$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/99D6D8089BF111ED8043AD1FC4F9AE02.roa File: 99D6D8089BF111ED8043AD1FC4F9AE02.roa (raw, json) Hash identifier: sUf036iD770CQ+b2X6bzvJNIpXhSwluP5hHx6+I2vxE= Subject key identifier: 7C:09:5F:B9:E1:2F:CE:15:75:B9:29:4A:FB:6E:5F:23:50:28:EB:13 Certificate issuer: /CN=A9128C7F/serialNumber=8976B5FB48F2E4111D78D5A3CD5A2FCA1961397A Certificate serial: F1 Authority key identifier: 89:76:B5:FB:48:F2:E4:11:1D:78:D5:A3:CD:5A:2F:CA:19:61:39:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/99D6D8089BF111ED8043AD1FC4F9AE02.roa Signing time: Wed 15 Nov 2023 04:35:16 +0000 ROA not before: Wed 15 Nov 2023 04:35:16 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 150334 IP address blocks: 103.14.168.0/24 maxlen: 24 103.14.169.0/24 maxlen: 24 2001:df1:55c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.crl rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 04:06:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C7F/serialNumber=8976B5FB48F2E4111D78D5A3CD5A2FCA1961397A Validity Not Before: Nov 15 04:35:16 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65544a84-9200 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b3:9a:c7:d5:ba:d8:73:69:70:81:9a:33:36: 4a:e6:05:b0:b1:74:41:3c:bd:28:ee:bb:83:b9:3c: 8a:9b:07:3f:48:16:bb:ea:01:13:a2:a9:53:4f:3e: 4e:fd:37:85:b5:e9:45:6d:66:cd:57:ae:5a:93:dd: 11:03:2f:2e:8c:ee:b8:e6:c0:12:eb:3d:28:57:ce: a9:b5:fa:9b:52:ed:38:7d:29:01:05:59:5d:f7:b8: e9:a7:13:ec:5e:9c:60:74:ad:ab:c4:fc:f6:06:08: ae:41:2d:87:b5:84:8f:ee:af:3e:d1:91:d1:a5:65: 39:e0:1a:e9:ea:f1:35:a5:f9:62:45:f6:65:45:a2: 47:97:a6:a5:73:f7:5f:bd:45:b5:1c:4b:09:99:37: 5b:d9:c6:73:5b:34:b3:b5:85:ba:b2:48:23:65:2c: 98:89:af:b5:12:13:76:75:99:38:5e:04:48:91:32: 03:53:70:9d:52:3a:b2:74:30:81:b8:b7:ac:87:d2: b0:98:07:e5:4e:c6:0d:0b:88:0e:52:b4:a5:6a:35: 4e:fa:57:a2:b0:91:ea:b6:c3:fa:14:e9:db:6b:90: bd:47:0d:3f:20:2e:5d:cd:67:28:55:0e:e9:82:5a: 27:51:5d:e7:67:b3:29:09:b6:64:4a:66:15:df:c6: 39:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:09:5F:B9:E1:2F:CE:15:75:B9:29:4A:FB:6E:5F:23:50:28:EB:13 X509v3 Authority Key Identifier: keyid:89:76:B5:FB:48:F2:E4:11:1D:78:D5:A3:CD:5A:2F:CA:19:61:39:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/99D6D8089BF111ED8043AD1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.14.168.0/23 IPv6: 2001:df1:55c0::/48 Signature Algorithm: sha256WithRSAEncryption 