e:dd:74:8f:5e:93:6d:26:2e:f8:30:47:c1:dc: 79:54:20:9c:db:52:af:32:de:7e:10:86:d5:22:c1:e3:f3:a4: 0a:7a:1e:69 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCRjcxMTAvBgNVBAUTKDlCNDYwMUI2QjBCNzhGQjhGRTlFMzkzMzRBODFCNUE1 REQ1OTU2MjkwHhcNMjMxMDIwMjIxMDM4WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTMyZmFkZS1lNTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm6bnp6Mj15aq6kuuHZoQt9SKU43mE9t+0SK2vlLWIaJfDJQJzTU3Isibj8Mh kIoywpoDEFEkk+oiBt2bJEvK9EITQM1cStmxJQSBpDpd1z2W2S2R77nE9REDxpRf id5B81l4CkqnsyXzxmB4uBRhE/KCO1qi8WDtJUr8xjS4zN/SsTfHCzEfCw3MIGRp T4oWYXC8J6lIuEUXAcZzsHRqdjZ+bVyasUH1cBfVeVhGmZsgVrTnj2wcFqktwBow GVXu64NKL9HrK6UGnlWL/QWCj6zNfd3JMiHiBytNBSD5Tmr3/IDDBsDRUoH09Cdl ddN/R2HuliNfqtHZozW41CqbjwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ83GzbA d6sAEjagA7mHnddb99G/MB8GA1UdIwQYMBaAFJtGAbawt4+4/p45M0qBtaXdWVYp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0JGNy9BRDJBQzcyRUZC RUExMUVBQTBBQzMzMUFDNEY5QUUwMi9tMFlCdHJDM2o3ai1uamt6U29HMXBkMVpW aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20wWUJ0ckMzajdqLW5qa3pTb0cxcGQxWlZpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdCRjcvQUQyQUM3MkVGQkVBMTFFQUEwQUMzMzFBQzRGOUFFMDIvMjBCQzUwNkNB RDUzMTFFQkE5M0NFQjY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnm3gwDQYJKoZIhvcNAQELBQADggEBAJKZTLGnpBVl819Y KyqO+mgg11XEdyUft0qAbzYy6OCweq3Y+jlsE1/4zJRvhMabQmgC12mEfkJhOotR IlgojWV8IRakosB6IEovCM3BO6INodoI3nwZ8GTRpEUX5FIxb7Y4i7pj91pcp8pK gJKToEYAt9cL2re1V/lChxb4hng9VaVIR1aTrt0Kfj/bXxvQ0+ceMtYXIvYfTrCx p9mB2y4CmkIUWb3jGTmN4Bq09wOY0NAwwB9Omn93vz3byLaptE44wzqlOpukvOLY okC4xQs1hvgQ+hnrkxst5+Ru3XSPXpNtJi74MEfB3HlUIJzbUq8y3n4QhtUiwePz pAp6Hmk= -----END CERTIFICATE-----Generated at Sun May 5 00:14:42 2024 by rpki-client on console-ams.rpki-client.org