$ rpki-client -vvf rpki.apnic.net/member_repository/A9174CB0/CCAC1454EB5511EABDE24E36C4F9AE02/E21E5A44EB5611EA85A6FA39C4F9AE02.roa File: E21E5A44EB5611EA85A6FA39C4F9AE02.roa (raw, json) Hash identifier: BiQSNx2uJwK+gVBDwZS3YyPicwWmesPdfJrIA1iCWBw= Subject key identifier: AA:A9:C5:4B:3C:46:62:CB:E5:D4:A3:BD:CA:40:5A:EA:69:51:77:5A Certificate issuer: /CN=A9174CB0/serialNumber=87BF57FBBCE0645E291D4946E5C7227624371ACE Certificate serial: 06B0 Authority key identifier: 87:BF:57:FB:BC:E0:64:5E:29:1D:49:46:E5:C7:22:76:24:37:1A:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h79X-7zgZF4pHUlG5ccidiQ3Gs4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174CB0/CCAC1454EB5511EABDE24E36C4F9AE02/E21E5A44EB5611EA85A6FA39C4F9AE02.roa Signing time: Sat 30 Sep 2023 21:58:57 +0000 ROA not before: Sat 30 Sep 2023 21:58:57 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 141024 IP address blocks: 103.155.20.0/23 maxlen: 23 103.155.20.0/24 maxlen: 24 103.155.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174CB0/CCAC1454EB5511EABDE24E36C4F9AE02/h79X-7zgZF4pHUlG5ccidiQ3Gs4.crl rsync://rpki.apnic.net/member_repository/A9174CB0/CCAC1454EB5511EABDE24E36C4F9AE02/h79X-7zgZF4pHUlG5ccidiQ3Gs4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h79X-7zgZF4pHUlG5ccidiQ3Gs4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1712 (0x6b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174CB0/serialNumber=87BF57FBBCE0645E291D4946E5C7227624371ACE Validity Not Before: Sep 30 21:58:57 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65189a21-fdde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:95:c5:c1:f1:1b:3f:41:3a:e6:7a:4e:b0:cc: 72:11:2c:d1:3e:70:67:5c:59:6e:44:51:57:aa:7f: 92:d9:74:08:c6:ba:40:6d:dd:7a:7a:95:e8:b3:d6: da:09:a7:69:f8:da:e6:88:2f:55:98:06:34:91:e2: 03:e4:e8:11:9c:04:a4:48:2a:1b:a8:be:be:5f:59: ed:91:7c:63:d6:8c:0a:2d:4d:84:31:fd:5d:fa:7e: 2b:49:e8:cd:1d:77:b3:74:d8:b5:36:77:d2:2b:e6: cc:2e:9f:5e:bf:66:42:cb:8a:fa:53:6f:e9:8b:b6: f3:32:98:aa:45:8e:fd:ef:90:e1:5c:02:15:d2:0d: b8:d0:46:4a:16:e1:f6:2d:46:e1:a0:25:68:92:af: 2d:69:ee:8a:5d:2f:64:34:c2:a0:79:f8:a9:80:6d: e5:48:6c:59:f0:6c:06:fa:0d:0c:d7:75:e0:a7:30: bd:9b:94:a3:9e:73:c9:90:a9:a3:87:cb:d1:dd:64: b1:74:48:e5:63:b4:9c:ce:5c:73:53:8d:3d:a7:0b: dd:18:49:58:26:98:8b:bd:70:74:a5:88:ac:fc:23: 31:16:d9:86:cb:a1:05:f0:18:b2:75:9c:ad:4b:00: 91:80:f5:bd:45:0c:cb:b0:a3:61:8d:27:de:4e:53: 36:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:A9:C5:4B:3C:46:62:CB:E5:D4:A3:BD:CA:40:5A:EA:69:51:77:5A X509v3 Authority Key Identifier: keyid:87:BF:57:FB:BC:E0:64:5E:29:1D:49:46:E5:C7:22:76:24:37:1A:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174CB0/CCAC1454EB5511EABDE24E36C4F9AE02/h79X-7zgZF4pHUlG5ccidiQ3Gs4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h79X-7zgZF4pHUlG5ccidiQ3Gs4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174CB0/CCAC1454EB5511EABDE24E36C4F9AE02/E21E5A44EB5611EA85A6FA39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.20.0/23 Signature Algorithm: sha256WithRSAEncryption 54:78:75:e0:39:64:42:91:04:e0:93:84:49:c5:13:23:85:5a: 12:2c:bc:6a:24:58:13:38:9d:8b:64:d2:05:fa:ef:ff:77:ce: 79:22:b4:7e:f8:92:e9:61:0a:b8:f9:82:15:25:08:f4:15:f1: 93:7d:26:28:19:dd:4a:9d:65:e5:e4:5c:b1:37:c2:ff:73:59: fd:4c:c9:2f:68:0a:92:07:dd:0d:ff:b3:8e:d0:ea:ec:6e:12: dc:8e:46:e4:ca:3a:ed:29:61:75:06:a2:df:51:d1:02:de:79: 68:02:e8:3d:06:84:cb:a4:5b:72:a1:7a:3e:f8:34:c1:86:9c: 23:fe:3c:6a:96:f1:a5:48:da:25:03:a2:87:8b:53:07:92:d2: 7d:5b:c0:88:0b:a9:fc:5a:44:27:89:e7:d9:ab:51:45:a9:44: a2:ad:31:c2:42:3e:e3:51:dc:81:dd:04:97:bd:62:73:73:f0: 8a:69:d4:69:c2:1b:dc:39:8b:86:41:6e:1e:12:a3:3b:94:67: ed:51:24:4a:3c:95:46:cb:95:14:d7:1f:da:da:e5:ac:39:c2: 3e:05:db:15:cf:31:b7:15:8d:f9:17:fa:dc:9a:40:9f:13:af: eb:9d:f9:b8:28:a5:3f:00:36:66:5f:36:33:10:01:c7:2f:8c: 36:e2:19:0c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBrAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRDQjAxMTAvBgNVBAUTKDg3QkY1N0ZCQkNFMDY0NUUyOTFENDk0NkU1QzcyMjc2 MjQzNzFBQ0UwHhcNMjMwOTMwMjE1ODU3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTE4OWEyMS1mZGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwpXFwfEbP0E65npOsMxyESzRPnBnXFluRFFXqn+S2XQIxrpAbd16epXos9ba Cadp+NrmiC9VmAY0keID5OgRnASkSCobqL6+X1ntkXxj1owKLU2EMf1d+n4rSejN HXezdNi1NnfSK+bMLp9ev2ZCy4r6U2/pi7bzMpiqRY7975DhXAIV0g240EZKFuH2 LUbhoCVokq8tae6KXS9kNMKgefipgG3lSGxZ8GwG+g0M13XgpzC9m5SjnnPJkKmj h8vR3WSxdEjlY7SczlxzU409pwvdGElYJpiLvXB0pYis/CMxFtmGy6EF8BiydZyt SwCRgPW9RQzLsKNhjSfeTlM2PwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKqpxUs8 RmLL5dSjvcpAWuppUXdaMB8GA1UdIwQYMBaAFIe/V/u84GReKR1JRuXHInYkNxrO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NENCMC9DQ0FDMTQ1NEVC NTUxMUVBQkRFMjRFMzZDNEY5QUUwMi9oNzlYLTd6Z1pGNHBIVWxHNWNjaWRpUTNH czQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3OVgtN3pnWkY0cEhVbEc1Y2NpZGlRM0dzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzRDQjAvQ0NBQzE0NTRFQjU1MTFFQUJERTI0RTM2QzRGOUFFMDIvRTIxRTVBNDRF QjU2MTFFQTg1QTZGQTM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmxQwDQYJKoZIhvcNAQELBQADggEBAFR4deA5ZEKRBOCT hEnFEyOFWhIsvGokWBM4nYtk0gX67/93znkitH74kulhCrj5ghUlCPQV8ZN9JigZ 3UqdZeXkXLE3wv9zWf1MyS9oCpIH3Q3/s47Q6uxuEtyORuTKOu0pYXUGot9R0QLe eWgC6D0GhMukW3Khej74NMGGnCP+PGqW8aVI2iUDooeLUweS0n1bwIgLqfxaRCeJ 59mrUUWpRKKtMcJCPuNR3IHdBJe9YnNz8Ipp1GnCG9w5i4ZBbh4SozuUZ+1RJEo8 lUbLlRTXH9ra5aw5wj4F2xXPMbcVjfkX+tyaQJ8Tr+ud+bgopT8ANmZfNjMQAccv jDbiGQw= -----END CERTIFICATE-----Generated at Sat May 11 01:30:14 2024 by rpki-client on console-ams.rpki-client.org