$ rpki-client -vvf rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/5AFB85086EC411ECB8E7492BC4F9AE02.roa File: 5AFB85086EC411ECB8E7492BC4F9AE02.roa (raw, json) Hash identifier: zQQcO9Z5HxKCWBOp1uM6W0nUAka43I9R2WBzNur81R8= Subject key identifier: 29:46:EE:88:02:89:B9:42:35:B7:08:A2:0F:E5:D2:ED:9E:69:AE:83 Certificate issuer: /CN=A9195A3D/serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Certificate serial: 02D9 Authority key identifier: B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/5AFB85086EC411ECB8E7492BC4F9AE02.roa Signing time: Thu 05 Oct 2023 01:43:35 +0000 ROA not before: Thu 05 Oct 2023 01:43:35 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 141004 IP address blocks: 103.154.184.0/23 maxlen: 23 2001:df5:4580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 729 (0x2d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195A3D/serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Validity Not Before: Oct 5 01:43:35 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651e14c7-d6dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a4:8a:66:fa:a7:ca:1f:0b:17:8c:1a:7d:b3: 8a:36:30:00:2c:a1:36:41:72:51:72:64:6f:09:8d: 6d:2c:c2:6f:aa:41:d7:03:7c:62:33:b8:43:52:b8: 83:93:75:be:95:12:56:3a:b7:a0:55:6a:6f:51:c2: 13:21:94:a2:a0:0e:4b:0a:ad:64:e0:22:24:f5:d7: 79:2c:c7:e8:5a:e9:c2:7e:6d:ae:40:f1:67:df:f5: eb:b9:23:4b:7d:8c:fa:aa:9e:0e:1b:36:53:41:0e: f8:8d:83:5b:c2:ed:1c:01:eb:ec:50:40:e8:58:cc: 29:32:f0:9c:88:90:77:f3:9a:17:51:df:98:ea:f8: 03:d9:81:60:76:7f:58:0a:2a:c6:bd:65:18:57:47: b3:70:f1:ab:19:b6:88:62:82:b3:4f:03:e9:62:2a: ac:55:7f:3f:92:17:a1:bb:21:33:38:f9:d7:1a:43: 89:13:5d:af:c1:a4:43:bf:ef:33:65:a7:16:b0:99: 64:0b:46:10:e1:ef:7b:cd:44:ff:75:ae:ea:9c:95: b2:eb:1c:37:a8:73:c3:35:9b:a8:bd:7f:5a:2d:a8: 9a:70:86:dd:1d:a9:ba:48:5d:2f:e5:c7:6d:b1:46: e8:6a:71:6e:e1:c4:ad:f6:b9:f3:b5:5e:db:e6:cb: 7a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:46:EE:88:02:89:B9:42:35:B7:08:A2:0F:E5:D2:ED:9E:69:AE:83 X509v3 Authority Key Identifier: keyid:B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/5AFB85086EC411ECB8E7492BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.184.0/23 IPv6: 2001:df5:4580::/48 Signature Algorithm: sha256WithRSAEncryption ae:38:15:93:77:08:e7:f2:91:a9:e1:a4:43:7e:60:73:ad:5d: 05:60:f3:c2:00:be:32:33:6d:ad:46:35:74:fc:e2:34:c4:3f: bb:d9:99:37:3e:aa:5f:b0:bf:0e:79:cd:66:01:fc:57:99:0a: 8d:5e:3b:9c:7d:56:96:db:3c:9b:bd:8b:c0:96:56:b6:78:4b: 18:a5:a1:4e:ce:a9:1f:2f:7a:b3:a8:4e:8d:52:93:b7:64:86: 86:35:0c:fa:d5:9e:40:e3:2d:aa:98:20:c8:2c:13:12:0f:11: b4:53:58:33:15:9a:2a:ab:89:c4:9b:6b:3a:52:f6:18:46:52: 0a:7f:0e:a1:57:5c:3f:b0:27:da:d8:ac:88:ed:6b:94:e6:a6: 5c:ff:56:56:68:23:1c:d4:51:d0:79:04:6b:e0:74:d5:40:51: fb:cd:3e:c1:11:2e:04:9d:57:11:2b:78:08:4e:ef:9b:f3:3b: 63:9f:60:e6:ab:40:cc:07:db:e6:51:6f:7f:ac:a0:80:8f:70: b0:bb:7f:ed:af:80:8d:14:74:80:45:01:91:65:50:2b:27:08: d2:f8:ec:32:df:f8:f9:ad:d5:4b:c3:ec:63:f7:5e:59:93:82: f3:4b:f8:4d:ff:5b:e3:ef:16:ae:18:4f:03:57:eb:0a:1f:2f: 59:8c:35:59 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVBM0QxMTAvBgNVBAUTKEI4MjI1RjFFQjg2NzY2NDdDMzU5REJDMTEwQkZFRURF QjQ0RkQ1RTgwHhcNMjMxMDA1MDE0MzM1WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFlMTRjNy1kNmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnqSKZvqnyh8LF4wafbOKNjAALKE2QXJRcmRvCY1tLMJvqkHXA3xiM7hDUriD k3W+lRJWOregVWpvUcITIZSioA5LCq1k4CIk9dd5LMfoWunCfm2uQPFn3/XruSNL fYz6qp4OGzZTQQ74jYNbwu0cAevsUEDoWMwpMvCciJB385oXUd+Y6vgD2YFgdn9Y CirGvWUYV0ezcPGrGbaIYoKzTwPpYiqsVX8/khehuyEzOPnXGkOJE12vwaRDv+8z ZacWsJlkC0YQ4e97zUT/da7qnJWy6xw3qHPDNZuovX9aLaiacIbdHam6SF0v5cdt sUboanFu4cSt9rnztV7b5st6YQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFClG7ogC iblCNbcIog/l0u2eaa6DMB8GA1UdIwQYMBaAFLgiXx64Z2ZHw1nbwRC/7t60T9Xo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUEzRC82OUVGQ0REMjZF QzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblprZkRXZHZCRUxfdTNyUlAx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VDSmZIcmhuWmtmRFdkdkJFTF91M3JSUDFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTVBM0QvNjlFRkNERDI2RUMyMTFFQzg3OEExMDJCQzRGOUFFMDIvNUFGQjg1MDg2 RUM0MTFFQ0I4RTc0OTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnmrgwDwQCAAIwCQMHACABDfVFgDANBgkqhkiG9w0BAQsF AAOCAQEArjgVk3cI5/KRqeGkQ35gc61dBWDzwgC+MjNtrUY1dPziNMQ/u9mZNz6q X7C/DnnNZgH8V5kKjV47nH1Wlts8m72LwJZWtnhLGKWhTs6pHy96s6hOjVKTt2SG hjUM+tWeQOMtqpggyCwTEg8RtFNYMxWaKquJxJtrOlL2GEZSCn8OoVdcP7An2tis iO1rlOamXP9WVmgjHNRR0HkEa+B01UBR+80+wREuBJ1XESt4CE7vm/M7Y59g5qtA zAfb5lFvf6yggI9wsLt/7a+AjRR0gEUBkWVQKycI0vjsMt/4+a3VS8PsY/deWZOC 80v4Tf9b4+8WrhhPA1frCh8vWYw1WQ== -----END CERTIFICATE-----Generated at Mon May 13 03:37:19 2024 by rpki-client on console-ams.rpki-client.org