$ rpki-client -vvf rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/C154DA14E85C11EBA2171A25C4F9AE02.roa File: C154DA14E85C11EBA2171A25C4F9AE02.roa (raw, json) Hash identifier: LQxi9QdmgN0KIei5VG+HIfawwM3z6gP9YFiwzL4bT7s= Subject key identifier: 9D:4E:20:0F:C6:E5:49:94:9F:35:F5:11:2F:65:39:E5:7E:7B:02:D9 Certificate issuer: /CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Certificate serial: 1C37 Authority key identifier: 1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/C154DA14E85C11EBA2171A25C4F9AE02.roa Signing time: Fri 16 Feb 2024 17:04:06 +0000 ROA not before: Fri 16 Feb 2024 17:04:06 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 136796 IP address blocks: 103.81.184.0/22 maxlen: 24 202.144.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 16:15:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7223 (0x1c37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Validity Not Before: Feb 16 17:04:06 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65cf9586-1c76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:84:d9:3f:4d:a5:fc:6a:b6:db:8b:4b:8f:b6: 2e:fa:65:0b:fd:6d:17:ef:13:3e:b4:56:fb:37:d4: eb:ed:f9:e1:6e:8f:e2:f6:47:a5:52:00:d0:06:de: 5f:c0:be:a2:16:46:e9:84:2b:4e:a7:75:66:42:cc: 9d:da:1e:af:6d:52:f8:d9:54:ba:ff:3d:e2:1a:86: 37:3f:7b:f3:de:9a:a8:38:0e:f4:db:07:50:63:28: e4:5f:11:f1:bf:92:d1:18:ea:2c:1a:e7:58:91:6e: 4c:38:a5:83:d2:8f:ef:6b:d3:c4:f3:94:2a:09:d4: 65:88:f8:1a:fc:d5:fe:d3:63:66:f0:f1:0a:97:2e: 8d:54:8d:8e:6f:3b:cc:7b:18:23:b7:9c:26:e8:a8: 87:c3:20:68:49:ff:3d:b1:c1:27:ed:c1:a5:7e:38: e5:86:53:b4:20:35:11:ac:6c:ae:d8:6c:95:b2:18: 47:16:1e:57:00:4b:43:60:1e:6b:8b:a5:b1:e9:78: 0a:fc:5d:d3:99:93:fe:78:92:64:a9:58:4e:ed:43: d1:5d:3d:55:1b:20:e0:5f:e1:18:97:f4:40:1e:13: e7:e0:bb:c8:cc:f0:ec:b5:d7:ec:7b:2b:2f:41:20: 25:71:f1:d7:3e:69:20:cc:93:55:6d:37:ff:ed:8c: 3b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:4E:20:0F:C6:E5:49:94:9F:35:F5:11:2F:65:39:E5:7E:7B:02:D9 X509v3 Authority Key Identifier: keyid:1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/C154DA14E85C11EBA2171A25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.81.184.0/22 202.144.196.0/22 Signature Algorithm: sha256WithRSAEncryption 2f:09:ea:9f:97:13:48:d4:96:58:1e:0a:5b:e7:54:30:a8:b9: 1f:9d:26:ed:5b:b9:d6:3a:4a:c0:80:4d:a2:cd:ed:04:d6:26: 43:b4:98:4c:53:39:e1:94:ff:a1:1a:70:17:21:be:74:88:90: 5f:b9:a4:dc:07:2b:b2:0e:24:45:94:cd:0a:e6:18:d7:56:4c: 48:cc:d3:43:b8:6a:31:0f:d8:1e:ca:da:26:dd:94:f4:a0:da: 58:e5:3c:40:cd:42:3d:18:50:75:ed:b8:54:5a:bb:96:da:36: da:e2:6d:fb:06:29:69:1d:f2:11:00:6d:6e:b9:d6:b0:02:77: 40:9c:03:1a:9b:aa:7b:07:9b:f0:6d:08:83:e2:f9:ad:7f:30: 2f:cd:0b:f5:f3:54:a4:7d:56:ae:b1:c5:0c:59:c9:db:88:15: 5f:5e:a9:85:d2:80:18:d2:39:58:ab:ff:cf:18:c7:4c:54:4e: c7:97:91:6c:00:f5:73:65:f8:32:fd:ef:8b:f7:e2:40:b9:03: 18:5c:23:82:16:b1:49:9f:b6:24:b9:e8:e5:7c:77:11:05:b9: 0f:68:72:37:6d:5d:db:c4:16:d5:c9:55:e0:f4:0f:50:25:91: ad:c2:d8:4f:6e:98:f6:6a:45:d5:7e:b1:6d:d1:14:b6:5b:57: 7a:00:f8:d4 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICHDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCRjIxMTAvBgNVBAUTKDFCMTdBQzNEQzk2Q0EyMzQ1MjUwMjNFRkQzNjI3RTky Q0Q4ODQ3NDgwHhcNMjQwMjE2MTcwNDA2WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNmOTU4Ni0xYzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4TZP02l/Gq224tLj7Yu+mUL/W0X7xM+tFb7N9Tr7fnhbo/i9kelUgDQBt5f wL6iFkbphCtOp3VmQsyd2h6vbVL42VS6/z3iGoY3P3vz3pqoOA702wdQYyjkXxHx v5LRGOosGudYkW5MOKWD0o/va9PE85QqCdRliPga/NX+02Nm8PEKly6NVI2ObzvM exgjt5wm6KiHwyBoSf89scEn7cGlfjjlhlO0IDURrGyu2GyVshhHFh5XAEtDYB5r i6Wx6XgK/F3TmZP+eJJkqVhO7UPRXT1VGyDgX+EYl/RAHhPn4LvIzPDstdfseysv QSAlcfHXPmkgzJNVbTf/7Yw7LQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJ1OIA/G 5UmUnzX1ES9lOeV+ewLZMB8GA1UdIwQYMBaAFBsXrD3JbKI0UlAj79NifpLNiEdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REJGMi9FMzQ0NTAxNkMy RjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29qUlNVQ1B2MDJKLWtzMklS MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d4ZXNQY2xzb2pSU1VDUHYwMkota3MySVIwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0RCRjIvRTM0NDUwMTZDMkY4MTFFNjk5N0FFQjZCQzRGOUFFMDIvQzE1NERBMTRF ODVDMTFFQkEyMTcxQTI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnUbgDBALKkMQwDQYJKoZIhvcNAQELBQADggEBAC8J6p+X E0jUllgeClvnVDCouR+dJu1budY6SsCATaLN7QTWJkO0mExTOeGU/6EacBchvnSI kF+5pNwHK7IOJEWUzQrmGNdWTEjM00O4ajEP2B7K2ibdlPSg2ljlPEDNQj0YUHXt uFRau5baNtribfsGKWkd8hEAbW651rACd0CcAxqbqnsHm/BtCIPi+a1/MC/NC/Xz VKR9Vq6xxQxZyduIFV9eqYXSgBjSOVir/88Yx0xUTseXkWwA9XNl+DL974v34kC5 AxhcI4IWsUmftiS56OV8dxEFuQ9ocjdtXdvEFtXJVeD0D1Alka3C2E9umPZqRdV+ sW3RFLZbV3oA+NQ= -----END CERTIFICATE-----Generated at Mon May 6 17:35:42 2024 by rpki-client on console-fra.rpki-client.org