$ rpki-client -vvf rpki.apnic.net/member_repository/A9177D93/769323A4730C11EEA58CE372C4F9AE02/5E69790087C911EEBD25E611C4F9AE02.roa File: 5E69790087C911EEBD25E611C4F9AE02.roa (raw, json) Hash identifier: XPndWRM0IelfTrLI9n1JOvmkBoj2QC2GPvktNvP1YPE= Subject key identifier: BE:35:42:51:1A:F2:7A:DD:1A:47:02:88:C3:3C:C9:71:EB:D5:68:A5 Certificate issuer: /CN=A9177D93/serialNumber=44BBBECC44C91E090305F31CE60FB7EC3AC953E7 Certificate serial: 16 Authority key identifier: 44:BB:BE:CC:44:C9:1E:09:03:05:F3:1C:E6:0F:B7:EC:3A:C9:53:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RLu-zETJHgkDBfMc5g-37DrJU-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177D93/769323A4730C11EEA58CE372C4F9AE02/5E69790087C911EEBD25E611C4F9AE02.roa Signing time: Thu 23 Nov 2023 02:46:53 +0000 ROA not before: Thu 23 Nov 2023 02:46:53 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 135380 IP address blocks: 103.71.220.0/23 maxlen: 23 103.71.220.0/24 maxlen: 24 103.71.221.0/24 maxlen: 24 2001:df3:fc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177D93/769323A4730C11EEA58CE372C4F9AE02/RLu-zETJHgkDBfMc5g-37DrJU-c.crl rsync://rpki.apnic.net/member_repository/A9177D93/769323A4730C11EEA58CE372C4F9AE02/RLu-zETJHgkDBfMc5g-37DrJU-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RLu-zETJHgkDBfMc5g-37DrJU-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:51:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177D93/serialNumber=44BBBECC44C91E090305F31CE60FB7EC3AC953E7 Validity Not Before: Nov 23 02:46:53 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=655ebd1c-5374 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e6:44:66:1d:83:75:3b:a8:26:fe:1f:ee:99: c0:5a:70:7e:41:fe:98:90:14:37:7d:c6:af:c1:29: d3:65:79:e5:cb:bb:12:c8:4a:5c:92:95:37:c5:f5: 42:66:63:cd:24:20:95:c9:c7:99:73:f4:35:dd:c7: cd:ad:34:31:79:a0:40:e0:e3:5d:64:6b:c6:74:28: 5d:e4:1f:43:48:e1:f5:b0:42:f5:6c:8b:a5:a2:a6: 7e:87:98:6e:35:da:9b:f4:ca:8c:93:eb:e9:8e:e5: d2:aa:bd:eb:ed:59:2f:30:2b:60:fa:b3:0b:ed:b2: 97:94:10:b9:c9:fe:ca:8a:c6:ef:5d:19:a8:85:ef: 6c:28:48:aa:94:5d:7c:16:93:16:af:9f:bc:2f:cf: 84:02:3a:ab:d1:c9:3e:4e:b0:1d:c4:30:97:2e:ec: 03:47:7d:78:a1:14:57:18:c5:13:48:d2:09:10:00: 22:63:8f:40:75:4e:a7:09:ad:c5:d3:3f:5d:68:f9: be:26:6f:58:d7:84:db:53:cf:d5:cc:de:ee:0a:b0: 3d:17:df:9a:89:13:df:36:28:77:39:83:72:16:3e: 11:cb:6f:c4:4f:b5:ec:7d:93:7b:cc:64:4e:d2:5a: 92:e0:0c:f3:b1:34:4b:9c:69:8f:af:8c:f5:03:65: 57:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:35:42:51:1A:F2:7A:DD:1A:47:02:88:C3:3C:C9:71:EB:D5:68:A5 X509v3 Authority Key Identifier: keyid:44:BB:BE:CC:44:C9:1E:09:03:05:F3:1C:E6:0F:B7:EC:3A:C9:53:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177D93/769323A4730C11EEA58CE372C4F9AE02/RLu-zETJHgkDBfMc5g-37DrJU-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RLu-zETJHgkDBfMc5g-37DrJU-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177D93/769323A4730C11EEA58CE372C4F9AE02/5E69790087C911EEBD25E611C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.71.220.0/23 