$ rpki-client -vvf rpki.apnic.net/member_repository/A917AB94/D2BF6B72FB8711EC972BCE13C4F9AE02/865AA3E400FC11EDAA69A61DC4F9AE02.roa File: 865AA3E400FC11EDAA69A61DC4F9AE02.roa (raw, json) Hash identifier: VC92iZ7fHRMuTZpNtLXbazSYqfJuF9cZJQqMWxQSnOs= Subject key identifier: BF:C2:6F:34:94:A0:D7:B8:69:B3:BF:C9:77:C7:1D:A3:A3:47:74:83 Certificate issuer: /CN=A917AB94/serialNumber=3D3EE4E055C4E0F1FD5B17BCDF05D9F852CF05BC Certificate serial: 0172 Authority key identifier: 3D:3E:E4:E0:55:C4:E0:F1:FD:5B:17:BC:DF:05:D9:F8:52:CF:05:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PT7k4FXE4PH9Wxe83wXZ-FLPBbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AB94/D2BF6B72FB8711EC972BCE13C4F9AE02/865AA3E400FC11EDAA69A61DC4F9AE02.roa Signing time: Sat 23 Sep 2023 03:04:45 +0000 ROA not before: Sat 23 Sep 2023 03:04:45 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 149998 IP address blocks: 103.190.90.0/24 maxlen: 24 2001:df0:e8c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AB94/D2BF6B72FB8711EC972BCE13C4F9AE02/PT7k4FXE4PH9Wxe83wXZ-FLPBbw.crl rsync://rpki.apnic.net/member_repository/A917AB94/D2BF6B72FB8711EC972BCE13C4F9AE02/PT7k4FXE4PH9Wxe83wXZ-FLPBbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PT7k4FXE4PH9Wxe83wXZ-FLPBbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 04:23:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 370 (0x172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AB94/serialNumber=3D3EE4E055C4E0F1FD5B17BCDF05D9F852CF05BC Validity Not Before: Sep 23 03:04:45 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=650e55cd-8466 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:7f:c1:2b:13:92:c3:fe:92:40:04:62:3d:4c: 69:f6:9f:3c:87:4a:29:ce:d1:f0:d7:c4:ec:d2:b1: 1a:46:ce:44:45:cf:6a:f7:5e:cf:0b:11:7e:9d:86: e5:31:41:fd:7d:49:66:5a:5e:6a:dd:b3:b1:be:6e: f9:e0:15:18:6f:3d:2c:06:b7:43:33:cd:5f:56:44: 12:4b:1e:a0:c7:3f:01:49:43:64:42:a7:86:e6:2b: c3:95:7b:1f:23:36:b3:e3:d0:09:6e:5f:2d:19:cc: b5:06:36:8f:a6:96:af:ea:2c:e3:cf:da:4e:ab:3b: 02:61:9d:fd:77:56:ed:36:44:9f:87:a5:02:0a:9c: 34:34:c8:e4:ee:9e:57:53:18:eb:ab:be:69:27:0a: a6:38:16:24:42:4b:0d:78:30:88:2f:e0:5d:3a:af: c1:b6:7d:f5:be:41:09:a3:a1:5a:84:4a:47:ea:5a: e5:89:42:13:02:1c:04:d5:ed:56:55:5a:3b:48:48: fb:8d:12:6f:e0:44:bc:12:d2:00:2e:7c:86:ba:ac: 4d:40:95:62:f2:09:6b:a9:aa:96:48:d3:e9:8a:a0: 8c:5c:73:0a:ab:b1:d3:c6:2c:d4:84:89:cb:08:3e: 66:42:60:ea:09:00:41:e3:7b:26:c7:27:88:e4:74: d0:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:C2:6F:34:94:A0:D7:B8:69:B3:BF:C9:77:C7:1D:A3:A3:47:74:83 X509v3 Authority Key Identifier: keyid:3D:3E:E4:E0:55:C4:E0:F1:FD:5B:17:BC:DF:05:D9:F8:52:CF:05:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AB94/D2BF6B72FB8711EC972BCE13C4F9AE02/PT7k4FXE4PH9Wxe83wXZ-FLPBbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PT7k4FXE4PH9Wxe83wXZ-FLPBbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AB94/D2BF6B72FB8711EC972BCE13C4F9AE02/865AA3E400FC11EDAA69A61DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.190.90.0/24 IPv6: 2001:df0:e8c0::/48 Signature Algorithm: sha256WithRSAEncryption 83:7a:e4:97:4f:12:f5:ea:fd:12:9f:72:f9:dd:13:97:e8:1c: ca:c8:f2:02:53:82:88:f7:0a:31:56:58:80:b2:dc:a2:36:61: 0d:1c:71:02:de:4a:76:7e:38:5f:c9:6b:70:8d:d6:9f:5d:39: 06:1a:ec:8f:18:da:a5:c8:f8:2f:1c:ba:64:d5:9d:fc:5b:0a: 3f:8f:9b:52:90:8e:c2:0f:ad:04:3b:67:50:85:fa:81:1e:71: ef:29:a2:6a:6f:60:64:36:0a:05:ec:b3:c9:6b:10:19:32:00: ab:78:72:3d:92:99:de:18:96:78:8a:2f:de:41:ff:19:a7:df: cb:01:05:c3:56:3d:d3:ac:51:63:cc:27:09:84:ca:1c:92:7a: 32:43:3b:65:73:06:84:57:79:72:b0:83:a5:4b:0c:ac:31:fe: ec:3e:ab:4f:c7:55:f2:6a:1d:24:db:d5:6e:fc:d5:63:60:3e: 41:b1:84:c8:77:c2:5a:cb:7a:64:8a:b2:15:89:bb:b7:63:e1: 64:0d:20:87:e8:4e:08:10:cb:c8:a2:87:ee:2f:76:23:da:97: e2:c8:0a:2f:aa:d6:73:e5:77:07:d8:5d:fe:02:07:b6:af:4c: 53:87:56:29:e6:f5:b5:15:9a:8a:64:c4:0a:38:40:82:b6:91: 0f:44:b3:f5 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FCOTQxMTAvBgNVBAUTKDNEM0VFNEUwNTVDNEUwRjFGRDVCMTdCQ0RGMDVEOUY4 NTJDRjA1QkMwHhcNMjMwOTIzMDMwNDQ1WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTBlNTVjZC04NDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyX/BKxOSw/6SQARiPUxp9p88h0opztHw18Ts0rEaRs5ERc9q917PCxF+nYbl MUH9fUlmWl5q3bOxvm754BUYbz0sBrdDM81fVkQSSx6gxz8BSUNkQqeG5ivDlXsf Izaz49AJbl8tGcy1BjaPppav6izjz9pOqzsCYZ39d1btNkSfh6UCCpw0NMjk7p5X Uxjrq75pJwqmOBYkQksNeDCIL+BdOq/Btn31vkEJo6FahEpH6lrliUITAhwE1e1W VVo7SEj7jRJv4ES8EtIALnyGuqxNQJVi8glrqaqWSNPpiqCMXHMKq7HTxizUhInL CD5mQmDqCQBB43smxyeI5HTQMQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFL/CbzSU oNe4abO/yXfHHaOjR3SDMB8GA1UdIwQYMBaAFD0+5OBVxODx/VsXvN8F2fhSzwW8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUI5NC9EMkJGNkI3MkZC ODcxMUVDOTcyQkNFMTNDNEY5QUUwMi9QVDdrNEZYRTRQSDlXeGU4M3dYWi1GTFBC YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BUN2s0RlhFNFBIOVd4ZTgzd1haLUZMUEJidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0FCOTQvRDJCRjZCNzJGQjg3MTFFQzk3MkJDRTEzQzRGOUFFMDIvODY1QUEzRTQw MEZDMTFFREFBNjlBNjFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnvlowDwQCAAIwCQMHACABDfDowDANBgkqhkiG9w0BAQsF AAOCAQEAg3rkl08S9er9Ep9y+d0Tl+gcysjyAlOCiPcKMVZYgLLcojZhDRxxAt5K dn44X8lrcI3Wn105Bhrsjxjapcj4Lxy6ZNWd/FsKP4+bUpCOwg+tBDtnUIX6gR5x 7ymiam9gZDYKBeyzyWsQGTIAq3hyPZKZ3hiWeIov3kH/GaffywEFw1Y906xRY8wn CYTKHJJ6MkM7ZXMGhFd5crCDpUsMrDH+7D6rT8dV8modJNvVbvzVY2A+QbGEyHfC Wst6ZIqyFYm7t2PhZA0gh+hOCBDLyKKH7i92I9qX4sgKL6rWc+V3B9hd/gIHtq9M U4dWKeb1tRWaimTECjhAgraRD0Sz9Q== -----END CERTIFICATE-----Generated at Fri May 17 06:46:24 2024 by rpki-client on console-ams.rpki-client.org