$ rpki-client -vvf rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/907B9B20E8AD11EBAA895D0AC4F9AE02.roa File: 907B9B20E8AD11EBAA895D0AC4F9AE02.roa (raw, json) Hash identifier: k72xXpjFgZtRFDkXu8iIG0ZStxYnbHZo3Zq2gA8vZLE= Subject key identifier: 32:1E:72:C7:A1:56:EC:92:DB:01:F0:ED:1B:13:ED:5F:0C:72:F7:14 Certificate issuer: /CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Certificate serial: 1C3C Authority key identifier: 1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/907B9B20E8AD11EBAA895D0AC4F9AE02.roa Signing time: Fri 16 Feb 2024 17:04:12 +0000 ROA not before: Fri 16 Feb 2024 17:04:11 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 45102 IP address blocks: 103.81.186.0/23 maxlen: 23 202.144.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7228 (0x1c3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Validity Not Before: Feb 16 17:04:11 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65cf958b-339f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:9f:32:d4:c6:60:34:94:ea:05:69:a3:44:63: b8:4d:97:3b:59:f2:40:53:13:3f:33:06:2d:0c:b1: dd:c3:9e:6b:1f:a1:eb:6a:50:b1:37:df:5e:4b:65: da:8a:19:1c:e9:c5:c3:bf:57:75:36:74:6c:bb:97: c2:7f:e6:d2:26:19:a0:d4:aa:21:40:67:28:f8:36: 64:70:85:79:a2:4c:38:b5:80:6f:d9:e8:47:c4:55: b1:39:5d:9e:95:fd:9f:ac:4f:77:3c:1c:cd:9f:b6: 1c:9b:db:69:aa:24:71:0a:d6:68:cd:38:7c:41:e8: 0c:bb:ea:e9:93:c7:62:18:ee:7d:3d:e1:2c:1e:38: 3a:ad:ff:26:08:92:d6:36:59:f6:bf:48:bf:76:a3: 95:0a:d3:c2:64:2c:6d:3c:c6:89:e9:8c:b1:48:ad: 6d:8f:7a:01:2c:6d:c0:c7:8a:20:4a:94:3f:9b:56: b6:b7:84:bb:36:42:f6:f4:1a:a4:fc:4f:91:20:0b: fd:ab:01:c7:ff:8b:32:99:ff:29:92:80:15:31:9c: 51:3b:c6:5e:a9:81:df:b5:b2:8d:0f:9c:1a:4d:04: e9:83:f0:2c:58:32:39:d9:e8:4c:03:f5:61:34:a1: 60:30:da:03:a4:05:b5:d9:d5:2c:87:32:67:97:05: c2:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:1E:72:C7:A1:56:EC:92:DB:01:F0:ED:1B:13:ED:5F:0C:72:F7:14 X509v3 Authority Key Identifier: keyid:1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/907B9B20E8AD11EBAA895D0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.81.186.0/23 202.144.199.0/24 Signature Algorithm: sha256WithRSAEncryption 14:9d:28:b7:14:2f:42:05:4c:85:f9:98:93:e5:5c:a4:c9:b0: 6b:a6:ea:f0:34:0b:cd:cd:83:6a:2a:c9:87:a2:47:1f:c0:2b: 79:f2:0c:3b:5b:5b:a9:31:36:39:ab:8c:6e:5e:1a:f9:c5:4a: cb:33:f0:50:e4:e9:cf:04:fb:fe:dc:3e:a3:41:12:36:95:d7: 5d:2b:cc:0e:d9:19:a5:85:30:75:b0:d6:78:c7:da:85:d2:15: d5:27:47:4b:54:d4:ea:83:82:b1:12:cc:3c:28:13:cc:bf:bc: fc:f7:52:ac:bc:0b:1a:b2:b9:15:14:1c:93:88:25:c0:fd:04: bb:72:ea:0d:d1:0e:0a:72:72:f1:63:1d:e0:19:fa:d5:48:9f: 33:18:ad:27:c2:90:b2:de:55:4b:32:5d:8f:97:0d:a7:d1:91: c2:89:7a:e0:22:a7:44:9c:a8:11:75:8b:a4:45:73:12:3e:3f: cc:23:d0:58:b7:e9:44:07:32:ee:b2:9a:e0:ed:87:c5:46:f3: 71:c7:e6:34:c4:92:88:a8:62:34:8d:2f:95:d7:e1:19:62:1f: a5:f3:e3:af:90:21:76:0c:33:77:01:ca:b6:8c:ed:8f:f6:39: e0:ed:c9:5e:ef:52:49:79:b1:83:28:eb:6c:6b:d1:78:10:de: 5a:c6:51:67 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICHDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCRjIxMTAvBgNVBAUTKDFCMTdBQzNEQzk2Q0EyMzQ1MjUwMjNFRkQzNjI3RTky Q0Q4ODQ3NDgwHhcNMjQwMjE2MTcwNDExWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNmOTU4Yi0zMzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA058y1MZgNJTqBWmjRGO4TZc7WfJAUxM/MwYtDLHdw55rH6HralCxN99eS2Xa ihkc6cXDv1d1NnRsu5fCf+bSJhmg1KohQGco+DZkcIV5okw4tYBv2ehHxFWxOV2e lf2frE93PBzNn7Ycm9tpqiRxCtZozTh8QegMu+rpk8diGO59PeEsHjg6rf8mCJLW Nln2v0i/dqOVCtPCZCxtPMaJ6YyxSK1tj3oBLG3Ax4ogSpQ/m1a2t4S7NkL29Bqk /E+RIAv9qwHH/4symf8pkoAVMZxRO8ZeqYHftbKND5waTQTpg/AsWDI52ehMA/Vh NKFgMNoDpAW12dUshzJnlwXChQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDIecseh VuyS2wHw7RsT7V8McvcUMB8GA1UdIwQYMBaAFBsXrD3JbKI0UlAj79NifpLNiEdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REJGMi9FMzQ0NTAxNkMy RjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29qUlNVQ1B2MDJKLWtzMklS MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d4ZXNQY2xzb2pSU1VDUHYwMkota3MySVIwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0RCRjIvRTM0NDUwMTZDMkY4MTFFNjk5N0FFQjZCQzRGOUFFMDIvOTA3QjlCMjBF OEFEMTFFQkFBODk1RDBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnUboDBADKkMcwDQYJKoZIhvcNAQELBQADggEBABSdKLcU L0IFTIX5mJPlXKTJsGum6vA0C83Ng2oqyYeiRx/AK3nyDDtbW6kxNjmrjG5eGvnF Sssz8FDk6c8E+/7cPqNBEjaV110rzA7ZGaWFMHWw1njH2oXSFdUnR0tU1OqDgrES zDwoE8y/vPz3Uqy8CxqyuRUUHJOIJcD9BLty6g3RDgpycvFjHeAZ+tVInzMYrSfC kLLeVUsyXY+XDafRkcKJeuAip0ScqBF1i6RFcxI+P8wj0Fi36UQHMu6ymuDth8VG 83HH5jTEkoioYjSNL5XX4RliH6Xz46+QIXYMM3cByraM7Y/2OeDtyV7vUkl5sYMo 62xr0XgQ3lrGUWc= -----END CERTIFICATE-----Generated at Wed May 8 17:47:02 2024 by rpki-client on console-ams.rpki-client.org