$ rpki-client -vvf rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/9E5B75C0022D11EAAD80DA48C4F9AE02.roa File: 9E5B75C0022D11EAAD80DA48C4F9AE02.roa (raw, json) Hash identifier: olNlCN64bLbPObiQcnjy8ZCy31CgqZyVDz4boAZyKow= Subject key identifier: 1A:21:A9:D9:1C:38:55:1F:DE:06:73:56:64:64:4B:B6:3E:21:DC:6D Certificate issuer: /CN=A916CAC7/serialNumber=30BC2EE5B7564FE0FDF200E789B23A2C0D8E9224 Certificate serial: 0B90 Authority key identifier: 30:BC:2E:E5:B7:56:4F:E0:FD:F2:00:E7:89:B2:3A:2C:0D:8E:92:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MLwu5bdWT-D98gDnibI6LA2OkiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/9E5B75C0022D11EAAD80DA48C4F9AE02.roa Signing time: Fri 10 May 2024 19:28:26 +0000 ROA not before: Fri 10 May 2024 19:28:26 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 59362 IP address blocks: 103.231.160.0/22 maxlen: 24 110.76.128.0/22 maxlen: 24 2407:5d80::/32 maxlen: 35 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.crl rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MLwu5bdWT-D98gDnibI6LA2OkiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2960 (0xb90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CAC7/serialNumber=30BC2EE5B7564FE0FDF200E789B23A2C0D8E9224 Validity Not Before: May 10 19:28:26 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=663e755a-e085 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5b:d4:ed:72:c0:2c:46:d3:63:57:c3:c1:e9: bd:91:fe:3f:58:63:43:94:59:aa:69:59:3c:ad:1e: 3c:a1:87:b1:be:28:9f:db:8c:e2:f5:9f:f8:77:dc: 2c:5b:66:db:9a:09:c3:77:40:39:6e:98:df:9b:d6: ff:f6:92:36:38:8e:ce:45:30:fb:16:8e:50:bb:1a: 9f:d5:8b:72:d6:6d:9b:fe:c9:1d:91:67:64:12:74: 02:39:83:45:c9:d9:a4:81:4d:0e:c4:97:1a:c3:89: fd:11:d4:63:1c:d7:87:41:11:80:9f:16:3e:94:32: 00:20:b7:1a:c9:55:8e:5a:27:79:fb:32:83:5d:d8: c5:f4:e0:6d:11:3a:a6:2f:e0:9e:42:56:99:ee:7e: d6:ba:99:d4:f6:42:0c:ea:f8:fb:9b:70:3e:80:fa: b4:0c:98:8f:11:a1:0e:26:00:b3:26:68:18:cc:14: 81:ef:aa:4a:28:46:b1:7d:d9:e8:01:05:96:72:b0: cf:05:44:23:47:7a:99:20:af:48:b6:25:19:eb:78: 0d:03:ea:62:9f:78:c8:a4:69:c0:f3:1c:bd:b4:1d: 2d:fc:27:24:e8:08:dd:62:37:c4:29:1a:32:72:2a: 05:30:74:14:77:2b:b7:a4:ed:f5:ec:ee:f6:5f:22: 6e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:21:A9:D9:1C:38:55:1F:DE:06:73:56:64:64:4B:B6:3E:21:DC:6D X509v3 Authority Key Identifier: keyid:30:BC:2E:E5:B7:56:4F:E0:FD:F2:00:E7:89:B2:3A:2C:0D:8E:92:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MLwu5bdWT-D98gDnibI6LA2OkiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/9E5B75C0022D11EAAD80DA48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.231.160.0/22 