$ rpki-client -vvf rpki.apnic.net/member_repository/A9172C8D/9A11086469BA11EABC0BD863C4F9AE02/64AFBE3E69BC11EA97D4FE67C4F9AE02.roa File: 64AFBE3E69BC11EA97D4FE67C4F9AE02.roa (raw, json) Hash identifier: i1AnGTDAUicwn/f1zAygbYUA+SeFYYBynttvczaaZcw= Subject key identifier: C2:2B:6B:3C:9C:79:9F:54:23:1D:5B:16:F3:6C:1A:23:1A:4A:44:98 Certificate issuer: /CN=A9172C8D/serialNumber=E714A81497C8177868CBB4CDB338C3EF6CE9E953 Certificate serial: 085E Authority key identifier: E7:14:A8:14:97:C8:17:78:68:CB:B4:CD:B3:38:C3:EF:6C:E9:E9:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5xSoFJfIF3hoy7TNszjD72zp6VM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172C8D/9A11086469BA11EABC0BD863C4F9AE02/64AFBE3E69BC11EA97D4FE67C4F9AE02.roa Signing time: Fri 04 Nov 2022 21:47:45 +0000 ROA not before: Fri 04 Nov 2022 21:47:45 +0000 ROA not after: Sat 30 Dec 2023 00:00:00 +0000 asID: 58895 IP address blocks: 103.102.156.0/22 maxlen: 22 103.102.156.0/24 maxlen: 24 103.102.157.0/24 maxlen: 24 103.102.158.0/24 maxlen: 24 103.102.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172C8D/9A11086469BA11EABC0BD863C4F9AE02/5xSoFJfIF3hoy7TNszjD72zp6VM.crl rsync://rpki.apnic.net/member_repository/A9172C8D/9A11086469BA11EABC0BD863C4F9AE02/5xSoFJfIF3hoy7TNszjD72zp6VM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5xSoFJfIF3hoy7TNszjD72zp6VM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 May 2023 22:04:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2142 (0x85e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172C8D/serialNumber=E714A81497C8177868CBB4CDB338C3EF6CE9E953 Validity Not Before: Nov 4 21:47:45 2022 GMT Not After : Dec 30 00:00:00 2023 GMT Subject: CN=63658880-226c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:db:ba:c6:17:3f:82:40:de:7d:0f:3a:6b:31: d5:d9:4f:aa:10:3c:60:f0:80:ab:28:4b:aa:d8:34: ff:f8:f2:c5:00:ef:5b:e0:ee:4f:a8:18:2f:d8:43: 1d:98:f7:9f:53:db:92:ca:46:48:6e:9f:53:1a:7c: 9b:dd:71:64:96:d4:af:db:34:94:42:a3:c8:76:c1: 4c:ee:39:6c:7f:01:88:52:d1:a9:2e:6c:e8:00:11: af:d3:b5:9a:fa:25:7e:06:5e:76:99:23:84:c0:1a: 40:48:c1:4e:e8:ed:3b:09:0d:78:90:5e:9d:96:56: 57:e0:f9:8b:55:8b:0e:f8:97:23:3e:83:9b:fc:5f: 51:17:ed:63:03:98:5d:41:f5:74:09:54:c9:b6:22: 88:90:15:c0:e7:6f:8f:38:c2:3c:97:69:56:15:06: 37:41:20:d0:3d:70:8a:10:f0:67:3c:a1:09:7f:74: 6b:20:26:6a:ec:da:16:d1:da:21:f7:9a:4f:95:98: 0c:7e:f9:f4:0a:62:60:a9:6e:7d:2b:0a:5c:6a:95: 79:d5:01:c8:9e:a7:ba:4a:ba:28:41:e6:21:0b:d7: 80:13:e8:3d:b0:03:ed:10:04:ed:d1:c4:30:1e:d9: 18:09:b0:4a:48:3d:b6:a9:45:b3:81:a6:91:68:99: cb:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:2B:6B:3C:9C:79:9F:54:23:1D:5B:16:F3:6C:1A:23:1A:4A:44:98 X509v3 Authority Key Identifier: