$ rpki-client -vvf rpki.apnic.net/member_repository/A917F89D/9674AFC8A5C411E89505FD31C4F9AE02/AD1B7E40A5C511E8A9B85134C4F9AE02.roa File: AD1B7E40A5C511E8A9B85134C4F9AE02.roa (raw, json) Hash identifier: gSFMToAippUhfj6Yauf652gB64yTtO3/+lsd11hCXmM= Subject key identifier: A6:4D:87:EE:9F:C7:6E:7F:B8:27:8E:2B:83:E2:E0:27:F7:B5:9E:1F Certificate issuer: /CN=A917F89D/serialNumber=C396305D02D2F885F3FADED53AC310F21BD05487 Certificate serial: 11E3 Authority key identifier: C3:96:30:5D:02:D2:F8:85:F3:FA:DE:D5:3A:C3:10:F2:1B:D0:54:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w5YwXQLS-IXz-t7VOsMQ8hvQVIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F89D/9674AFC8A5C411E89505FD31C4F9AE02/AD1B7E40A5C511E8A9B85134C4F9AE02.roa Signing time: Fri 14 Jul 2023 17:34:13 +0000 ROA not before: Fri 14 Jul 2023 17:34:13 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 133977 IP address blocks: 103.116.176.0/24 maxlen: 24 103.116.177.0/24 maxlen: 24 103.116.178.0/24 maxlen: 24 103.116.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F89D/9674AFC8A5C411E89505FD31C4F9AE02/w5YwXQLS-IXz-t7VOsMQ8hvQVIc.crl rsync://rpki.apnic.net/member_repository/A917F89D/9674AFC8A5C411E89505FD31C4F9AE02/w5YwXQLS-IXz-t7VOsMQ8hvQVIc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w5YwXQLS-IXz-t7VOsMQ8hvQVIc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 17:40:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4579 (0x11e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F89D/serialNumber=C396305D02D2F885F3FADED53AC310F21BD05487 Validity Not Before: Jul 14 17:34:13 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64b18714-49a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f7:fe:96:e2:51:84:86:fe:5e:23:61:e8:86: 9d:e5:a0:af:32:ca:cb:80:22:1c:70:d3:05:cb:ee: d5:ac:b1:55:40:90:b2:bc:da:c5:47:53:7e:3d:7f: a4:a2:ad:df:05:fa:57:b3:91:1c:72:b7:2d:9f:52: 6a:eb:b6:95:05:5e:b0:75:2d:e5:46:02:c9:5a:97: 95:1a:8f:a5:4c:80:d2:d0:a2:ca:be:89:e0:f7:d7: 0a:b6:7f:8b:07:67:c1:7e:43:4d:12:08:b8:eb:f9: 8e:22:25:5a:70:d4:dd:92:bf:69:6c:df:29:c4:61: e6:52:bc:c2:19:c6:0e:6c:39:fe:a1:a8:6c:a0:5c: 61:ae:ea:d7:a1:38:b5:d7:76:1a:06:25:63:4b:db: 29:37:50:a8:7a:81:55:bd:60:e9:2e:e1:ef:6f:48: b0:4f:7c:bf:82:10:f8:07:a2:26:98:6b:46:16:49: 7f:3e:01:a0:6f:e0:1a:8a:4c:f9:19:4c:f0:ac:de: af:da:cb:43:ee:6e:30:44:b9:58:90:88:22:92:52: ea:1e:0c:92:56:28:e3:91:21:6f:dc:46:d3:f4:d3: 89:10:36:f8:46:83:46:07:9d:28:de:79:a1:65:e0: d6:25:8c:cd:31:0f:6c:47:b7:b9:d1:bd:87:46:11: 18:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:4D:87:EE:9F:C7:6E:7F:B8:27:8E:2B:83:E2:E0:27:F7:B5:9E:1F X509v3 Authority Key Identifier: keyid:C3:96:30:5D:02:D2:F8:85:F3:FA:DE:D5:3A:C3:10:F2:1B:D0:54:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F89D/9674AFC8A5C411E89505FD31C4F9AE02/w5YwXQLS-IXz-t7VOsMQ8hvQVIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w5YwXQLS-IXz-t7VOsMQ8hvQVIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F89D/9674AFC8A5C411E89505FD31C4F9AE02/AD1B7E40A5C511E8A9B85134C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.176.0/22 Signature Algorithm: sha256WithRSAEncryption 19:5a:c7:56:c7:4c:12:43:d2:c7:1d:9d:c1:21:b0:b7:ab:cf: 89:13:31:cb:95:b3:4f:52:70:0e:e1:36:27:89:0d:99:73:cc: 2b:8e:77:e6:6a:1b:5c:8f:10:0e:53:1b:8b:3d:05:82:98:20: a5:08:77:b4:52:5d:10:a8:db:9b:1a:0a:a8:3f:09:d6:26:ae: 2c:46:13:59:40:c8:41:f3:5b:32:83:32:45:b5:35:ad:dd:85: dd:a4:fe:d1:db:0d:8e:97:25:98:21:67:e7:20:b3:59:23:df: 69:66:18:a3:76:ad:6d:27:42:28:26:83:ce:4f:d5:6e:60:f0: 14:d6:f2:e5:45:3f:05:f8:b6:84:cf:bc:3b:c6:58:c0:b7:1a: a1:13:fa:6b:70:f7:a7:bd:5e:ce:00:f6:d1:03:f4:95:aa:1c: 20:40:a4:9a:b6:19:e1:0b:16:c8:16:e8:ee:d3:e4:45:7e:33: be:11:e9:e3:82:52:52:21:9e:77:fb:3a:a6:f0:c3:be:c9:6f: 1c:16:18:97:b0:14:fc:74:10:61:bd:51:68:91:4d:28:f6:4a: 39:f9:27:ed:65:8b:77:db:8a:39:20:0e:9b:85:65:a1:98:72: 8c:07:75:56:5f:be:b5:38:3f:86:64:4a:6c:e6:24:04:f2:71: a0:a5:50:88 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4OUQxMTAvBgNVBAUTKEMzOTYzMDVEMDJEMkY4ODVGM0ZBREVENTNBQzMxMEYy MUJEMDU0ODcwHhcNMjMwNzE0MTczNDEzWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGIxODcxNC00OWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2/f+luJRhIb+XiNh6Iad5aCvMsrLgCIccNMFy+7VrLFVQJCyvNrFR1N+PX+k oq3fBfpXs5Eccrctn1Jq67aVBV6wdS3lRgLJWpeVGo+lTIDS0KLKvong99cKtn+L B2fBfkNNEgi46/mOIiVacNTdkr9pbN8pxGHmUrzCGcYObDn+oahsoFxhrurXoTi1 13YaBiVjS9spN1CoeoFVvWDpLuHvb0iwT3y/ghD4B6ImmGtGFkl/PgGgb+Aaikz5 GUzwrN6v2stD7m4wRLlYkIgiklLqHgySVijjkSFv3EbT9NOJEDb4RoNGB50o3nmh ZeDWJYzNMQ9sR7e50b2HRhEYbwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKZNh+6f x25/uCeOK4Pi4Cf3tZ4fMB8GA1UdIwQYMBaAFMOWMF0C0viF8/re1TrDEPIb0FSH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Rjg5RC85Njc0QUZDOEE1 QzQxMUU4OTUwNUZEMzFDNEY5QUUwMi93NVl3WFFMUy1JWHotdDdWT3NNUThodlFW SWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3c1WXdYUUxTLUlYei10N1ZPc01ROGh2UVZJYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0Y4OUQvOTY3NEFGQzhBNUM0MTFFODk1MDVGRDMxQzRGOUFFMDIvQUQxQjdFNDBB NUM1MTFFOEE5Qjg1MTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJndLAwDQYJKoZIhvcNAQELBQADggEBABlax1bHTBJD0scd ncEhsLerz4kTMcuVs09ScA7hNieJDZlzzCuOd+ZqG1yPEA5TG4s9BYKYIKUId7RS XRCo25saCqg/CdYmrixGE1lAyEHzWzKDMkW1Na3dhd2k/tHbDY6XJZghZ+cgs1kj 32lmGKN2rW0nQigmg85P1W5g8BTW8uVFPwX4toTPvDvGWMC3GqET+mtw96e9Xs4A 9tED9JWqHCBApJq2GeELFsgW6O7T5EV+M74R6eOCUlIhnnf7Oqbww77JbxwWGJew FPx0EGG9UWiRTSj2Sjn5J+1li3fbijkgDpuFZaGYcowHdVZfvrU4P4ZkSmzmJATy caClUIg= -----END CERTIFICATE-----Generated at Wed May 22 20:08:10 2024 by rpki-client on console-ams.rpki-client.org