$ rpki-client -vvf rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/443E334CDD8E11EA90A06285C4F9AE02.roa File: 443E334CDD8E11EA90A06285C4F9AE02.roa (raw, json) Hash identifier: DusD5wJ9MDdolcjIyd4r5RP0ZZyb0nuopLTMAFqQFDQ= Subject key identifier: 76:A9:63:86:9C:A0:9E:20:BB:06:23:B8:09:59:F7:58:32:3E:82:87 Certificate issuer: /CN=A9172EF8/serialNumber=E8DDECEC16FE3485D5B61A65A61EECD75A981B43 Certificate serial: 06DD Authority key identifier: E8:DD:EC:EC:16:FE:34:85:D5:B6:1A:65:A6:1E:EC:D7:5A:98:1B:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N3s7Bb-NIXVthplph7s11qYG0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/443E334CDD8E11EA90A06285C4F9AE02.roa Signing time: Sat 28 Oct 2023 22:09:45 +0000 ROA not before: Sat 28 Oct 2023 22:09:45 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 140995 IP address blocks: 103.154.158.0/23 maxlen: 23 103.154.158.0/24 maxlen: 24 103.154.159.0/24 maxlen: 24 2001:df4:8f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/6N3s7Bb-NIXVthplph7s11qYG0M.crl rsync://rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/6N3s7Bb-NIXVthplph7s11qYG0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N3s7Bb-NIXVthplph7s11qYG0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1757 (0x6dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172EF8/serialNumber=E8DDECEC16FE3485D5B61A65A61EECD75A981B43 Validity Not Before: Oct 28 22:09:45 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=653d86a9-e605 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:7b:ce:c1:6c:2c:2e:e9:f1:5e:24:f6:33:dd: 42:5c:c1:f3:33:a6:26:af:0d:5e:22:cf:b5:a1:b7: 95:63:61:0e:e9:99:f3:80:fc:0f:7d:05:10:23:32: fe:4b:3f:6b:52:bd:d4:15:6c:ec:98:35:30:17:57: 0d:0a:d8:2a:0f:08:23:7f:0e:2c:23:c8:5f:e3:83: bd:b5:5e:e4:fe:9f:47:38:e2:ef:07:d8:b8:5f:2c: 17:4d:3b:e1:5e:a7:ae:ef:47:7b:57:15:06:d0:08: 66:ab:e1:8f:3c:a0:fd:20:0b:af:76:c8:98:07:4b: bd:c4:e2:ed:bd:a9:fc:32:2c:63:20:99:fa:be:0b: e8:24:9f:19:5e:19:2d:f2:ba:09:5b:b2:a2:54:c5: b3:47:f8:25:a4:51:f7:f6:dd:fe:ce:07:a4:0a:42: 6e:45:40:1a:0f:b2:9c:17:51:ac:e6:b3:08:7d:46: fc:be:65:82:fd:32:7b:ae:ab:e8:69:1d:c0:ff:cf: 30:20:d9:db:3b:38:a4:b4:ef:b2:0d:98:9b:0b:f2: 94:85:36:93:be:5a:8a:a8:29:a0:ea:4a:52:01:d5: 7c:fc:70:a5:43:ae:31:2c:db:e4:32:d5:37:c0:d1: 06:a2:be:68:c3:64:95:36:b4:12:2f:45:62:9b:7c: 00:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:A9:63:86:9C:A0:9E:20:BB:06:23:B8:09:59:F7:58:32:3E:82:87 X509v3 Authority Key Identifier: keyid:E8:DD:EC:EC:16:FE:34:85:D5:B6:1A:65:A6:1E:EC:D7:5A:98:1B:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/6N3s7Bb-NIXVthplph7s11qYG0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N3s7Bb-NIXVthplph7s11qYG0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/443E334CDD8E11EA90A06285C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.158.0/23 