$ rpki-client -vvf rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/5D7779A6108A11EC9E1F3D49C4F9AE02.roa File: 5D7779A6108A11EC9E1F3D49C4F9AE02.roa (raw, json) Hash identifier: UFGeygu0SH/omcLzwA18/Jl3yhfPlJu6Xbm6fMztNp0= Subject key identifier: C8:DE:A8:4E:C3:53:A8:17:CE:C1:C6:E2:55:FC:7D:F9:A0:48:5E:15 Certificate issuer: /CN=A9170AE9/serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Certificate serial: 03BC Authority key identifier: 1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/5D7779A6108A11EC9E1F3D49C4F9AE02.roa Signing time: Fri 15 Sep 2023 01:02:37 +0000 ROA not before: Fri 15 Sep 2023 01:02:37 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 147017 IP address blocks: 103.173.2.0/23 maxlen: 23 103.173.2.0/24 maxlen: 24 103.173.3.0/24 maxlen: 24 2001:df7:8280::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 01:57:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 956 (0x3bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170AE9/serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Validity Not Before: Sep 15 01:02:37 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6503ad2c-983b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a2:18:41:c2:77:ab:5b:b8:43:43:ed:b1:d4: 6d:43:e1:e9:46:af:8c:98:3f:06:d3:ff:82:92:3f: 18:6f:d4:1e:f3:56:63:91:38:a5:3d:ec:2a:e6:c2: d8:f0:02:7c:d2:be:5f:01:cc:76:8d:19:a3:25:9c: 41:74:26:bd:59:e5:c3:fb:a6:bc:34:ef:fb:ab:8f: ba:6f:46:9c:24:b2:1c:7d:7b:95:69:1b:42:21:5d: ab:a0:92:4f:1d:92:ec:fa:44:ac:57:75:40:5d:c0: 7e:c1:93:fb:1c:ae:6c:e0:bc:ce:fc:01:bd:90:c0: 53:9d:bd:39:30:e5:b3:30:53:78:76:c4:31:cd:08: b2:af:5a:4b:61:d8:44:f8:73:05:c8:44:bf:e2:a3: 50:b6:61:aa:55:ea:83:5e:a0:e4:40:87:c7:c2:8c: 2f:0a:b1:47:13:cc:f3:95:fe:f1:1d:c5:c7:9f:c3: a7:36:7d:ef:05:c8:1c:92:93:48:59:a6:55:d0:47: e8:2e:c9:3f:3a:69:6b:30:b7:48:28:9b:b9:05:f7: 76:9f:8b:8f:2a:c9:28:e2:f5:c6:77:59:34:b8:c0: 75:49:48:2a:6e:00:23:a3:17:f1:d0:a9:75:ff:13: c6:52:12:aa:3a:8f:d6:d2:a9:56:99:d0:9d:90:6d: de:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:DE:A8:4E:C3:53:A8:17:CE:C1:C6:E2:55:FC:7D:F9:A0:48:5E:15 X509v3 Authority Key Identifier: keyid:1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/5D7779A6108A11EC9E1F3D49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.2.0/23 IPv6: 2001:df7:8280::/48 Signature Algorithm: sha256WithRSAEncryption 28:77:20:a6:18:f7:f4:06:6c:db:49:94:af:bc:2d:df:d6:89: 57:96:c2:43:e1:2d:e9:0c:9f:f0:fd:6c:c8:37:a3:bb:3c:08: bb:85:0e:04:97:18:be:72:35:2b:aa:b4:ec:c3:8d:3f:34:cf: e5:2a:19:7a:96:36:55:c6:83:4b:56:f6:22:74:af:ab:53:bc: d9:a6:91:86:df:82:d8:5a:91:39:8d:ab:ea:7e:a9:5a:86:7f: d1:04:18:cd:6a:49:90:d2:83:61:bd:25:42:a0:6d:53:84:58: 61:aa:ae:a8:bf:18:30:c4:03:b6:e6:68:46:bc:92:0c:f9:ca: 5f:ec:b3:e5:50:7f:38:b4:1a:74:b2:bf:ee:45:33:84:99:6f: a8:fe:21:9b:ca:eb:df:b5:f7:15:ce:c8:a9:82:d0:3a:8b:97: 6f:79:1a:31:5f:5f:a5:18:d4:79:68:f6:65:f5:eb:09:0f:23: 1c:59:b8:c4:a5:ea:57:dc:f0:ca:49:48:2b:7e:85:16:ed:9a: b5:a1:cb:da:d8:d5:3a:2a:3d:02:3a:07:a3:3f:e7:47:a3:f4: 13:9a:6e:ae:76:cf:8d:5c:33:8c:5d:0d:23:df:23:1f:90:68: 3b:ad:5e:a8:5f:a6:1f:5e:00:81:f7:e2:31:22:1e:a1:c4:26: bd:24:8b:a7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA7wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBBRTkxMTAvBgNVBAUTKDFCN0Y3OTgxRDlFMkMyQzMwRjZGMkMzNDg3MUEyOTg2 RDg1Rjg5MEUwHhcNMjMwOTE1MDEwMjM3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTAzYWQyYy05ODNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqIYQcJ3q1u4Q0PtsdRtQ+HpRq+MmD8G0/+Ckj8Yb9Qe81ZjkTilPewq5sLY 8AJ80r5fAcx2jRmjJZxBdCa9WeXD+6a8NO/7q4+6b0acJLIcfXuVaRtCIV2roJJP HZLs+kSsV3VAXcB+wZP7HK5s4LzO/AG9kMBTnb05MOWzMFN4dsQxzQiyr1pLYdhE +HMFyES/4qNQtmGqVeqDXqDkQIfHwowvCrFHE8zzlf7xHcXHn8OnNn3vBcgckpNI WaZV0EfoLsk/OmlrMLdIKJu5Bfd2n4uPKsko4vXGd1k0uMB1SUgqbgAjoxfx0Kl1 /xPGUhKqOo/W0qlWmdCdkG3eHQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMjeqE7D U6gXzsHG4lX8ffmgSF4VMB8GA1UdIwQYMBaAFBt/eYHZ4sLDD28sNIcaKYbYX4kO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEFFOS8wOTEyMDM4MDEw ODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdzTVBieXcwaHhvcGh0aGZp UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0czOTVnZG5pd3NNUGJ5dzBoeG9waHRoZmlRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzBBRTkvMDkxMjAzODAxMDg2MTFFQzgxRTc3MDNGQzRGOUFFMDIvNUQ3Nzc5QTYx MDhBMTFFQzlFMUYzRDQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnrQIwDwQCAAIwCQMHACABDfeCgDANBgkqhkiG9w0BAQsF AAOCAQEAKHcgphj39AZs20mUr7wt39aJV5bCQ+Et6Qyf8P1syDejuzwIu4UOBJcY vnI1K6q07MONPzTP5SoZepY2VcaDS1b2InSvq1O82aaRht+C2FqROY2r6n6pWoZ/ 0QQYzWpJkNKDYb0lQqBtU4RYYaquqL8YMMQDtuZoRrySDPnKX+yz5VB/OLQadLK/ 7kUzhJlvqP4hm8rr37X3Fc7IqYLQOouXb3kaMV9fpRjUeWj2ZfXrCQ8jHFm4xKXq V9zwyklIK36FFu2ataHL2tjVOio9AjoHoz/nR6P0E5purnbPjVwzjF0NI98jH5Bo O61eqF+mH14AgffiMSIeocQmvSSLpw== -----END CERTIFICATE-----Generated at Tue May 7 03:10:20 2024 by rpki-client on console-ams.rpki-client.org