$ rpki-client -vvf rpki.apnic.net/member_repository/A9194CBD/580BE3AE6E2411EE91D88037C4F9AE02/32357EA676C611EEA45B7909C4F9AE02.roa File: 32357EA676C611EEA45B7909C4F9AE02.roa (raw, json) Hash identifier: T6E4gLPcvRKv8UPp/vdwR69gD3qPRWyy46vPzjQPAUs= Subject key identifier: B0:82:98:E1:60:E5:B9:E6:52:1E:D9:AD:B3:7C:47:23:3D:BC:C4:24 Certificate issuer: /CN=A9194CBD/serialNumber=4F6735631600236C80598A1E33213BBD681ECE57 Certificate serial: 08 Authority key identifier: 4F:67:35:63:16:00:23:6C:80:59:8A:1E:33:21:3B:BD:68:1E:CE:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T2c1YxYAI2yAWYoeMyE7vWgezlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194CBD/580BE3AE6E2411EE91D88037C4F9AE02/32357EA676C611EEA45B7909C4F9AE02.roa Signing time: Mon 30 Oct 2023 01:46:51 +0000 ROA not before: Mon 30 Oct 2023 01:46:51 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 151839 IP address blocks: 103.159.86.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194CBD/580BE3AE6E2411EE91D88037C4F9AE02/T2c1YxYAI2yAWYoeMyE7vWgezlc.crl rsync://rpki.apnic.net/member_repository/A9194CBD/580BE3AE6E2411EE91D88037C4F9AE02/T2c1YxYAI2yAWYoeMyE7vWgezlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T2c1YxYAI2yAWYoeMyE7vWgezlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194CBD/serialNumber=4F6735631600236C80598A1E33213BBD681ECE57 Validity Not Before: Oct 30 01:46:51 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=653f0b0b-c7c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:97:74:eb:79:37:57:3f:26:a3:4e:65:d7:98: b0:65:f3:cd:06:11:03:82:27:f6:67:9c:b2:85:13: 5b:9d:3a:48:93:ef:a5:80:b5:da:2b:3a:ca:84:91: 3e:a7:49:77:9c:f3:50:d0:88:65:5c:ee:6b:f8:4b: 54:19:d1:6a:7a:d4:95:59:86:a4:e1:b1:e8:27:2f: 37:a2:7a:0f:d5:42:d3:1e:c3:d9:f3:14:a6:be:61: 1d:a9:f0:78:d3:83:5e:9f:a3:f1:2c:18:8c:76:08: f3:1a:8a:4c:07:00:08:11:ca:91:5d:b0:0d:72:84: ed:80:40:7a:f8:1e:69:7d:15:86:ca:0c:43:ea:e5: f1:31:79:a4:9b:28:8f:e6:b3:01:ef:dd:3e:ea:20: c6:c1:7a:44:65:a3:e4:e6:58:9d:7c:0e:8e:88:cf: e7:5d:6c:dd:60:09:20:ab:66:72:46:61:66:19:9d: d8:65:87:9c:4c:2b:6a:4b:13:e6:dd:49:f4:ce:bb: 0b:b2:7c:6a:b3:e7:78:a6:d4:d1:e0:ad:43:65:5b: b3:56:b8:2f:c5:54:0d:4c:fc:7e:bd:76:4d:47:a8: 04:10:5f:d6:11:31:5c:5a:cb:7b:1e:1d:27:24:15: 6b:63:28:b2:7a:1d:0d:7d:d1:c3:b7:36:14:ed:89: 21:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:82:98:E1:60:E5:B9:E6:52:1E:D9:AD:B3:7C:47:23:3D:BC:C4:24 X509v3 Authority Key Identifier: keyid:4F:67:35:63:16:00:23:6C:80:59:8A:1E:33:21:3B:BD:68:1E:CE:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194CBD/580BE3AE6E2411EE91D88037C4F9AE02/T2c1YxYAI2yAWYoeMyE7vWgezlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T2c1YxYAI2yAWYoeMyE7vWgezlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194CBD/580BE3AE6E2411EE91D88037C4F9AE02/32357EA676C611EEA45B7909C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.86.0/23 