$ rpki-client -vvf rpki.apnic.net/member_repository/A9184017/7F12281C2D6411EC85D68B80C4F9AE02/0F8709542D6E11EC8327E321C4F9AE02.roa File: 0F8709542D6E11EC8327E321C4F9AE02.roa (raw, json) Hash identifier: RWhSgJlYgVncBgJIFrKvz73I1MpVqn1hcyQD2Cg2umU= Subject key identifier: 9C:2A:F8:8C:DD:91:3E:14:E1:2A:8A:C2:C3:6F:B9:29:A9:42:AB:E6 Certificate issuer: /CN=A9184017/serialNumber=1A9F2BBEA522F1EE2592359B4B52FA2B41A3CDC4 Certificate serial: 037D Authority key identifier: 1A:9F:2B:BE:A5:22:F1:EE:25:92:35:9B:4B:52:FA:2B:41:A3:CD:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gp8rvqUi8e4lkjWbS1L6K0GjzcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9184017/7F12281C2D6411EC85D68B80C4F9AE02/0F8709542D6E11EC8327E321C4F9AE02.roa Signing time: Fri 15 Sep 2023 01:02:56 +0000 ROA not before: Fri 15 Sep 2023 01:02:56 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 45753 IP address blocks: 103.70.76.0/23 maxlen: 24 103.71.252.0/23 maxlen: 24 103.194.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9184017/7F12281C2D6411EC85D68B80C4F9AE02/Gp8rvqUi8e4lkjWbS1L6K0GjzcQ.crl rsync://rpki.apnic.net/member_repository/A9184017/7F12281C2D6411EC85D68B80C4F9AE02/Gp8rvqUi8e4lkjWbS1L6K0GjzcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gp8rvqUi8e4lkjWbS1L6K0GjzcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 01:52:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 893 (0x37d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9184017/serialNumber=1A9F2BBEA522F1EE2592359B4B52FA2B41A3CDC4 Validity Not Before: Sep 15 01:02:56 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6503ad40-deaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:0c:af:ca:d8:c6:fb:65:8c:11:51:09:b8:df: cf:23:17:00:b3:82:6a:4b:67:42:a1:b9:70:4f:ff: 54:46:97:06:be:bf:30:70:c3:9c:16:cc:0c:6e:03: 73:f3:ce:ed:4f:e5:30:db:b7:4e:52:f9:a2:cd:10: 97:b0:cb:67:d9:4b:c1:b4:af:41:34:35:71:44:9d: 8e:4a:61:80:00:e4:e2:9b:07:e6:30:ff:39:f6:15: f0:85:a8:18:77:7b:a1:c2:9e:f2:7b:ee:51:87:f2: d8:07:c5:92:9f:0d:5d:4d:1d:dc:b4:63:5d:2f:d9: a7:a7:65:ff:2c:87:52:cb:94:9a:82:c5:31:52:ba: 98:62:c3:20:85:af:8d:b2:8e:d0:b4:f5:d2:e9:30: 98:fe:ad:10:50:8c:a1:d8:1d:f5:7c:62:a5:fb:d1: 6a:d3:03:a1:22:c0:f8:c4:45:17:eb:51:c3:10:4c: 28:ba:6e:4e:57:4b:ea:3f:b4:43:9f:b9:db:19:aa: c2:6d:4a:7c:de:42:54:80:3c:1c:b1:2d:5e:b1:98: 3d:e5:e2:ca:b0:55:5d:5c:1e:13:4a:9b:37:3b:98: d3:34:ea:72:c7:d2:02:18:69:ad:c9:c8:e1:89:5f: b9:5b:20:e2:df:38:97:fb:81:47:9a:d2:e2:f0:03: ce:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:2A:F8:8C:DD:91:3E:14:E1:2A:8A:C2:C3:6F:B9:29:A9:42:AB:E6 X509v3 Authority Key Identifier: keyid:1A:9F:2B:BE:A5:22:F1:EE:25:92:35:9B:4B:52:FA:2B:41:A3:CD:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9184017/7F12281C2D6411EC85D68B80C4F9AE02/Gp8rvqUi8e4lkjWbS1L6K0GjzcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gp8rvqUi8e4lkjWbS1L6K0GjzcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9184017/7F12281C2D6411EC85D68B80C4F9AE02/0F8709542D6E11EC8327E321C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.76.0/23 103.71.252.0/23 103.194.184.0/22 Signature Algorithm: sha256WithRSAEncryption 8a:fa:39:a2:bc:63:32:27:47:2c:73:cb:6e:6e:b8:29:73:25: 09:b9:be:6e:f6:8b:d7:6b:f9:52:bd:b6:df:a5:f3:f6:41:28: 07:1d:db:73:0a:80:13:45:40:36:52:98:f2:f2:ee:9a:1f:81: 01:65:26:58:72:9f:79:c8:90:ca:5c:b1:ca:38:e9:a9:0a:0b: 30:d4:13:e3:23:f1:db:8f:18:ae:8b:ed:0b:01:ef:02:e2:ee: e3:ac:fb:f2:02:01:8c:8a:44:22:f5:2d:6a:88:de:e2:60:0c: cf:a8:81:52:f7:cb:5d:fd:0d:a3:e9:1e:89:b4:07:2e:b4:70: 2c:fb:ea:65:28:b9:f7:39:b5:74:03:83:9b:84:eb:74:ee:d5: c0:50:4e:6a:14:76:d7:79:46:b0:a7:af:1b:57:7d:3f:7d:42: 9f:8b:dc:8d:ad:f8:2d:5b:79:be:18:24:e7:39:bc:08:67:83: 42:c3:39:3d:f7:70:24:2c:0a:ba:84:27:be:74:11:23:2f:d3: 42:3e:1e:3b:96:0e:96:14:2b:f3:94:ed:dd:ef:7f:1a:eb:cf: d0:5b:64:d7:ac:fc:88:67:a9:ec:63:05:df:87:e9:33:46:b7: 90:d8:fb:30:62:f3:2b:5b:a0:21:48:71:3a:44:2b:f5:35:e0: 04:25:5a:58 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICA30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQwMTcxMTAvBgNVBAUTKDFBOUYyQkJFQTUyMkYxRUUyNTkyMzU5QjRCNTJGQTJC NDFBM0NEQzQwHhcNMjMwOTE1MDEwMjU2WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTAzYWQ0MC1kZWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8QyvytjG+2WMEVEJuN/PIxcAs4JqS2dCoblwT/9URpcGvr8wcMOcFswMbgNz 887tT+Uw27dOUvmizRCXsMtn2UvBtK9BNDVxRJ2OSmGAAOTimwfmMP859hXwhagY d3uhwp7ye+5Rh/LYB8WSnw1dTR3ctGNdL9mnp2X/LIdSy5SagsUxUrqYYsMgha+N so7QtPXS6TCY/q0QUIyh2B31fGKl+9Fq0wOhIsD4xEUX61HDEEwoum5OV0vqP7RD n7nbGarCbUp83kJUgDwcsS1esZg95eLKsFVdXB4TSps3O5jTNOpyx9ICGGmtycjh iV+5WyDi3ziX+4FHmtLi8APORwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFJwq+Izd kT4U4SqKwsNvuSmpQqvmMB8GA1UdIwQYMBaAFBqfK76lIvHuJZI1m0tS+itBo83E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDAxNy83RjEyMjgxQzJE NjQxMUVDODVENjhCODBDNEY5QUUwMi9HcDhydnFVaThlNGxraldiUzFMNkswR2p6 Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dwOHJ2cVVpOGU0bGtqV2JTMUw2SzBHanpjUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQwMTcvN0YxMjI4MUMyRDY0MTFFQzg1RDY4QjgwQzRGOUFFMDIvMEY4NzA5NTQy RDZFMTFFQzgzMjdFMzIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAFnRkwDBAFnR/wDBAJnwrgwDQYJKoZIhvcNAQELBQADggEB AIr6OaK8YzInRyxzy25uuClzJQm5vm72i9dr+VK9tt+l8/ZBKAcd23MKgBNFQDZS mPLy7pofgQFlJlhyn3nIkMpcsco46akKCzDUE+Mj8duPGK6L7QsB7wLi7uOs+/IC AYyKRCL1LWqI3uJgDM+ogVL3y139DaPpHom0By60cCz76mUoufc5tXQDg5uE63Tu 1cBQTmoUdtd5RrCnrxtXfT99Qp+L3I2t+C1beb4YJOc5vAhng0LDOT33cCQsCrqE J750ESMv00I+HjuWDpYUK/OU7d3vfxrrz9BbZNes/IhnqexjBd+H6TNGt5DY+zBi 8ytboCFIcTpEK/U14AQlWlg= -----END CERTIFICATE-----Generated at Wed May 15 03:08:24 2024 by rpki-client on console-ams.rpki-client.org