$ rpki-client -vvf rpki.apnic.net/member_repository/A9117602/AEBC5CF6CEFA11EE97F88C85C4F9AE02/1EF0CB38CEFB11EE9D1FB686C4F9AE02.roa File: 1EF0CB38CEFB11EE9D1FB686C4F9AE02.roa (raw, json) Hash identifier: amScCNDvmRytT4S33Dc63FWn1EqiRIQ/HKmNXcwZPn0= Subject key identifier: 4F:8A:AC:82:FB:C6:D0:85:CF:A9:DE:95:A3:5E:65:E3:85:BD:4C:5E Certificate issuer: /CN=A9117602/serialNumber=E6FEB0603213687F7D4C0DD8C5D1E5F3271F966A Certificate serial: 02 Authority key identifier: E6:FE:B0:60:32:13:68:7F:7D:4C:0D:D8:C5:D1:E5:F3:27:1F:96:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5v6wYDITaH99TA3YxdHl8ycflmo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117602/AEBC5CF6CEFA11EE97F88C85C4F9AE02/1EF0CB38CEFB11EE9D1FB686C4F9AE02.roa Signing time: Mon 19 Feb 2024 07:47:25 +0000 ROA not before: Mon 19 Feb 2024 07:47:25 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 138444 IP address blocks: 103.125.140.0/23 maxlen: 24 103.125.142.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117602/AEBC5CF6CEFA11EE97F88C85C4F9AE02/5v6wYDITaH99TA3YxdHl8ycflmo.crl rsync://rpki.apnic.net/member_repository/A9117602/AEBC5CF6CEFA11EE97F88C85C4F9AE02/5v6wYDITaH99TA3YxdHl8ycflmo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5v6wYDITaH99TA3YxdHl8ycflmo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117602/serialNumber=E6FEB0603213687F7D4C0DD8C5D1E5F3271F966A Validity Not Before: Feb 19 07:47:25 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65d3078c-7e38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f7:1f:13:73:30:f4:04:9a:af:10:eb:53:5e: 47:d8:e8:a2:36:98:2e:6d:7e:67:82:f3:83:e8:81: 99:c0:e3:0d:07:2c:5b:4d:75:5b:df:08:8d:dd:fa: e4:19:5e:0b:42:65:06:aa:7b:8d:8c:e2:07:57:a6: 47:6b:38:d8:0b:79:d2:04:c3:4e:f6:a1:71:36:83: 77:da:ea:93:09:f8:f3:96:e4:91:10:9b:6d:0e:a2: ec:23:c1:1b:39:b2:52:e5:fe:9b:f4:02:40:11:4a: 39:df:76:3c:4d:b3:0e:26:67:0b:53:a6:57:9d:59: b5:c4:56:69:27:44:a1:ac:b8:4d:7b:bf:7b:8c:4d: b7:60:2a:40:40:2a:d9:d7:aa:14:65:0c:49:40:90: 05:b7:60:45:78:59:ab:a2:4e:aa:13:2c:fd:a9:98: 3f:b5:27:58:36:73:74:e0:58:7d:6b:8a:ff:e1:4d: 6b:3d:5e:e4:a7:aa:65:7d:ab:bc:0c:1f:37:28:f5: 2b:8c:22:cc:71:90:15:a8:1a:b9:84:5d:ef:d2:4e: 58:ea:d5:c2:f4:ad:22:c7:f8:f9:5e:0a:ac:20:9e: 44:a1:70:7c:c5:40:d3:a9:a6:84:f0:27:f5:1f:69: 0a:7b:0f:d9:a6:ed:64:1f:e9:d5:00:49:1e:d1:37: 64:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:8A:AC:82:FB:C6:D0:85:CF:A9:DE:95:A3:5E:65:E3:85:BD:4C:5E X509v3 Authority Key Identifier: keyid:E6:FE:B0:60:32:13:68:7F:7D:4C:0D:D8:C5:D1:E5:F3:27:1F:96:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117602/AEBC5CF6CEFA11EE97F88C85C4F9AE02/5v6wYDITaH99TA3YxdHl8ycflmo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5v6wYDITaH99TA3YxdHl8ycflmo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117602/AEBC5CF6CEFA11EE97F88C85C4F9AE02/1EF0CB38CEFB11EE9D1FB686C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.125.140.0/22 