$ rpki-client -vvf rpki.apnic.net/member_repository/A9160C86/83CC49E099F311ECB58EC70EC4F9AE02/D8FB39F8C13F11ECAD6BA680C4F9AE02.roa File: D8FB39F8C13F11ECAD6BA680C4F9AE02.roa (raw, json) Hash identifier: lRYQL/fkFqzGrkctzDYvvhZxQyxOxx8EmHc3q4Qf4M4= Subject key identifier: B6:2B:35:FC:0E:3F:42:C1:7D:6E:E1:2D:0F:89:A8:E7:E7:BF:3F:C3 Certificate issuer: /CN=A9160C86/serialNumber=754C7A08920B75DE6E1B37A3B54B8D5325D8DF73 Certificate serial: 01B4 Authority key identifier: 75:4C:7A:08:92:0B:75:DE:6E:1B:37:A3:B5:4B:8D:53:25:D8:DF:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dUx6CJILdd5uGzejtUuNUyXY33M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160C86/83CC49E099F311ECB58EC70EC4F9AE02/D8FB39F8C13F11ECAD6BA680C4F9AE02.roa Signing time: Tue 04 Oct 2022 05:13:45 +0000 ROA not before: Tue 04 Oct 2022 05:13:45 +0000 ROA not after: Tue 31 Oct 2023 00:00:00 +0000 asID: 397373 IP address blocks: 103.129.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160C86/83CC49E099F311ECB58EC70EC4F9AE02/dUx6CJILdd5uGzejtUuNUyXY33M.crl rsync://rpki.apnic.net/member_repository/A9160C86/83CC49E099F311ECB58EC70EC4F9AE02/dUx6CJILdd5uGzejtUuNUyXY33M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dUx6CJILdd5uGzejtUuNUyXY33M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 May 2023 05:13:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 436 (0x1b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160C86/serialNumber=754C7A08920B75DE6E1B37A3B54B8D5325D8DF73 Validity Not Before: Oct 4 05:13:45 2022 GMT Not After : Oct 31 00:00:00 2023 GMT Subject: CN=633bc108-d557 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:5a:5f:1a:a5:fd:9c:c9:7a:7c:af:cc:91:4a: 0a:13:83:b2:28:cc:c8:bd:d9:78:26:7d:05:f8:49: 18:22:fb:cd:59:e3:5a:91:7f:23:da:cb:a6:e8:71: 44:87:7f:fc:65:0f:c6:49:4b:ae:92:a5:6b:16:86: 8f:1e:01:6f:b3:d6:2f:c0:11:ee:0c:34:78:52:4e: 37:0f:93:57:a4:80:65:15:8d:3a:ef:ab:b3:8d:2b: 69:9a:fa:ac:00:ef:c4:92:95:ba:74:86:42:c5:c2: 2a:40:4c:cc:c9:0e:53:86:d4:3a:e2:ed:8a:d9:b2: 7f:67:b4:ee:a8:d9:f9:52:e8:91:10:f2:bb:2d:06: 9c:94:5c:d4:cb:46:ce:96:b0:e5:55:c7:e3:af:c5: d8:8d:8c:73:6a:82:d2:d9:09:be:71:ac:3d:1d:1c: d1:a1:d0:08:f6:98:11:43:68:a5:0b:cc:63:ea:cb: 39:f1:38:6f:bc:e4:ef:33:e1:f7:9c:2e:1e:a9:73: 9f:28:d5:07:3c:4a:25:5c:2f:b7:64:f2:96:33:8f: 62:c5:f7:8b:da:d8:ca:46:31:72:c3:1a:ca:cb:d4: 66:2c:3b:f9:fe:24:22:b8:6e:77:fd:e6:4b:ed:3f: 22:18:d3:98:82:84:9e:27:cf:c0:90:5b:b1:19:38: f7:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:2B:35:FC:0E:3F:42:C1:7D:6E:E1:2D:0F:89:A8:E7:E7:BF:3F:C3 X509v3 Authority Key Identifier: keyid:75:4C:7A:08:92:0B:75:DE:6E:1B:37:A3:B5:4B:8D:53:25:D8:DF:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160C86/83CC49E099F311ECB58EC70EC4F9AE02/dUx6CJILdd5uGzejtUuNUyXY33M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dUx6CJILdd5uGzejtUuNUyXY33M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160C86/83CC49E099F311ECB58EC70EC4F9AE02/D8FB39F8C13F11ECAD6BA680C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.52.0/22 Signature Algorithm: sha256WithRSAEncryption 90:4f:e5:04:7f:fc:32:e8:70:ee:91:52:a8:b3:6c:86:8d:ba: 45:f8:51:37:3f:30:b2:eb:6f:58:f9:2f:8a:b8:50:50:c0:a0: 18:33:1f:75:3b:28:f7:c2:bf:3f:77:60:d0:36:68:f5:94:a3: 78:b9:3a:eb:ca:90:35:3b:22:9a:dc:c0:fd:1a:d8:d3:32:fc: c4:f7:3b:e5:b1:06:22:ae:0e:ea:40:e8:8a:3d:8b:8a:a0:69: b0:34:3e:16:df:aa:73:81:4e:09:77:60:6a:12:9d:b1:91:5d: ae:f4:59:28:f6:93:66:75:62:fa:eb:fb:00:96:76:a6:1b:85: 3e:61:b8:ce:8f:67:c6:7c:d1:ae:ce:56:cd:39:c4:67:1f:7a: 20:16:73:62:2b:b7:4f:ad:5d:63:62:6f:95:d3:1a:95:fa:4a: 8c:f3:30:2d:c5:f4:38:cc:43:b7:96:37:53:f0:5a:3a:78:de: a8:00:a9:5a:7f:10:6f:fc:72:11:f3:2a:51:f8:af:29:86:9d: 44:a6:3e:4f:8a:02:b2:55:8f:1e:11:34:c7:c3:b4:ef:bc:9f: 5b:be:9e:cd:16:43:e5:fb:38:6a:0a:4b:35:ed:0c:56:44:89: 9f:73:05:3e:1c:57:ce:37:f2:80:08:4f:df:0c:0f:51:6f:3e: ea:83:73:63 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBDODYxMTAvBgNVBAUTKDc1NEM3QTA4OTIwQjc1REU2RTFCMzdBM0I1NEI4RDUz MjVEOERGNzMwHhcNMjIxMDA0MDUxMzQ1WhcNMjMxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02MzNiYzEwOC1kNTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3FpfGqX9nMl6fK/MkUoKE4OyKMzIvdl4Jn0F+EkYIvvNWeNakX8j2sum6HFE h3/8ZQ/GSUuukqVrFoaPHgFvs9YvwBHuDDR4Uk43D5NXpIBlFY0676uzjStpmvqs AO/EkpW6dIZCxcIqQEzMyQ5ThtQ64u2K2bJ/Z7TuqNn5UuiREPK7LQaclFzUy0bO lrDlVcfjr8XYjYxzaoLS2Qm+caw9HRzRodAI9pgRQ2ilC8xj6ss58ThvvOTvM+H3 nC4eqXOfKNUHPEolXC+3ZPKWM49ixfeL2tjKRjFywxrKy9RmLDv5/iQiuG53/eZL 7T8iGNOYgoSeJ8/AkFuxGTj3bQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLYrNfwO P0LBfW7hLQ+JqOfnvz/DMB8GA1UdIwQYMBaAFHVMegiSC3Xebhs3o7VLjVMl2N9z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEM4Ni84M0NDNDlFMDk5 RjMxMUVDQjU4RUM3MEVDNEY5QUUwMi9kVXg2Q0pJTGRkNXVHemVqdFV1TlV5WFkz M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RVeDZDSklMZGQ1dUd6ZWp0VXVOVXlYWTMzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjBDODYvODNDQzQ5RTA5OUYzMTFFQ0I1OEVDNzBFQzRGOUFFMDIvRDhGQjM5RjhD MTNGMTFFQ0FENkJBNjgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJngTQwDQYJKoZIhvcNAQELBQADggEBAJBP5QR//DLocO6R UqizbIaNukX4UTc/MLLrb1j5L4q4UFDAoBgzH3U7KPfCvz93YNA2aPWUo3i5OuvK kDU7IprcwP0a2NMy/MT3O+WxBiKuDupA6Io9i4qgabA0PhbfqnOBTgl3YGoSnbGR Xa70WSj2k2Z1Yvrr+wCWdqYbhT5huM6PZ8Z80a7OVs05xGcfeiAWc2Irt0+tXWNi b5XTGpX6SozzMC3F9DjMQ7eWN1PwWjp43qgAqVp/EG/8chHzKlH4rymGnUSmPk+K ArJVjx4RNMfDtO+8n1u+ns0WQ+X7OGoKSzXtDFZEiZ9zBT4cV8438oAIT98MD1Fv PuqDc2M= -----END CERTIFICATE-----Generated at Wed May 3 13:18:18 2023 by rpki-client on console-ams.rpki-client.org