$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/545743246D1911E7A4448D81C4F9AE02.roa File: 545743246D1911E7A4448D81C4F9AE02.roa (raw, json) Hash identifier: OnvtK5lSr6pRvpSbhh6BxoIOFbnQbsNqWIc62+qe+8M= Subject key identifier: F9:90:63:DB:47:31:F1:88:3B:25:69:0B:01:A8:12:8E:98:70:9B:6E Certificate issuer: /CN=A919EAF3/serialNumber=ED3694218DCB1EAF3D1AF5C6ABC031A6DB7E6CE5 Certificate serial: 1819 Authority key identifier: ED:36:94:21:8D:CB:1E:AF:3D:1A:F5:C6:AB:C0:31:A6:DB:7E:6C:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TaUIY3LHq89GvXGq8Axptt-bOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/545743246D1911E7A4448D81C4F9AE02.roa Signing time: Mon 10 Jul 2023 16:53:26 +0000 ROA not before: Mon 10 Jul 2023 16:53:26 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 9234 IP address blocks: 103.11.140.0/23 maxlen: 24 103.29.106.0/23 maxlen: 24 203.78.148.0/22 maxlen: 22 203.78.148.0/24 maxlen: 24 203.78.149.0/24 maxlen: 24 203.78.150.0/24 maxlen: 24 203.78.151.0/24 maxlen: 24 2402:5900::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.crl rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TaUIY3LHq89GvXGq8Axptt-bOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 16:48:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6169 (0x1819) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EAF3/serialNumber=ED3694218DCB1EAF3D1AF5C6ABC031A6DB7E6CE5 Validity Not Before: Jul 10 16:53:26 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64ac3786-db1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:be:e3:fc:05:f7:02:76:78:f5:12:18:f6:3b: fd:43:e8:2e:04:00:03:ed:4e:33:c5:0d:ee:57:c5: 6f:a9:86:69:50:38:b6:a3:f5:cb:ae:6c:0e:ce:cb: 93:fc:a7:9a:dc:a7:c9:33:a5:63:50:5e:a2:28:e4: a9:40:22:e7:6e:26:85:a4:09:e5:2f:b0:05:b4:26: 65:04:6c:d3:06:dd:44:06:cc:d7:71:9d:cd:7c:a3: 89:f7:82:af:c9:2b:bd:c9:55:9e:31:1b:b7:66:71: 0d:ba:72:a1:f7:7d:e3:59:65:64:9e:70:9c:2e:94: 3a:d2:8a:65:aa:c0:28:89:e8:ae:09:1a:4e:6e:17: ee:76:91:69:7d:97:14:67:da:10:0a:97:df:dc:0e: 17:5d:f9:c7:3d:b8:c4:36:cc:ec:f5:6a:48:a3:b0: 36:c8:e8:a4:6a:55:07:b4:b6:29:8e:6e:e0:c6:97: 91:f7:8b:1c:dc:b7:0f:7f:17:8f:8b:ad:95:87:9c: 03:86:ef:fb:66:9a:b2:c0:1e:ed:89:e2:47:ab:13: 17:1d:d1:6e:2f:4c:e5:e5:cb:98:8e:b0:6d:f4:f1: 38:a4:01:56:33:14:46:21:45:3c:ac:7b:6e:d2:82: 9d:44:66:75:06:ad:f0:68:7c:ac:31:65:58:30:4a: b4:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:90:63:DB:47:31:F1:88:3B:25:69:0B:01:A8:12:8E:98:70:9B:6E X509v3 Authority Key Identifier: keyid:ED:36:94:21:8D:CB:1E:AF:3D:1A:F5:C6:AB:C0:31:A6:DB:7E:6C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TaUIY3LHq89GvXGq8Axptt-bOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/545743246D1911E7A4448D81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.11.140.0/23 