$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/952AA4424DAF11EC86ED5273C4F9AE02.roa File: 952AA4424DAF11EC86ED5273C4F9AE02.roa (raw, json) Hash identifier: +TpU5TRfCsufE/KvXGI1kBxMNH/PxOfCX96zRiJORNM= Subject key identifier: FC:23:7E:1E:76:E7:05:31:14:68:F8:EA:5F:BA:FF:A9:73:37:E3:20 Certificate issuer: /CN=A91A3FFF/serialNumber=DA3F4FFF5D464689D38988F5FB22F65550B3EFF8 Certificate serial: 0338 Authority key identifier: DA:3F:4F:FF:5D:46:46:89:D3:89:88:F5:FB:22:F6:55:50:B3:EF:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/952AA4424DAF11EC86ED5273C4F9AE02.roa Signing time: Tue 03 Oct 2023 01:42:56 +0000 ROA not before: Tue 03 Oct 2023 01:42:56 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 37978 IP address blocks: 103.173.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.crl rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 01:52:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 824 (0x338) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3FFF/serialNumber=DA3F4FFF5D464689D38988F5FB22F65550B3EFF8 Validity Not Before: Oct 3 01:42:56 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651b71a0-c761 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3b:d7:c1:46:ee:ce:e0:bb:81:2c:35:17:1f: 2d:65:59:98:36:a2:1c:b7:24:11:85:05:aa:2b:a3: 55:ff:f0:1d:17:25:d7:59:2e:12:8b:df:90:9f:1a: c5:e7:cd:65:96:94:59:f5:62:43:91:95:57:f9:80: 4d:3d:d8:d4:f9:27:99:86:45:85:95:74:68:9d:cf: 55:2a:e6:e6:73:b8:90:35:0e:40:a1:b0:99:3b:a0: 55:eb:61:4b:91:55:0f:02:c2:a3:42:9f:c5:0b:11: aa:57:3d:51:8a:3f:dd:a0:9a:c3:e4:6a:cd:1c:ca: 4b:67:bd:56:2b:be:92:e1:16:ba:13:c0:ff:31:01: 87:ca:2d:4f:6f:49:fb:88:b7:d1:ed:3a:97:3e:29: 88:b8:6c:9c:9a:7d:8c:a0:6c:86:8b:28:75:ac:4d: 9e:07:c2:12:91:63:a6:bb:8d:5d:77:71:99:00:42: cf:50:1e:dd:16:6a:e9:e4:fd:ab:8e:e4:dd:08:f1: 8a:0c:2f:60:64:52:3e:eb:7b:85:36:15:56:49:d2: e5:69:f3:46:87:f3:e2:ef:da:2a:5e:d3:39:7e:2c: 55:ee:be:46:f3:3b:dd:98:3c:5c:4d:8a:82:6a:73: 5a:aa:45:89:03:5f:20:4f:d7:99:84:d2:9d:3b:e9: dd:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:23:7E:1E:76:E7:05:31:14:68:F8:EA:5F:BA:FF:A9:73:37:E3:20 X509v3 Authority Key Identifier: keyid:DA:3F:4F:FF:5D:46:46:89:D3:89:88:F5:FB:22:F6:55:50:B3:EF:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/952AA4424DAF11EC86ED5273C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.176.