$ rpki-client -vvf rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/1953EB90FF1B11EBA5CEF970C4F9AE02.roa File: 1953EB90FF1B11EBA5CEF970C4F9AE02.roa (raw, json) Hash identifier: LKaE5Y785UxVOloyK6YaYndhpDYFIUGPJ/ZUzeCp7AA= Subject key identifier: 9F:DB:B4:B8:C5:C6:F8:C4:7E:F9:E5:5B:56:9E:69:AF:C1:9C:3C:90 Certificate issuer: /CN=A917C81C/serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D Certificate serial: 0448 Authority key identifier: 3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/1953EB90FF1B11EBA5CEF970C4F9AE02.roa Signing time: Thu 21 Mar 2024 01:43:45 +0000 ROA not before: Thu 21 Mar 2024 01:43:45 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 141727 IP address blocks: 103.162.204.0/24 maxlen: 24 2001:df5:fb80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1096 (0x448) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C81C/serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D Validity Not Before: Mar 21 01:43:45 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65fb90d1-ca4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:54:5a:31:9e:0b:5e:a2:a7:16:fc:b4:a9:4e: 50:96:36:87:75:99:46:37:07:e3:3a:cf:27:a7:f1: 5a:a4:fb:42:a4:2b:2c:0f:7f:f3:80:55:9a:b7:b0: 70:8e:53:1d:3a:16:0d:89:d4:93:d2:cd:a4:33:9a: 7c:e8:2a:5b:3e:6f:ae:1a:7d:f4:b2:3e:28:50:7a: 32:9a:aa:77:35:4f:74:c1:f6:23:c2:f1:6a:93:3a: 7e:33:2e:2d:28:7e:a3:98:27:80:68:b1:bc:dc:93: bf:f3:26:e1:d2:73:94:54:6d:3b:c1:8e:0d:c5:70: 37:b6:0c:b8:9d:a9:15:b0:ff:a4:f8:7b:7e:73:95: 6e:2a:c7:c2:17:9b:1a:0e:a5:64:7e:dd:07:88:00: 59:f6:a3:a9:d6:de:99:be:2f:34:05:9e:f2:b9:ab: 73:6e:41:4f:d5:e1:aa:6c:40:21:c0:83:f7:6f:1d: 19:e4:6b:2f:2a:35:ab:bc:63:ce:ed:ca:b0:2b:24: de:1e:69:4d:40:c3:26:8c:a8:90:36:05:f8:c0:4b: b8:cc:5f:25:3c:cc:9e:24:c6:8c:e2:a4:52:5a:f5: c4:05:7a:3b:6e:bd:18:50:14:7b:5c:5a:52:03:f6: 83:e3:1a:84:44:77:1e:3f:7b:77:28:a7:57:d8:4b: bf:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:DB:B4:B8:C5:C6:F8:C4:7E:F9:E5:5B:56:9E:69:AF:C1:9C:3C:90 X509v3 Authority Key Identifier: keyid:3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/1953EB90FF1B11EBA5CEF970C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.204.0/24 IPv6: 2001:df5:fb80::/48 Signature Algorithm: sha256WithRSAEncryption 7c:ab:f6:7c:6f:6d:7a:75:9a:de:39:5e:92:cb:c5:d0:25:0e: b4:2e:b9:c3:81:14:68:f7:36:bd:ed:a3:ac:56:85:25:5d:f5: 6f:61:b5:89:51:8c:8b:ad:bd:fe:d4:e3:ad:01:4a:62:08:96: 85:68:5d:fc:8d:b3:14:70:9a:b9:bb:dc:37:c4:41:5a:ec:88: fe:05:c5:c7:a5:bb:79:07:10:cb:61:ee:85:18:ab:ec:82:a8: fa:ec:c3:d7:2c:86:6e:15:f6:e3:00:3c:c2:e2:4d:50:cd:fa: 34:06:73:c1:41:ea:52:56:f0:38:ee:0e:a8:05:b8:5e:9a:6f: 6a:1b:d8:ac:c6:de:9a:f3:21:26:81:65:4d:81:25:4f:f4:f6: 32:e2:79:5b:49:bd:3f:1f:84:96:b3:f1:61:e6:97:d8:48:cd: d4:93:4f:d7:2e:ce:71:07:04:ff:aa:1c:e3:70:a1:a4:31:17: c2:d0:88:06:3f:7d:8d:15:db:33:3a:36:92:07:56:42:65:a2: 25:da:82:f4:0a:6e:62:f6:56:0b:9b:2b:1a:11:d9:5d:e1:ea: e5:f5:74:33:d1:57:7c:62:d9:86:5a:e3:7c:6f:16:cb:22:af: 36:e1:02:6a:34:d8:f2:2d:ca:59:92:20:dc:9d:34:77:88:72: db:f7:26:3a -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M4MUMxMTAvBgNVBAUTKDNGM0IyRjVCM0JBRTUyQTZCNTY5MkNBRjkyQTI1NTRC MDZEQTg2M0QwHhcNMjQwMzIxMDE0MzQ1WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWZiOTBkMS1jYTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs1RaMZ4LXqKnFvy0qU5QljaHdZlGNwfjOs8np/FapPtCpCssD3/zgFWat7Bw jlMdOhYNidST0s2kM5p86CpbPm+uGn30sj4oUHoymqp3NU90wfYjwvFqkzp+My4t KH6jmCeAaLG83JO/8ybh0nOUVG07wY4NxXA3tgy4nakVsP+k+Ht+c5VuKsfCF5sa DqVkft0HiABZ9qOp1t6Zvi80BZ7yuatzbkFP1eGqbEAhwIP3bx0Z5GsvKjWrvGPO 7cqwKyTeHmlNQMMmjKiQNgX4wEu4zF8lPMyeJMaM4qRSWvXEBXo7br0YUBR7XFpS A/aD4xqERHceP3t3KKdX2Eu/qQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJ/btLjF xvjEfvnlW1aeaa/BnDyQMB8GA1UdIwQYMBaAFD87L1s7rlKmtWksr5KiVUsG2oY9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzgxQy9EMTlBRUUzRUZG MTAxMUVCOUJEMTNENkNDNEY5QUUwMi9QenN2V3p1dVVxYTFhU3l2a3FKVlN3YmFo ajAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B6c3ZXenV1VXFhMWFTeXZrcUpWU3diYWhqMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0M4MUMvRDE5QUVFM0VGRjEwMTFFQjlCRDEzRDZDQzRGOUFFMDIvMTk1M0VCOTBG RjFCMTFFQkE1Q0VGOTcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnoswwDwQCAAIwCQMHACABDfX7gDANBgkqhkiG9w0BAQsF AAOCAQEAfKv2fG9tenWa3jleksvF0CUOtC65w4EUaPc2ve2jrFaFJV31b2G1iVGM i629/tTjrQFKYgiWhWhd/I2zFHCaubvcN8RBWuyI/gXFx6W7eQcQy2HuhRir7IKo +uzD1yyGbhX24wA8wuJNUM36NAZzwUHqUlbwOO4OqAW4XppvahvYrMbemvMhJoFl TYElT/T2MuJ5W0m9Px+ElrPxYeaX2EjN1JNP1y7OcQcE/6oc43ChpDEXwtCIBj99 jRXbMzo2kgdWQmWiJdqC9ApuYvZWC5srGhHZXeHq5fV0M9FXfGLZhlrjfG8WyyKv NuECajTY8i3KWZIg3J00d4hy2/cmOg== -----END CERTIFICATE-----Generated at Fri May 17 02:38:39 2024 by rpki-client on console-fra.rpki-client.org