$ rpki-client -vvf rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/2A9AFB320BC911EBBA11562FC4F9AE02.roa File: 2A9AFB320BC911EBBA11562FC4F9AE02.roa (raw, json) Hash identifier: YiysjwUg7jPSlIr+ErqlpzeKvI+pQ4GXns/g0LTcu3M= Subject key identifier: EF:56:A7:E8:17:7F:52:E2:17:43:90:9B:0D:AC:83:CA:37:3C:4E:D5 Certificate issuer: /CN=A9173BC9/serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Certificate serial: 0ADA Authority key identifier: 4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/2A9AFB320BC911EBBA11562FC4F9AE02.roa Signing time: Mon 04 Sep 2023 19:26:47 +0000 ROA not before: Mon 04 Sep 2023 19:26:47 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 134404 IP address blocks: 103.192.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 19:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2778 (0xada) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173BC9/serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Validity Not Before: Sep 4 19:26:47 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64f62f77-ead7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:97:2b:9e:dd:26:9a:4b:24:af:b7:95:cc:ba: 68:4f:0f:51:ab:db:43:3b:8c:01:f2:bb:83:72:10: b9:e5:86:83:32:73:bf:ad:85:59:72:41:bb:ae:2c: 18:73:ae:86:af:f9:5c:9a:4b:73:e4:9b:8f:0a:36: e2:9a:bd:1d:0f:b5:ed:7c:bf:8a:df:91:f3:f7:99: 25:4c:d8:2f:ea:bf:9e:83:12:d5:5d:52:c8:f4:0d: 9b:a4:88:03:b3:dd:58:ae:d2:be:aa:ca:5e:b3:80: 98:ab:f1:f4:12:14:8a:bc:30:55:c0:f2:e5:eb:f4: 9e:62:c4:3c:83:f9:75:9a:fb:72:3f:a8:a5:54:a2: 3a:72:9f:8f:cc:c5:13:c4:d4:2e:03:66:fd:1b:70: 78:5e:b6:4e:3b:c3:c3:ab:5e:9e:61:14:61:86:10: 26:f8:e3:52:18:62:b0:0f:c9:c9:da:a3:e5:9c:90: 4c:4b:f7:e3:2c:07:53:59:b2:57:22:20:13:c2:40: ae:d7:83:c1:f3:a4:dd:0d:f1:f0:5e:51:4f:52:70: e1:22:32:40:6c:50:55:10:f0:3c:a1:de:7a:6d:25: a0:e4:40:49:63:13:51:aa:f5:a0:37:e4:c5:c0:19: aa:9e:4a:40:13:8c:22:58:e1:84:1d:2a:66:a6:69: d9:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:56:A7:E8:17:7F:52:E2:17:43:90:9B:0D:AC:83:CA:37:3C:4E:D5 X509v3 Authority Key Identifier: keyid:4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/2A9AFB320BC911EBBA11562FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.192.156.0/22 Signature Algorithm: sha256WithRSAEncryption 9c:5c:14:90:8d:b9:fa:60:5d:14:e7:95:b7:61:b9:4f:1b:4f: c2:5d:04:2a:a3:6d:38:08:3f:f2:8d:72:3e:ba:4f:7e:dc:26: b5:03:ae:7c:d9:a0:26:3a:7d:23:b6:a7:22:53:0d:a9:d3:a9: 2b:54:cf:2f:04:90:2e:dd:9e:0b:a6:3b:97:57:03:06:6f:da: 84:15:49:a1:bb:f6:00:6b:61:4d:87:1b:a6:6b:2f:0b:db:a0: ef:51:8c:74:69:d0:7d:28:a7:68:fa:0c:47:11:0f:43:8a:39: ed:7b:ee:cc:8d:67:d8:51:c6:4e:9a:79:62:b5:1b:44:28:7b: 03:2e:1e:a4:b6:af:3b:ed:ce:31:b3:81:b2:32:5e:8a:d0:3b: 9f:60:8f:3c:18:36:eb:43:80:4d:dc:9c:59:fa:b1:6b:ae:f7: 8d:8d:dc:5e:fd:0f:df:51:4e:18:f5:1e:44:55:2d:0f:9a:51: 87:6e:18:d1:51:60:0b:96:bb:b5:f2:52:c3:3f:ff:25:da:0f: 06:bf:cd:2d:87:21:9a:95:f7:7a:c3:18:88:e1:bb:d7:b1:0a: a7:1a:34:dd:9a:23:72:e8:80:2d:f2:04:fd:dd:a7:05:a9:3b: 8b:d9:4a:e7:e0:b0:97:c2:e0:8b:12:6e:e3:37:df:5d:bc:59: 0e:0f:d6:ee -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNCQzkxMTAvBgNVBAUTKDRBMTUyMzMzQzQwNUY1NjY0MkMyRkQwM0IxQzBGMUU1 MUY3QjY0RDYwHhcNMjMwOTA0MTkyNjQ3WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY2MmY3Ny1lYWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJcrnt0mmkskr7eVzLpoTw9Rq9tDO4wB8ruDchC55YaDMnO/rYVZckG7riwY c66Gr/lcmktz5JuPCjbimr0dD7XtfL+K35Hz95klTNgv6r+egxLVXVLI9A2bpIgD s91YrtK+qspes4CYq/H0EhSKvDBVwPLl6/SeYsQ8g/l1mvtyP6ilVKI6cp+PzMUT xNQuA2b9G3B4XrZOO8PDq16eYRRhhhAm+ONSGGKwD8nJ2qPlnJBMS/fjLAdTWbJX IiATwkCu14PB86TdDfHwXlFPUnDhIjJAbFBVEPA8od56bSWg5EBJYxNRqvWgN+TF wBmqnkpAE4wiWOGEHSpmpmnZGwIDAQABo4IClTCCApEwHQYDVR0OBBYEFO9Wp+gX f1LiF0OQmw2sg8o3PE7VMB8GA1UdIwQYMBaAFEoVIzPEBfVmQsL9A7HA8eUfe2TW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0JDOS9DNUM4M0NBRTEz QTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlXWkN3djBEc2NEeDVSOTda TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoVWpNOFFGOVdaQ3d2MERzY0R4NVI5N1pOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzNCQzkvQzVDODNDQUUxM0EwMTFFQTkzRUVFRjY1QzRGOUFFMDIvMkE5QUZCMzIw QkM5MTFFQkJBMTE1NjJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnwJwwDQYJKoZIhvcNAQELBQADggEBAJxcFJCNufpgXRTn lbdhuU8bT8JdBCqjbTgIP/KNcj66T37cJrUDrnzZoCY6fSO2pyJTDanTqStUzy8E kC7dngumO5dXAwZv2oQVSaG79gBrYU2HG6ZrLwvboO9RjHRp0H0op2j6DEcRD0OK Oe177syNZ9hRxk6aeWK1G0QoewMuHqS2rzvtzjGzgbIyXorQO59gjzwYNutDgE3c nFn6sWuu942N3F79D99RThj1HkRVLQ+aUYduGNFRYAuWu7XyUsM//yXaDwa/zS2H IZqV93rDGIjhu9exCqcaNN2aI3LogC3yBP3dpwWpO4vZSufgsJfC4IsSbuM33128 WQ4P1u4= -----END CERTIFICATE-----Generated at Thu May 16 21:45:28 2024 by rpki-client on console-fra.rpki-client.org