103.29.106.0/23 203.78.148.0/22 IPv6: 2402:5900::/32 Signature Algorithm: sha256WithRSAEncryption 03:36:24:43:87:ac:36:22:91:81:62:4e:ac:07:09:ab:7f:98: 4c:af:60:69:da:75:bb:19:3c:43:b5:26:a0:fb:90:ca:9f:48: bc:d7:08:65:12:62:43:ce:ee:22:a8:6c:89:cf:36:a9:4d:01: 85:5e:72:70:34:00:15:a4:8c:17:59:0d:fa:d7:67:cb:68:98: ab:b9:92:2a:72:85:9d:c0:67:d5:20:72:63:47:5c:03:c4:43: 86:7b:b1:1d:37:de:93:82:73:4b:a8:d0:26:2b:b8:37:98:0e: a1:be:4d:e4:0e:c6:a5:f6:10:cc:a6:36:71:ae:28:5c:de:d0: bd:19:f5:d9:9b:b8:d4:fc:a6:fb:12:ce:69:44:ca:0f:7c:05: 56:ed:a4:92:7c:0e:c5:11:07:3e:f6:68:1f:57:b5:de:9f:c0: e4:f5:36:e9:c3:3c:c0:48:62:71:8b:c9:c5:57:e4:db:37:d2: 4f:45:20:72:3d:d0:51:77:89:86:d0:6c:fc:6e:f4:ac:13:e5: 1b:e0:13:9e:89:d1:ac:41:78:1c:b1:73:21:93:b3:9f:60:51: b2:59:d1:b6:e2:b0:50:b0:b0:c9:f6:a3:76:a3:60:bf:d2:46: 20:86:7b:ec:a9:83:61:a1:f7:59:fb:f5:a3:11:30:c5:a9:62: e3:d9:c0:2c -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICGBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBRjMxMTAvBgNVBAUTKEVEMzY5NDIxOERDQjFFQUYzRDFBRjVDNkFCQzAzMUE2 REI3RTZDRTUwHhcNMjMwNzEwMTY1MzI2WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGFjMzc4Ni1kYjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyb7j/AX3AnZ49RIY9jv9Q+guBAAD7U4zxQ3uV8VvqYZpUDi2o/XLrmwOzsuT /Kea3KfJM6VjUF6iKOSpQCLnbiaFpAnlL7AFtCZlBGzTBt1EBszXcZ3NfKOJ94Kv ySu9yVWeMRu3ZnENunKh933jWWVknnCcLpQ60oplqsAoieiuCRpObhfudpFpfZcU Z9oQCpff3A4XXfnHPbjENszs9WpIo7A2yOikalUHtLYpjm7gxpeR94sc3LcPfxeP i62Vh5wDhu/7ZpqywB7tieJHqxMXHdFuL0zl5cuYjrBt9PE4pAFWMxRGIUU8rHtu 0oKdRGZ1Bq3waHysMWVYMEq0/wIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFPmQY9tH MfGIOyVpCwGoEo6YcJtuMB8GA1UdIwQYMBaAFO02lCGNyx6vPRr1xqvAMabbfmzl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUFGMy85RDIwMERCQzZE MTgxMUU3QTgxNURBODBDNEY5QUUwMi83VGFVSVkzTEhxODlHdlhHcThBeHB0dC1i T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdUYVVJWTNMSHE4OUd2WEdxOEF4cHR0LWJPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVBRjMvOUQyMDBEQkM2RDE4MTFFN0E4MTVEQTgwQzRGOUFFMDIvNTQ1NzQzMjQ2 RDE5MTFFN0E0NDQ4RDgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAFnC4wDBAFnHWoDBALLTpQwDQQCAAIwBwMFACQCWQAwDQYJ KoZIhvcNAQELBQADggEBAAM2JEOHrDYikYFiTqwHCat/mEyvYGnadbsZPEO1JqD7 kMqfSLzXCGUSYkPO7iKobInPNqlNAYVecnA0ABWkjBdZDfrXZ8tomKu5kipyhZ3A Z9UgcmNHXAPEQ4Z7sR033pOCc0uo0CYruDeYDqG+TeQOxqX2EMymNnGuKFze0L0Z 9dmbuNT8pvsSzmlEyg98BVbtpJJ8DsURBz72aB9Xtd6fwOT1NunDPMBIYnGLycVX 5Ns30k9FIHI90FF3iYbQbPxu9KwT5RvgE56J0axBeByxcyGTs59gUbJZ0bbisFCw sMn2o3ajYL/SRiCGe+ypg2Gh91n79aMRMMWpYuPZwCw= -----END CERTIFICATE-----Generated at Thu Apr 18 17:44:18 2024 by rpki-client on console-ams.rpki-client.org