$ rpki-client -vvf rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/97F31854777011E7BF7EED10C4F9AE02.roa File: 97F31854777011E7BF7EED10C4F9AE02.roa (raw, json) Hash identifier: EFjHZXaY8KAv855DfzaRxgSb+nwJIk5Dh3mOeYsbX0o= Subject key identifier: EF:30:E7:D3:F3:D0:BB:41:9A:94:BD:16:47:40:6F:C4:3B:BD:55:0B Certificate issuer: /CN=A9187313/serialNumber=E5672BBF18C4CFEBD3F472D13B48771372D34EDF Certificate serial: 1815 Authority key identifier: E5:67:2B:BF:18:C4:CF:EB:D3:F4:72:D1:3B:48:77:13:72:D3:4E:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5WcrvxjEz-vT9HLRO0h3E3LTTt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/97F31854777011E7BF7EED10C4F9AE02.roa Signing time: Thu 31 Aug 2023 17:03:58 +0000 ROA not before: Thu 31 Aug 2023 17:03:58 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 58419 IP address blocks: 103.10.252.0/24 maxlen: 24 103.23.214.0/24 maxlen: 24 103.95.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/5WcrvxjEz-vT9HLRO0h3E3LTTt8.crl rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/5WcrvxjEz-vT9HLRO0h3E3LTTt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5WcrvxjEz-vT9HLRO0h3E3LTTt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 16:56:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6165 (0x1815) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187313/serialNumber=E5672BBF18C4CFEBD3F472D13B48771372D34EDF Validity Not Before: Aug 31 17:03:58 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f0c7fe-9f35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b5:34:f4:37:49:69:39:2d:7a:df:65:1e:b8: 14:c9:4d:69:64:24:6e:ff:3f:dc:bf:75:c0:89:bc: 4b:04:b5:f2:5f:6a:cc:6a:4d:1d:22:cf:6b:4d:45: 0e:52:dc:6f:a1:52:b0:cb:24:9f:58:a8:fb:f2:2f: bb:23:85:dc:cf:96:87:46:41:02:ba:6e:d7:5c:f6: 5d:7e:9d:72:13:e1:44:87:f9:01:cd:e5:7f:9e:87: d5:82:68:0b:eb:af:30:54:fa:e7:85:e6:7f:70:a5: ea:25:50:0d:40:e3:d7:1e:c1:03:9c:fd:30:9b:d3: 23:b2:0a:84:f6:5a:0d:e9:77:77:ed:8d:75:42:69: 63:cd:2d:11:fb:4f:64:0a:44:34:30:46:e6:47:62: 8a:fb:0a:07:3f:bf:5f:99:bc:97:47:2d:e9:3c:de: 94:76:7f:3a:99:24:41:5e:40:fb:fa:81:74:b7:91: 8b:52:18:af:c7:22:20:de:81:7f:95:51:7a:21:99: b5:99:81:d3:31:ae:21:03:26:f7:c7:86:0c:cb:cf: 81:96:0f:23:d9:1e:47:34:94:6b:a8:23:cd:62:ba: 81:bd:91:0a:b2:e6:bc:53:dd:00:55:24:a4:7e:ba: 64:51:34:37:eb:ad:b0:a7:e2:0f:aa:93:14:fd:38: 9a:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:30:E7:D3:F3:D0:BB:41:9A:94:BD:16:47:40:6F:C4:3B:BD:55:0B X509v3 Authority Key Identifier: keyid:E5:67:2B:BF:18:C4:CF:EB:D3:F4:72:D1:3B:48:77:13:72:D3:4E:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/5WcrvxjEz-vT9HLRO0h3E3LTTt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5WcrvxjEz-vT9HLRO0h3E3LTTt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/97F31854777011E7BF7EED10C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.10.252.0/24 