$ rpki-client -vvf rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/9F555EDC433611EB89B8BE60C4F9AE02.roa File: 9F555EDC433611EB89B8BE60C4F9AE02.roa (raw, json) Hash identifier: tW+i9wBr8/8fLv6cV5Gm2ZBBX10Z9Nan/TBIigJ8+gA= Subject key identifier: 18:6B:F8:D1:16:67:91:10:F9:D0:34:36:27:12:49:C0:2B:BB:59:08 Certificate issuer: /CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Certificate serial: 06D2 Authority key identifier: 1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/9F555EDC433611EB89B8BE60C4F9AE02.roa Signing time: Sat 02 Sep 2023 21:28:56 +0000 ROA not before: Sat 02 Sep 2023 21:28:56 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 7545 IP address blocks: 103.154.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1746 (0x6d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Validity Not Before: Sep 2 21:28:56 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f3a918-4284 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:87:5b:6c:6b:60:4d:4a:52:e4:0c:f7:c0:83: f9:9f:ff:4d:a9:75:76:bf:d3:97:5b:01:1c:5f:2e: 43:5f:e9:df:44:b6:f8:19:0e:8f:36:32:07:d3:7a: 22:d0:c8:a1:ef:5b:fa:13:9d:b4:8b:db:54:b7:7c: c8:31:e8:f0:f7:42:91:25:4b:62:54:cd:51:0a:85: c7:1c:30:d4:f0:65:8a:89:ce:e2:55:2c:8a:4e:4f: 1e:d2:02:be:f0:8d:c9:0b:9c:f0:43:96:43:cf:7a: c2:d2:0c:ba:2d:95:28:16:ff:3e:fe:09:50:93:d7: 6b:f9:d3:1c:92:57:3b:b1:e3:2d:8d:dc:a8:f5:dc: 9b:20:2d:b1:8a:55:2e:12:eb:a9:a3:a3:17:90:d5: ba:bc:47:2e:fd:79:1e:53:a8:cf:55:a3:dc:5b:7d: 68:70:56:b8:75:f3:e0:7a:f9:64:5f:6f:75:9d:24: 18:e6:9a:be:5c:4c:cc:c3:ba:0f:5a:14:d2:9f:85: b2:58:2a:c4:29:16:a7:24:49:b1:2d:de:8c:cf:da: e0:86:d6:c6:cf:01:a8:79:11:99:d3:e5:2f:04:99: 93:54:a1:36:16:45:1e:71:a5:dc:57:cf:24:69:71: 66:6c:a7:36:06:6a:0b:e6:60:9f:d0:de:63:35:f3: 5e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:6B:F8:D1:16:67:91:10:F9:D0:34:36:27:12:49:C0:2B:BB:59:08 X509v3 Authority Key Identifier: keyid:1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/9F555EDC433611EB89B8BE60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.28.0/24 Signature Algorithm: sha256WithRSAEncryption 76:31:e2:da:e7:41:a2:8b:84:5c:74:fc:ba:4f:28:09:dd:ba: b8:32:d9:a4:e8:96:6f:50:27:17:55:84:2b:ef:4c:ce:78:3c: 54:b8:92:79:b9:78:de:fd:42:09:0e:e6:9f:d5:e2:ae:03:3e: 83:89:8c:e6:7f:d5:26:26:86:4f:ef:b7:8a:09:93:00:ff:0d: a3:3d:97:e0:05:7b:53:f8:09:03:dd:6e:83:52:e3:2d:b9:27: f5:b3:0d:9a:ed:aa:21:9b:a9:db:ee:6c:75:ef:67:1e:75:1d: 85:cf:43:de:2a:73:2a:65:7b:01:20:f9:96:3b:b4:de:0c:6a: d2:c6:67:3f:8e:c7:a7:87:35:9c:43:b5:f1:dc:d9:45:40:03: 63:6f:61:e8:0a:3e:da:cb:fd:22:17:c7:1f:89:d5:ee:86:60: 9a:07:4c:d3:31:7d:20:0a:d5:1a:71:83:8e:c1:74:91:85:d0: 59:bb:ad:e7:96:25:12:85:8f:c4:4b:da:8b:ae:88:10:83:67: 21:f6:36:30:85:a8:a2:03:11:4b:14:54:63:71:0f:9a:b3:55: 96:92:ba:07:f8:93:22:ec:2f:41:1c:f9:a8:c2:ab:de:74:13: 32:eb:f1:b0:54:7c:11:d1:85:54:42:d3:ba:74:29:21:de:f6: c9:be:34:c8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5MzMxMTAvBgNVBAUTKDFBMUEyREI2MjI3MDQ5ODYwRDFDQjZGQjM4MUQwMzVG N0NEREZFNzkwHhcNMjMwOTAyMjEyODU2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYzYTkxOC00Mjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnIdbbGtgTUpS5Az3wIP5n/9NqXV2v9OXWwEcXy5DX+nfRLb4GQ6PNjIH03oi 0Mih71v6E520i9tUt3zIMejw90KRJUtiVM1RCoXHHDDU8GWKic7iVSyKTk8e0gK+ 8I3JC5zwQ5ZDz3rC0gy6LZUoFv8+/glQk9dr+dMcklc7seMtjdyo9dybIC2xilUu Euupo6MXkNW6vEcu/XkeU6jPVaPcW31ocFa4dfPgevlkX291nSQY5pq+XEzMw7oP WhTSn4WyWCrEKRanJEmxLd6Mz9rghtbGzwGoeRGZ0+UvBJmTVKE2FkUecaXcV88k aXFmbKc2BmoL5mCf0N5jNfNekwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBhr+NEW Z5EQ+dA0NicSScAru1kIMB8GA1UdIwQYMBaAFBoaLbYicEmGDRy2+zgdA1983f55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkzMy9GRDk1MjFCMkRD NTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZWU5ITGI3T0IwRFgzemRf bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dob3R0aUp3U1lZTkhMYjdPQjBEWDN6ZF9uay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0M5MzMvRkQ5NTIxQjJEQzU3MTFFQTgzRThFQzY3QzRGOUFFMDIvOUY1NTVFREM0 MzM2MTFFQjg5QjhCRTYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmhwwDQYJKoZIhvcNAQELBQADggEBAHYx4trnQaKLhFx0 /LpPKAndurgy2aTolm9QJxdVhCvvTM54PFS4knm5eN79QgkO5p/V4q4DPoOJjOZ/ 1SYmhk/vt4oJkwD/DaM9l+AFe1P4CQPdboNS4y25J/WzDZrtqiGbqdvubHXvZx51 HYXPQ94qcyplewEg+ZY7tN4MatLGZz+Ox6eHNZxDtfHc2UVAA2NvYegKPtrL/SIX xx+J1e6GYJoHTNMxfSAK1Rpxg47BdJGF0Fm7reeWJRKFj8RL2ouuiBCDZyH2NjCF qKIDEUsUVGNxD5qzVZaSugf4kyLsL0Ec+ajCq950EzLr8bBUfBHRhVRC07p0KSHe 9sm+NMg= -----END CERTIFICATE-----Generated at Sun May 19 00:16:16 2024 by rpki-client on console-fra.rpki-client.org