$ rpki-client -vvf rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/851515FC1C8711EF964ED80AC4F9AE02.roa File: 851515FC1C8711EF964ED80AC4F9AE02.roa (raw, json) Hash identifier: 2ZvR8MHi7NyojTKS1eQiZr7s7ixPWXKlZzJWOILwSsE= Subject key identifier: 09:B3:52:12:FC:65:6B:4F:17:C8:80:10:7D:A1:32:9C:8E:23:B1:36 Certificate issuer: /CN=A9169C00/serialNumber=CB66E035E2F07858F4F73B478DCD85A636A4250A Certificate serial: 05 Authority key identifier: CB:66:E0:35:E2:F0:78:58:F4:F7:3B:47:8D:CD:85:A6:36:A4:25:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2bgNeLweFj09ztHjc2FpjakJQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/851515FC1C8711EF964ED80AC4F9AE02.roa Signing time: Tue 28 May 2024 00:16:25 +0000 ROA not before: Tue 28 May 2024 00:16:25 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 9790 IP address blocks: 103.19.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.crl rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2bgNeLweFj09ztHjc2FpjakJQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169C00/serialNumber=CB66E035E2F07858F4F73B478DCD85A636A4250A Validity Not Before: May 28 00:16:25 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66552259-eec8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:77:2a:f5:a0:e0:f7:99:fb:02:03:40:79:d6: 49:7b:30:7c:73:99:f9:53:3f:ff:9b:e4:b2:ac:3a: a5:c6:fc:4f:40:15:23:7e:9b:7f:e6:a8:cd:94:8f: 23:af:6f:55:7d:37:16:f0:44:5f:7c:43:73:00:68: 21:d6:c0:36:15:9c:26:62:b3:e9:28:bc:7f:c1:0d: be:2e:30:8b:1c:58:21:bb:22:d3:8e:45:8a:04:14: 31:c9:49:2a:1e:30:a0:63:c5:c1:b4:31:da:54:e2: 8b:3d:8f:77:5e:5c:06:b9:9b:b6:98:42:2a:42:2c: 47:56:20:fc:10:77:ef:55:47:dd:a8:51:90:07:30: a6:39:e9:bd:b3:fa:44:9d:97:17:ab:92:cf:ea:6b: 95:7d:df:84:c3:c4:a7:cb:8f:e9:87:38:c5:2b:3d: c5:b6:d3:9d:2d:3d:e6:34:e1:7e:c3:04:c4:a0:89: a4:f1:cf:ab:2e:17:35:ba:f0:b1:51:43:d0:49:2d: d4:e9:88:ee:bc:b5:89:ab:1e:8d:8f:4c:84:4a:3f: ac:61:e1:42:12:6b:ac:2a:76:3a:14:4b:26:89:c3: 85:09:1c:9b:ae:95:1d:90:51:c1:55:21:a5:73:99: a3:cf:5d:66:f9:d3:14:70:1c:ba:66:45:3b:05:d2: 17:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:B3:52:12:FC:65:6B:4F:17:C8:80:10:7D:A1:32:9C:8E:23:B1:36 X509v3 Authority Key Identifier: keyid:CB:66:E0:35:E2:F0:78:58:F4:F7:3B:47:8D:CD:85:A6:36:A4:25:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2bgNeLweFj09ztHjc2FpjakJQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/851515FC1C8711EF964ED80AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.19.195.