$ rpki-client -vvf rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/1E2EB8D09F3811ECBB84BD76C4F9AE02.roa File: 1E2EB8D09F3811ECBB84BD76C4F9AE02.roa (raw, json) Hash identifier: 0VgavC+GSFC8kFFDgkonqsGv9bWBdCImRRdTdkeaeH8= Subject key identifier: D0:97:E3:6F:C4:F7:C9:37:D1:00:98:EA:5F:2F:06:1E:EC:CB:6A:37 Certificate issuer: /CN=A9193045/serialNumber=66E85461BB352A498DB55703646305CA37E74FB4 Certificate serial: 0260 Authority key identifier: 66:E8:54:61:BB:35:2A:49:8D:B5:57:03:64:63:05:CA:37:E7:4F:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/1E2EB8D09F3811ECBB84BD76C4F9AE02.roa Signing time: Sat 09 Sep 2023 02:13:37 +0000 ROA not before: Sat 09 Sep 2023 02:13:37 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 131995 IP address blocks: 103.29.153.0/24 maxlen: 24 103.29.154.0/24 maxlen: 24 103.29.155.0/24 maxlen: 24 2401:af00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.crl rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 608 (0x260) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193045/serialNumber=66E85461BB352A498DB55703646305CA37E74FB4 Validity Not Before: Sep 9 02:13:37 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64fbd4d1-1f9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:41:c7:23:c1:4c:56:e2:12:cd:32:1c:fb:2f: d9:ce:be:14:44:fd:da:71:28:0f:a8:5d:0a:15:a8: c8:ee:25:3f:00:75:7f:8f:5e:0f:ff:bd:13:55:4f: 78:36:b5:21:dc:8d:c0:1a:27:d7:16:89:dc:f6:82: 18:ee:b5:bd:56:67:4a:20:fe:d0:b3:2c:93:3c:b5: b6:ff:df:06:44:af:d6:49:1c:46:ee:70:0e:97:28: 96:f4:92:f9:e8:fc:99:be:11:5e:81:79:28:dd:90: 52:80:23:c6:f7:fa:a6:87:53:4d:8e:74:68:e2:eb: 0c:84:cf:02:38:e4:22:0f:f0:1e:4b:fb:03:98:a7: 63:d6:23:c0:e4:32:93:d5:0d:4a:c5:ea:7a:94:27: 20:ee:00:bf:fb:a9:10:b3:05:5b:1f:b4:24:80:80: 8d:55:c4:c4:bb:10:f0:a7:20:1b:3f:11:43:b9:eb: fc:2d:7f:1d:d3:ea:54:b7:e8:3a:e8:de:7e:05:df: 6b:64:f5:e4:f7:cf:2d:83:ee:3a:9c:80:0e:06:dd: 06:2f:a0:3a:d5:86:5d:a8:d7:13:56:6f:77:32:91: 01:6e:de:dc:2b:2c:97:fe:33:46:5c:67:f0:dc:8f: e1:cc:17:73:01:45:f7:8a:09:11:1e:4d:4c:11:33: 9a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:97:E3:6F:C4:F7:C9:37:D1:00:98:EA:5F:2F:06:1E:EC:CB:6A:37 X509v3 Authority Key Identifier: keyid:66:E8:54:61:BB:35:2A:49:8D:B5:57:03:64:63:05:CA:37:E7:4F:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/1E2EB8D09F3811ECBB84BD76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.29.153.0-103.29.155.255 IPv6: 2401:af00::/32 Signature Algorithm: sha256WithRSAEncryption 