$ rpki-client -vvf rpki.apnic.net/member_repository/A9187856/91CC3152379F11EBB3316135C4F9AE02/E018A9F237A011EBBF397436C4F9AE02.roa File: E018A9F237A011EBBF397436C4F9AE02.roa (raw, json) Hash identifier: gdLo9tIMVuOO1O4xewblrDB9aSBij7KOy3EC1bMLsdw= Subject key identifier: B5:C2:57:5A:49:9E:8C:96:39:01:13:21:57:05:99:2D:4E:3D:1A:04 Certificate issuer: /CN=A9187856/serialNumber=E8DA5BF01C7943F1AEC248610C5C4D1BE44B704F Certificate serial: 05FC Authority key identifier: E8:DA:5B:F0:1C:79:43:F1:AE:C2:48:61:0C:5C:4D:1B:E4:4B:70:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Npb8Bx5Q_GuwkhhDFxNG-RLcE8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187856/91CC3152379F11EBB3316135C4F9AE02/E018A9F237A011EBBF397436C4F9AE02.roa Signing time: Fri 22 Sep 2023 22:59:55 +0000 ROA not before: Fri 22 Sep 2023 22:59:55 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 140973 IP address blocks: 103.154.12.0/23 maxlen: 23 103.154.12.0/24 maxlen: 24 103.154.13.0/24 maxlen: 24 2001:df1:ffc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187856/91CC3152379F11EBB3316135C4F9AE02/6Npb8Bx5Q_GuwkhhDFxNG-RLcE8.crl rsync://rpki.apnic.net/member_repository/A9187856/91CC3152379F11EBB3316135C4F9AE02/6Npb8Bx5Q_GuwkhhDFxNG-RLcE8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Npb8Bx5Q_GuwkhhDFxNG-RLcE8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 23:20:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1532 (0x5fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187856/serialNumber=E8DA5BF01C7943F1AEC248610C5C4D1BE44B704F Validity Not Before: Sep 22 22:59:55 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=650e1c6b-7969 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d8:60:70:e5:20:88:54:47:01:a5:d0:0a:4b: 0b:d8:23:3d:0f:9d:23:d1:3d:c9:7b:c3:51:72:32: 6b:c8:f2:b7:74:aa:1e:6d:17:1c:06:7c:b6:ea:e9: 16:8e:56:0c:60:cb:52:7a:d4:95:4c:4d:9b:0d:63: 91:1b:ac:7c:6c:2d:33:a9:40:cc:0c:58:be:39:27: 00:3b:fb:39:a4:da:47:00:a7:f8:ff:6d:88:ad:65: 31:4c:4a:65:36:87:68:4c:3d:4d:81:a3:18:c1:8c: a3:7f:eb:e6:e7:13:a0:46:41:ea:49:26:23:ed:a0: c3:e7:02:b9:7d:d2:6b:f0:db:24:49:93:ec:4e:18: fe:44:ce:9d:df:8b:2c:39:ae:93:18:8b:56:9d:25: 6e:f0:83:46:47:a6:1e:cd:d5:95:14:45:06:f5:fa: fd:aa:95:88:b6:e5:9c:c7:3e:b3:21:87:50:9f:66: c4:40:82:1e:3a:dc:b7:08:d4:33:28:a4:3b:ff:39: d5:00:72:f0:f2:8e:82:be:49:0e:9c:fc:1b:f8:f1: 02:e9:ba:6c:50:ca:da:3d:ff:54:e8:30:d4:bf:79: 9a:92:79:6a:81:6d:de:af:48:9a:42:79:2c:35:7f: a7:28:82:9d:f4:e3:40:71:3b:35:86:f8:e3:b9:0a: 21:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:C2:57:5A:49:9E:8C:96:39:01:13:21:57:05:99:2D:4E:3D:1A:04 X509v3 Authority Key Identifier: keyid:E8:DA:5B:F0:1C:79:43:F1:AE:C2:48:61:0C:5C:4D:1B:E4:4B:70:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187856/91CC3152379F11EBB3316135C4F9AE02/6Npb8Bx5Q_GuwkhhDFxNG-RLcE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Npb8Bx5Q_GuwkhhDFxNG-RLcE8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187856/91CC3152379F11EBB3316135C4F9AE02/E018A9F237A011EBBF397436C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.12.0/23 IPv6: 2001:df1:ffc0::/48 Signature Algorithm: sha256WithRSAEncryption 4c:a0:17:b9:4c:05:16:ef:8d:72:63:e7:1f:3f:74:52:b0:8b: 17:ab:c0:03:bd:20:f5:97:89:05:79:ec:23:a8:66:3f:e8:40: 27:8d:97:61:6e:78:20:a1:ff:ba:ec:49:54:ef:c0:27:05:da: 84:9b:6b:94:5f:cb:93:b3:3f:7a:52:32:df:72:c8:ce:2e:66: ed:45:f2:a9:17:7f:f3:91:8f:53:ec:ac:e6:7e:e3:ce:16:6c: 8e:fc:66:58:fa:78:cb:9f:72:a8:a1:ba:4a:da:ec:94:97:69: ca:6f:7e:ce:22:65:50:78:fa:6e:bf:b5:87:4c:3f:19:69:02: 33:24:08:43:75:92:87:20:31:6b:87:bb:87:48:97:12:06:16: 0a:9a:48:20:4b:5f:b2:27:83:93:1c:7f:68:7f:2c:84:b6:48: c9:5f:7d:55:45:ba:f4:08:b1:8e:c8:da:db:3f:61:d6:5f:37: ac:f6:44:0e:d4:c4:c6:c8:05:20:9c:83:a7:62:3b:ce:86:18: 62:1d:de:9d:8a:17:75:48:5a:83:d6:df:83:c0:3a:e8:4b:27: 12:bd:eb:71:d6:33:32:41:22:d5:72:29:98:1c:09:24:b2:41: 6a:b3:df:a5:30:1f:3b:c2:37:f4:77:c6:07:3e:a9:54:37:4c: e5:49:ab:fc -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc4NTYxMTAvBgNVBAUTKEU4REE1QkYwMUM3OTQzRjFBRUMyNDg2MTBDNUM0RDFC RTQ0QjcwNEYwHhcNMjMwOTIyMjI1OTU1WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTBlMWM2Yi03OTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9hgcOUgiFRHAaXQCksL2CM9D50j0T3Je8NRcjJryPK3dKoebRccBny26ukW jlYMYMtSetSVTE2bDWORG6x8bC0zqUDMDFi+OScAO/s5pNpHAKf4/22IrWUxTEpl NodoTD1NgaMYwYyjf+vm5xOgRkHqSSYj7aDD5wK5fdJr8NskSZPsThj+RM6d34ss Oa6TGItWnSVu8INGR6YezdWVFEUG9fr9qpWItuWcxz6zIYdQn2bEQIIeOty3CNQz KKQ7/znVAHLw8o6CvkkOnPwb+PEC6bpsUMraPf9U6DDUv3maknlqgW3er0iaQnks NX+nKIKd9ONAcTs1hvjjuQohEwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLXCV1pJ noyWOQETIVcFmS1OPRoEMB8GA1UdIwQYMBaAFOjaW/AceUPxrsJIYQxcTRvkS3BP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Nzg1Ni85MUNDMzE1MjM3 OUYxMUVCQjMzMTYxMzVDNEY5QUUwMi82TnBiOEJ4NVFfR3V3a2hoREZ4TkctUkxj RTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZOcGI4Qng1UV9HdXdraGhERnhORy1STGNFOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODc4NTYvOTFDQzMxNTIzNzlGMTFFQkIzMzE2MTM1QzRGOUFFMDIvRTAxOEE5RjIz N0EwMTFFQkJGMzk3NDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnmgwwDwQCAAIwCQMHACABDfH/wDANBgkqhkiG9w0BAQsF AAOCAQEATKAXuUwFFu+NcmPnHz90UrCLF6vAA70g9ZeJBXnsI6hmP+hAJ42XYW54 IKH/uuxJVO/AJwXahJtrlF/Lk7M/elIy33LIzi5m7UXyqRd/85GPU+ys5n7jzhZs jvxmWPp4y59yqKG6StrslJdpym9+ziJlUHj6br+1h0w/GWkCMyQIQ3WShyAxa4e7 h0iXEgYWCppIIEtfsieDkxx/aH8shLZIyV99VUW69Aixjsja2z9h1l83rPZEDtTE xsgFIJyDp2I7zoYYYh3enYoXdUhag9bfg8A66EsnEr3rcdYzMkEi1XIpmBwJJLJB arPfpTAfO8I39HfGBz6pVDdM5Umr/A== -----END CERTIFICATE-----Generated at Tue May 7 00:53:20 2024 by rpki-client on console-ams.rpki-client.org