$ rpki-client -vvf rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/457A00A8AF7A11E9AFF10782C4F9AE02.roa File: 457A00A8AF7A11E9AFF10782C4F9AE02.roa (raw, json) Hash identifier: zAJ0Psdw+r5YaEkYegm0a/6WBpMfoZA5skXEJaS74So= Subject key identifier: 03:C7:EA:CD:70:76:1D:DC:0D:38:73:F2:3C:8F:E9:9C:06:68:8B:35 Certificate issuer: /CN=A9165297/serialNumber=A7F882C0ACC8F0D8F1DB361CD40B12606B0C68C6 Certificate serial: 0C91 Authority key identifier: A7:F8:82:C0:AC:C8:F0:D8:F1:DB:36:1C:D4:0B:12:60:6B:0C:68:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/457A00A8AF7A11E9AFF10782C4F9AE02.roa Signing time: Wed 28 Jun 2023 18:37:31 +0000 ROA not before: Wed 28 Jun 2023 18:37:31 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 24550 IP address blocks: 103.94.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 18:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3217 (0xc91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165297/serialNumber=A7F882C0ACC8F0D8F1DB361CD40B12606B0C68C6 Validity Not Before: Jun 28 18:37:31 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=649c7deb-c197 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:18:52:6a:d8:f7:9f:b0:6d:77:30:ea:ad:bf: 15:4f:65:ba:ed:27:8e:a0:7b:b6:99:22:05:35:32: ef:a3:70:ef:b0:6a:e2:58:8c:d8:95:33:0c:6a:30: 3a:d9:07:63:d1:4c:34:ba:57:10:c3:1e:77:09:d7: 41:ab:60:c1:bf:8c:1f:8a:b9:0a:b0:77:09:39:19: 3d:6e:80:83:cc:da:55:97:d2:b3:8e:8e:1c:b2:c9: 06:99:a0:d5:5a:36:8c:c3:09:bf:8d:3e:65:c8:9d: 58:26:0d:9d:5b:12:47:73:35:91:10:41:60:88:fc: 42:6b:b4:23:d8:93:eb:ac:82:96:42:6c:68:50:2a: c8:2f:86:72:44:16:18:91:c4:6f:f9:0d:7e:a9:5b: 95:11:92:22:26:bb:74:17:af:fe:7f:6d:bd:0b:27: b6:11:3c:f6:33:9d:47:78:35:97:fb:f7:7f:fb:16: 21:90:b8:8f:7f:58:fa:cc:37:d6:43:84:c1:8d:b2: f8:6f:83:e5:7a:88:d2:1b:40:18:da:fd:e1:01:14: 6f:c5:ee:f7:f2:e9:e8:19:ac:9d:a3:cd:03:17:dc: 1f:e7:87:1a:69:80:b4:2b:77:57:b4:fc:f2:af:40: 3f:e6:33:1d:5a:22:a1:f6:63:6f:e6:95:07:0b:3f: 21:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:C7:EA:CD:70:76:1D:DC:0D:38:73:F2:3C:8F:E9:9C:06:68:8B:35 X509v3 Authority Key Identifier: keyid:A7:F8:82:C0:AC:C8:F0:D8:F1:DB:36:1C:D4:0B:12:60:6B:0C:68:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/457A00A8AF7A11E9AFF10782C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.94.252.0/22 Signature Algorithm: sha256WithRSAEncryption 8e:6c:c9:05:56:5f:5c:53:92:03:6e:b5:f6:a7:5a:c5:ea:28: 