$ rpki-client -vvf rpki.apnic.net/member_repository/A9199B5E/F8723FE4E94711EDAD106909C4F9AE02/0FFD0884E94C11EDB883CD14C4F9AE02.roa File: 0FFD0884E94C11EDB883CD14C4F9AE02.roa (raw, json) Hash identifier: 4YTkIvynJ9nOrrUxdprSixi1+madWttV9gDLYZ8NR0w= Subject key identifier: 2B:AD:87:71:98:CA:12:B8:37:F6:8B:6D:F8:47:CF:A5:55:13:CC:6F Certificate issuer: /CN=A9199B5E/serialNumber=3DBB21B3358B085F0821B4DC06A91A9C45C42CBC Certificate serial: 40 Authority key identifier: 3D:BB:21:B3:35:8B:08:5F:08:21:B4:DC:06:A9:1A:9C:45:C4:2C:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PbshszWLCF8IIbTcBqkanEXELLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199B5E/F8723FE4E94711EDAD106909C4F9AE02/0FFD0884E94C11EDB883CD14C4F9AE02.roa Signing time: Thu 31 Aug 2023 05:34:36 +0000 ROA not before: Thu 31 Aug 2023 05:34:36 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 142579 IP address blocks: 103.170.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199B5E/F8723FE4E94711EDAD106909C4F9AE02/PbshszWLCF8IIbTcBqkanEXELLw.crl rsync://rpki.apnic.net/member_repository/A9199B5E/F8723FE4E94711EDAD106909C4F9AE02/PbshszWLCF8IIbTcBqkanEXELLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PbshszWLCF8IIbTcBqkanEXELLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 06:24:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199B5E/serialNumber=3DBB21B3358B085F0821B4DC06A91A9C45C42CBC Validity Not Before: Aug 31 05:34:36 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f0266c-5421 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:89:5f:74:a6:e2:34:15:47:54:94:ad:20:fe: b8:f3:53:d4:53:ff:76:eb:72:ce:4a:34:be:4d:b6: f5:2a:8b:05:9d:ba:83:89:57:41:45:4a:fc:56:5c: 34:6f:10:95:a7:9b:07:9c:76:bf:65:cc:ac:b1:9c: 25:f3:61:c9:7b:60:a7:b6:03:a7:01:bd:07:8d:42: 07:a0:61:a1:0d:8d:3f:f1:16:40:a5:07:ff:c3:ab: 0f:13:a0:6a:a8:95:68:72:70:79:59:78:45:20:10: b6:0f:1d:27:37:a3:30:8f:ba:ee:f4:ca:65:e0:5e: 5a:ef:d5:7e:e6:cb:b6:ef:e8:17:e9:fd:ce:7d:bc: 36:55:99:41:0f:b1:3a:8b:59:f0:b9:38:85:08:ef: 3f:6f:f3:a4:95:58:33:fb:8e:e7:69:52:33:a1:61: 36:77:50:90:44:78:49:f7:c7:24:92:c6:66:fd:3b: fa:3a:9b:c6:b6:80:c0:dc:a7:0b:9a:b7:f2:3b:21: 4b:77:67:c9:77:bb:80:65:3e:28:24:d3:53:ac:75: d8:91:54:7b:09:39:58:b0:2c:6d:6e:04:57:2f:18: 12:85:8e:6b:41:a0:01:9c:33:8c:36:f3:3d:6d:07: 96:20:92:62:1c:77:97:7d:e2:a6:e2:c0:6a:04:df: 7b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:AD:87:71:98:CA:12:B8:37:F6:8B:6D:F8:47:CF:A5:55:13:CC:6F X509v3 Authority Key Identifier: keyid:3D:BB:21:B3:35:8B:08:5F:08:21:B4:DC:06:A9:1A:9C:45:C4:2C:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199B5E/F8723FE4E94711EDAD106909C4F9AE02/PbshszWLCF8IIbTcBqkanEXELLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PbshszWLCF8IIbTcBqkanEXELLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199B5E/F8723FE4E94711EDAD106909C4F9AE02/0FFD0884E94C11EDB883CD14C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.2.