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:58:39:9f:14:03:1c:d8:d4:0b:a2:40:18:e0:70:eb:2d:9b: 6e:f9:dc:10:ff:49:93:35:c7:33:32:29:9e:00:b6:ac:18:ad: d6:d5:95:e8:5e:13:35:b7:8c:8d:42:15:7e:86:7d:b6:c0:91: 17:3c:9b:7b:d2:71:49:3f:53:b1:84:f4:75:21:ba:af:80:9b: de:9b:8a:a0:54:52:bf:37:fb:8f:6c:08:b4:4c:80:17:2f:fe: da:a2:05:2d:91:73:b2:91:29:af:28:a4:d4:a8:2f:19:48:4a: b7:59:88:d1:8a:12:d7:28:4f:c5:e6:86:48:d8:52:3d:ab:e6: 90:ff:b7:ee:b7:84:ab:62:7f:57:96:af:36:7f:e0:ec:bc:4d: bb:2c:6d:93:71:9b:15:ce:8b:47:cb:47:cc:76:e6:fb:15:41: e3:4c:2d:43:54:3c:57:ec:29:7c:3c:b6:32:76:56:74:a4:94: 2a:83:2c:f6:fc:22:4a:d2:15:d5:78:04:4c:11:15:3a:f9:c0: 46:d1:0f:50:10:a5:0f:74:df:28:34:04:40:98:89:38:84:50: 35:41:e7:18:52:e8:4d:3f:6f:ed:14:c3:69:dc:7d:32:22:5c: b9:65:ee:e7:61:8b:d1:24:83:b5:51:9f:a7:22:a4:f1:02:e2: 5f:07:e2:67 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAzgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNGRkYxMTAvBgNVBAUTKERBM0Y0RkZGNUQ0NjQ2ODlEMzg5ODhGNUZCMjJGNjU1 NTBCM0VGRjgwHhcNMjMxMDAzMDE0MjU2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFiNzFhMC1jNzYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujvXwUbuzuC7gSw1Fx8tZVmYNqIctyQRhQWqK6NV//AdFyXXWS4Si9+QnxrF 581llpRZ9WJDkZVX+YBNPdjU+SeZhkWFlXRonc9VKubmc7iQNQ5AobCZO6BV62FL kVUPAsKjQp/FCxGqVz1Rij/doJrD5GrNHMpLZ71WK76S4Ra6E8D/MQGHyi1Pb0n7 iLfR7TqXPimIuGycmn2MoGyGiyh1rE2eB8ISkWOmu41dd3GZAELPUB7dFmrp5P2r juTdCPGKDC9gZFI+63uFNhVWSdLlafNGh/Pi79oqXtM5fixV7r5G8zvdmDxcTYqC anNaqkWJA18gT9eZhNKdO+nddQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPwjfh52 5wUxFGj46l+6/6lzN+MgMB8GA1UdIwQYMBaAFNo/T/9dRkaJ04mI9fsi9lVQs+/4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0ZGRi84MkFEMzc3QTRE QUIxMUVDOTIxNEY1MjFDNEY5QUUwMi8yajlQXzExR1JvblRpWWoxLXlMMlZWQ3o3 X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJqOVBfMTFHUm9uVGlZajEteUwyVlZDejdfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTNGRkYvODJBRDM3N0E0REFCMTFFQzkyMTRGNTIxQzRGOUFFMDIvOTUyQUE0NDI0 REFGMTFFQzg2RUQ1MjczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrbAwDQYJKoZIhvcNAQELBQADggEBAB9YOZ8UAxzY1Aui QBjgcOstm2753BD/SZM1xzMyKZ4AtqwYrdbVleheEzW3jI1CFX6GfbbAkRc8m3vS cUk/U7GE9HUhuq+Am96biqBUUr83+49sCLRMgBcv/tqiBS2Rc7KRKa8opNSoLxlI SrdZiNGKEtcoT8XmhkjYUj2r5pD/t+63hKtif1eWrzZ/4Oy8TbssbZNxmxXOi0fL R8x25vsVQeNMLUNUPFfsKXw8tjJ2VnSklCqDLPb8IkrSFdV4BEwRFTr5wEbRD1AQ pQ903yg0BECYiTiEUDVB5xhS6E0/b+0Uw2ncfTIiXLll7udhi9Ekg7VRn6cipPEC 4l8H4mc= -----END CERTIFICATE-----Generated at Wed May 15 03:08:25 2024 by rpki-client on console-ams.rpki-client.org