103.23.214.0/24 103.95.193.0/24 Signature Algorithm: sha256WithRSAEncryption 53:d5:28:56:66:86:dc:8c:1e:84:85:27:94:76:01:db:6e:34: f7:3f:71:50:2f:92:a7:97:9d:f6:c1:76:77:0b:d5:b4:bc:bb: 1d:0d:a6:ca:3b:4d:7e:79:af:2f:15:42:d7:30:ca:ff:94:bc: ac:5e:8f:58:30:b8:11:74:ae:34:8d:94:c3:96:6d:3d:11:5a: 44:87:81:ba:d9:ba:88:96:36:6b:55:dd:43:0d:eb:da:d0:d5: 96:a6:11:59:40:3c:df:29:74:75:0a:76:b0:20:40:9a:69:c7: 15:4f:82:57:73:3a:04:80:02:7a:01:3f:e4:70:20:15:f6:00: 22:29:d5:f6:0d:06:0c:72:11:68:7a:95:e4:09:12:e8:0a:1e: 5c:30:a9:6b:09:66:19:6d:63:01:3f:10:81:c9:61:05:e1:30: cb:33:b8:a5:7f:6b:85:23:d8:bb:94:81:9c:df:3a:bc:2a:f8: a5:2c:31:61:1c:cd:d8:b7:2c:a9:f7:9e:b8:1e:db:c2:3a:5a: 35:4a:08:a8:70:4b:45:11:fc:c1:f1:c1:85:1e:ec:46:07:03: 1f:f9:e8:2d:55:5c:76:da:ea:1f:ee:82:da:56:7f:7e:ab:4c: b7:81:2d:41:7f:67:e2:24:9f:b2:54:cd:b7:1a:83:3f:b9:49: 0c:46:68:88 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICGBUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODczMTMxMTAvBgNVBAUTKEU1NjcyQkJGMThDNENGRUJEM0Y0NzJEMTNCNDg3NzEz NzJEMzRFREYwHhcNMjMwODMxMTcwMzU4WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYwYzdmZS05ZjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvLU09DdJaTktet9lHrgUyU1pZCRu/z/cv3XAibxLBLXyX2rMak0dIs9rTUUO UtxvoVKwyySfWKj78i+7I4Xcz5aHRkECum7XXPZdfp1yE+FEh/kBzeV/nofVgmgL 668wVPrnheZ/cKXqJVANQOPXHsEDnP0wm9MjsgqE9loN6Xd37Y11QmljzS0R+09k CkQ0MEbmR2KK+woHP79fmbyXRy3pPN6Udn86mSRBXkD7+oF0t5GLUhivxyIg3oF/ lVF6IZm1mYHTMa4hAyb3x4YMy8+Blg8j2R5HNJRrqCPNYrqBvZEKsua8U90AVSSk frpkUTQ3662wp+IPqpMU/Tia9wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFO8w59Pz 0LtBmpS9FkdAb8Q7vVULMB8GA1UdIwQYMBaAFOVnK78YxM/r0/Ry0TtIdxNy007f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzMxMy8zQzM0RUMwQTc3 NkYxMUU3ODJBRDZEMEVDNEY5QUUwMi81V2NydnhqRXotdlQ5SExSTzBoM0UzTFRU dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVXY3J2eGpFei12VDlITFJPMGgzRTNMVFR0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODczMTMvM0MzNEVDMEE3NzZGMTFFNzgyQUQ2RDBFQzRGOUFFMDIvOTdGMzE4NTQ3 NzcwMTFFN0JGN0VFRDEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnCvwDBABnF9YDBABnX8EwDQYJKoZIhvcNAQELBQADggEB AFPVKFZmhtyMHoSFJ5R2AdtuNPc/cVAvkqeXnfbBdncL1bS8ux0Npso7TX55ry8V Qtcwyv+UvKxej1gwuBF0rjSNlMOWbT0RWkSHgbrZuoiWNmtV3UMN69rQ1ZamEVlA PN8pdHUKdrAgQJppxxVPgldzOgSAAnoBP+RwIBX2ACIp1fYNBgxyEWh6leQJEugK HlwwqWsJZhltYwE/EIHJYQXhMMszuKV/a4Uj2LuUgZzfOrwq+KUsMWEczdi3LKn3 nrge28I6WjVKCKhwS0UR/MHxwYUe7EYHAx/56C1VXHba6h/ugtpWf36rTLeBLUF/ Z+Ikn7JUzbcagz+5SQxGaIg= -----END CERTIFICATE-----Generated at Mon May 20 19:59:44 2024 by rpki-client on console-ams.rpki-client.org