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:90:b0:41:9d:8e:f7:1a:cd:a3:bd:67:15:9c:ab:fc:be:b2: 8e:69:2d:cf:ff:93:b8:11:1a:ae:de:69:65:df:64:73:bb:cd: 03:93:53:22:be:e0:51:e4:2c:bb:15:fb:68:72:9e:e8:a2:02: 0f:e9:63:e1:88:b9:2a:12:3e:89:fb:63:c5:b6:7c:d9:31:f8: b3:fa:d1:7f:9a:0f:5b:fe:5a:f0:b6:aa:e2:b6:1c:53:86:2a: 8c:a3:77:a7:52:3c:bc:ce:d3:33:95:17:34:f8:6a:d9:1c:2b: 67:0a:3f:26:75:3b:1c:c8:04:55:9f:1f:ce:9e:92:a2:5b:18: fa:e2:e5:5f:2b:d6:92:a7:42:c8:d3:ee:75:4e:25:13:af:de: 9d:c7:b7:fa:dc:4f:50:40:f7:ac:2f:1b:68:8f:e5:19:a6:f9: bc:9a:56:37:88:55:ef:89:39:73:e3:8e:4c:24:06:63:f7:0e: 02:4e:d3:b8:03:f1:b9:59:ab:b0:7a:b2:b3:50:06:c4:cd:a6: f7:4b:57:77:17:1e:73:13:73:4d:c1:8e:8d:3a:5f:ce:5e:ea: 9c:cf:8e:40:cc:7e:e3:f2:ee:25:97:5d:ec:69:b5:48:01:5f: bd:fc:88:c6:33:a6:4a:d8:5d:eb:9b:92:12:d8:ee:30:0b:cf: 8d:d4:8e:38 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 OUMwMDExMC8GA1UEBRMoQ0I2NkUwMzVFMkYwNzg1OEY0RjczQjQ3OERDRDg1QTYz NkE0MjUwQTAeFw0yNDA1MjgwMDE2MjVaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NTUyMjU5LWVlYzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrdyr1oOD3mfsCA0B51kl7MHxzmflTP/+b5LKsOqXG/E9AFSN+m3/mqM2UjyOv b1V9NxbwRF98Q3MAaCHWwDYVnCZis+kovH/BDb4uMIscWCG7ItOORYoEFDHJSSoe MKBjxcG0MdpU4os9j3deXAa5m7aYQipCLEdWIPwQd+9VR92oUZAHMKY56b2z+kSd lxerks/qa5V934TDxKfLj+mHOMUrPcW2050tPeY04X7DBMSgiaTxz6suFzW68LFR Q9BJLdTpiO68tYmrHo2PTIRKP6xh4UISa6wqdjoUSyaJw4UJHJuulR2QUcFVIaVz maPPXWb50xRwHLpmRTsF0hf1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUCbNSEvxl a08XyIAQfaEynI4jsTYwHwYDVR0jBBgwFoAUy2bgNeLweFj09ztHjc2FpjakJQow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5QzAwLzFDMzFFQUYwMUJD MDExRUZCQjY4OEQ1RUM0RjlBRTAyL3kyYmdOZUx3ZUZqMDl6dEhqYzJGcGpha0pR by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveTJiZ05lTHdlRmowOXp0SGpjMkZwamFrSlFvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUMwMC8xQzMxRUFGMDFCQzAxMUVGQkI2ODhENUVDNEY5QUUwMi84NTE1MTVGQzFD ODcxMUVGOTY0RUQ4MEFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGcTwzANBgkqhkiG9w0BAQsFAAOCAQEAT5CwQZ2O9xrNo71n FZyr/L6yjmktz/+TuBEart5pZd9kc7vNA5NTIr7gUeQsuxX7aHKe6KICD+lj4Yi5 KhI+iftjxbZ82TH4s/rRf5oPW/5a8Laq4rYcU4YqjKN3p1I8vM7TM5UXNPhq2Rwr Zwo/JnU7HMgEVZ8fzp6SolsY+uLlXyvWkqdCyNPudU4lE6/ence3+txPUED3rC8b aI/lGab5vJpWN4hV74k5c+OOTCQGY/cOAk7TuAPxuVmrsHqys1AGxM2m90tXdxce cxNzTcGOjTpfzl7qnM+OQMx+4/LuJZdd7Gm1SAFfvfyIxjOmSthd65uSEtjuMAvP jdSOOA== -----END CERTIFICATE-----Generated at Tue Sep 17 08:11:54 2024 by rpki-client on console-ams.rpki-client.org