110.76.128.0/22 IPv6: 2407:5d80::/32 Signature Algorithm: sha256WithRSAEncryption c7:0a:bd:cb:f5:09:56:7f:31:bb:a2:a1:78:48:4e:5c:f6:27: ff:be:56:ee:0a:5e:75:e1:fd:1d:f6:20:4b:45:27:fb:4e:c3: 15:42:fe:d1:ad:e1:98:a0:4c:62:6b:5b:fc:3e:ea:55:39:94: cb:11:09:0f:a4:7f:ea:84:8f:48:9f:ce:cf:92:69:88:10:e0: d8:a6:9e:27:24:53:cf:ef:42:ee:9d:c2:fd:e8:09:32:e1:fe: c0:ee:93:82:af:28:d2:06:d9:9e:a2:33:93:08:01:eb:3b:e2: 7e:5e:51:c0:61:de:b0:4d:12:dd:54:3c:88:67:c9:df:c5:4c: 34:90:c2:4e:c6:68:77:11:69:37:28:2d:11:2d:6a:cd:76:5a: 9e:6b:d1:c2:37:9d:5e:51:8a:f7:ce:3f:19:0e:ae:42:c3:d2: ac:02:ab:cc:69:78:51:5a:1a:41:2e:2d:2e:74:f4:8d:8c:78: 71:08:f5:8a:fc:33:b8:61:88:ac:a0:29:36:6b:f6:98:91:5b: 36:da:9a:54:f5:73:5a:02:07:d6:a0:a4:c0:cc:57:9c:72:3c: 63:5b:48:ca:cc:71:16:67:95:de:e0:6b:13:af:04:aa:f9:18: 6d:e9:a0:0a:1e:86:aa:03:b0:2e:df:42:60:70:87:e8:94:87: 6a:9e:1a:59 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICC5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNBQzcxMTAvBgNVBAUTKDMwQkMyRUU1Qjc1NjRGRTBGREYyMDBFNzg5QjIzQTJD MEQ4RTkyMjQwHhcNMjQwNTEwMTkyODI2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNlNzU1YS1lMDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxlvU7XLALEbTY1fDwem9kf4/WGNDlFmqaVk8rR48oYexviif24zi9Z/4d9ws W2bbmgnDd0A5bpjfm9b/9pI2OI7ORTD7Fo5Quxqf1Yty1m2b/skdkWdkEnQCOYNF ydmkgU0OxJcaw4n9EdRjHNeHQRGAnxY+lDIAILcayVWOWid5+zKDXdjF9OBtETqm L+CeQlaZ7n7WupnU9kIM6vj7m3A+gPq0DJiPEaEOJgCzJmgYzBSB76pKKEaxfdno AQWWcrDPBUQjR3qZIK9ItiUZ63gNA+pin3jIpGnA8xy9tB0t/Cck6AjdYjfEKRoy cioFMHQUdyu3pO317O72XyJu8wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFBohqdkc OFUf3gZzVmRkS7Y+IdxtMB8GA1UdIwQYMBaAFDC8LuW3Vk/g/fIA54myOiwNjpIk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0FDNy9DMTM5REFCQTAy MkMxMUVBQkUxRjBDNDhDNEY5QUUwMi9NTHd1NWJkV1QtRDk4Z0RuaWJJNkxBMk9r aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01Md3U1YmRXVC1EOThnRG5pYkk2TEEyT2tpUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkNBQzcvQzEzOURBQkEwMjJDMTFFQUJFMUYwQzQ4QzRGOUFFMDIvOUU1Qjc1QzAw MjJEMTFFQUFEODBEQTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJn56ADBAJuTIAwDQQCAAIwBwMFACQHXYAwDQYJKoZIhvcN AQELBQADggEBAMcKvcv1CVZ/MbuioXhITlz2J/++Vu4KXnXh/R32IEtFJ/tOwxVC /tGt4ZigTGJrW/w+6lU5lMsRCQ+kf+qEj0ifzs+SaYgQ4NimnickU8/vQu6dwv3o CTLh/sDuk4KvKNIG2Z6iM5MIAes74n5eUcBh3rBNEt1UPIhnyd/FTDSQwk7GaHcR aTcoLREtas12Wp5r0cI3nV5RivfOPxkOrkLD0qwCq8xpeFFaGkEuLS509I2MeHEI 9Yr8M7hhiKygKTZr9piRWzbamlT1c1oCB9agpMDMV5xyPGNbSMrMcRZnld7gaxOv BKr5GG3poAoehqoDsC7fQmBwh+iUh2qeGlk= -----END CERTIFICATE-----Generated at Sat May 18 20:16:00 2024 by rpki-client on console-ams.rpki-client.org