$ rpki-client -vvf rpki.apnic.net/member_repository/A9166646/7B16AC28B13C11EB8179FA29C4F9AE02/5AA0DC6EB13E11EBA7704F2CC4F9AE02.roa File: 5AA0DC6EB13E11EBA7704F2CC4F9AE02.roa (raw, json) Hash identifier: +9cPsGMhDrv8dxVIm+a/n6r1IhhqEshDAksLCXHoHTo= Subject key identifier: 11:0D:86:0D:B5:A1:BB:C8:EB:FE:79:2E:F8:43:2F:A5:12:F6:92:E2 Certificate issuer: /CN=A9166646/serialNumber=E03F58007B97290BA52343597917B2B6AB5DD2E9 Certificate serial: 04AA Authority key identifier: E0:3F:58:00:7B:97:29:0B:A5:23:43:59:79:17:B2:B6:AB:5D:D2:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4D9YAHuXKQulI0NZeReytqtd0uk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166646/7B16AC28B13C11EB8179FA29C4F9AE02/5AA0DC6EB13E11EBA7704F2CC4F9AE02.roa Signing time: Sat 09 Sep 2023 00:11:30 +0000 ROA not before: Sat 09 Sep 2023 00:11:30 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 141036 IP address blocks: 103.155.38.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166646/7B16AC28B13C11EB8179FA29C4F9AE02/4D9YAHuXKQulI0NZeReytqtd0uk.crl rsync://rpki.apnic.net/member_repository/A9166646/7B16AC28B13C11EB8179FA29C4F9AE02/4D9YAHuXKQulI0NZeReytqtd0uk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4D9YAHuXKQulI0NZeReytqtd0uk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 00:53:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1194 (0x4aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166646/serialNumber=E03F58007B97290BA52343597917B2B6AB5DD2E9 Validity Not Before: Sep 9 00:11:30 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64fbb832-8716 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:72:48:81:2b:c2:da:c8:d7:3c:80:62:e6:99: 35:2c:0a:94:0d:dc:28:05:51:45:db:50:7c:ae:5d: c6:98:2a:89:a2:51:8a:cf:7a:f3:76:b8:30:88:f5: e7:ca:8f:29:af:1d:b7:80:6c:63:38:1f:b9:ae:f2: 8d:1b:54:29:72:dd:8b:5a:4a:6b:f5:b3:d3:8e:e0: a9:57:42:cb:cf:77:25:fa:ad:0c:ae:16:90:f3:e3: 9a:08:f0:f7:01:e9:0a:f6:8a:f0:1f:58:2f:22:ba: 00:4c:98:1d:e8:a8:cb:9f:4f:ca:f7:a4:38:6d:f7: 43:5c:c1:5a:7f:86:10:b3:dc:e6:e7:8d:fe:3f:56: cf:e9:15:af:b7:96:45:e3:01:0c:0b:e5:76:0c:9e: 5e:e0:1e:c0:7f:da:17:3f:22:f8:00:d6:50:2b:8b: d0:e6:49:eb:de:da:b2:61:d5:52:83:eb:14:0b:3a: 57:8e:2c:59:ec:36:06:c3:9b:5c:9f:f5:e5:c9:ce: 3a:53:20:e3:83:06:9b:36:66:ae:42:61:35:d6:4a: 01:cf:e4:5b:7e:18:09:25:57:29:90:d4:12:49:f3: df:9a:72:ad:64:9b:36:d1:18:bd:d7:e9:0e:e9:09: cb:1b:53:5d:34:fa:49:12:e0:d0:e9:bb:ac:ff:96: f2:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:0D:86:0D:B5:A1:BB:C8:EB:FE:79:2E:F8:43:2F:A5:12:F6:92:E2 X509v3 Authority Key Identifier: keyid:E0:3F:58:00:7B:97:29:0B:A5:23:43:59:79:17:B2:B6:AB:5D:D2:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166646/7B16AC28B13C11EB8179FA29C4F9AE02/4D9YAHuXKQulI0NZeReytqtd0uk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4D9YAHuXKQulI0NZeReytqtd0uk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166646/7B16AC28B13C11EB8179FA29C4F9AE02/5AA0DC6EB13E11EBA7704F2CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.38.0/23 Signature Algorithm: sha256WithRSAEncryption 48:d5:9f:86:d6:00:0a:e4:6d:28:f4:da:a7:ec:95:87:94:90: 15:f2:2c:18:2b:32:ad:4c:92:be:ff:f7:dc:3f:e1:7b:7f:ee: 7b:e8:dc:44:d9:75:94:58:e2:d0:97:66:d6:ae:db:a1:e8:6b: 61:8a:2d:0a:f7:20:e9:c2:b1:93:71:4b:f6:3f:ab:9a:92:35: 37:d4:d5:c9:01:46:72:27:9a:4e:96:88:f9:2b:c3:8d:79:d7: 22:fa:6f:1a:9c:94:60:e9:55:dd:c7:e6:0e:d5:c6:3e:52:d4: 25:6f:3e:66:80:f1:1e:e2:1e:82:f4:16:8f:23:e5:bf:08:49: ef:bc:a6:b5:3e:6b:06:de:ba:6a:11:d0:46:1a:57:95:10:44: 70:1a:22:4c:d2:c8:19:15:3c:2d:18:1b:c5:bc:6a:14:38:b0: b0:7a:c4:be:d2:2e:fa:1d:6c:1d:cb:98:c1:ab:16:71:da:0f: 05:cb:70:5b:a2:c7:39:4f:b7:56:37:68:e6:08:8c:f7:aa:23: c0:1b:3a:fd:67:b3:bb:e3:0d:8c:81:50:f7:6f:c5:6c:13:84: ff:57:8c:e2:a7:3a:bb:46:4e:90:d5:af:43:d9:55:1b:88:4f: a6:a6:f1:3e:a0:81:9f:8a:6a:36:86:a1:0e:3c:09:74:bb:73: d6:29:05:ce -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjY2NDYxMTAvBgNVBAUTKEUwM0Y1ODAwN0I5NzI5MEJBNTIzNDM1OTc5MTdCMkI2 QUI1REQyRTkwHhcNMjMwOTA5MDAxMTMwWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGZiYjgzMi04NzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXJIgSvC2sjXPIBi5pk1LAqUDdwoBVFF21B8rl3GmCqJolGKz3rzdrgwiPXn yo8prx23gGxjOB+5rvKNG1Qpct2LWkpr9bPTjuCpV0LLz3cl+q0MrhaQ8+OaCPD3 AekK9orwH1gvIroATJgd6KjLn0/K96Q4bfdDXMFaf4YQs9zm543+P1bP6RWvt5ZF 4wEMC+V2DJ5e4B7Af9oXPyL4ANZQK4vQ5knr3tqyYdVSg+sUCzpXjixZ7DYGw5tc n/Xlyc46UyDjgwabNmauQmE11koBz+RbfhgJJVcpkNQSSfPfmnKtZJs20Ri91+kO 6QnLG1NdNPpJEuDQ6bus/5byUwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBENhg21 obvI6/55LvhDL6US9pLiMB8GA1UdIwQYMBaAFOA/WAB7lykLpSNDWXkXsrarXdLp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NjY0Ni83QjE2QUMyOEIx M0MxMUVCODE3OUZBMjlDNEY5QUUwMi80RDlZQUh1WEtRdWxJME5aZVJleXRxdGQw dWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzREOVlBSHVYS1F1bEkwTlplUmV5dHF0ZDB1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjY2NDYvN0IxNkFDMjhCMTNDMTFFQjgxNzlGQTI5QzRGOUFFMDIvNUFBMERDNkVC MTNFMTFFQkE3NzA0RjJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmyYwDQYJKoZIhvcNAQELBQADggEBAEjVn4bWAArkbSj0 2qfslYeUkBXyLBgrMq1Mkr7/99w/4Xt/7nvo3ETZdZRY4tCXZtau26Hoa2GKLQr3 IOnCsZNxS/Y/q5qSNTfU1ckBRnInmk6WiPkrw4151yL6bxqclGDpVd3H5g7Vxj5S 1CVvPmaA8R7iHoL0Fo8j5b8ISe+8prU+awbeumoR0EYaV5UQRHAaIkzSyBkVPC0Y G8W8ahQ4sLB6xL7SLvodbB3LmMGrFnHaDwXLcFuixzlPt1Y3aOYIjPeqI8AbOv1n s7vjDYyBUPdvxWwThP9XjOKnOrtGTpDVr0PZVRuIT6am8T6ggZ+KajaGoQ48CXS7 c9YpBc4= -----END CERTIFICATE-----Generated at Tue May 21 01:50:46 2024 by rpki-client on console-ams.rpki-client.org