$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/7EA2ADC0C3A411ED8EFA6F13C4F9AE02.roa File: 7EA2ADC0C3A411ED8EFA6F13C4F9AE02.roa (raw, json) Hash identifier: hh0viZTsv0+mOUblt7DWtCMkKcp9rkTjFrsdWlkZQ+Y= Subject key identifier: C7:74:B9:90:46:E5:51:87:39:9A:E0:55:E8:FE:44:8E:44:D7:F7:01 Certificate issuer: /CN=A9168B4A/serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Certificate serial: 12A5 Authority key identifier: AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/7EA2ADC0C3A411ED8EFA6F13C4F9AE02.roa Signing time: Tue 04 Jul 2023 17:24:09 +0000 ROA not before: Tue 04 Jul 2023 17:24:09 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 142032 IP address blocks: 103.106.188.0/22 maxlen: 24 103.116.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 17:38:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4773 (0x12a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B4A/serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Validity Not Before: Jul 4 17:24:09 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a455b9-b52e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:44:5a:f9:6e:40:60:fa:ba:3d:5f:9f:72:4d: a9:3d:de:0a:cb:84:40:4d:04:1f:a0:5f:1d:19:07: 9f:c7:34:e8:2e:ac:5e:d2:a8:90:63:4d:99:45:f6: 8b:b5:aa:71:90:65:a2:e6:b9:3a:ce:56:a5:bc:6e: 3c:c6:51:e6:37:15:98:43:81:fe:b9:31:64:25:db: 94:7a:91:68:37:ae:a0:86:98:86:54:b1:3a:bf:12: 98:24:5b:5b:75:18:d6:5b:b4:f7:01:ef:66:9a:b0: 31:e6:f0:3c:4c:82:6c:5d:ec:43:29:9c:ba:82:35: d7:85:cc:19:19:5a:0e:af:0e:a6:08:15:3a:cc:06: 74:a1:f7:dd:d4:ee:64:e9:6a:c2:c8:6e:73:de:ed: 2d:55:4c:8b:78:12:40:8a:72:87:2a:2b:f1:f3:f3: 66:28:73:9f:cf:a8:49:41:a1:ac:ac:77:14:17:87: fa:da:f0:af:63:99:1d:2d:8f:b7:54:74:0e:a5:a3: 9f:02:55:ae:ce:71:4f:55:fd:48:a1:e3:94:d5:04: 6e:95:13:d6:d7:c5:8e:bf:20:b1:97:0b:8e:19:76: fd:ae:a8:f4:a6:0d:39:e3:00:59:fd:aa:ad:8b:d1: dd:5f:0d:a7:4c:28:4c:57:cd:04:c8:91:0e:44:6a: 33:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:74:B9:90:46:E5:51:87:39:9A:E0:55:E8:FE:44:8E:44:D7:F7:01 X509v3 Authority Key Identifier: keyid:AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/7EA2ADC0C3A411ED8EFA6F13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.106.188.0/22 103.116.244.0/22 Signature Algorithm: sha256WithRSAEncryption 1c:a3:d1:c1:85:35:14:67:b4:ec:80:81:0e:a8:df:83:d6:17: 97:aa:a4:bc:83:10:ac:97:3f:4f:72:66:9a:38:a0:a8:67:af: cd:d2:de:82:c0:cc:98:00:fa:e3:fd:4d:03:6e:c0:a5:23:1a: bb:c4:35:d2:1e:5e:be:f7:36:d1:b6:59:39:46:1e:de:33:20: 9e:3f:c9:86:71:6d:bc:f3:0d:18:75:38:9a:a8:b1:a4:60:3d: a4:8d:15:0d:8a:99:38:d8:00:ab:c1:f3:de:f8:d5:f4:4f:66: fa:3b:81:4b:a3:06:f3:37:1f:0f:83:1f:d4:eb:68:40:3e:fc: 03:a4:fd:1c:75:bc:58:b3:fe:65:fc:81:c5:df:7a:0f:89:cc: a4:aa:ab:9f:4d:ac:1f:93:94:c6:dc:be:84:1f:3b:99:f3:6c: 6a:57:c4:c6:ac:00:ca:d0:5e:6c:27:b1:84:b6:2d:bd:19:83: 43:1f:77:f8:20:f5:13:31:10:f9:38:1c:0f:23:5e:c3:2e:31: 13:06:4b:e8:6f:03:12:a2:7f:07:b0:b4:04:2e:a4:e1:c4:9d: 59:9b:0c:94:66:d2:a4:83:12:9d:e4:92:cc:e6:b7:d7:e8:bc: 63:1e:5b:c8:51:7a:86:05:f5:3d:11:ad:91:08:bd:28:92:39: a2:2a:ba:39 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICEqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCNEExMTAvBgNVBAUTKEFGMDI1MTFGN0M4MERGQzBFOEVENTA2RjY2MzBGNjdC RDY0MDBFMDkwHhcNMjMwNzA0MTcyNDA5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE0NTViOS1iNTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm0Ra+W5AYPq6PV+fck2pPd4Ky4RATQQfoF8dGQefxzToLqxe0qiQY02ZRfaL tapxkGWi5rk6zlalvG48xlHmNxWYQ4H+uTFkJduUepFoN66ghpiGVLE6vxKYJFtb dRjWW7T3Ae9mmrAx5vA8TIJsXexDKZy6gjXXhcwZGVoOrw6mCBU6zAZ0offd1O5k 6WrCyG5z3u0tVUyLeBJAinKHKivx8/NmKHOfz6hJQaGsrHcUF4f62vCvY5kdLY+3 VHQOpaOfAlWuznFPVf1IoeOU1QRulRPW18WOvyCxlwuOGXb9rqj0pg054wBZ/aqt i9HdXw2nTChMV80EyJEORGozRwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMd0uZBG 5VGHOZrgVej+RI5E1/cBMB8GA1UdIwQYMBaAFK8CUR98gN/A6O1Qb2Yw9nvWQA4J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEI0QS8wQURCMTdDMDgw MEExMUU4OUI0ODNFN0NDNEY5QUUwMi9yd0pSSDN5QTM4RG83VkJ2WmpEMmU5WkFE Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J3SlJIM3lBMzhEbzdWQnZaakQyZTlaQURnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjhCNEEvMEFEQjE3QzA4MDBBMTFFODlCNDgzRTdDQzRGOUFFMDIvN0VBMkFEQzBD M0E0MTFFRDhFRkE2RjEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnarwDBAJndPQwDQYJKoZIhvcNAQELBQADggEBAByj0cGF NRRntOyAgQ6o34PWF5eqpLyDEKyXP09yZpo4oKhnr83S3oLAzJgA+uP9TQNuwKUj GrvENdIeXr73NtG2WTlGHt4zIJ4/yYZxbbzzDRh1OJqosaRgPaSNFQ2KmTjYAKvB 89741fRPZvo7gUujBvM3Hw+DH9TraEA+/AOk/Rx1vFiz/mX8gcXfeg+JzKSqq59N rB+TlMbcvoQfO5nzbGpXxMasAMrQXmwnsYS2Lb0Zg0Mfd/gg9RMxEPk4HA8jXsMu MRMGS+hvAxKifwewtAQupOHEnVmbDJRm0qSDEp3kkszmt9fovGMeW8hReoYF9T0R rZEIvSiSOaIqujk= -----END CERTIFICATE-----Generated at Tue May 28 19:32:34 2024 by rpki-client on console-ams.rpki-client.org