$ rpki-client -vvf rpki.apnic.net/member_repository/A916E323/E7FC2F1EEFEE11ED977B1A64C4F9AE02/67DC0600EFF411EDB617DD7DC4F9AE02.roa File: 67DC0600EFF411EDB617DD7DC4F9AE02.roa (raw, json) Hash identifier: Ov9Iy68ylv/0olkozASTg06oN1egQxgWNpmo0R0rgcU= Subject key identifier: B0:3A:00:9A:48:EB:42:D0:7B:B3:A0:7D:F3:3D:AF:46:8B:80:BA:BB Certificate issuer: /CN=A916E323/serialNumber=C161E985961FD957E667EF2E8CAA7737FA9285D1 Certificate serial: 02 Authority key identifier: C1:61:E9:85:96:1F:D9:57:E6:67:EF:2E:8C:AA:77:37:FA:92:85:D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wWHphZYf2VfmZ-8ujKp3N_qShdE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E323/E7FC2F1EEFEE11ED977B1A64C4F9AE02/67DC0600EFF411EDB617DD7DC4F9AE02.roa Signing time: Thu 11 May 2023 12:07:31 +0000 ROA not before: Thu 11 May 2023 12:07:31 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 151323 IP address blocks: 103.193.73.0/24 maxlen: 24 2400:fca0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E323/E7FC2F1EEFEE11ED977B1A64C4F9AE02/wWHphZYf2VfmZ-8ujKp3N_qShdE.crl rsync://rpki.apnic.net/member_repository/A916E323/E7FC2F1EEFEE11ED977B1A64C4F9AE02/wWHphZYf2VfmZ-8ujKp3N_qShdE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wWHphZYf2VfmZ-8ujKp3N_qShdE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E323/serialNumber=C161E985961FD957E667EF2E8CAA7737FA9285D1 Validity Not Before: May 11 12:07:31 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=645cda83-f48b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:29:27:65:55:ec:fe:89:43:3f:1f:7b:fa:a2: fd:52:a6:f8:9f:86:46:04:b5:1b:e4:5c:c6:d1:69: df:5f:a6:98:1f:e1:5f:c7:3d:2f:3c:c3:d8:0e:b3: 39:c8:08:ce:8d:44:04:94:2b:54:30:b2:33:24:8f: cf:cc:f0:98:58:57:5f:01:ec:7a:d9:5d:5d:22:18: e5:b8:b9:c5:5e:79:c3:8d:07:63:0b:0f:ff:6b:11: fc:45:86:08:ae:cc:5d:65:63:48:8f:e4:6f:63:20: 31:06:bb:6a:10:b3:0f:bd:fe:c6:f7:ff:30:13:65: 06:bb:39:78:f0:a1:53:7f:62:cd:d3:3a:d3:db:96: 10:d0:df:31:68:c4:d5:97:05:b7:7d:3d:49:ba:8e: b1:05:36:14:ca:e3:ba:0c:e7:51:19:08:54:2a:9a: eb:53:a3:12:d9:cd:6b:0b:8c:9c:15:d9:b5:08:79: c7:98:18:2d:43:05:50:4f:8c:e4:61:1b:2e:50:82: e5:0d:13:c6:cd:97:cc:2f:54:5d:21:a0:fe:a1:e9: 07:d9:f5:8a:a2:ed:28:2c:7a:56:a2:80:2a:fe:a1: 93:12:82:33:a6:0a:db:88:4f:50:dd:64:65:82:c9: c8:37:59:81:a0:7d:8c:1d:29:37:67:45:55:69:75: f4:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:3A:00:9A:48:EB:42:D0:7B:B3:A0:7D:F3:3D:AF:46:8B:80:BA:BB X509v3 Authority Key Identifier: keyid:C1:61:E9:85:96:1F:D9:57:E6:67:EF:2E:8C:AA:77:37:FA:92:85:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E323/E7FC2F1EEFEE11ED977B1A64C4F9AE02/wWHphZYf2VfmZ-8ujKp3N_qShdE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wWHphZYf2VfmZ-8ujKp3N_qShdE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E323/E7FC2F1EEFEE11ED977B1A64C4F9AE02/67DC0600EFF411EDB617DD7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.193.73.0/24 