$ rpki-client -vvf rpki.apnic.net/member_repository/A9178297/4B1F748487B411EB8EF3321AC4F9AE02/DB883A6E87B511EB91F5691BC4F9AE02.roa File: DB883A6E87B511EB91F5691BC4F9AE02.roa (raw, json) Hash identifier: yMkTs1r7zVQCm9Jz8qG1gmsVLTSy0IiX+D6XXQj1kow= Subject key identifier: 40:DE:3E:95:20:48:7C:6A:C7:35:D8:C0:2D:81:C0:B0:3E:64:26:30 Certificate issuer: /CN=A9178297/serialNumber=9E1BA232737A3D00D7FAA0B4DC3834D9AAF06DF8 Certificate serial: 04DC Authority key identifier: 9E:1B:A2:32:73:7A:3D:00:D7:FA:A0:B4:DC:38:34:D9:AA:F0:6D:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhuiMnN6PQDX-qC03Dg02arwbfg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178297/4B1F748487B411EB8EF3321AC4F9AE02/DB883A6E87B511EB91F5691BC4F9AE02.roa Signing time: Wed 17 May 2023 02:09:00 +0000 ROA not before: Wed 17 May 2023 02:09:00 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134508 IP address blocks: 103.164.91.0/24 maxlen: 24 2001:df6:4480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178297/4B1F748487B411EB8EF3321AC4F9AE02/nhuiMnN6PQDX-qC03Dg02arwbfg.crl rsync://rpki.apnic.net/member_repository/A9178297/4B1F748487B411EB8EF3321AC4F9AE02/nhuiMnN6PQDX-qC03Dg02arwbfg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhuiMnN6PQDX-qC03Dg02arwbfg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 00:30:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1244 (0x4dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178297/serialNumber=9E1BA232737A3D00D7FAA0B4DC3834D9AAF06DF8 Validity Not Before: May 17 02:09:00 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=6464373c-2d77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:22:f8:e7:66:b6:83:4d:a1:15:05:83:ab:5f: bc:eb:03:a4:86:14:0e:e3:c8:65:96:09:1e:b1:85: 6a:a4:f9:dd:7f:b7:2d:a9:7d:34:f8:aa:31:7a:24: 82:a3:72:b0:2f:79:8a:e3:3d:52:ee:a6:84:a3:88: 99:c4:97:71:35:52:82:de:dd:e1:2d:e7:f6:e7:cd: d1:54:8c:57:a8:ca:6b:e3:55:2d:4a:a0:17:83:d7: ed:4a:f4:c8:72:64:0c:f6:d7:66:1e:10:9c:55:15: 6e:97:11:ac:88:63:a1:6e:52:af:a7:50:3a:8c:15: 95:d8:ed:b8:b5:8c:a8:06:86:eb:fa:66:47:e2:77: 0b:f1:3d:82:2c:e2:7f:57:a9:31:45:6b:29:5a:7d: f0:cd:5c:56:b3:e2:ff:d9:e7:a9:ba:39:86:ec:f8: ff:7e:8a:5d:76:53:c5:a1:d8:fe:25:33:71:e6:f2: be:1f:47:5d:16:42:e6:81:76:5b:d8:86:8e:4b:74: b1:2e:b9:4b:38:71:80:0a:9d:34:e9:fa:2b:d7:e0: 40:58:af:bd:52:11:3b:eb:ce:df:bf:8b:e3:1c:82: 66:64:c4:5a:40:e1:2a:79:78:5a:4c:41:a9:9c:73: 5e:2b:4d:f3:15:ea:45:76:56:a5:0d:52:58:9f:7b: 49:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:DE:3E:95:20:48:7C:6A:C7:35:D8:C0:2D:81:C0:B0:3E:64:26:30 X509v3 Authority Key Identifier: keyid:9E:1B:A2:32:73:7A:3D:00:D7:FA:A0:B4:DC:38:34:D9:AA:F0:6D:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178297/4B1F748487B411EB8EF3321AC4F9AE02/nhuiMnN6PQDX-qC03Dg02arwbfg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhuiMnN6PQDX-qC03Dg02arwbfg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178297/4B1F748487B411EB8EF3321AC4F9AE02/DB883A6E87B511EB91F5691BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.164.91.0/24 IPv6: 2001:df6:4480::/48 Signature Algorithm: sha256WithRSAEncryption 38:69:55:8b:b3:53:1a:da:85:b2:eb:d2:9c:40:cd:5f:59:c6: a4:1e:b8:dd:31:8f:af:76:82:6e:40:95:c6:41:2f:fb:20:e5: a9:ee:0f:b5:75:79:91:a0:0e:c7:a2:35:a3:e5:97:fa:ee:7d: 9e:36:24:f2:a3:04:1d:f9:84:2d:4d:53:50:76:4c:33:75:65: f6:b2:fc:92:1e:48:30:85:9f:46:77:24:38:fe:e8:9d:b4:20: 81:8e:ff:8b:27:f9:1c:7b:39:e4:b5:13:82:3b:fe:9a:5f:f1: 31:87:da:8a:8c:3c:d9:91:c9:19:6f:4a:b0:64:d9:84:9d:f5: 37:19:91:d7:76:e4:03:e2:65:97:c4:cb:57:b2:e8:7f:00:b8: b5:75:13:28:5b:80:14:7e:d6:2a:8e:96:6c:7b:05:1a:6f:0f: a6:00:a7:41:4c:cb:0d:f2:d6:4d:05:b5:55:ae:07:93:45:4e: 56:66:e9:26:0a:14:56:a9:60:e8:ed:d1:20:33:30:30:9b:ab: 73:38:fb:f7:e9:97:1e:54:e6:96:ba:10:c6:25:63:f4:58:18: c7:61:ab:8d:49:7c:9f:0e:63:62:89:6b:93:9f:57:46:ec:fb: 2b:7c:82:a8:0b:18:85:b2:f5:1d:f2:cd:08:38:b8:fb:dd:1a: af:e0:f9:90 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzgyOTcxMTAvBgNVBAUTKDlFMUJBMjMyNzM3QTNEMDBEN0ZBQTBCNERDMzgzNEQ5 QUFGMDZERjgwHhcNMjMwNTE3MDIwOTAwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDY0MzczYy0yZDc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiL452a2g02hFQWDq1+86wOkhhQO48hllgkesYVqpPndf7ctqX00+KoxeiSC o3KwL3mK4z1S7qaEo4iZxJdxNVKC3t3hLef2583RVIxXqMpr41UtSqAXg9ftSvTI cmQM9tdmHhCcVRVulxGsiGOhblKvp1A6jBWV2O24tYyoBobr+mZH4ncL8T2CLOJ/ V6kxRWspWn3wzVxWs+L/2eepujmG7Pj/fopddlPFodj+JTNx5vK+H0ddFkLmgXZb 2IaOS3SxLrlLOHGACp006for1+BAWK+9UhE7687fv4vjHIJmZMRaQOEqeXhaTEGp nHNeK03zFepFdlalDVJYn3tJ7wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEDePpUg SHxqxzXYwC2BwLA+ZCYwMB8GA1UdIwQYMBaAFJ4bojJzej0A1/qgtNw4NNmq8G34 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODI5Ny80QjFGNzQ4NDg3 QjQxMUVCOEVGMzMyMUFDNEY5QUUwMi9uaHVpTW5ONlBRRFgtcUMwM0RnMDJhcndi ZmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25odWlNbk42UFFEWC1xQzAzRGcwMmFyd2JmZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzgyOTcvNEIxRjc0ODQ4N0I0MTFFQjhFRjMzMjFBQzRGOUFFMDIvREI4ODNBNkU4 N0I1MTFFQjkxRjU2OTFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnpFswDwQCAAIwCQMHACABDfZEgDANBgkqhkiG9w0BAQsF AAOCAQEAOGlVi7NTGtqFsuvSnEDNX1nGpB643TGPr3aCbkCVxkEv+yDlqe4PtXV5 kaAOx6I1o+WX+u59njYk8qMEHfmELU1TUHZMM3Vl9rL8kh5IMIWfRnckOP7onbQg gY7/iyf5HHs55LUTgjv+ml/xMYfaiow82ZHJGW9KsGTZhJ31NxmR13bkA+Jll8TL V7LofwC4tXUTKFuAFH7WKo6WbHsFGm8PpgCnQUzLDfLWTQW1Va4Hk0VOVmbpJgoU Vqlg6O3RIDMwMJurczj79+mXHlTmlroQxiVj9FgYx2GrjUl8nw5jYolrk59XRuz7 K3yCqAsYhbL1HfLNCDi4+90ar+D5kA== -----END CERTIFICATE-----Generated at Tue May 21 01:50:47 2024 by rpki-client on console-ams.rpki-client.org