Signature Algorithm: sha256WithRSAEncryption 39:e1:00:85:15:49:db:82:6e:3b:95:d7:ee:66:e9:85:8c:aa: b3:54:cd:e9:3e:ae:ba:36:7c:bc:ad:13:00:06:f6:b7:e3:65: bd:ad:d5:8f:05:fc:f4:4b:97:86:4f:84:86:14:88:f7:3c:e1: 38:c5:03:fe:6a:88:7c:21:5f:d0:42:79:87:c4:5f:1e:c8:0a: 30:dd:16:3f:3a:65:b6:dc:16:01:18:b0:b6:a9:4c:7b:d4:6c: d9:f7:ef:19:fd:3c:03:74:c9:0d:3b:72:cc:d7:dd:c4:ac:2e: 1d:3d:16:ed:86:c8:b9:ac:8c:5c:9c:ed:a0:5f:12:a4:0f:b5: 2d:11:86:7d:a2:0b:be:9f:a9:a7:7d:a6:bf:c2:2f:e6:57:c3: 8a:01:03:6f:e2:b4:5d:0a:ac:35:d9:29:02:00:fb:c4:ac:74: 5d:25:94:c7:ea:dd:be:06:87:02:37:c7:fc:c9:be:4b:2b:fa: 7a:e8:ec:c9:9e:45:78:b7:7d:52:81:34:f0:2f:f5:68:dc:77: c2:e7:95:c0:c5:75:8c:c9:fb:5e:3b:e4:8e:71:15:0f:87:c3: b4:9e:55:45:78:05:73:a6:74:79:e0:d8:28:b6:06:43:72:6c: 27:cc:bf:68:df:54:82:f5:89:4c:46:90:3a:61:4c:6e:15:34: 72:52:2a:7b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NENCRDExMC8GA1UEBRMoNEY2NzM1NjMxNjAwMjM2QzgwNTk4QTFFMzMyMTNCQkQ2 ODFFQ0U1NzAeFw0yMzEwMzAwMTQ2NTFaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1M2YwYjBiLWM3YzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEl3TreTdXPyajTmXXmLBl880GEQOCJ/ZnnLKFE1udOkiT76WAtdorOsqEkT6n SXec81DQiGVc7mv4S1QZ0Wp61JVZhqThsegnLzeieg/VQtMew9nzFKa+YR2p8HjT g16fo/EsGIx2CPMaikwHAAgRypFdsA1yhO2AQHr4Hml9FYbKDEPq5fExeaSbKI/m swHv3T7qIMbBekRlo+TmWJ18Do6Iz+ddbN1gCSCrZnJGYWYZndhlh5xMK2pLE+bd SfTOuwuyfGqz53im1NHgrUNlW7NWuC/FVA1M/H69dk1HqAQQX9YRMVxay3seHSck FWtjKLJ6HQ190cO3NhTtiSFVAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUsIKY4WDl ueZSHtmts3xHIz28xCQwHwYDVR0jBBgwFoAUT2c1YxYAI2yAWYoeMyE7vWgezlcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk0Q0JELzU4MEJFM0FFNkUy NDExRUU5MUQ4ODAzN0M0RjlBRTAyL1QyYzFZeFlBSTJ5QVdZb2VNeUU3dldnZXps Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVDJjMVl4WUFJMnlBV1lvZU15RTd2V2dlemxjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NENCRC81ODBCRTNBRTZFMjQxMUVFOTFEODgwMzdDNEY5QUUwMi8zMjM1N0VBNjc2 QzYxMUVFQTQ1Qjc5MDlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWefVjANBgkqhkiG9w0BAQsFAAOCAQEAOeEAhRVJ24JuO5XX 7mbphYyqs1TN6T6uujZ8vK0TAAb2t+Nlva3VjwX89EuXhk+EhhSI9zzhOMUD/mqI fCFf0EJ5h8RfHsgKMN0WPzplttwWARiwtqlMe9Rs2ffvGf08A3TJDTtyzNfdxKwu HT0W7YbIuayMXJztoF8SpA+1LRGGfaILvp+pp32mv8Iv5lfDigEDb+K0XQqsNdkp AgD7xKx0XSWUx+rdvgaHAjfH/Mm+Syv6eujsyZ5FeLd9UoE08C/1aNx3wueVwMV1 jMn7XjvkjnEVD4fDtJ5VRXgFc6Z0eeDYKLYGQ3JsJ8y/aN9UgvWJTEaQOmFMbhU0 clIqew== -----END CERTIFICATE-----Generated at Fri Jun 7 09:41:02 2024 by rpki-client on console-ams.rpki-client.org