$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/B7D67B4ECC3011EA9B54C679C4F9AE02.roa File: B7D67B4ECC3011EA9B54C679C4F9AE02.roa (raw, json) Hash identifier: OpNEmGX2ba7z/P9BfT+t4IkpMepIYvoT+puV7LT+04c= Subject key identifier: 0A:1F:FF:7F:28:40:66:DF:81:BC:09:FE:22:09:3A:FB:C5:16:FC:FE Certificate issuer: /CN=A9123D9C/serialNumber=5B2CF0FB62F160F1838AEE3E6CDE07544DFF8BFF Certificate serial: 0F59 Authority key identifier: 5B:2C:F0:FB:62:F1:60:F1:83:8A:EE:3E:6C:DE:07:54:4D:FF:8B:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/B7D67B4ECC3011EA9B54C679C4F9AE02.roa Signing time: Thu 08 Feb 2024 18:15:59 +0000 ROA not before: Thu 08 Feb 2024 18:15:59 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 138564 IP address blocks: 103.136.184.0/24 maxlen: 24 103.136.185.0/24 maxlen: 24 103.136.186.0/24 maxlen: 24 103.136.187.0/24 maxlen: 24 2404:9ec0:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.crl rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 18:21:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3929 (0xf59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D9C/serialNumber=5B2CF0FB62F160F1838AEE3E6CDE07544DFF8BFF Validity Not Before: Feb 8 18:15:59 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c51a5f-f682 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:6f:3a:d9:ba:6b:1a:b4:52:48:a0:79:d4:44: 80:c4:53:ca:54:01:d6:99:ad:ff:d8:e1:76:5f:03: 9e:86:74:9d:b5:c5:39:c7:7f:db:30:f8:de:51:ac: ba:33:04:60:dc:6d:e8:ad:64:c9:6d:a2:7e:d7:8d: d0:52:97:da:59:92:21:3b:53:a0:25:99:d5:9d:7a: 4d:2c:6f:84:cc:68:a0:34:8c:7b:90:19:b8:a2:26: aa:64:ce:c8:05:3d:77:9b:b2:03:19:76:ed:64:a4: 13:dc:7a:e3:c0:5f:18:dc:f5:03:86:b7:d1:1e:83: a5:aa:8b:e6:35:82:2d:d7:c2:ec:b9:06:c0:3f:0b: 34:3f:61:ee:0b:d6:86:98:bd:ba:cc:58:ee:49:6b: b6:5f:14:63:be:27:54:ce:c9:83:ea:2b:18:e6:38: 08:1f:b2:c3:c8:49:38:d3:bd:17:91:22:31:a7:90: 41:a1:2c:74:be:7e:32:92:24:fb:d6:cf:63:15:e1: 86:53:1a:da:b1:9b:d5:e0:a2:5a:14:a6:37:7b:b6: a5:c9:0d:20:40:92:fc:bc:f9:08:ca:cd:b9:c3:ce: 44:3d:f1:14:24:e8:f2:bc:de:5d:eb:36:ac:62:37: 52:bf:0e:1f:52:7d:05:fd:8a:4a:3c:9a:c3:0c:bf: 39:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:1F:FF:7F:28:40:66:DF:81:BC:09:FE:22:09:3A:FB:C5:16:FC:FE X509v3 Authority Key Identifier: keyid:5B:2C:F0:FB:62:F1:60:F1:83:8A:EE:3E:6C:DE:07:54:4D:FF:8B:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/B7D67B4ECC3011EA9B54C679C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.184.0/22 IPv6: 2404:9ec0:1000::/40 Signature Algorithm: sha256WithRSAEncryption 