$ rpki-client -vvf rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/176E1D3E961411EB80BD4E1DC4F9AE02.roa File: 176E1D3E961411EB80BD4E1DC4F9AE02.roa (raw, json) Hash identifier: vegulIKBeHttwdRyvB/2WQ05g6xaaoUGb/GkmzarLJw= Subject key identifier: 72:B0:77:6C:0F:16:69:F8:8A:AC:A9:45:80:AC:51:99:ED:54:08:96 Certificate issuer: /CN=A919AAA0/serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753 Certificate serial: 0541 Authority key identifier: 2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/176E1D3E961411EB80BD4E1DC4F9AE02.roa Signing time: Sun 17 Dec 2023 00:32:36 +0000 ROA not before: Sun 17 Dec 2023 00:32:36 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 6134 IP address blocks: 103.145.60.0/24 maxlen: 24 2001:df1:fd80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.crl rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1345 (0x541) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AAA0/serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753 Validity Not Before: Dec 17 00:32:36 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=657e41a4-ff02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:76:91:ca:31:7a:e8:55:33:66:b0:7b:5d:96: ca:f4:66:36:be:af:8c:18:77:63:72:e2:90:2b:60: 05:aa:ee:91:5a:ad:1a:06:a9:de:ad:dd:70:8f:21: b6:fd:47:c7:ee:a5:34:1b:f7:f7:1b:3c:ae:d1:16: 86:84:4d:d8:7e:2f:52:c1:1c:68:3a:c5:8e:40:5a: ba:d8:fe:d1:4a:49:f8:92:9a:ab:20:ff:42:d1:e8: 04:5a:d9:ba:82:56:c7:1b:ef:f5:aa:fb:7c:ca:1e: 67:9f:bd:43:fa:2e:76:a8:f5:69:83:de:69:61:ae: 18:3a:ea:3b:34:58:d7:52:31:84:03:83:5e:e6:b4: 63:98:30:18:18:11:9d:f3:72:53:b8:69:c6:c1:0a: 3e:b1:1f:ad:38:4c:34:a2:b8:c8:99:6b:ec:f4:e3: b2:2f:d2:5b:6c:c5:51:f8:c6:c5:85:8e:96:da:e2: 2f:70:33:48:5d:02:81:1a:bf:0e:f6:af:be:b1:d2: 3a:ce:03:f5:18:7f:05:d4:a4:a1:61:a1:c8:b6:9d: 06:0d:64:47:c0:10:34:be:8d:33:93:b5:dd:00:d1: 22:a1:35:d5:37:7c:2e:5a:f8:c3:54:9a:47:e8:8a: 68:db:fd:b0:e8:1e:4e:72:6f:e8:e3:9d:2a:72:30: 53:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:B0:77:6C:0F:16:69:F8:8A:AC:A9:45:80:AC:51:99:ED:54:08:96 X509v3 Authority Key Identifier: keyid:2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/176E1D3E961411EB80BD4E1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.60.0/24 IPv6: 2001:df1:fd80::/48 Signature Algorithm: sha256WithRSAEncryption 98:8a:b9:f6:b6:71:2d:a3:35:4c:9b:1c:39:c2:68:2d:1d:a9: 5e:ad:f8:66:10:04:7d:2d:ff:59:94:cd:4b:b0:3d:f6:18:a9: d8:b3:60:81:a1:5d:62:3f:91:8f:0d:59:b7:6d:6c:03:5e:7c: 95:4c:ec:f7:30:60:4b:5c:12:da:ec:59:85:c1:a7:5b:47:e6: 7d:dc:b1:89:d4:eb:68:18:bb:2a:07:e8:04:58:2c:63:ac:7f: a6:75:1a:dc:2b:37:dd:e6:0c:e5:e6:dc:fc:04:fd:0a:6b:f3: 84:df:b8:e4:bd:51:e7:46:3f:61:a8:b3:29:c9:4d:c9:6b:9d: 86:43:4c:9a:ad:95:65:13:e8:f7:99:dc:7c:11:85:e6:98:92: 2c:02:3f:ab:2d:c8:3d:40:42:83:16:7a:35:81:02:93:7c:c0: a3:fd:28:7e:09:b5:d3:3a:17:11:c6:eb:e8:f2:c1:10:ce:28: c2:9e:2d:b4:c7:27:fe:98:29:d7:02:fd:f9:dd:43:3c:86:8b: 61:8e:07:40:9e:6e:45:86:1f:af:b9:0d:d4:59:1b:37:86:0d: a7:7b:85:c3:69:b7:67:94:77:8f:80:64:ec:d5:55:09:c4:9a: 72:ed:57:4b:b2:3c:03:e7:08:e2:14:91:f3:fd:0f:57:e3:ee: ec:32:e3:fd -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFBQTAxMTAvBgNVBAUTKDJBRDUyNkRGRDlDN0U5MENBMzBDMzFGQ0E0RTE4MjUw MUI3MDA3NTMwHhcNMjMxMjE3MDAzMjM2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdlNDFhNC1mZjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHaRyjF66FUzZrB7XZbK9GY2vq+MGHdjcuKQK2AFqu6RWq0aBqnerd1wjyG2 /UfH7qU0G/f3Gzyu0RaGhE3Yfi9SwRxoOsWOQFq62P7RSkn4kpqrIP9C0egEWtm6 glbHG+/1qvt8yh5nn71D+i52qPVpg95pYa4YOuo7NFjXUjGEA4Ne5rRjmDAYGBGd 83JTuGnGwQo+sR+tOEw0orjImWvs9OOyL9JbbMVR+MbFhY6W2uIvcDNIXQKBGr8O 9q++sdI6zgP1GH8F1KShYaHItp0GDWRHwBA0vo0zk7XdANEioTXVN3wuWvjDVJpH 6Ipo2/2w6B5Ocm/o450qcjBT+wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHKwd2wP Fmn4iqypRYCsUZntVAiWMB8GA1UdIwQYMBaAFCrVJt/Zx+kMowwx/KThglAbcAdT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUFBMC8yMjgzOTZCQTk1 RjQxMUVCQjMxQjhGNjZDNEY5QUUwMi9LdFVtMzluSDZReWpEREg4cE9HQ1VCdHdC MU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t0VW0zOW5INlF5akRESDhwT0dDVUJ0d0IxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUFBQTAvMjI4Mzk2QkE5NUY0MTFFQkIzMUI4RjY2QzRGOUFFMDIvMTc2RTFEM0U5 NjE0MTFFQjgwQkQ0RTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnkTwwDwQCAAIwCQMHACABDfH9gDANBgkqhkiG9w0BAQsF AAOCAQEAmIq59rZxLaM1TJscOcJoLR2pXq34ZhAEfS3/WZTNS7A99hip2LNggaFd Yj+Rjw1Zt21sA158lUzs9zBgS1wS2uxZhcGnW0fmfdyxidTraBi7KgfoBFgsY6x/ pnUa3Cs33eYM5ebc/AT9CmvzhN+45L1R50Y/YaizKclNyWudhkNMmq2VZRPo95nc fBGF5piSLAI/qy3IPUBCgxZ6NYECk3zAo/0ofgm10zoXEcbr6PLBEM4owp4ttMcn /pgp1wL9+d1DPIaLYY4HQJ5uRYYfr7kN1FkbN4YNp3uFw2m3Z5R3j4Bk7NVVCcSa cu1XS7I8A+cI4hSR8/0PV+Pu7DLj/Q== -----END CERTIFICATE-----Generated at Sun May 19 01:47:13 2024 by rpki-client on console-fra.rpki-client.org