$ rpki-client -vvf rpki.apnic.net/member_repository/A9174C15/AC9C6B500A4411EC94797E53C4F9AE02/CC5C527A0AA611EE84B0053DC4F9AE02.roa File: CC5C527A0AA611EE84B0053DC4F9AE02.roa (raw, json) Hash identifier: U8w6xGkW6DhfBpJ7gpeXFHQwNWjxc1KwSjVSaMh1NGM= Subject key identifier: A2:F1:29:32:49:C4:70:F5:57:17:2D:EF:4A:19:DA:C4:29:40:A9:78 Certificate issuer: /CN=A9174C15/serialNumber=C7B0004FF6B18688C197BC4B39FAC125D49FBCF9 Certificate serial: 03D9 Authority key identifier: C7:B0:00:4F:F6:B1:86:88:C1:97:BC:4B:39:FA:C1:25:D4:9F:BC:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7AAT_axhojBl7xLOfrBJdSfvPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174C15/AC9C6B500A4411EC94797E53C4F9AE02/CC5C527A0AA611EE84B0053DC4F9AE02.roa Signing time: Tue 19 Sep 2023 01:01:53 +0000 ROA not before: Tue 19 Sep 2023 01:01:53 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 14618 IP address blocks: 103.172.141.0/24 maxlen: 24 2407:d4c0:1000::/40 maxlen: 40 2407:d4c0:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174C15/AC9C6B500A4411EC94797E53C4F9AE02/x7AAT_axhojBl7xLOfrBJdSfvPk.crl rsync://rpki.apnic.net/member_repository/A9174C15/AC9C6B500A4411EC94797E53C4F9AE02/x7AAT_axhojBl7xLOfrBJdSfvPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7AAT_axhojBl7xLOfrBJdSfvPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 02:14:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 985 (0x3d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174C15/serialNumber=C7B0004FF6B18688C197BC4B39FAC125D49FBCF9 Validity Not Before: Sep 19 01:01:53 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6508f301-8635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:b3:3d:6d:21:4e:2b:8c:88:b2:02:23:11:15: 9e:fd:ac:f9:36:35:2a:a2:69:da:a3:e9:0e:7a:5f: d2:45:cc:62:eb:79:10:dc:34:81:50:26:e2:59:dd: 39:16:1a:16:04:9f:37:77:3b:be:ec:f6:3f:f0:94: 88:49:64:d5:c0:48:26:f6:50:37:c5:28:5e:0b:6a: 36:14:fc:a8:21:77:26:8f:d9:3a:31:e3:5d:40:33: fa:1f:19:b0:50:3f:64:fc:05:cf:c5:84:7d:30:76: 2c:a2:a9:64:3f:95:cb:44:ec:77:1b:e7:fb:18:e8: 00:33:72:bd:1e:8d:bd:57:50:d6:bd:16:b5:20:a0: 81:ae:7e:c6:b1:b4:d4:73:e7:4d:d8:00:67:81:8d: 46:7c:4c:54:31:96:23:72:c3:ea:c0:9e:c2:64:19: 8f:19:91:a5:14:e5:95:0c:93:2c:70:77:00:32:74: 85:a8:11:9e:65:db:be:d5:27:87:91:c1:81:58:d3: 1a:25:1c:56:6a:6e:26:7e:f7:92:52:4a:76:cb:34: 2c:cf:da:1a:26:24:e3:6f:05:43:05:20:89:3d:e4: 61:8f:4b:48:f0:11:60:04:c3:d5:e1:08:f2:ef:6f: 8d:32:f5:29:34:a6:dd:61:2f:31:ac:a8:fb:a5:f3: 4d:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:F1:29:32:49:C4:70:F5:57:17:2D:EF:4A:19:DA:C4:29:40:A9:78 X509v3 Authority Key Identifier: keyid:C7:B0:00:4F:F6:B1:86:88:C1:97:BC:4B:39:FA:C1:25:D4:9F:BC:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174C15/AC9C6B500A4411EC94797E53C4F9AE02/x7AAT_axhojBl7xLOfrBJdSfvPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7AAT_axhojBl7xLOfrBJdSfvPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174C15/AC9C6B500A4411EC94797E53C4F9AE02/CC5C527A0AA611EE84B0053DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.141.0/24 IPv6: 2407:d4c0:1000::/40 Signature Algorithm: sha256WithRSAEncryption 79:66:03:54:9f:e0:b7:c7:0e:e6:e1:85:61:21:f8:93:69:c6: 56:b6:35:04:3f:22:81:9e:20:88:15:25:cb:31:46:99:b2:db: b6:6d:ba:86:52:77:a4:7a:f6:83:b6:0a:b5:ab:58:58:15:c9: b6:a9:40:a1:4e:0d:e9:63:21:de:a5:80:41:d3:f5:f6:fb:68: 10:74:57:14:ff:a0:d8:76:2a:8e:7a:ab:6f:e4:c3:b3:a6:57: 75:c8:c4:ba:48:af:dd:48:99:f1:e1:0e:a3:5b:4e:58:90:8e: a7:74:bd:ba:ac:45:ac:e6:d0:de:00:62:6f:87:d2:f0:05:eb: a8:6a:da:cd:b8:1c:3e:61:2a:43:a2:4b:b9:af:34:8a:41:eb: 1a:d4:16:89:b4:7a:4e:dd:e2:c7:12:1b:ac:89:64:f8:fc:f7: 88:48:b5:60:b0:a6:d2:9b:b1:92:0d:a4:0d:cc:44:55:0c:db: f3:81:e1:0d:a3:13:3a:6f:34:5e:24:c5:de:56:9b:e5:58:f7: 22:19:7b:df:7b:ac:1e:01:f1:9b:42:39:dd:d4:c1:15:8f:bb: 7f:63:38:f2:0b:b8:74:8f:12:45:be:3e:a7:f9:60:32:e4:70: 13:86:bd:a4:16:f8:d1:6f:a1:5e:77:a6:f2:74:89:b0:c8:c9: 44:77:c8:b1 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICA9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRDMTUxMTAvBgNVBAUTKEM3QjAwMDRGRjZCMTg2ODhDMTk3QkM0QjM5RkFDMTI1 RDQ5RkJDRjkwHhcNMjMwOTE5MDEwMTUzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTA4ZjMwMS04NjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2LM9bSFOK4yIsgIjERWe/az5NjUqomnao+kOel/SRcxi63kQ3DSBUCbiWd05 FhoWBJ83dzu+7PY/8JSISWTVwEgm9lA3xSheC2o2FPyoIXcmj9k6MeNdQDP6Hxmw UD9k/AXPxYR9MHYsoqlkP5XLROx3G+f7GOgAM3K9Ho29V1DWvRa1IKCBrn7GsbTU c+dN2ABngY1GfExUMZYjcsPqwJ7CZBmPGZGlFOWVDJMscHcAMnSFqBGeZdu+1SeH kcGBWNMaJRxWam4mfveSUkp2yzQsz9oaJiTjbwVDBSCJPeRhj0tI8BFgBMPV4Qjy 72+NMvUpNKbdYS8xrKj7pfNNNQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFKLxKTJJ xHD1Vxct70oZ2sQpQKl4MB8GA1UdIwQYMBaAFMewAE/2sYaIwZe8Szn6wSXUn7z5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEMxNS9BQzlDNkI1MDBB NDQxMUVDOTQ3OTdFNTNDNEY5QUUwMi94N0FBVF9heGhvakJsN3hMT2ZyQkpkU2Z2 UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g3QUFUX2F4aG9qQmw3eExPZnJCSmRTZnZQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzRDMTUvQUM5QzZCNTAwQTQ0MTFFQzk0Nzk3RTUzQzRGOUFFMDIvQ0M1QzUyN0Ew QUE2MTFFRTg0QjAwNTNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBABnrI0wDgQCAAIwCAMGACQH1MAQMA0GCSqGSIb3DQEBCwUA A4IBAQB5ZgNUn+C3xw7m4YVhIfiTacZWtjUEPyKBniCIFSXLMUaZstu2bbqGUnek evaDtgq1q1hYFcm2qUChTg3pYyHepYBB0/X2+2gQdFcU/6DYdiqOeqtv5MOzpld1 yMS6SK/dSJnx4Q6jW05YkI6ndL26rEWs5tDeAGJvh9LwBeuoatrNuBw+YSpDoku5 rzSKQesa1BaJtHpO3eLHEhusiWT4/PeISLVgsKbSm7GSDaQNzERVDNvzgeENoxM6 bzReJMXeVpvlWPciGXvfe6weAfGbQjnd1MEVj7t/YzjyC7h0jxJFvj6n+WAy5HAT hr2kFvjRb6Fed6bydImwyMlEd8ix -----END CERTIFICATE-----Generated at Wed May 1 03:20:33 2024 by rpki-client on console-fra.rpki-client.org