0b:f6:b3:94:ec:7d:ff:69:ba:65:08:81:87:2b:ed:35:ba:d4: 0c:7e:14:29:f1:1f:90:d1:33:a0:71:1f:6b:b5:63:fc:72:e8: 32:56:c2:89:36:a5:7e:6f:42:fa:ed:7c:5d:66:40:f5:bb:94: 41:d7:40:e4:ae:bd:7d:eb:9f:aa:b9:53:46:9a:b0:dd:31:8c: ee:c6:63:ca:50:ff:8a:fa:0c:88:b4:cc:fa:cd:36:da:7e:b2: 61:52:37:71:bf:5f:3a:48:ed:58:6a:66:90:e5:0c:6e:43:72: 24:43:c2:32:1d:02:d9:78:03:c1:6e:95:0e:2e:f9:fa:b7:51: b8:bb:93:0e:fd:9e:f3:09:be:c5:97:52:f1:34:4c:e2:41:e2: 8a:8b:7c:81:29:72:0f:04:b7:d1:87:98:c7:9e:65:da:74:22: fe:a1:49:15:c9:a8:49:d9:1f:eb:2f:2f:fa:85:7a:df:7a:77: 87:52:24:af:da:86:c0:9c:d5:a4:4d:d5:95:cf:c2:67:34:40: 5a:e3:b3:12:1d:d1:c2:17:2b:f6:ce:e1:d8:bf:80:25:3e:6a: 7e:62:bc:18:f4:9d:8a:b1:d5:f7:f2:b6:bf:d0:ae:b8:70:da: 6b:8e:4b:23 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUyOTcxMTAvBgNVBAUTKEE3Rjg4MkMwQUNDOEYwRDhGMURCMzYxQ0Q0MEIxMjYw NkIwQzY4QzYwHhcNMjMwNjI4MTgzNzMxWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDljN2RlYi1jMTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtRhSatj3n7BtdzDqrb8VT2W67SeOoHu2mSIFNTLvo3DvsGriWIzYlTMMajA6 2Qdj0Uw0ulcQwx53CddBq2DBv4wfirkKsHcJORk9boCDzNpVl9Kzjo4csskGmaDV WjaMwwm/jT5lyJ1YJg2dWxJHczWREEFgiPxCa7Qj2JPrrIKWQmxoUCrIL4ZyRBYY kcRv+Q1+qVuVEZIiJrt0F6/+f229Cye2ETz2M51HeDWX+/d/+xYhkLiPf1j6zDfW Q4TBjbL4b4PleojSG0AY2v3hARRvxe738unoGaydo80DF9wf54caaYC0K3dXtPzy r0A/5jMdWiKh9mNv5pUHCz8h9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFAPH6s1w dh3cDThz8jyP6ZwGaIs1MB8GA1UdIwQYMBaAFKf4gsCsyPDY8ds2HNQLEmBrDGjG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTI5Ny80MzAxRkRCRUFG NkUxMUU5QTkyNTgwNjdDNEY5QUUwMi9wX2lDd0t6SThOangyelljMUFzU1lHc01h TVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BfaUN3S3pJOE5qeDJ6WWMxQXNTWUdzTWFNWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjUyOTcvNDMwMUZEQkVBRjZFMTFFOUE5MjU4MDY3QzRGOUFFMDIvNDU3QTAwQThB RjdBMTFFOUFGRjEwNzgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnXvwwDQYJKoZIhvcNAQELBQADggEBAI5syQVWX1xTkgNu tfanWsXqKAv2s5Tsff9pumUIgYcr7TW61Ax+FCnxH5DRM6BxH2u1Y/xy6DJWwok2 pX5vQvrtfF1mQPW7lEHXQOSuvX3rn6q5U0aasN0xjO7GY8pQ/4r6DIi0zPrNNtp+ smFSN3G/XzpI7VhqZpDlDG5DciRDwjIdAtl4A8FulQ4u+fq3Ubi7kw79nvMJvsWX UvE0TOJB4oqLfIEpcg8Et9GHmMeeZdp0Iv6hSRXJqEnZH+svL/qFet96d4dSJK/a hsCc1aRN1ZXPwmc0QFrjsxId0cIXK/bO4di/gCU+an5ivBj0nYqx1ffytr/Qrrhw 2muOSyM= -----END CERTIFICATE-----Generated at Mon May 20 19:59:40 2024 by rpki-client on console-ams.rpki-client.org