$ rpki-client -vvf rpki.apnic.net/member_repository/A917295C/1F2074C8968211EBA399115BC4F9AE02/AE810C76CC8811EC85E73563C4F9AE02.roa File: AE810C76CC8811EC85E73563C4F9AE02.roa (raw, json) Hash identifier: 53eKlpPlx2BeqKRmf2VvnNLyjTQHQIJAEVMwlx++YiA= Subject key identifier: 18:F0:AA:C6:9C:38:7D:11:77:AE:46:9B:CC:88:D3:A5:BF:2D:D5:23 Certificate issuer: /CN=A917295C/serialNumber=542414FBE3FF232AACC62E73DDC37E275282ED4A Certificate serial: 050A Authority key identifier: 54:24:14:FB:E3:FF:23:2A:AC:C6:2E:73:DD:C3:7E:27:52:82:ED:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCQU--P_Iyqsxi5z3cN-J1KC7Uo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917295C/1F2074C8968211EBA399115BC4F9AE02/AE810C76CC8811EC85E73563C4F9AE02.roa Signing time: Fri 20 Oct 2023 23:52:00 +0000 ROA not before: Fri 20 Oct 2023 23:52:00 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 136950 IP address blocks: 103.143.158.0/23 maxlen: 23 103.143.158.0/24 maxlen: 24 103.143.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917295C/1F2074C8968211EBA399115BC4F9AE02/VCQU--P_Iyqsxi5z3cN-J1KC7Uo.crl rsync://rpki.apnic.net/member_repository/A917295C/1F2074C8968211EBA399115BC4F9AE02/VCQU--P_Iyqsxi5z3cN-J1KC7Uo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCQU--P_Iyqsxi5z3cN-J1KC7Uo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1290 (0x50a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917295C/serialNumber=542414FBE3FF232AACC62E73DDC37E275282ED4A Validity Not Before: Oct 20 23:52:00 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=653312a0-35b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:4b:76:15:86:36:8f:03:8b:ac:6c:26:08:a6: 14:6e:5c:67:fe:51:ba:9b:0d:5d:6b:e8:a7:a0:fd: 1d:38:15:1c:04:e9:cd:c1:b0:16:ac:09:0b:12:7e: 61:34:c3:66:1d:d1:e7:eb:29:c0:85:cc:1f:f4:45: d0:15:b9:44:02:6a:41:b9:33:62:b8:9f:28:9d:99: af:16:a6:39:be:79:5c:69:9d:67:d7:b8:22:ce:42: b8:c6:d3:f6:1c:4b:37:a1:ba:41:75:43:7c:a5:e6: 05:bd:52:ca:33:a6:72:b5:74:09:42:37:f8:80:6b: 2d:70:bb:e8:7e:af:39:18:77:95:37:65:b2:10:01: a9:2a:80:1d:71:a4:1a:37:6a:fc:4e:13:ed:59:be: 4e:c7:4c:b7:d4:a1:98:cf:d1:e9:93:dc:cf:9f:78: 05:bb:87:d8:ed:05:12:c0:9b:f0:de:24:d7:62:0e: fc:58:66:bc:29:44:10:05:51:09:66:a4:34:56:eb: 68:24:04:d0:c5:70:44:6a:b1:ff:dc:7a:4b:21:aa: d7:27:b0:85:c3:97:83:7b:6b:f2:e8:94:fe:d2:ef: 12:a8:7d:6c:5b:6a:97:e0:dd:fe:2e:62:01:03:61: d3:69:ab:26:a8:77:7f:23:78:e3:f1:a0:ae:0b:f8: ca:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:F0:AA:C6:9C:38:7D:11:77:AE:46:9B:CC:88:D3:A5:BF:2D:D5:23 X509v3 Authority Key Identifier: keyid:54:24:14:FB:E3:FF:23:2A:AC:C6:2E:73:DD:C3:7E:27:52:82:ED:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917295C/1F2074C8968211EBA399115BC4F9AE02/VCQU--P_Iyqsxi5z3cN-J1KC7Uo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCQU--P_Iyqsxi5z3cN-J1KC7Uo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917295C/1F2074C8968211EBA399115BC4F9AE02/AE810C76CC8811EC85E73563C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.158.0/23 Signature Algorithm: sha256WithRSAEncryption 47:1a:04:30:47:66:04:af:78:8c:a0:61:3b:ab:26:7c:4e:ab: 2a:13:df:da:70:72:81:6d:e7:1b:6f:bb:af:2a:2a:5c:56:2b: 2a:ed:72:cb:85:35:ee:bb:af:9e:97:a4:e3:d2:2c:62:63:7c: e9:75:38:da:bc:f2:8c:e7:6d:b1:d5:5e:62:d1:dc:4d:9e:2e: b7:22:5c:77:0a:1f:09:ba:36:2e:75:2c:08:0d:36:aa:18:42: 16:90:55:db:f0:32:81:3c:7c:31:33:04:6b:28:6f:e1:30:40: dd:35:fe:c8:03:fc:96:ef:ff:02:c8:f9:de:90:73:57:16:a3: 43:d3:8d:30:6d:ac:3b:d6:dd:f6:a7:ca:f6:8a:40:b9:ca:3d: 3a:b4:b8:e1:f2:6a:2f:fe:00:97:c4:3b:85:3c:61:13:cc:62: 19:fa:ad:48:95:fd:25:0f:c0:da:8c:58:a2:43:46:b6:03:db: c3:dd:8c:75:06:3a:c7:4c:a6:71:3a:70:7c:39:6f:3c:c1:7d: 4d:e6:1f:3a:f4:ea:4e:fa:ef:0a:e5:e3:02:e0:b0:8f:e1:04: cd:97:f3:0e:5b:a4:46:b8:49:12:87:0b:37:af:64:80:b5:3f: 48:aa:ab:c2:2d:53:74:cb:a9:88:8b:9a:bb:96:28:7a:8d:e4: 1a:60:53:82 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI5NUMxMTAvBgNVBAUTKDU0MjQxNEZCRTNGRjIzMkFBQ0M2MkU3M0REQzM3RTI3 NTI4MkVENEEwHhcNMjMxMDIwMjM1MjAwWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTMzMTJhMC0zNWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzEt2FYY2jwOLrGwmCKYUblxn/lG6mw1da+inoP0dOBUcBOnNwbAWrAkLEn5h NMNmHdHn6ynAhcwf9EXQFblEAmpBuTNiuJ8onZmvFqY5vnlcaZ1n17gizkK4xtP2 HEs3obpBdUN8peYFvVLKM6ZytXQJQjf4gGstcLvofq85GHeVN2WyEAGpKoAdcaQa N2r8ThPtWb5Ox0y31KGYz9Hpk9zPn3gFu4fY7QUSwJvw3iTXYg78WGa8KUQQBVEJ ZqQ0VutoJATQxXBEarH/3HpLIarXJ7CFw5eDe2vy6JT+0u8SqH1sW2qX4N3+LmIB A2HTaasmqHd/I3jj8aCuC/jK1wIDAQABo4IClTCCApEwHQYDVR0OBBYEFBjwqsac OH0Rd65Gm8yI06W/LdUjMB8GA1UdIwQYMBaAFFQkFPvj/yMqrMYuc93DfidSgu1K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Mjk1Qy8xRjIwNzRDODk2 ODIxMUVCQTM5OTExNUJDNEY5QUUwMi9WQ1FVLS1QX0l5cXN4aTV6M2NOLUoxS0M3 VW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZDUVUtLVBfSXlxc3hpNXozY04tSjFLQzdVby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzI5NUMvMUYyMDc0Qzg5NjgyMTFFQkEzOTkxMTVCQzRGOUFFMDIvQUU4MTBDNzZD Qzg4MTFFQzg1RTczNTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnj54wDQYJKoZIhvcNAQELBQADggEBAEcaBDBHZgSveIyg YTurJnxOqyoT39pwcoFt5xtvu68qKlxWKyrtcsuFNe67r56XpOPSLGJjfOl1ONq8 8oznbbHVXmLR3E2eLrciXHcKHwm6Ni51LAgNNqoYQhaQVdvwMoE8fDEzBGsob+Ew QN01/sgD/Jbv/wLI+d6Qc1cWo0PTjTBtrDvW3fanyvaKQLnKPTq0uOHyai/+AJfE O4U8YRPMYhn6rUiV/SUPwNqMWKJDRrYD28PdjHUGOsdMpnE6cHw5bzzBfU3mHzr0 6k767wrl4wLgsI/hBM2X8w5bpEa4SRKHCzevZIC1P0iqq8ItU3TLqYiLmruWKHqN 5BpgU4I= -----END CERTIFICATE-----Generated at Sun May 5 01:22:21 2024 by rpki-client on console-fra.rpki-client.org