$ rpki-client -vvf rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/0D55A972AF0311EB96FC344BC4F9AE02.roa File: 0D55A972AF0311EB96FC344BC4F9AE02.roa (raw, json) Hash identifier: CBbqvgRwYWSYme4+k1ebNPFhjVrrqfMJPTXhxjCxtjI= Subject key identifier: 50:48:E0:99:54:B8:4C:A8:7B:A3:B8:FF:34:4C:C9:F2:E8:B2:25:F2 Certificate issuer: /CN=A9179B50/serialNumber=3DAFFFBC7E912E9FFCD2A2E0D9208EBC99709B22 Certificate serial: 04B4 Authority key identifier: 3D:AF:FF:BC:7E:91:2E:9F:FC:D2:A2:E0:D9:20:8E:BC:99:70:9B:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pa__vH6RLp_80qLg2SCOvJlwmyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/0D55A972AF0311EB96FC344BC4F9AE02.roa Signing time: Thu 03 Aug 2023 00:21:16 +0000 ROA not before: Thu 03 Aug 2023 00:21:16 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 9957 IP address blocks: 103.119.107.0/24 maxlen: 24 2403:4240:a000::/36 maxlen: 36 2403:4240:b000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/Pa__vH6RLp_80qLg2SCOvJlwmyI.crl rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/Pa__vH6RLp_80qLg2SCOvJlwmyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pa__vH6RLp_80qLg2SCOvJlwmyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1204 (0x4b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179B50/serialNumber=3DAFFFBC7E912E9FFCD2A2E0D9208EBC99709B22 Validity Not Before: Aug 3 00:21:16 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64caf2fc-fb81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:61:6b:02:53:80:b2:eb:03:e6:d8:b8:b1:1e: e0:0f:1b:2a:9f:e9:88:0d:c2:1b:10:4e:94:32:6a: 1f:c1:e5:cf:96:ef:43:c2:6c:76:5b:25:6b:2f:6d: 34:31:01:73:b6:c1:01:f7:5f:f8:6a:b6:f5:46:00: 67:2a:ec:21:83:af:f9:8b:02:44:93:26:0c:50:3d: 34:eb:18:3d:5e:eb:29:2f:4c:12:8c:f8:35:5c:4a: c4:b2:78:8b:31:e9:88:24:43:01:26:6e:31:f0:ce: 45:70:7c:19:96:fc:63:c3:ca:80:46:d5:20:a2:97: 19:9f:5f:07:b3:ca:c3:32:30:ac:29:d8:74:da:60: ef:43:1d:26:e1:7a:2a:a4:e8:a7:e3:27:30:b8:ce: 7d:98:d0:bd:1a:24:4f:6f:a7:82:bf:5c:7e:00:b5: 87:06:13:c6:de:be:49:06:97:aa:0f:cd:4e:b3:88: 23:fa:79:5a:60:f7:c4:5d:65:50:18:b5:b0:c6:6c: 32:c8:f9:81:9d:1c:75:57:ed:f1:e7:e2:10:41:f0: e3:bf:b7:5f:f6:1b:a8:60:03:07:11:8d:6f:0e:50: d0:45:25:c9:cf:57:b0:ea:45:4c:7d:cb:4c:52:ac: f6:01:07:38:dd:94:97:84:de:d1:02:bd:93:60:69: 59:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:48:E0:99:54:B8:4C:A8:7B:A3:B8:FF:34:4C:C9:F2:E8:B2:25:F2 X509v3 Authority Key Identifier: keyid:3D:AF:FF:BC:7E:91:2E:9F:FC:D2:A2:E0:D9:20:8E:BC:99:70:9B:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/Pa__vH6RLp_80qLg2SCOvJlwmyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pa__vH6RLp_80qLg2SCOvJlwmyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/0D55A972AF0311EB96FC344BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.119.107.0/24 