$ rpki-client -vvf rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/7FCFB4745E8411EE89DF693EC4F9AE02.roa File: 7FCFB4745E8411EE89DF693EC4F9AE02.roa (raw, json) Hash identifier: fxzcj7Ti+u+oPK+vxTvHo5UpqB3L29d6LTgtXNK/5HU= Subject key identifier: 4B:08:74:F7:66:94:2C:C6:F6:D5:81:85:0F:C2:B5:7D:85:39:60:A1 Certificate issuer: /CN=A9169BB4/serialNumber=85CB40190A77DC9E6894D857F73BB7A90E0974E4 Certificate serial: 0435 Authority key identifier: 85:CB:40:19:0A:77:DC:9E:68:94:D8:57:F7:3B:B7:A9:0E:09:74:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hctAGQp33J5olNhX9zu3qQ4JdOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/7FCFB4745E8411EE89DF693EC4F9AE02.roa Signing time: Fri 29 Sep 2023 04:56:07 +0000 ROA not before: Fri 29 Sep 2023 04:56:07 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 140880 IP address blocks: 103.152.204.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.crl rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hctAGQp33J5olNhX9zu3qQ4JdOQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 00:36:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1077 (0x435) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169BB4/serialNumber=85CB40190A77DC9E6894D857F73BB7A90E0974E4 Validity Not Before: Sep 29 04:56:07 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=651658e7-e833 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:75:fd:36:91:ab:46:6c:0a:1f:aa:e5:0f:bf: bb:00:cd:a7:50:be:ef:ae:53:cb:16:96:79:43:8d: d0:c5:46:a7:9f:87:e0:30:6b:8c:bd:e4:28:d6:0a: d3:b0:2c:b0:a1:a0:e4:0c:29:f7:a4:d4:49:dd:44: ca:04:89:0a:54:53:03:42:bc:e3:d4:27:19:4b:51: 85:b8:0b:ca:6b:f0:a1:73:56:d1:f9:6a:39:1a:19: 78:f6:23:26:12:30:c1:4b:da:47:11:d7:4f:e8:2c: 15:bf:40:c0:fe:7d:b2:38:b0:48:78:66:a5:41:99: 73:06:27:62:d5:80:91:c4:b0:0c:ec:52:81:8c:58: 90:80:ad:c9:fc:f9:9c:3b:d9:20:1e:e6:08:93:47: 7a:30:e8:cc:c5:d9:a4:fe:4b:7f:04:c0:13:09:67: 27:27:9a:8f:ff:55:3c:9e:d1:56:c2:44:86:f9:3e: c3:56:13:b3:23:e4:bd:07:35:f4:62:c1:b0:7b:44: a0:4f:bd:f5:b0:e3:18:96:cd:44:a0:26:f6:04:c1: f3:b0:41:3a:41:3e:ef:19:54:81:3b:70:2b:7a:5f: 57:13:7e:cc:ea:cf:00:28:db:57:07:64:bb:6c:df: 55:3b:fe:79:f0:7c:15:10:f2:6f:0e:b6:2b:d3:c8: a1:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:08:74:F7:66:94:2C:C6:F6:D5:81:85:0F:C2:B5:7D:85:39:60:A1 X509v3 Authority Key Identifier: keyid:85:CB:40:19:0A:77:DC:9E:68:94:D8:57:F7:3B:B7:A9:0E:09:74:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hctAGQp33J5olNhX9zu3qQ4JdOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/7FCFB4745E8411EE89DF693EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.204.