$ rpki-client -vvf rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/1D171A58C76211EC95B63648C4F9AE02.roa File: 1D171A58C76211EC95B63648C4F9AE02.roa (raw, json) Hash identifier: gSJIRhvkvsqzVWI/PIM9ZJldSrE3+tHguZhTA6U0IhA= Subject key identifier: 66:DB:0A:1A:F6:74:A5:8E:76:09:9D:C5:0D:D2:9F:3A:D2:F6:0E:21 Certificate issuer: /CN=A9193339/serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Certificate serial: 027D Authority key identifier: 87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/1D171A58C76211EC95B63648C4F9AE02.roa Signing time: Mon 19 Feb 2024 03:25:01 +0000 ROA not before: Mon 19 Feb 2024 03:25:01 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 136237 IP address blocks: 103.84.136.0/22 maxlen: 24 2400:a040::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 03:36:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 637 (0x27d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193339/serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Validity Not Before: Feb 19 03:25:01 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65d2ca0d-0a23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:07:24:59:1b:7b:b3:88:07:fc:37:65:89:80: f6:58:33:ef:9a:6f:b5:23:b1:67:0e:a6:b3:9b:0c: e8:a0:7f:d6:f8:a2:fc:d2:3e:94:cd:20:55:01:98: ad:cd:49:6a:64:17:94:20:b9:fc:6e:92:5e:0f:53: 7c:6a:d4:11:67:dd:ca:0a:3b:f2:0a:ea:3c:5a:a6: 0f:f7:ed:71:f7:ec:82:a0:7b:4e:3d:22:e3:f9:97: 39:cf:e9:8f:1f:9e:fe:4e:b8:96:e9:ef:f2:e0:75: 8c:36:68:fb:ad:d5:81:5a:7f:5b:39:7e:f5:41:6d: 32:20:df:6f:0d:4c:01:1e:9c:a4:6d:34:ff:27:47: e0:5f:13:d6:fa:f0:9b:a6:c1:f2:88:20:57:fc:f1: 52:92:09:b7:6e:ea:01:7f:6f:3b:fe:11:7b:63:a2: 9a:28:df:dd:f8:9b:f9:b7:05:1f:1c:03:ee:c3:01: 0f:23:01:68:81:b9:22:0b:20:75:59:9f:d0:9c:9f: c8:1e:36:92:1f:b4:7d:ff:fc:0f:11:bb:26:96:77: 89:7d:ec:55:bf:8e:d5:fb:a1:29:95:4e:c2:c3:da: 4a:30:ef:29:dd:01:cb:bd:16:3d:b5:a7:84:eb:fd: e2:97:60:bd:65:80:24:3a:03:07:06:27:45:c9:cf: a9:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:DB:0A:1A:F6:74:A5:8E:76:09:9D:C5:0D:D2:9F:3A:D2:F6:0E:21 X509v3 Authority Key Identifier: keyid:87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/1D171A58C76211EC95B63648C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.84.136.0/22 IPv6: 2400:a040::/32 Signature Algorithm: sha256WithRSAEncryption a3:53:f3:06:5b:d7:ee:4c:9c:2c:2e:64:53:77:c8:bc:4e:e8: da:98:ca:45:f5:19:b1:63:d6:22:e7:b2:73:66:a5:c4:a7:82: 51:4c:8a:22:37:49:20:ff:c5:bc:7f:48:c0:90:43:2b:ba:ec: b8:71:8a:59:d7:bf:25:63:57:8a:02:e0:de:2a:1c:75:f0:83: 84:be:f1:4a:4d:65:8b:5d:e0:7e:1a:dd:bf:4a:a3:80:89:0b: f9:37:be:43:7a:98:04:c8:cd:0c:e4:d8:46:36:79:ee:31:1b: 6d:7c:2f:fc:86:46:f3:0e:ea:9e:d4:0d:a0:47:5d:03:a1:36: a0:98:43:a8:38:eb:8a:c4:22:7e:93:de:b5:74:17:cf:d8:40: 9a:80:e9:5a:12:81:4b:4a:6d:27:e8:c5:bc:fb:15:8a:0f:6f: 1a:4d:c6:f1:12:b8:47:04:ba:1f:b7:ca:bb:3c:27:90:36:d3: bc:c7:80:c5:0e:6e:48:3c:02:08:f9:1a:45:bc:75:50:bf:6c: 18:b1:bf:bf:74:be:2a:ce:33:4a:99:f3:7b:2f:5a:8e:92:f7: 3c:30:a2:ff:00:ae:c5:3c:50:a7:8b:a6:f3:b8:58:2c:36:df: 8e:73:fe:c8:bb:e3:2a:64:ba:80:eb:32:ee:6f:be:71:1d:b5: 47:10:23:c0 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMzMzkxMTAvBgNVBAUTKDg3MkU1QUI1MzlCRTQzODU3NDAzRDRGNUQ0NUE1NDcy QkIyMDdBNkQwHhcNMjQwMjE5MDMyNTAxWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQyY2EwZC0wYTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzwckWRt7s4gH/DdliYD2WDPvmm+1I7FnDqazmwzooH/W+KL80j6UzSBVAZit zUlqZBeUILn8bpJeD1N8atQRZ93KCjvyCuo8WqYP9+1x9+yCoHtOPSLj+Zc5z+mP H57+TriW6e/y4HWMNmj7rdWBWn9bOX71QW0yIN9vDUwBHpykbTT/J0fgXxPW+vCb psHyiCBX/PFSkgm3buoBf287/hF7Y6KaKN/d+Jv5twUfHAPuwwEPIwFogbkiCyB1 WZ/QnJ/IHjaSH7R9//wPEbsmlneJfexVv47V+6EplU7Cw9pKMO8p3QHLvRY9taeE 6/3il2C9ZYAkOgMHBidFyc+ppQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFGbbChr2 dKWOdgmdxQ3SnzrS9g4hMB8GA1UdIwQYMBaAFIcuWrU5vkOFdAPU9dRaVHK7IHpt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzMzOS80NTI2Nzk3MEIy RkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0VjBBOVQxMUZwVWNyc2dl bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5NWF0VG0tUTRWMEE5VDExRnBVY3JzZ2VtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTMzMzkvNDUyNjc5NzBCMkZBMTFFQ0I1NzRDRTdGQzRGOUFFMDIvMUQxNzFBNThD NzYyMTFFQzk1QjYzNjQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnVIgwDQQCAAIwBwMFACQAoEAwDQYJKoZIhvcNAQELBQAD ggEBAKNT8wZb1+5MnCwuZFN3yLxO6NqYykX1GbFj1iLnsnNmpcSnglFMiiI3SSD/ xbx/SMCQQyu67LhxilnXvyVjV4oC4N4qHHXwg4S+8UpNZYtd4H4a3b9Ko4CJC/k3 vkN6mATIzQzk2EY2ee4xG218L/yGRvMO6p7UDaBHXQOhNqCYQ6g464rEIn6T3rV0 F8/YQJqA6VoSgUtKbSfoxbz7FYoPbxpNxvESuEcEuh+3yrs8J5A207zHgMUObkg8 Agj5GkW8dVC/bBixv790virOM0qZ83svWo6S9zwwov8ArsU8UKeLpvO4WCw2345z /si74ypkuoDrMu5vvnEdtUcQI8A= -----END CERTIFICATE-----Generated at Tue May 7 04:34:51 2024 by rpki-client on console-fra.rpki-client.org