IPv6: 2400:fca0::/32 Signature Algorithm: sha256WithRSAEncryption 7e:97:22:23:97:03:3c:65:70:7f:cc:35:1f:83:26:13:f0:8b: c1:85:01:6c:14:8a:ac:16:90:0a:56:94:b6:7c:f3:85:7f:37: 2b:16:fb:e6:3f:60:f9:b4:d9:41:cc:c0:49:be:2b:fb:67:a2: 26:b7:d0:71:e7:97:2f:9a:f7:a5:40:e1:e6:4f:5f:97:fa:4d: a0:7e:a4:27:46:82:30:07:28:56:29:bd:e7:af:1a:62:1e:78: b9:55:68:85:2f:83:1b:63:1a:91:78:5f:b5:5d:93:81:20:c2: cf:ac:3d:9f:eb:42:44:7c:9d:8d:03:cc:85:64:27:5f:7b:8d: e7:6d:31:1b:d5:de:b8:c6:b3:1a:40:e5:7f:ac:a9:fa:6e:bd: 02:30:90:a0:ac:a3:cb:b2:8b:60:0d:ef:aa:ab:bd:d4:3a:de: a8:48:d8:a2:ee:17:83:0c:02:64:a9:81:94:98:21:02:22:d9: 28:83:51:fd:f5:48:59:e9:f4:53:f3:a4:bf:ef:0d:73:bd:1d: 0b:c3:de:6b:56:5d:1b:6b:8a:48:c5:fd:0b:eb:7c:89:b9:2b: 1b:b5:36:87:22:fc:44:a8:cc:a3:49:ec:2c:bf:68:e2:54:c6: 02:d1:4b:12:e8:01:ff:eb:0d:1c:1b:01:ca:bc:ed:45:a3:3f: 3c:74:ec:2e -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 RTMyMzExMC8GA1UEBRMoQzE2MUU5ODU5NjFGRDk1N0U2NjdFRjJFOENBQTc3MzdG QTkyODVEMTAeFw0yMzA1MTExMjA3MzFaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0NWNkYTgzLWY0OGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRKSdlVez+iUM/H3v6ov1SpvifhkYEtRvkXMbRad9fppgf4V/HPS88w9gOsznI CM6NRASUK1QwsjMkj8/M8JhYV18B7HrZXV0iGOW4ucVeecONB2MLD/9rEfxFhgiu zF1lY0iP5G9jIDEGu2oQsw+9/sb3/zATZQa7OXjwoVN/Ys3TOtPblhDQ3zFoxNWX Bbd9PUm6jrEFNhTK47oM51EZCFQqmutToxLZzWsLjJwV2bUIeceYGC1DBVBPjORh Gy5QguUNE8bNl8wvVF0hoP6h6QfZ9Yqi7SgselaigCr+oZMSgjOmCtuIT1DdZGWC ycg3WYGgfYwdKTdnRVVpdfQBAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUsDoAmkjr QtB7s6B98z2vRouAurswHwYDVR0jBBgwFoAUwWHphZYf2VfmZ+8ujKp3N/qShdEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZFMzIzL0U3RkMyRjFFRUZF RTExRUQ5NzdCMUE2NEM0RjlBRTAyL3dXSHBoWllmMlZmbVotOHVqS3AzTl9xU2hk RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvd1dIcGhaWWYyVmZtWi04dWpLcDNOX3FTaGRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTMyMy9FN0ZDMkYxRUVGRUUxMUVEOTc3QjFBNjRDNEY5QUUwMi82N0RDMDYwMEVG RjQxMUVEQjYxN0REN0RDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAGfBSTANBAIAAjAHAwUAJAD8oDANBgkqhkiG9w0BAQsFAAOC AQEAfpciI5cDPGVwf8w1H4MmE/CLwYUBbBSKrBaQClaUtnzzhX83Kxb75j9g+bTZ QczASb4r+2eiJrfQceeXL5r3pUDh5k9fl/pNoH6kJ0aCMAcoVim9568aYh54uVVo hS+DG2MakXhftV2TgSDCz6w9n+tCRHydjQPMhWQnX3uN520xG9XeuMazGkDlf6yp +m69AjCQoKyjy7KLYA3vqqu91DreqEjYou4XgwwCZKmBlJghAiLZKINR/fVIWen0 U/Okv+8Nc70dC8Pea1ZdG2uKSMX9C+t8ibkrG7U2hyL8RKjMo0nsLL9o4lTGAtFL EugB/+sNHBsByrztRaM/PHTsLg== -----END CERTIFICATE-----Generated at Sat May 11 07:50:56 2024 by rpki-client on console-ams.rpki-client.org