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:8d:98:85:9b:4a:89:84:58:6c:85:61:27:38:a1:8d:f3:90: d8:8e:cf:48:c3:b4:c7:7c:59:39:da:58:51:a7:08:bf:95:ad: 95:f6:8e:3c:6b:6b:3b:b1:4d:d7:0e:fd:3c:12:43:96:80:27: f9:f8:00:68:7e:a5:91:51:bb:e9:91:a0:c3:f9:bd:81:e1:75: ff:f4:e9:2c:e5:e9:43:77:63:c5:fd:63:3b:eb:3c:50:2e:df: 10:33:c8:e0:ab:1d:3e:67:5d:6a:c3:56:5c:18:87:d0:a8:b5: 84:49:85:17:45:eb:87:66:70:31:e7:1a:51:59:a7:b2:5d:de: 17:de:85:df:c9:c1:05:ab:47:d6:51:d9:07:f2:d4:97:1a:5f: c1:6f:f4:15:35:ba:2f:b9:e0:cf:8e:bf:6c:64:3a:c1:3b:e6: 32:ac:a1:a7:1a:fc:b5:53:04:91:c8:da:a3:e0:d2:5d:2b:6e: 6c:63:ee:44:43:20:5a:9e:2c:37:8e:5f:f0:31:f0:05:14:56: 98:13:5e:9b:d8:37:9e:75:45:f1:52:21:4c:79:eb:c4:60:2b: 67:ab:c9:1c:7a:43:2c:cc:28:82:e2:b7:f1:9a:f4:6e:43:cb: 5c:6a:f7:43:0e:a8:e3:5b:ea:3a:9c:07:bf:b0:f5:8e:df:97: da:7d:44:06 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBDUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlCQjQxMTAvBgNVBAUTKDg1Q0I0MDE5MEE3N0RDOUU2ODk0RDg1N0Y3M0JCN0E5 MEUwOTc0RTQwHhcNMjMwOTI5MDQ1NjA3WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTE2NThlNy1lODMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApXX9NpGrRmwKH6rlD7+7AM2nUL7vrlPLFpZ5Q43QxUann4fgMGuMveQo1grT sCywoaDkDCn3pNRJ3UTKBIkKVFMDQrzj1CcZS1GFuAvKa/Chc1bR+Wo5Ghl49iMm EjDBS9pHEddP6CwVv0DA/n2yOLBIeGalQZlzBidi1YCRxLAM7FKBjFiQgK3J/Pmc O9kgHuYIk0d6MOjMxdmk/kt/BMATCWcnJ5qP/1U8ntFWwkSG+T7DVhOzI+S9BzX0 YsGwe0SgT731sOMYls1EoCb2BMHzsEE6QT7vGVSBO3Arel9XE37M6s8AKNtXB2S7 bN9VO/558HwVEPJvDrYr08ihzwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEsIdPdm lCzG9tWBhQ/CtX2FOWChMB8GA1UdIwQYMBaAFIXLQBkKd9yeaJTYV/c7t6kOCXTk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUJCNC9CM0U3MzA5Q0U1 MkUxMUVCOUVCMUZENjlDNEY5QUUwMi9oY3RBR1FwMzNKNW9sTmhYOXp1M3FRNEpk T1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hjdEFHUXAzM0o1b2xOaFg5enUzcVE0SmRPUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjlCQjQvQjNFNzMwOUNFNTJFMTFFQjlFQjFGRDY5QzRGOUFFMDIvN0ZDRkI0NzQ1 RTg0MTFFRTg5REY2OTNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmMwwDQYJKoZIhvcNAQELBQADggEBAD2NmIWbSomEWGyF YSc4oY3zkNiOz0jDtMd8WTnaWFGnCL+VrZX2jjxrazuxTdcO/TwSQ5aAJ/n4AGh+ pZFRu+mRoMP5vYHhdf/06Szl6UN3Y8X9YzvrPFAu3xAzyOCrHT5nXWrDVlwYh9Co tYRJhRdF64dmcDHnGlFZp7Jd3hfehd/JwQWrR9ZR2Qfy1JcaX8Fv9BU1ui+54M+O v2xkOsE75jKsoaca/LVTBJHI2qPg0l0rbmxj7kRDIFqeLDeOX/Ax8AUUVpgTXpvY N551RfFSIUx568RgK2eryRx6QyzMKILit/Ga9G5Dy1xq90MOqONb6jqcB7+w9Y7f l9p9RAY= -----END CERTIFICATE-----Generated at Mon May 27 02:29:37 2024 by rpki-client on console-ams.rpki-client.org