Signature Algorithm: sha256WithRSAEncryption 12:3d:e4:8b:ce:f6:83:a9:5a:86:6d:23:81:c6:a9:0a:ce:f5: e1:e5:dc:01:75:d8:55:b3:2e:96:05:05:27:6c:64:69:c5:36: e6:f3:52:c4:46:70:40:06:7b:6c:b7:64:f8:e0:65:f4:cd:95: 0c:3b:6d:5a:b5:d5:be:fd:b6:d4:03:06:6f:84:76:73:36:25: 48:4d:0d:27:04:84:51:18:e2:b2:9f:6b:d1:c9:e5:a5:e9:d0: 9a:14:cd:c7:c0:a3:92:3a:67:d3:bc:ca:64:c4:20:44:dc:86: a0:0b:04:e2:c6:68:4b:ac:49:6d:aa:99:d1:bc:e4:b1:a3:9d: 0f:0a:b5:a3:fa:67:cb:76:12:91:de:08:89:82:6b:d9:28:d8: ec:fc:3f:df:f3:f5:9c:89:c9:2a:f2:24:ea:38:a6:1a:9f:5e: 8b:49:bd:4f:f3:1a:59:b7:27:4d:dd:61:fe:9f:dd:44:5d:9f: 01:20:24:a4:99:b9:13:4d:e0:07:8b:ae:fc:30:32:8b:aa:df: 72:b4:e2:eb:2b:8c:f7:a4:bd:8d:06:08:ce:9c:2b:1a:37:3d: 6e:86:cf:76:14:4b:2b:d7:a3:95:59:30:02:eb:54:14:92:15: 7a:75:17:22:c5:00:f6:70:10:f4:81:43:03:de:c7:8d:c7:68: 9b:c0:e5:dd -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NzYwMjExMC8GA1UEBRMoRTZGRUIwNjAzMjEzNjg3RjdENEMwREQ4QzVEMUU1RjMy NzFGOTY2QTAeFw0yNDAyMTkwNzQ3MjVaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZDMwNzhjLTdlMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC19x8TczD0BJqvEOtTXkfY6KI2mC5tfmeC84PogZnA4w0HLFtNdVvfCI3d+uQZ XgtCZQaqe42M4gdXpkdrONgLedIEw072oXE2g3fa6pMJ+POW5JEQm20OouwjwRs5 slLl/pv0AkARSjnfdjxNsw4mZwtTpledWbXEVmknRKGsuE17v3uMTbdgKkBAKtnX qhRlDElAkAW3YEV4WauiTqoTLP2pmD+1J1g2c3TgWH1riv/hTWs9XuSnqmV9q7wM Hzco9SuMIsxxkBWoGrmEXe/STljq1cL0rSLH+PleCqwgnkShcHzFQNOppoTwJ/Uf aQp7D9mm7WQf6dUASR7RN2RLAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUT4qsgvvG 0IXPqd6Vo15l44W9TF4wHwYDVR0jBBgwFoAU5v6wYDITaH99TA3YxdHl8ycflmow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3NjAyL0FFQkM1Q0Y2Q0VG QTExRUU5N0Y4OEM4NUM0RjlBRTAyLzV2NndZRElUYUg5OVRBM1l4ZEhsOHljZmxt by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNXY2d1lESVRhSDk5VEEzWXhkSGw4eWNmbG1vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzYwMi9BRUJDNUNGNkNFRkExMUVFOTdGODhDODVDNEY5QUUwMi8xRUYwQ0IzOENF RkIxMUVFOUQxRkI2ODZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmd9jDANBgkqhkiG9w0BAQsFAAOCAQEAEj3ki872g6lahm0j gcapCs714eXcAXXYVbMulgUFJ2xkacU25vNSxEZwQAZ7bLdk+OBl9M2VDDttWrXV vv221AMGb4R2czYlSE0NJwSEURjisp9r0cnlpenQmhTNx8Cjkjpn07zKZMQgRNyG oAsE4sZoS6xJbaqZ0bzksaOdDwq1o/pny3YSkd4IiYJr2SjY7Pw/3/P1nInJKvIk 6jimGp9ei0m9T/MaWbcnTd1h/p/dRF2fASAkpJm5E03gB4uu/DAyi6rfcrTi6yuM 96S9jQYIzpwrGjc9bobPdhRLK9ejlVkwAutUFJIVenUXIsUA9nAQ9IFDA97Hjcdo m8Dl3Q== -----END CERTIFICATE-----Generated at Fri Jun 7 12:38:00 2024 by rpki-client on console-ams.rpki-client.org