$ rpki-client -vvf rpki.apnic.net/member_repository/A9159234/6A8E00EAEF8A11EBA2921764C4F9AE02/B58C9578378011ECA9E26B5AC4F9AE02.roa File: B58C9578378011ECA9E26B5AC4F9AE02.roa (raw, json) Hash identifier: 4giZe4BdmSO86LDGPNN2oY61CjO+HEWB2U/FYjuo9b8= Subject key identifier: C0:DB:F9:F9:C0:AD:10:09:87:51:0B:B9:35:EF:5C:DC:0D:E4:33:BB Certificate issuer: /CN=A9159234/serialNumber=C3DEC7FDDD45C9517260864FA9EEBCFE7B8BCF57 Certificate serial: 040F Authority key identifier: C3:DE:C7:FD:DD:45:C9:51:72:60:86:4F:A9:EE:BC:FE:7B:8B:CF:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w97H_d1FyVFyYIZPqe68_nuLz1c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159234/6A8E00EAEF8A11EBA2921764C4F9AE02/B58C9578378011ECA9E26B5AC4F9AE02.roa Signing time: Thu 03 Aug 2023 01:01:25 +0000 ROA not before: Thu 03 Aug 2023 01:01:25 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 142594 IP address blocks: 103.170.154.0/24 maxlen: 24 103.170.155.0/24 maxlen: 24 2001:df7:1d80::/48 maxlen: 48 2001:df7:1d81::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159234/6A8E00EAEF8A11EBA2921764C4F9AE02/w97H_d1FyVFyYIZPqe68_nuLz1c.crl rsync://rpki.apnic.net/member_repository/A9159234/6A8E00EAEF8A11EBA2921764C4F9AE02/w97H_d1FyVFyYIZPqe68_nuLz1c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w97H_d1FyVFyYIZPqe68_nuLz1c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 01:46:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1039 (0x40f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159234/serialNumber=C3DEC7FDDD45C9517260864FA9EEBCFE7B8BCF57 Validity Not Before: Aug 3 01:01:25 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64cafc64-17fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:00:4b:76:97:65:a9:e4:28:90:41:51:2d:72: 13:4b:6c:f7:ac:19:51:54:75:80:45:08:9b:a2:b3: 93:b9:ae:62:37:b9:dd:ef:a8:0b:8f:89:ae:b4:40: 3a:6b:1b:5e:c0:86:98:c2:84:23:d4:78:2c:31:ff: 5c:32:59:4b:cc:b0:e9:21:15:46:76:23:43:96:03: 58:d2:15:5b:da:3a:4f:8d:91:29:f4:a1:a5:39:b0: d6:58:93:41:5c:46:01:e8:cd:2a:aa:b6:81:16:e5: fc:e5:2c:37:82:ef:17:5d:c9:b1:cf:78:58:f4:ef: 2f:74:a6:70:c4:f8:ba:e4:46:b5:10:d0:af:fe:29: 53:ee:fc:b2:70:98:d7:14:52:80:53:71:af:7e:8e: e0:0a:c6:0f:73:9c:55:0e:d5:6b:c8:ed:99:5e:b5: 63:83:92:ee:16:7a:d1:bb:de:63:ba:20:1a:dd:52: d5:28:67:37:c2:52:c6:51:7c:e7:c4:8e:45:d5:e6: 5f:0a:97:ba:16:41:bc:15:f1:f5:85:de:81:1d:b4: a7:46:3c:9d:da:90:6a:d4:e0:94:6e:07:18:7b:0a: 98:ad:39:fb:ac:1b:04:2d:4c:e7:dc:21:65:00:96: fc:78:d2:da:74:cf:e3:f3:f5:07:64:bb:0c:6f:8f: 12:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:DB:F9:F9:C0:AD:10:09:87:51:0B:B9:35:EF:5C:DC:0D:E4:33:BB X509v3 Authority Key Identifier: keyid:C3:DE:C7:FD:DD:45:C9:51:72:60:86:4F:A9:EE:BC:FE:7B:8B:CF:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159234/6A8E00EAEF8A11EBA2921764C4F9AE02/w97H_d1FyVFyYIZPqe68_nuLz1c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w97H_d1FyVFyYIZPqe68_nuLz1c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159234/6A8E00EAEF8A11EBA2921764C4F9AE02/B58C9578378011ECA9E26B5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.154.0/23 IPv6: 2001:df7:1d80::/47 Signature Algorithm: sha256WithRSAEncryption 46:2c:e5:6c:42:7a:9b:25:9c:42:07:6c:19:d3:1c:5e:38:98: dc:53:b5:ae:9a:ba:58:81:6d:76:e6:1f:38:9c:b4:29:81:35: b6:f2:84:e6:50:f0:69:57:a6:dd:fc:f9:55:40:5f:86:4c:81: 46:46:ac:18:32:76:28:14:00:a7:18:02:69:b4:54:a8:ef:71: 2a:50:10:5c:69:57:29:7f:fc:0f:e7:43:6e:06:79:89:8e:90: a1:50:be:c9:fd:25:6f:c2:20:97:3c:1c:e0:1f:ba:96:6b:2c: fd:0e:4a:c1:8d:aa:c7:b4:0e:d7:25:46:d2:63:4c:6c:d7:51: c4:7e:a7:dd:5e:80:47:5f:96:52:ea:cd:d3:23:d2:e0:5c:06: 82:d7:11:e0:51:be:6d:a1:71:ad:dd:1e:b5:49:10:aa:85:28: 50:e8:a0:b0:08:f3:d1:99:04:27:57:8e:ba:29:96:22:58:7d: d8:de:fa:41:cd:90:cd:a0:fc:07:ab:6e:e7:49:a3:98:57:c8: 0e:b0:b5:a4:c5:93:f1:ee:d0:19:91:15:6d:74:b3:6a:da:1e: 18:f1:10:4b:ed:9e:99:5e:c4:0d:58:52:49:87:8e:2a:bd:c3: 17:65:39:68:82:97:c3:4e:e2:63:f1:92:9c:46:c9:01:c3:6d: df:7e:1e:b6 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTkyMzQxMTAvBgNVBAUTKEMzREVDN0ZEREQ0NUM5NTE3MjYwODY0RkE5RUVCQ0ZF N0I4QkNGNTcwHhcNMjMwODAzMDEwMTI1WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhZmM2NC0xN2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtABLdpdlqeQokEFRLXITS2z3rBlRVHWARQiborOTua5iN7nd76gLj4mutEA6 axtewIaYwoQj1HgsMf9cMllLzLDpIRVGdiNDlgNY0hVb2jpPjZEp9KGlObDWWJNB XEYB6M0qqraBFuX85Sw3gu8XXcmxz3hY9O8vdKZwxPi65Ea1ENCv/ilT7vyycJjX FFKAU3Gvfo7gCsYPc5xVDtVryO2ZXrVjg5LuFnrRu95juiAa3VLVKGc3wlLGUXzn xI5F1eZfCpe6FkG8FfH1hd6BHbSnRjyd2pBq1OCUbgcYewqYrTn7rBsELUzn3CFl AJb8eNLadM/j8/UHZLsMb48SKwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMDb+fnA rRAJh1ELuTXvXNwN5DO7MB8GA1UdIwQYMBaAFMPex/3dRclRcmCGT6nuvP57i89X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTIzNC82QThFMDBFQUVG OEExMUVCQTI5MjE3NjRDNEY5QUUwMi93OTdIX2QxRnlWRnlZSVpQcWU2OF9udUx6 MWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3c5N0hfZDFGeVZGeVlJWlBxZTY4X251THoxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTkyMzQvNkE4RTAwRUFFRjhBMTFFQkEyOTIxNzY0QzRGOUFFMDIvQjU4Qzk1Nzgz NzgwMTFFQ0E5RTI2QjVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnqpowDwQCAAIwCQMHASABDfcdgDANBgkqhkiG9w0BAQsF AAOCAQEARizlbEJ6myWcQgdsGdMcXjiY3FO1rpq6WIFtduYfOJy0KYE1tvKE5lDw aVem3fz5VUBfhkyBRkasGDJ2KBQApxgCabRUqO9xKlAQXGlXKX/8D+dDbgZ5iY6Q oVC+yf0lb8Iglzwc4B+6lmss/Q5KwY2qx7QO1yVG0mNMbNdRxH6n3V6AR1+WUurN 0yPS4FwGgtcR4FG+baFxrd0etUkQqoUoUOigsAjz0ZkEJ1eOuimWIlh92N76Qc2Q zaD8B6tu50mjmFfIDrC1pMWT8e7QGZEVbXSzatoeGPEQS+2emV7EDVhSSYeOKr3D F2U5aIKXw07iY/GSnEbJAcNt334etg== -----END CERTIFICATE-----Generated at Fri May 17 03:06:31 2024 by rpki-client on console-ams.rpki-client.org