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:48:61:3b:19:53:59:99:35:a8:a9:e5:b3:ae:80:c6:e9:af: b4:70:39:a0:75:f6:ff:bd:74:1a:a3:b3:57:49:2b:76:38:3c: 3d:08:3e:24:c4:6a:19:aa:be:53:dd:85:aa:c0:96:14:8e:7f: d7:58:61:ac:0b:e7:7c:c4:7d:f8:b2:de:5b:c5:fb:a3:ef:78: 31:13:f0:66:4e:e7:c6:92:42:29:d6:e2:d4:22:1c:4f:2d:4e: 27:88:de:4f:9f:1b:4a:fc:69:bb:d4:6d:d3:f8:f1:b9:6c:89: 71:be:ca:36:f9:32:9c:f7:ca:6c:0d:e3:32:53:67:6d:04:09: c4:4b:89:98:ef:03:c1:cd:e1:d3:c9:01:b3:7a:a9:fa:7d:e8: f7:45:fb:0b:89:e4:6a:89:91:1a:65:94:86:61:e0:27:c9:69: 81:65:e2:d5:cc:46:95:cd:1b:68:56:5d:b8:e7:9a:d0:d7:b3: aa:d6:d3:5d:10:ac:24:11:25:fe:90:56:d2:41:f4:47:3a:a1: f7:67:34:dd:34:5a:4f:46:bb:df:48:97:11:ef:b7:c8:a9:b9: 32:8e:da:51:1a:52:d5:68:0c:92:06:3e:50:84:8d:5d:8c:d7: c7:3c:07:48:af:a2:6c:70:c9:e5:5c:1e:60:25:f5:aa:de:d3: c4:1b:99:6a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 OUI1RTExMC8GA1UEBRMoM0RCQjIxQjMzNThCMDg1RjA4MjFCNERDMDZBOTFBOUM0 NUM0MkNCQzAeFw0yMzA4MzEwNTM0MzZaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZjAyNjZjLTU0MjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2iV90puI0FUdUlK0g/rjzU9RT/3brcs5KNL5NtvUqiwWduoOJV0FFSvxWXDRv EJWnmwecdr9lzKyxnCXzYcl7YKe2A6cBvQeNQgegYaENjT/xFkClB//Dqw8ToGqo lWhycHlZeEUgELYPHSc3ozCPuu70ymXgXlrv1X7my7bv6Bfp/c59vDZVmUEPsTqL WfC5OIUI7z9v86SVWDP7judpUjOhYTZ3UJBEeEn3xySSxmb9O/o6m8a2gMDcpwua t/I7IUt3Z8l3u4BlPigk01OsddiRVHsJOViwLG1uBFcvGBKFjmtBoAGcM4w28z1t B5YgkmIcd5d94qbiwGoE33slAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUK62HcZjK Erg39ott+EfPpVUTzG8wHwYDVR0jBBgwFoAUPbshszWLCF8IIbTcBqkanEXELLww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk5QjVFL0Y4NzIzRkU0RTk0 NzExRURBRDEwNjkwOUM0RjlBRTAyL1Bic2hzeldMQ0Y4SUliVGNCcWthbkVYRUxM dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUGJzaHN6V0xDRjhJSWJUY0Jxa2FuRVhFTEx3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OUI1RS9GODcyM0ZFNEU5NDcxMUVEQUQxMDY5MDlDNEY5QUUwMi8wRkZEMDg4NEU5 NEMxMUVEQjg4M0NEMTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeqAjANBgkqhkiG9w0BAQsFAAOCAQEAi0hhOxlTWZk1qKnl s66AxumvtHA5oHX2/710GqOzV0krdjg8PQg+JMRqGaq+U92FqsCWFI5/11hhrAvn fMR9+LLeW8X7o+94MRPwZk7nxpJCKdbi1CIcTy1OJ4jeT58bSvxpu9Rt0/jxuWyJ cb7KNvkynPfKbA3jMlNnbQQJxEuJmO8Dwc3h08kBs3qp+n3o90X7C4nkaomRGmWU hmHgJ8lpgWXi1cxGlc0baFZduOea0NezqtbTXRCsJBEl/pBW0kH0Rzqh92c03TRa T0a730iXEe+3yKm5Mo7aURpS1WgMkgY+UISNXYzXxzwHSK+ibHDJ5VweYCX1qt7T xBuZag== -----END CERTIFICATE-----Generated at Fri May 17 08:52:51 2024 by rpki-client on console-ams.rpki-client.org