3c:8a:44:1e:c5:00:16:95:77:82:92:40:46:19:c4:1b:c7:97: 08:62:f3:e4:c2:18:6c:ff:10:d9:19:4c:e2:1a:02:b5:61:8a: 27:27:ed:de:56:3f:07:62:ce:be:8e:02:22:0c:c0:61:2a:48: 6b:34:50:5e:fd:ac:3c:94:dd:8b:e5:03:34:43:aa:d9:b0:04: 45:ea:47:95:0a:59:6e:b1:66:10:bd:48:59:da:7c:b4:30:e3: b4:14:79:1d:13:64:58:2d:a9:ff:14:71:85:51:b4:54:3c:e4: 44:81:81:c5:a7:40:7f:6c:3f:59:08:89:5a:45:28:14:23:f7: 06:4c:ee:c5:33:23:2c:f3:91:f8:65:21:5e:ed:5c:3f:9d:d3: 9a:4e:dc:0d:e3:bb:c1:84:64:4d:40:89:25:fd:21:76:d6:a4: e8:ad:0f:08:94:3c:94:3f:95:d9:f5:48:c2:e3:98:71:71:a8: e3:39:c0:84:31:a1:31:ec:27:af:0c:23:06:d4:9e:ca:9a:65: af:f4:11:af:52:69:4c:c2:36:5c:dc:00:2f:fb:05:a4:6d:1b: 57:5a:65:4a:e1:d3:bd:2e:ea:b8:ac:9b:27:70:cb:6d:4f:47: 87:df:13:e8:2e:0c:b7:f7:42:de:05:53:bd:c8:a3:65:f0:c0: fa:01:16:f8 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMwNDUxMTAvBgNVBAUTKDY2RTg1NDYxQkIzNTJBNDk4REI1NTcwMzY0NjMwNUNB MzdFNzRGQjQwHhcNMjMwOTA5MDIxMzM3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGZiZDRkMS0xZjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0HHI8FMVuISzTIc+y/Zzr4URP3acSgPqF0KFajI7iU/AHV/j14P/70TVU94 NrUh3I3AGifXFonc9oIY7rW9VmdKIP7QsyyTPLW2/98GRK/WSRxG7nAOlyiW9JL5 6PyZvhFegXko3ZBSgCPG9/qmh1NNjnRo4usMhM8COOQiD/AeS/sDmKdj1iPA5DKT 1Q1Kxep6lCcg7gC/+6kQswVbH7QkgICNVcTEuxDwpyAbPxFDuev8LX8d0+pUt+g6 6N5+Bd9rZPXk988tg+46nIAOBt0GL6A61YZdqNcTVm93MpEBbt7cKyyX/jNGXGfw 3I/hzBdzAUX3igkRHk1METOapwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFNCX42/E 98k30QCY6l8vBh7sy2o3MB8GA1UdIwQYMBaAFGboVGG7NSpJjbVXA2RjBco350+0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzA0NS9CRkFEQzYxMDlG MjkxMUVDOUMyRDY3ODVDNEY5QUUwMi9adWhVWWJzMUtrbU50VmNEWkdNRnlqZm5U N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p1aFVZYnMxS2ttTnRWY0RaR01GeWpmblQ3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTMwNDUvQkZBREM2MTA5RjI5MTFFQzlDMkQ2Nzg1QzRGOUFFMDIvMUUyRUI4RDA5 RjM4MTFFQ0JCODRCRDc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBQEAgABMA4wDAMEAGcdmQMEAmcdmDANBAIAAjAHAwUAJAGvADANBgkqhkiG 9w0BAQsFAAOCAQEAPIpEHsUAFpV3gpJARhnEG8eXCGLz5MIYbP8Q2RlM4hoCtWGK Jyft3lY/B2LOvo4CIgzAYSpIazRQXv2sPJTdi+UDNEOq2bAERepHlQpZbrFmEL1I Wdp8tDDjtBR5HRNkWC2p/xRxhVG0VDzkRIGBxadAf2w/WQiJWkUoFCP3BkzuxTMj LPOR+GUhXu1cP53Tmk7cDeO7wYRkTUCJJf0hdtak6K0PCJQ8lD+V2fVIwuOYcXGo 4znAhDGhMewnrwwjBtSeypplr/QRr1JpTMI2XNwAL/sFpG0bV1plSuHTvS7quKyb J3DLbU9Hh98T6C4Mt/dC3gVTvcijZfDA+gEW+A== -----END CERTIFICATE-----Generated at Sun May 19 04:20:43 2024 by rpki-client on console-ams.rpki-client.org