IPv6: 2403:4240:a000::/35 Signature Algorithm: sha256WithRSAEncryption 23:05:2c:d6:69:30:5b:26:26:33:94:f4:d7:47:c0:7a:27:ff: 52:c7:0a:8a:68:f2:f8:79:1d:cb:23:fd:ee:ae:07:c8:60:20: 01:eb:7e:99:3d:56:41:f3:47:ea:5e:cf:cc:5b:f5:79:98:28: 9d:39:80:29:5e:3a:18:2a:6d:4c:9c:e8:e2:2a:3b:07:64:71: 85:24:19:fb:4b:fe:d7:74:2c:ab:da:3c:fe:56:aa:89:76:40: c8:9e:1c:d4:3f:e8:d3:25:5c:ea:d8:57:71:be:00:a9:44:8f: 57:db:c8:fd:f8:10:eb:49:83:2d:66:8e:63:b9:72:e6:fb:8b: 9a:de:2e:84:b0:56:e0:d4:fc:bf:db:08:bf:16:d2:d0:ee:ae: ad:8a:6f:4f:d4:a6:25:8f:bd:73:a0:28:6d:75:61:af:8c:2a: 0f:5a:f8:e9:1d:5e:8f:d7:3f:12:9a:7b:10:10:e2:d1:60:70: f2:67:2e:b8:1d:ec:c9:68:a1:09:8f:f7:e1:f6:2a:60:33:4f: e2:84:f3:48:c6:57:7d:9c:7d:8c:2a:0e:a4:d8:33:d7:c4:2b: 6f:bc:eb:22:0a:b9:06:18:c4:cf:58:56:e5:ab:c8:1a:1c:d5: 29:b7:28:f2:36:e3:92:a7:90:a9:2c:25:00:43:a2:43:89:b0: c8:b4:f1:90 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICBLQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlCNTAxMTAvBgNVBAUTKDNEQUZGRkJDN0U5MTJFOUZGQ0QyQTJFMEQ5MjA4RUJD OTk3MDlCMjIwHhcNMjMwODAzMDAyMTE2WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhZjJmYy1mYjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1mFrAlOAsusD5ti4sR7gDxsqn+mIDcIbEE6UMmofweXPlu9Dwmx2WyVrL200 MQFztsEB91/4arb1RgBnKuwhg6/5iwJEkyYMUD006xg9XuspL0wSjPg1XErEsniL MemIJEMBJm4x8M5FcHwZlvxjw8qARtUgopcZn18Hs8rDMjCsKdh02mDvQx0m4Xoq pOin4ycwuM59mNC9GiRPb6eCv1x+ALWHBhPG3r5JBpeqD81Os4gj+nlaYPfEXWVQ GLWwxmwyyPmBnRx1V+3x5+IQQfDjv7df9huoYAMHEY1vDlDQRSXJz1ew6kVMfctM Uqz2AQc43ZSXhN7RAr2TYGlZ8QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFBI4JlU uEyoe6O4/zRMyfLosiXyMB8GA1UdIwQYMBaAFD2v/7x+kS6f/NKi4NkgjryZcJsi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUI1MC9DNkMwNDlCMkFF RkUxMUVCODA5MzI2M0VDNEY5QUUwMi9QYV9fdkg2UkxwXzgwcUxnMlNDT3ZKbHdt eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BhX192SDZSTHBfODBxTGcyU0NPdkpsd215SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzlCNTAvQzZDMDQ5QjJBRUZFMTFFQjgwOTMyNjNFQzRGOUFFMDIvMEQ1NUE5NzJB RjAzMTFFQjk2RkMzNDRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBABnd2swDgQCAAIwCAMGBSQDQkCgMA0GCSqGSIb3DQEBCwUA A4IBAQAjBSzWaTBbJiYzlPTXR8B6J/9SxwqKaPL4eR3LI/3urgfIYCAB636ZPVZB 80fqXs/MW/V5mCidOYApXjoYKm1MnOjiKjsHZHGFJBn7S/7XdCyr2jz+VqqJdkDI nhzUP+jTJVzq2FdxvgCpRI9X28j9+BDrSYMtZo5juXLm+4ua3i6EsFbg1Py/2wi/ FtLQ7q6tim9P1KYlj71zoChtdWGvjCoPWvjpHV6P1z8SmnsQEOLRYHDyZy64HezJ aKEJj/fh9ipgM0/ihPNIxld9nH2MKg6k2DPXxCtvvOsiCrkGGMTPWFblq8gaHNUp tyjyNuOSp5CpLCUAQ6JDibDItPGQ -----END CERTIFICATE-----Generated at Fri May 17 02:01:42 2024 by rpki-client on console-ams.rpki-client.org