IPv6: 2001:df4:8f80::/48 Signature Algorithm: sha256WithRSAEncryption 5c:e0:7a:80:fc:77:11:df:ed:a5:e7:d8:67:02:ba:c8:8a:f1: d7:77:70:4c:31:45:c1:55:78:5d:a8:a4:7b:68:60:f2:39:2b: c1:4e:0e:e8:17:b5:09:8e:a2:90:35:86:d5:81:b9:c5:8f:13: dd:1a:f8:5e:39:40:ae:2a:87:46:45:2d:07:8e:76:a7:05:0e: cf:39:17:e8:20:4e:2b:c5:b1:87:8c:35:8b:13:f5:c4:fd:82: 52:f0:0b:02:65:9e:67:aa:04:4a:61:19:44:2d:3c:8f:88:80: 43:e0:a2:45:1e:2f:fd:9a:f9:53:ca:8d:3d:d5:2e:1b:a5:eb: 0b:7e:39:b1:fe:e4:51:4b:88:bc:99:bf:58:d7:39:76:03:70: dc:45:92:6c:29:24:54:76:a8:b2:2a:ea:88:33:a9:68:11:d3: 75:b6:e7:ed:95:a2:c3:e1:1c:73:03:29:82:81:4e:fb:8f:05: ec:5f:81:16:da:74:27:55:ca:ea:51:59:a0:27:a3:4d:33:e8: 75:6d:fd:39:c0:23:52:1d:aa:f9:0d:52:c7:48:1a:7a:1d:49: 0b:dd:38:a2:b7:f4:4f:05:e6:21:00:86:c7:02:3a:36:75:3c: b2:31:3f:7d:92:f8:8d:cc:e1:19:0d:16:b3:40:5a:61:f1:a0: 61:ed:b7:2c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBt0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJFRjgxMTAvBgNVBAUTKEU4RERFQ0VDMTZGRTM0ODVENUI2MUE2NUE2MUVFQ0Q3 NUE5ODFCNDMwHhcNMjMxMDI4MjIwOTQ1WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTNkODZhOS1lNjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsnvOwWwsLunxXiT2M91CXMHzM6Ymrw1eIs+1obeVY2EO6ZnzgPwPfQUQIzL+ Sz9rUr3UFWzsmDUwF1cNCtgqDwgjfw4sI8hf44O9tV7k/p9HOOLvB9i4XywXTTvh Xqeu70d7VxUG0Ahmq+GPPKD9IAuvdsiYB0u9xOLtvan8MixjIJn6vgvoJJ8ZXhkt 8roJW7KiVMWzR/glpFH39t3+zgekCkJuRUAaD7KcF1Gs5rMIfUb8vmWC/TJ7rqvo aR3A/88wINnbOziktO+yDZibC/KUhTaTvlqKqCmg6kpSAdV8/HClQ64xLNvkMtU3 wNEGor5ow2SVNrQSL0Vim3wAoQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHapY4ac oJ4guwYjuAlZ91gyPoKHMB8GA1UdIwQYMBaAFOjd7OwW/jSF1bYaZaYe7NdamBtD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkVGOC83N0Y5OEMzOERE OEMxMUVBQkRGMEU2ODJDNEY5QUUwMi82TjNzN0JiLU5JWFZ0aHBscGg3czExcVlH ME0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZOM3M3QmItTklYVnRocGxwaDdzMTFxWUcwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzJFRjgvNzdGOThDMzhERDhDMTFFQUJERjBFNjgyQzRGOUFFMDIvNDQzRTMzNENE RDhFMTFFQTkwQTA2Mjg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnmp4wDwQCAAIwCQMHACABDfSPgDANBgkqhkiG9w0BAQsF AAOCAQEAXOB6gPx3Ed/tpefYZwK6yIrx13dwTDFFwVV4Xaike2hg8jkrwU4O6Be1 CY6ikDWG1YG5xY8T3Rr4XjlAriqHRkUtB452pwUOzzkX6CBOK8Wxh4w1ixP1xP2C UvALAmWeZ6oESmEZRC08j4iAQ+CiRR4v/Zr5U8qNPdUuG6XrC345sf7kUUuIvJm/ WNc5dgNw3EWSbCkkVHaosirqiDOpaBHTdbbn7ZWiw+EccwMpgoFO+48F7F+BFtp0 J1XK6lFZoCejTTPodW39OcAjUh2q+Q1Sx0gaeh1JC904orf0TwXmIQCGxwI6NnU8 sjE/fZL4jczhGQ0Ws0BaYfGgYe23LA== -----END CERTIFICATE-----Generated at Thu May 16 23:39:14 2024 by rpki-client on console-ams.rpki-client.org