$ rpki-client -vvf rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/96D7EE96AF0111EB8FE37446C4F9AE02.roa File: 96D7EE96AF0111EB8FE37446C4F9AE02.roa (raw, json) Hash identifier: Eextjyq4m4XrBQbc9sqdVIrIRNghOanKtGAN2eFXxR4= Subject key identifier: CE:85:53:DE:E9:B7:16:ED:AC:69:C0:06:92:D4:13:F5:45:AC:0B:90 Certificate issuer: /CN=A9179B50/serialNumber=3DAFFFBC7E912E9FFCD2A2E0D9208EBC99709B22 Certificate serial: 04B0 Authority key identifier: 3D:AF:FF:BC:7E:91:2E:9F:FC:D2:A2:E0:D9:20:8E:BC:99:70:9B:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pa__vH6RLp_80qLg2SCOvJlwmyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/96D7EE96AF0111EB8FE37446C4F9AE02.roa Signing time: Thu 03 Aug 2023 00:21:13 +0000 ROA not before: Thu 03 Aug 2023 00:21:13 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 132585 IP address blocks: 103.119.104.0/23 maxlen: 23 103.119.106.0/23 maxlen: 23 2403:4240::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/Pa__vH6RLp_80qLg2SCOvJlwmyI.crl rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/Pa__vH6RLp_80qLg2SCOvJlwmyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pa__vH6RLp_80qLg2SCOvJlwmyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1200 (0x4b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179B50/serialNumber=3DAFFFBC7E912E9FFCD2A2E0D9208EBC99709B22 Validity Not Before: Aug 3 00:21:13 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64caf2f8-69cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8e:d5:07:54:1f:1d:70:e9:de:cb:8b:c4:9d: b6:bf:82:3f:65:e0:e4:79:3c:d3:49:ab:de:b7:93: f4:f4:99:b9:93:01:75:40:af:98:f7:00:a4:f6:36: 04:5c:87:a8:76:a1:a8:3c:b9:29:68:03:25:ed:a3: 45:d7:db:c6:9f:14:7b:95:c2:fb:55:76:d4:7c:f5: 3b:07:c6:eb:5b:48:bc:33:32:d9:97:ef:b9:92:40: 9e:08:10:54:57:6f:d8:8f:a5:12:e3:6e:9c:73:d2: b6:14:4c:1d:e7:80:ad:77:91:d5:b6:e5:62:73:83: a2:4f:a3:08:4d:fb:c4:39:be:67:dc:80:5a:4a:0a: e8:69:46:3f:5a:cb:b1:8b:d1:73:6c:33:8b:f7:71: ee:16:82:06:71:9d:4a:d2:a4:07:db:f7:ff:f2:c2: aa:ef:01:18:7f:7c:35:67:9e:ed:a1:79:23:15:b1: b4:47:f1:a6:c2:86:c6:a3:39:50:53:75:1d:35:22: c2:4b:c6:4f:0c:3f:dc:a9:a7:c9:c9:a5:e9:35:5e: ae:f2:dd:a0:c1:9a:d5:21:c7:fb:fe:bf:9f:15:18: ca:98:d2:e5:2e:0a:58:fb:54:0c:21:4a:a5:d9:65: 43:00:54:81:d4:c7:0d:e7:f4:75:ec:98:89:39:a7: c9:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:85:53:DE:E9:B7:16:ED:AC:69:C0:06:92:D4:13:F5:45:AC:0B:90 X509v3 Authority Key Identifier: keyid:3D:AF:FF:BC:7E:91:2E:9F:FC:D2:A2:E0:D9:20:8E:BC:99:70:9B:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/Pa__vH6RLp_80qLg2SCOvJlwmyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pa__vH6RLp_80qLg2SCOvJlwmyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/96D7EE96AF0111EB8FE37446C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.119.104.0/22 