$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/A4B0D326F0A311ED99A1471CC4F9AE02.roa File: A4B0D326F0A311ED99A1471CC4F9AE02.roa (raw, json) Hash identifier: PlDX7f6npPBBb8zs0MYAaQuFOPsPasxz/dDhct2tCFU= Subject key identifier: 8F:B1:E1:80:B8:B5:90:92:07:1C:7D:41:15:AF:80:5E:17:6B:C7:7A Certificate issuer: /CN=A9185B5F/serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Certificate serial: 14 Authority key identifier: D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/A4B0D326F0A311ED99A1471CC4F9AE02.roa Signing time: Fri 09 Jun 2023 08:19:53 +0000 ROA not before: Fri 09 Jun 2023 08:19:53 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 142409 IP address blocks: 103.167.230.0/23 maxlen: 23 2407:77c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 06:28:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B5F/serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Validity Not Before: Jun 9 08:19:53 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6482e0a9-5638 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:fc:29:b1:11:de:24:09:cd:43:2a:15:87:cc: d6:82:67:5e:2c:b2:56:24:02:e1:6d:83:72:d3:c8: ec:96:88:c5:8e:1e:4c:a8:a6:98:0d:db:37:0f:f5: 8e:68:ec:6b:03:0a:13:6c:c3:08:58:e5:48:6b:a7: 02:de:e7:47:2b:7f:5c:3d:7d:08:d9:b8:9d:53:a3: a6:50:a6:10:71:b9:d6:9b:7f:19:7a:53:9d:e6:e7: 59:6e:4f:fc:26:b3:15:9d:af:ba:a3:6c:21:00:14: e9:13:9f:1f:61:18:76:f6:a6:18:a0:cc:63:b2:42: 47:a4:45:2b:a6:7c:f6:31:1a:c3:da:0d:e7:13:26: 1d:7c:58:e6:b3:50:a2:c8:4b:1b:78:23:5f:c6:36: 61:75:b5:6e:12:31:7a:f2:9b:7c:ce:ea:c1:a9:18: 7f:ea:0b:ee:7f:c1:84:7b:0c:2e:06:31:f0:b5:df: cc:dc:cd:ad:c5:14:fb:ff:d3:5e:12:3f:bf:be:13: 01:38:89:f3:fe:f8:83:6c:cb:25:79:de:fa:36:5a: 80:39:37:2b:d6:39:df:d6:52:ab:b4:e8:73:8b:33: 3a:89:d4:e7:95:7d:f9:b8:ae:07:ac:df:1c:8f:79: b9:b2:5b:ba:06:9b:1b:a4:a3:14:56:82:4b:12:77: 83:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:B1:E1:80:B8:B5:90:92:07:1C:7D:41:15:AF:80:5E:17:6B:C7:7A X509v3 Authority Key Identifier: keyid:D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/A4B0D326F0A311ED99A1471CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.230.0/23 IPv6: 2407:77c0::/32 Signature Algorithm: sha256WithRSAEncryption 86:e3:b8:5b:d9:a8:68:e5:6a:f3:3b:f7:ce:58:80:2f:55:ed: 44:77:6d:ab:d0:0b:88:1d:bb:54:b6:b1:20:37:c3:a3:fe:4e: e9:d5:c8:0e:6a:0f:2e:47:ef:5f:3e:2f:ec:31:bb:a8:5c:a5: d0:02:28:44:59:53:45:ad:38:3e:f0:fb:90:99:ac:16:01:76: 0c:26:5b:23:ba:bd:24:e2:a0:a9:b1:0a:24:fb:bf:c9:92:e2: 77:f9:10:7a:96:d7:37:51:06:6e:58:2a:58:4b:42:1d:6f:20: 82:e4:56:8c:a6:65:2c:0e:c8:ab:70:80:3d:bd:15:69:a0:35: 3c:d8:47:9c:6f:b0:57:03:b2:99:f3:fc:9f:98:dd:21:65:da: cc:bf:fd:12:c2:23:66:2f:88:23:00:ee:5e:12:20:b8:4a:50: 73:09:af:f4:9b:be:03:31:d5:01:f7:a8:dd:c6:af:bd:57:a8: 66:a2:27:81:e5:91:85:df:03:4c:f9:93:41:01:64:b3:b1:5b: 5d:63:29:4e:8c:06:83:fb:9f:37:b7:d7:29:76:f7:aa:89:ff: 91:65:2b:14:44:b4:49:cb:1a:8a:00:d0:50:b6:bb:b8:a3:a3: 2e:7b:b6:b6:a4:03:e3:5c:b1:d6:3d:71:8b:b3:45:c4:71:b4: de:dc:02:65 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NUI1RjExMC8GA1UEBRMoRDg3RTAyOTY5NTQ2QURDNTVBN0FDQ0EwOENBREIyODc5 QkM2OTlDOTAeFw0yMzA2MDkwODE5NTNaFw0yNDA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ODJlMGE5LTU2MzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDB/CmxEd4kCc1DKhWHzNaCZ14sslYkAuFtg3LTyOyWiMWOHkyoppgN2zcP9Y5o 7GsDChNswwhY5UhrpwLe50crf1w9fQjZuJ1To6ZQphBxudabfxl6U53m51luT/wm sxWdr7qjbCEAFOkTnx9hGHb2phigzGOyQkekRSumfPYxGsPaDecTJh18WOazUKLI Sxt4I1/GNmF1tW4SMXrym3zO6sGpGH/qC+5/wYR7DC4GMfC138zcza3FFPv/014S P7++EwE4ifP++INsyyV53vo2WoA5NyvWOd/WUqu06HOLMzqJ1OeVffm4rges3xyP ebmyW7oGmxukoxRWgksSd4NZAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUj7HhgLi1 kJIHHH1BFa+AXhdrx3owHwYDVR0jBBgwFoAU2H4ClpVGrcVaesygjK2yh5vGmckw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg1QjVGLzhFNDE4MDIwRjA5 QjExRURBNjA2QkQ2MkM0RjlBRTAyLzJINENscFZHcmNWYWVzeWdqSzJ5aDV2R21j ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMkg0Q2xwVkdyY1ZhZXN5Z2pLMnloNXZHbWNrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI1Ri84RTQxODAyMEYwOUIxMUVEQTYwNkJENjJDNEY5QUUwMi9BNEIwRDMyNkYw QTMxMUVEOTlBMTQ3MUNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAWen5jANBAIAAjAHAwUAJAd3wDANBgkqhkiG9w0BAQsFAAOC AQEAhuO4W9moaOVq8zv3zliAL1XtRHdtq9ALiB27VLaxIDfDo/5O6dXIDmoPLkfv Xz4v7DG7qFyl0AIoRFlTRa04PvD7kJmsFgF2DCZbI7q9JOKgqbEKJPu/yZLid/kQ epbXN1EGblgqWEtCHW8gguRWjKZlLA7Iq3CAPb0VaaA1PNhHnG+wVwOymfP8n5jd IWXazL/9EsIjZi+IIwDuXhIguEpQcwmv9Ju+AzHVAfeo3cavvVeoZqIngeWRhd8D TPmTQQFks7FbXWMpTowGg/ufN7fXKXb3qon/kWUrFES0ScsaigDQULa7uKOjLnu2 tqQD41yx1j1xi7NFxHG03twCZQ== -----END CERTIFICATE-----Generated at Fri May 17 08:52:50 2024 by rpki-client on console-ams.rpki-client.org