$ rpki-client -vvf rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/24D8D69CADAE11EBB6E7565AC4F9AE02.roa File: 24D8D69CADAE11EBB6E7565AC4F9AE02.roa (raw, json) Hash identifier: mhZHlkYH+YSrlkjmhPO9IFezmhOqlbFXLEJDPIojfyo= Subject key identifier: CF:B2:10:65:35:FB:21:F9:46:83:64:C4:C0:2B:DE:0E:35:95:72:F7 Certificate issuer: /CN=A9173DB5/serialNumber=47EC53BFDD351320E89B2C541BACDD4D8D52A0B3 Certificate serial: 04DD Authority key identifier: 47:EC:53:BF:DD:35:13:20:E8:9B:2C:54:1B:AC:DD:4D:8D:52:A0:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R-xTv901EyDomyxUG6zdTY1SoLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/24D8D69CADAE11EBB6E7565AC4F9AE02.roa Signing time: Wed 07 Jun 2023 02:09:17 +0000 ROA not before: Wed 07 Jun 2023 02:09:17 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 64063 IP address blocks: 103.164.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.crl rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R-xTv901EyDomyxUG6zdTY1SoLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:07:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1245 (0x4dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173DB5/serialNumber=47EC53BFDD351320E89B2C541BACDD4D8D52A0B3 Validity Not Before: Jun 7 02:09:17 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=647fe6cd-613b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a8:7d:72:be:18:96:b6:3f:5a:65:99:d8:30: c6:8f:23:66:63:8c:7d:5d:e5:05:da:35:1e:de:09: d5:8e:42:30:53:4e:5d:84:3b:69:a3:e7:a6:fe:bb: 6e:fe:26:43:7d:91:1f:97:39:98:00:df:88:32:1a: d7:a1:11:8f:90:2f:87:f8:df:9f:d2:c7:66:6b:b7: 0e:06:78:fc:c7:b8:1f:93:02:0a:60:52:e3:67:08: b5:c7:4b:d4:8c:ee:8e:97:15:f7:95:af:b2:55:da: f5:83:5e:8e:52:b7:2e:d9:1b:0d:20:41:8c:af:3d: 9e:e2:72:56:c7:7c:d5:5b:69:3b:55:1b:d2:29:6a: cd:b8:c5:fe:2e:09:35:a5:b0:0a:6f:c2:ca:ed:9c: e4:0f:84:49:5c:1b:80:dc:8e:69:e6:5b:9b:ee:87: 5f:24:c4:1e:de:d1:6e:bc:a0:95:90:82:8f:b1:0e: f7:dd:70:77:41:ee:49:e4:61:c1:5f:2e:02:82:3d: e6:3b:8d:e8:d0:4d:fc:4a:7c:c4:e2:49:3d:6d:2d: ec:9f:f1:a8:0b:a2:e6:6f:ec:9b:09:2d:ab:fb:71: ca:f4:f6:b4:84:27:b4:c1:ae:3b:4f:78:79:60:f4: cc:7f:7f:dc:0c:91:60:31:b1:b8:7a:55:5a:9b:de: 0b:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:B2:10:65:35:FB:21:F9:46:83:64:C4:C0:2B:DE:0E:35:95:72:F7 X509v3 Authority Key Identifier: keyid:47:EC:53:BF:DD:35:13:20:E8:9B:2C:54:1B:AC:DD:4D:8D:52:A0:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R-xTv901EyDomyxUG6zdTY1SoLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/24D8D69CADAE11EBB6E7565AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.164.254.0/24 