IPv6: 2403:4240::/32 Signature Algorithm: sha256WithRSAEncryption d5:78:fe:af:31:6b:d2:d6:44:fd:5b:b8:8f:e8:1e:7e:ee:5f: 45:aa:af:9e:78:a0:57:ae:a6:a0:83:42:97:73:f7:cc:8e:55: 41:76:17:3a:38:ca:e4:2a:75:9c:bc:62:b4:ee:0c:4a:50:35: 7f:ff:c9:7b:7f:e4:c8:18:f4:37:2c:7c:b6:6d:3f:fa:ca:88: ff:dc:12:48:f8:c6:94:71:04:95:36:7e:37:f0:29:43:0a:8c: 0a:e1:6a:7e:2e:a9:24:96:eb:66:4f:dc:75:dd:67:58:97:2c: 39:2d:0e:38:75:94:56:35:4c:cd:fe:ba:b9:2a:57:4c:e3:77: ef:3b:2b:9f:0f:21:03:c2:f4:a7:32:1d:61:e6:14:09:94:61: 17:ed:65:4a:3c:e6:99:e6:6f:5c:b2:c1:db:22:54:2b:13:31: ac:c9:08:2a:39:51:bd:a3:8f:dd:6c:0f:5c:3d:b7:32:71:09: aa:7c:32:0f:57:c3:e6:1c:34:1c:e5:d4:6d:bf:40:6e:b4:38: 64:fd:fb:29:0b:af:7e:17:d8:cf:5f:9d:7d:6b:ab:03:3b:b0: 14:f2:e6:2a:39:b2:01:7a:aa:ce:3a:30:2d:c2:ba:cb:44:92: 2c:78:89:83:a1:87:9a:d7:be:47:90:47:5e:aa:d2:34:2f:02: 29:a1:a1:b4 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlCNTAxMTAvBgNVBAUTKDNEQUZGRkJDN0U5MTJFOUZGQ0QyQTJFMEQ5MjA4RUJD OTk3MDlCMjIwHhcNMjMwODAzMDAyMTEzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhZjJmOC02OWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApY7VB1QfHXDp3suLxJ22v4I/ZeDkeTzTSavet5P09Jm5kwF1QK+Y9wCk9jYE XIeodqGoPLkpaAMl7aNF19vGnxR7lcL7VXbUfPU7B8brW0i8MzLZl++5kkCeCBBU V2/Yj6US426cc9K2FEwd54Ctd5HVtuVic4OiT6MITfvEOb5n3IBaSgroaUY/Wsux i9FzbDOL93HuFoIGcZ1K0qQH2/f/8sKq7wEYf3w1Z57toXkjFbG0R/GmwobGozlQ U3UdNSLCS8ZPDD/cqafJyaXpNV6u8t2gwZrVIcf7/r+fFRjKmNLlLgpY+1QMIUql 2WVDAFSB1McN5/R17JiJOafJ6QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFM6FU97p txbtrGnABpLUE/VFrAuQMB8GA1UdIwQYMBaAFD2v/7x+kS6f/NKi4NkgjryZcJsi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUI1MC9DNkMwNDlCMkFF RkUxMUVCODA5MzI2M0VDNEY5QUUwMi9QYV9fdkg2UkxwXzgwcUxnMlNDT3ZKbHdt eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BhX192SDZSTHBfODBxTGcyU0NPdkpsd215SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzlCNTAvQzZDMDQ5QjJBRUZFMTFFQjgwOTMyNjNFQzRGOUFFMDIvOTZEN0VFOTZB RjAxMTFFQjhGRTM3NDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnd2gwDQQCAAIwBwMFACQDQkAwDQYJKoZIhvcNAQELBQAD ggEBANV4/q8xa9LWRP1buI/oHn7uX0Wqr554oFeupqCDQpdz98yOVUF2Fzo4yuQq dZy8YrTuDEpQNX//yXt/5MgY9DcsfLZtP/rKiP/cEkj4xpRxBJU2fjfwKUMKjArh an4uqSSW62ZP3HXdZ1iXLDktDjh1lFY1TM3+urkqV0zjd+87K58PIQPC9KcyHWHm FAmUYRftZUo85pnmb1yywdsiVCsTMazJCCo5Ub2jj91sD1w9tzJxCap8Mg9Xw+Yc NBzl1G2/QG60OGT9+ykLr34X2M9fnX1rqwM7sBTy5io5sgF6qs46MC3CustEkix4 iYOhh5rXvkeQR16q0jQvAimhobQ= -----END CERTIFICATE-----Generated at Fri May 17 02:01:42 2024 by rpki-client on console-ams.rpki-client.org