$ rpki-client -vvf rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4C7C3EA8E8F511EDBC11CF6BC4F9AE02.roa File: 4C7C3EA8E8F511EDBC11CF6BC4F9AE02.roa (raw, json) Hash identifier: u7Nax8JUdoNdQF5TCxaJQc8Fm67+wVNKpWjrseXurZE= Subject key identifier: 85:3A:BB:C3:E9:2C:E5:C4:38:11:D4:68:E8:71:CB:3F:6A:C3:86:E2 Certificate issuer: /CN=A917BAC5/serialNumber=E1088187F64094263DDA6749A95F73AA6C1AB063 Certificate serial: 0142 Authority key identifier: E1:08:81:87:F6:40:94:26:3D:DA:67:49:A9:5F:73:AA:6C:1A:B0:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QiBh_ZAlCY92mdJqV9zqmwasGM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4C7C3EA8E8F511EDBC11CF6BC4F9AE02.roa Signing time: Thu 17 Aug 2023 03:43:41 +0000 ROA not before: Thu 17 Aug 2023 03:43:41 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 38136 IP address blocks: 103.190.178.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.crl rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QiBh_ZAlCY92mdJqV9zqmwasGM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 04:12:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 322 (0x142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BAC5/serialNumber=E1088187F64094263DDA6749A95F73AA6C1AB063 Validity Not Before: Aug 17 03:43:41 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64dd976d-7eec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1b:b2:52:63:16:f0:9d:ad:8d:bc:20:dc:85: cb:34:38:d3:0e:f7:1f:72:82:15:9d:ff:de:6a:fb: c6:d5:ad:fd:9d:ea:d2:08:22:62:c8:cc:3b:eb:ea: e9:8b:27:e5:7b:83:04:56:25:3d:bf:77:c9:cf:9d: 45:1a:02:6f:dc:26:6d:aa:22:45:2d:8b:ee:bd:bb: 25:d8:ef:55:79:18:ce:59:e1:32:d6:10:3f:6e:08: f7:ca:47:26:b0:70:48:62:f3:7f:7e:dc:fd:25:41: 6a:a6:33:99:fa:65:48:93:ea:36:9f:68:e9:9a:b8: 3c:36:f3:9e:11:e6:e4:f8:0e:a3:b8:30:9a:12:16: 60:75:cc:36:51:df:9f:b2:5f:cc:ba:c5:8f:ac:d0: 88:ba:a3:7f:2e:1a:78:9a:21:f9:b0:e5:ae:45:89: 16:60:ba:cf:5e:0e:55:40:ef:10:02:bd:6f:63:32: 1a:ae:c9:84:6b:d0:3b:06:46:e7:36:64:e0:ad:31: 9c:ea:eb:f3:9e:64:6d:eb:94:69:de:14:7e:4d:b1: 19:98:76:0b:8e:c2:8e:bd:29:2c:30:43:fc:a2:64: 9d:cd:8f:dc:a9:5d:15:29:82:54:b6:a8:fc:04:73: 72:d8:f1:97:3e:1e:b4:2e:17:5c:5d:37:ac:b0:44: b7:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:3A:BB:C3:E9:2C:E5:C4:38:11:D4:68:E8:71:CB:3F:6A:C3:86:E2 X509v3 Authority Key Identifier: keyid:E1:08:81:87:F6:40:94:26:3D:DA:67:49:A9:5F:73:AA:6C:1A:B0:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QiBh_ZAlCY92mdJqV9zqmwasGM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4C7C3EA8E8F511EDBC11CF6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.190.178.