Signature Algorithm: sha256WithRSAEncryption 68:8b:40:bb:ed:03:b0:6c:f5:76:09:0f:6d:57:91:88:6d:e9: 49:63:23:4b:7a:fe:9b:9f:05:37:11:61:23:0e:7f:70:d8:79: 26:ed:fe:79:49:0f:29:f3:ea:37:9e:0f:36:33:1a:f4:95:91: 38:b4:ce:0a:98:a4:db:12:01:87:e5:f0:45:6b:69:fd:4c:ef: 49:f5:0d:64:27:4d:29:bb:87:78:7e:94:79:ad:31:5e:26:4c: 39:43:1d:c8:fb:c0:2e:a9:2e:59:61:ce:87:46:83:3a:72:4c: c5:1b:28:8c:b6:09:69:7b:e6:25:a6:d3:9a:0e:8a:f8:50:60: 51:ba:76:14:26:62:72:85:01:2b:ed:b3:92:d7:13:d0:c3:61: fc:30:58:60:48:a4:ad:26:80:d7:ef:7a:d2:f2:4a:e7:f2:59: 48:da:3e:78:e3:b9:f2:bc:92:a6:30:c0:70:f7:52:f7:07:17: a7:6f:ed:dc:97:2c:c6:73:b2:40:fe:03:34:35:09:ce:f1:7c: 8b:b6:a7:17:1b:39:83:67:30:e5:4c:f2:cf:bb:48:ad:d2:c3: 2d:e5:6e:a4:d2:a6:5b:b6:96:fb:bf:d3:70:f5:c7:3e:ed:16: f9:26:1e:fa:23:f3:e8:e9:15:79:8e:24:07:4f:d4:a7:df:54: 54:1a:29:7b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNEQjUxMTAvBgNVBAUTKDQ3RUM1M0JGREQzNTEzMjBFODlCMkM1NDFCQUNERDRE OEQ1MkEwQjMwHhcNMjMwNjA3MDIwOTE3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdmZTZjZC02MTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxah9cr4YlrY/WmWZ2DDGjyNmY4x9XeUF2jUe3gnVjkIwU05dhDtpo+em/rtu /iZDfZEflzmYAN+IMhrXoRGPkC+H+N+f0sdma7cOBnj8x7gfkwIKYFLjZwi1x0vU jO6OlxX3la+yVdr1g16OUrcu2RsNIEGMrz2e4nJWx3zVW2k7VRvSKWrNuMX+Lgk1 pbAKb8LK7ZzkD4RJXBuA3I5p5lub7odfJMQe3tFuvKCVkIKPsQ733XB3Qe5J5GHB Xy4Cgj3mO43o0E38SnzE4kk9bS3sn/GoC6Lmb+ybCS2r+3HK9Pa0hCe0wa47T3h5 YPTMf3/cDJFgMbG4elVam94LVQIDAQABo4IClTCCApEwHQYDVR0OBBYEFM+yEGU1 +yH5RoNkxMAr3g41lXL3MB8GA1UdIwQYMBaAFEfsU7/dNRMg6JssVBus3U2NUqCz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0RCNS8wQzk5OUVDMDhG QTExMUVCQTIyMDY2MUVDNEY5QUUwMi9SLXhUdjkwMUV5RG9teXhVRzZ6ZFRZMVNv TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IteFR2OTAxRXlEb215eFVHNnpkVFkxU29MTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzNEQjUvMEM5OTlFQzA4RkExMTFFQkEyMjA2NjFFQzRGOUFFMDIvMjREOEQ2OUNB REFFMTFFQkI2RTc1NjVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnpP4wDQYJKoZIhvcNAQELBQADggEBAGiLQLvtA7Bs9XYJ D21XkYht6UljI0t6/pufBTcRYSMOf3DYeSbt/nlJDynz6jeeDzYzGvSVkTi0zgqY pNsSAYfl8EVraf1M70n1DWQnTSm7h3h+lHmtMV4mTDlDHcj7wC6pLllhzodGgzpy TMUbKIy2CWl75iWm05oOivhQYFG6dhQmYnKFASvts5LXE9DDYfwwWGBIpK0mgNfv etLySufyWUjaPnjjufK8kqYwwHD3UvcHF6dv7dyXLMZzskD+AzQ1Cc7xfIu2pxcb OYNnMOVM8s+7SK3Swy3lbqTSplu2lvu/03D1xz7tFvkmHvoj8+jpFXmOJAdP1Kff VFQaKXs= -----END CERTIFICATE-----Generated at Fri May 17 01:06:59 2024 by rpki-client on console-fra.rpki-client.org