IPv6: 2001:df3:fc0::/48 Signature Algorithm: sha256WithRSAEncryption 59:10:97:d3:56:1d:30:6a:47:5e:31:3a:8f:dc:cc:bf:fb:14: f8:32:a1:9e:9a:43:12:dd:4c:5c:bc:b7:d4:a4:6a:4a:ac:de: c4:04:58:2c:2d:c2:4b:6f:7d:ac:2f:15:4a:32:41:32:cc:fa: c3:cc:54:34:e1:61:95:53:78:18:f4:cb:18:9e:b3:5f:d2:37: 84:41:85:39:47:fc:e1:54:f8:42:9d:75:24:fb:1e:51:ac:98: db:6a:de:1f:12:ee:b8:8c:50:24:df:d0:6c:cf:80:f4:7f:3b: 22:62:28:63:a2:be:a8:46:8c:a5:d1:c2:73:c1:74:fd:5f:65: 4b:22:a2:a5:91:e3:5b:08:8d:8a:0d:49:19:e9:9d:78:17:04: 73:d5:a0:d6:dc:f4:5c:4e:34:38:6d:70:d9:e4:db:ef:f8:97: c5:c4:c7:2d:96:e8:0a:8d:b2:f4:8e:fd:37:02:5f:e2:6f:a9: 16:e3:ef:29:7e:64:b9:0a:3f:59:8d:6d:3f:4c:c3:a2:65:68: 43:05:18:29:dd:0b:1d:31:58:ab:31:06:18:6f:f6:4d:f5:11: 9d:28:44:f1:94:89:65:40:6c:b4:de:40:16:d2:3e:c7:eb:36: 8b:77:02:75:8b:ee:9e:65:bc:1e:ec:bf:5b:18:03:ea:8f:4f: b1:3e:0d:4c -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBFjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 N0Q5MzExMC8GA1UEBRMoNDRCQkJFQ0M0NEM5MUUwOTAzMDVGMzFDRTYwRkI3RUMz QUM5NTNFNzAeFw0yMzExMjMwMjQ2NTNaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NWViZDFjLTUzNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDV5kRmHYN1O6gm/h/umcBacH5B/piQFDd9xq/BKdNleeXLuxLISlySlTfF9UJm Y80kIJXJx5lz9DXdx82tNDF5oEDg411ka8Z0KF3kH0NI4fWwQvVsi6Wipn6HmG41 2pv0yoyT6+mO5dKqvevtWS8wK2D6swvtspeUELnJ/sqKxu9dGaiF72woSKqUXXwW kxavn7wvz4QCOqvRyT5OsB3EMJcu7ANHfXihFFcYxRNI0gkQACJjj0B1TqcJrcXT P11o+b4mb1jXhNtTz9XM3u4KsD0X35qJE982KHc5g3IWPhHLb8RPtex9k3vMZE7S WpLgDPOxNEucaY+vjPUDZVePAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUvjVCURry et0aRwKIwzzJcevVaKUwHwYDVR0jBBgwFoAURLu+zETJHgkDBfMc5g+37DrJU+cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3RDkzLzc2OTMyM0E0NzMw QzExRUVBNThDRTM3MkM0RjlBRTAyL1JMdS16RVRKSGdrREJmTWM1Zy0zN0RySlUt Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUkx1LXpFVEpIZ2tEQmZNYzVnLTM3RHJKVS1jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 N0Q5My83NjkzMjNBNDczMEMxMUVFQTU4Q0UzNzJDNEY5QUUwMi81RTY5NzkwMDg3 QzkxMUVFQkQyNUU2MTFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWdH3DAPBAIAAjAJAwcAIAEN8w/AMA0GCSqGSIb3DQEBCwUA A4IBAQBZEJfTVh0wakdeMTqP3My/+xT4MqGemkMS3UxcvLfUpGpKrN7EBFgsLcJL b32sLxVKMkEyzPrDzFQ04WGVU3gY9MsYnrNf0jeEQYU5R/zhVPhCnXUk+x5RrJjb at4fEu64jFAk39Bsz4D0fzsiYihjor6oRoyl0cJzwXT9X2VLIqKlkeNbCI2KDUkZ 6Z14FwRz1aDW3PRcTjQ4bXDZ5Nvv+JfFxMctlugKjbL0jv03Al/ib6kW4+8pfmS5 Cj9ZjW0/TMOiZWhDBRgp3QsdMVirMQYYb/ZN9RGdKETxlIllQGy03kAW0j7H6zaL dwJ1i+6eZbwe7L9bGAPqj0+xPg1M -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:18 2024 by rpki-client on console-ams.rpki-client.org