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:3f:86:00:09:c0:f1:61:ef:ea:3b:60:c9:00:b0:1c:6c:0c: 22:41:c4:cc:aa:b5:ba:79:b4:50:98:b9:4c:28:e9:48:48:59: a6:18:1d:81:38:8e:5c:6b:2d:34:85:db:0b:19:d7:24:86:e0: 71:8f:4a:11:cd:60:7d:7a:75:78:2d:e4:23:c2:6a:cb:5f:80: ac:d8:9a:68:a3:a5:23:85:bc:2c:df:1c:6c:fb:d7:e4:67:1e: 6c:65:a9:12:f3:93:53:73:cc:6d:db:dd:64:e9:e5:2d:c3:89: 2f:23:93:dc:d5:a1:c7:90:6f:9f:24:2b:ac:67:7b:c0:78:da: e6:9d:a0:6b:75:6f:16:eb:53:c8:07:ec:44:f8:77:ba:29:a6: 8d:3c:7a:36:46:bd:84:fb:49:e7:00:30:bd:a4:df:55:cf:60: 1b:f8:ed:eb:2a:da:12:91:1c:12:07:52:26:1d:15:e2:b7:49: 81:54:e6:d1:5f:cb:83:d0:84:5d:a7:7a:76:93:58:9c:8f:ae: 8c:ae:0e:70:f2:53:2e:f7:91:94:4d:8c:6f:e5:0c:40:14:d2: 6a:76:23:a3:72:14:4a:7a:47:90:0b:45:78:06:06:d5:a3:d9: 14:fe:cf:44:53:4e:5a:1c:ca:4f:19:a6:ad:e9:e0:81:ec:cd: ec:d8:92:95 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JBQzUxMTAvBgNVBAUTKEUxMDg4MTg3RjY0MDk0MjYzRERBNjc0OUE5NUY3M0FB NkMxQUIwNjMwHhcNMjMwODE3MDM0MzQxWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRkOTc2ZC03ZWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhuyUmMW8J2tjbwg3IXLNDjTDvcfcoIVnf/eavvG1a39nerSCCJiyMw76+rp iyfle4MEViU9v3fJz51FGgJv3CZtqiJFLYvuvbsl2O9VeRjOWeEy1hA/bgj3ykcm sHBIYvN/ftz9JUFqpjOZ+mVIk+o2n2jpmrg8NvOeEebk+A6juDCaEhZgdcw2Ud+f sl/MusWPrNCIuqN/Lhp4miH5sOWuRYkWYLrPXg5VQO8QAr1vYzIarsmEa9A7Bkbn NmTgrTGc6uvznmRt65Rp3hR+TbEZmHYLjsKOvSksMEP8omSdzY/cqV0VKYJUtqj8 BHNy2PGXPh60LhdcXTessES3DQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIU6u8Pp LOXEOBHUaOhxyz9qw4biMB8GA1UdIwQYMBaAFOEIgYf2QJQmPdpnSalfc6psGrBj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkFDNS80NzBBNjIwNDE1 MzAxMUVEQkFBM0QwMjdDNEY5QUUwMi80UWlCaF9aQWxDWTkybWRKcVY5enFtd2Fz R00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRRaUJoX1pBbENZOTJtZEpxVjl6cW13YXNHTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0JBQzUvNDcwQTYyMDQxNTMwMTFFREJBQTNEMDI3QzRGOUFFMDIvNEM3QzNFQThF OEY1MTFFREJDMTFDRjZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnvrIwDQYJKoZIhvcNAQELBQADggEBAHo/hgAJwPFh7+o7 YMkAsBxsDCJBxMyqtbp5tFCYuUwo6UhIWaYYHYE4jlxrLTSF2wsZ1ySG4HGPShHN YH16dXgt5CPCastfgKzYmmijpSOFvCzfHGz71+RnHmxlqRLzk1NzzG3b3WTp5S3D iS8jk9zVoceQb58kK6xne8B42uadoGt1bxbrU8gH7ET4d7oppo08ejZGvYT7SecA ML2k31XPYBv47esq2hKRHBIHUiYdFeK3SYFU5tFfy4PQhF2nenaTWJyProyuDnDy Uy73kZRNjG/lDEAU0mp2I6NyFEp6R5ALRXgGBtWj2RT+z0RTTlocyk8Zpq3p4IHs zezYkpU= -----END CERTIFICATE-----Generated at Tue May 21 05:35:02 2024 by rpki-client on console-ams.rpki-client.org