keyid:E7:14:A8:14:97:C8:17:78:68:CB:B4:CD:B3:38:C3:EF:6C:E9:E9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172C8D/9A11086469BA11EABC0BD863C4F9AE02/5xSoFJfIF3hoy7TNszjD72zp6VM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5xSoFJfIF3hoy7TNszjD72zp6VM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172C8D/9A11086469BA11EABC0BD863C4F9AE02/64AFBE3E69BC11EA97D4FE67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.102.156.0/22 Signature Algorithm: sha256WithRSAEncryption 7a:57:18:04:84:7c:dc:3b:16:0d:c1:20:65:38:69:02:28:e8: 88:d8:6e:2c:6b:a8:32:f2:57:54:1e:98:2e:18:b5:dd:72:fb: df:e7:43:7e:ba:65:33:41:43:b4:d4:78:42:31:a5:6b:a0:e2: 2a:a3:c1:09:e9:a7:ee:7d:78:91:ae:4e:84:65:05:a2:0d:f4: 90:42:22:03:12:ac:8e:dd:9d:8c:ef:03:ac:9f:38:c6:74:d5: aa:65:fb:2a:cb:9e:18:c0:38:98:ea:dd:20:66:75:80:b5:85: 50:a4:84:74:fc:6d:20:99:d6:e1:26:b9:ce:e9:2a:32:e7:7f: 4d:13:a5:18:dd:dd:e3:21:d7:3f:00:40:a9:07:a3:c6:51:cb: 50:e7:6a:44:04:d8:8d:4c:c6:60:ad:47:ef:a8:55:c6:43:cd: 6e:7f:d3:a9:e0:cf:51:23:79:cf:dc:63:d7:ae:52:31:d3:9c: 3a:06:b4:56:36:47:25:e2:02:d7:cf:98:00:d1:52:a8:d8:71: 77:20:88:56:8d:78:b7:00:4c:96:f2:3c:70:d0:eb:20:96:14: e7:4b:b9:c6:13:6c:60:85:52:2e:d2:04:24:78:8c:59:d8:f2: 6b:d7:af:ce:34:82:01:15:84:82:ef:9c:33:89:cd:56:81:d6: a2:c7:c4:40 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCF4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDOEQxMTAvBgNVBAUTKEU3MTRBODE0OTdDODE3Nzg2OENCQjRDREIzMzhDM0VG NkNFOUU5NTMwHhcNMjIxMTA0MjE0NzQ1WhcNMjMxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02MzY1ODg4MC0yMjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9u6xhc/gkDefQ86azHV2U+qEDxg8ICrKEuq2DT/+PLFAO9b4O5PqBgv2EMd mPefU9uSykZIbp9TGnyb3XFkltSv2zSUQqPIdsFM7jlsfwGIUtGpLmzoABGv07Wa +iV+Bl52mSOEwBpASMFO6O07CQ14kF6dllZX4PmLVYsO+JcjPoOb/F9RF+1jA5hd QfV0CVTJtiKIkBXA52+POMI8l2lWFQY3QSDQPXCKEPBnPKEJf3RrICZq7NoW0doh 95pPlZgMfvn0CmJgqW59KwpcapV51QHInqe6SrooQeYhC9eAE+g9sAPtEATt0cQw HtkYCbBKSD22qUWzgaaRaJnLmQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMIrazyc eZ9UIx1bFvNsGiMaSkSYMB8GA1UdIwQYMBaAFOcUqBSXyBd4aMu0zbM4w+9s6elT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkM4RC85QTExMDg2NDY5 QkExMUVBQkMwQkQ4NjNDNEY5QUUwMi81eFNvRkpmSUYzaG95N1ROc3pqRDcyenA2 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV4U29GSmZJRjNob3k3VE5zempENzJ6cDZWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzJDOEQvOUExMTA4NjQ2OUJBMTFFQUJDMEJEODYzQzRGOUFFMDIvNjRBRkJFM0U2 OUJDMTFFQTk3RDRGRTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnZpwwDQYJKoZIhvcNAQELBQADggEBAHpXGASEfNw7Fg3B IGU4aQIo6IjYbixrqDLyV1QemC4Ytd1y+9/nQ366ZTNBQ7TUeEIxpWug4iqjwQnp p+59eJGuToRlBaIN9JBCIgMSrI7dnYzvA6yfOMZ01apl+yrLnhjAOJjq3SBmdYC1 hVCkhHT8bSCZ1uEmuc7pKjLnf00TpRjd3eMh1z8AQKkHo8ZRy1DnakQE2I1MxmCt R++oVcZDzW5/06ngz1Ejec/cY9euUjHTnDoGtFY2RyXiAtfPmADRUqjYcXcgiFaN eLcATJbyPHDQ6yCWFOdLucYTbGCFUi7SBCR4jFnY8mvXr840ggEVhILvnDOJzVaB 1qLHxEA= -----END CERTIFICATE-----Generated at Wed May 3 13:18:25 2023 by rpki-client on console-ams.rpki-client.org