0a:64:a3:d4:3c:cf:55:08:16:cd:8a:ec:6f:53:f1:fc:07:e6: 23:ad:84:9e:cc:dd:ee:12:eb:66:ca:8d:55:1f:b4:dd:25:33: f1:1a:40:2a:20:3a:ec:97:0f:50:2c:a4:1c:04:13:e8:f6:74: dd:84:6b:be:ad:34:48:c5:ae:0a:e8:20:bb:fe:8d:28:6f:fd: 4a:9b:e3:89:d5:69:ab:30:3a:16:5a:76:1b:07:22:42:5c:08: 1a:50:08:22:96:6d:fa:57:26:82:c6:de:6d:21:75:47:b3:96: 6e:a9:f1:9b:82:0b:bf:08:97:f8:d8:0d:60:ae:a5:e1:46:41: bf:67:06:7a:ed:80:cc:1c:ef:e9:26:bb:f8:d9:8d:25:08:8f: 41:9c:ad:4b:d4:8d:df:c4:61:a4:b3:d2:ce:69:4f:21:d1:da: 63:ae:2b:0b:16:03:5b:dd:6e:2e:c4:ac:70:1f:1c:c6:12:af: 93:a0:69:40:b7:50:44:0e:57:7f:1e:cf:d2:38:20:8e:7b:f8: f7:07:30:86:6e:7a:01:87:07:96:4b:dd:42:17:3a:07:16:8f: a6:01:7a:0f:c4:08:47:d1:dc:58:e4:51:b6:36:fd:78:6b:8e: 79:c9:57:bd:ea:07:5f:17:6f:81:5f:d5:c8:d6:06:d0:c5:83: 72:f3:0a:2d -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICD1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEOUMxMTAvBgNVBAUTKDVCMkNGMEZCNjJGMTYwRjE4MzhBRUUzRTZDREUwNzU0 NERGRjhCRkYwHhcNMjQwMjA4MTgxNTU5WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWM1MWE1Zi1mNjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA72862bprGrRSSKB51ESAxFPKVAHWma3/2OF2XwOehnSdtcU5x3/bMPjeUay6 MwRg3G3orWTJbaJ+143QUpfaWZIhO1OgJZnVnXpNLG+EzGigNIx7kBm4oiaqZM7I BT13m7IDGXbtZKQT3HrjwF8Y3PUDhrfRHoOlqovmNYIt18LsuQbAPws0P2HuC9aG mL26zFjuSWu2XxRjvidUzsmD6isY5jgIH7LDyEk4070XkSIxp5BBoSx0vn4ykiT7 1s9jFeGGUxrasZvV4KJaFKY3e7alyQ0gQJL8vPkIys25w85EPfEUJOjyvN5d6zas YjdSvw4fUn0F/YpKPJrDDL858wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFAof/38o QGbfgbwJ/iIJOvvFFvz+MB8GA1UdIwQYMBaAFFss8Pti8WDxg4ruPmzeB1RN/4v/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0Q5Qy80NTU5NDJENjUw QjIxMUU5QjVEQjZBNkJDNEY5QUUwMi9XeXp3LTJMeFlQR0RpdTQtYk40SFZFM19p XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1d5enctMkx4WVBHRGl1NC1iTjRIVkUzX2lfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNEOUMvNDU1OTQyRDY1MEIyMTFFOUI1REI2QTZCQzRGOUFFMDIvQjdENjdCNEVD QzMwMTFFQTlCNTRDNjc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBAJniLgwDgQCAAIwCAMGACQEnsAQMA0GCSqGSIb3DQEBCwUA A4IBAQAKZKPUPM9VCBbNiuxvU/H8B+YjrYSezN3uEutmyo1VH7TdJTPxGkAqIDrs lw9QLKQcBBPo9nTdhGu+rTRIxa4K6CC7/o0ob/1Km+OJ1WmrMDoWWnYbByJCXAga UAgilm36VyaCxt5tIXVHs5ZuqfGbggu/CJf42A1grqXhRkG/ZwZ67YDMHO/pJrv4 2Y0lCI9BnK1L1I3fxGGks9LOaU8h0dpjrisLFgNb3W4uxKxwHxzGEq+ToGlAt1BE Dld/Hs/SOCCOe/j3BzCGbnoBhweWS91CFzoHFo+mAXoPxAhH0dxY5FG2Nv14a455 yVe96gdfF2+BX9XI1gbQxYNy8wot -----END CERTIFICATE-----Generated at Thu May 16 20:25:39 2024 by rpki-client on console-ams.rpki-client.org