14:3e:b7:a4:1d:fa:2d:86:2f:3d:6e:85:a5:cc:c2:49:7b:35: 7f:0a:5f:95:e7:4e:44:bc:87:59:14:a9:22:c5:4e:81:20:42: bc:bc:1e:4f:c2:88:3b:d9:c2:cb:67:ab:59:6a:b9:14:f4:55: 10:af:37:90:46:27:7f:91:0d:d1:fb:db:97:30:23:a5:24:78: 30:3b:82:c9:e4:1b:e1:56:66:37:d8:fb:1c:cc:2f:12:ca:9f: 32:01:62:f9:89:ba:0f:71:f2:21:16:b3:00:85:81:2f:4c:68: 85:80:5a:cf:fd:fb:44:c5:1e:76:0c:41:ae:22:8a:47:90:f8: 5f:7d:26:cc:d6:a0:4f:7a:a3:0a:c5:98:af:14:af:90:24:de: 5e:f6:d2:95:50:2c:3b:a2:49:0c:83:7f:98:49:2d:3a:02:fa: 86:6c:57:4a:f2:e8:30:4b:b5:0d:b3:63:cd:dd:0a:e7:e8:4e: 69:ea:e4:12:42:23:cf:72:4a:8d:43:5a:ed:04:f5:ae:f5:01: 67:75:2e:6a:c3:92:a4:30:92:b6:87:29:25:67:56:7f:80:f9: 9d:10:7b:e0:4f:f3:67:89:a3:d8:84:89:7f:ea:c9:97:8a:1f: 40:a1:d5:4d:56:cc:b9:5d:8d:14:53:3e:0a:4c:56:0d:78:da: bd:2e:07:57 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDN0YxMTAvBgNVBAUTKDg5NzZCNUZCNDhGMkU0MTExRDc4RDVBM0NENUEyRkNB MTk2MTM5N0EwHhcNMjMxMTE1MDQzNTE2WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTU0NGE4NC05MjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0LOax9W62HNpcIGaMzZK5gWwsXRBPL0o7ruDuTyKmwc/SBa76gEToqlTTz5O /TeFtelFbWbNV65ak90RAy8ujO645sAS6z0oV86ptfqbUu04fSkBBVld97jppxPs XpxgdK2rxPz2BgiuQS2HtYSP7q8+0ZHRpWU54Brp6vE1pfliRfZlRaJHl6alc/df vUW1HEsJmTdb2cZzWzSztYW6skgjZSyYia+1EhN2dZk4XgRIkTIDU3CdUjqydDCB uLesh9KwmAflTsYNC4gOUrSlajVO+leisJHqtsP6FOnba5C9Rw0/IC5dzWcoVQ7p glonUV3nZ7MpCbZkSmYV38Y5uwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHwJX7nh L84VdbkpSvtuXyNQKOsTMB8GA1UdIwQYMBaAFIl2tftI8uQRHXjVo81aL8oZYTl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEM3Ri8zQjdCREFCRTNG QzcxMUVEQUM5QjIyMURDNEY5QUUwMi9pWGExLTBqeTVCRWRlTldqelZvdnlobGhP WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lYYTEtMGp5NUJFZGVOV2p6Vm92eWhsaE9Yby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjhDN0YvM0I3QkRBQkUzRkM3MTFFREFDOUIyMjFEQzRGOUFFMDIvOTlENkQ4MDg5 QkYxMTFFRDgwNDNBRDFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnDqgwDwQCAAIwCQMHACABDfFVwDANBgkqhkiG9w0BAQsF AAOCAQEAFD63pB36LYYvPW6FpczCSXs1fwpfledORLyHWRSpIsVOgSBCvLweT8KI O9nCy2erWWq5FPRVEK83kEYnf5EN0fvblzAjpSR4MDuCyeQb4VZmN9j7HMwvEsqf MgFi+Ym6D3HyIRazAIWBL0xohYBaz/37RMUedgxBriKKR5D4X30mzNagT3qjCsWY rxSvkCTeXvbSlVAsO6JJDIN/mEktOgL6hmxXSvLoMEu1DbNjzd0K5+hOaerkEkIj z3JKjUNa7QT1rvUBZ3UuasOSpDCStocpJWdWf4D5nRB74E/zZ4mj2ISJf+rJl4of QKHVTVbMuV2NFFM+CkxWDXjavS4HVw== -----END CERTIFICATE-----Generated at Fri Jun 7 06:09:26 2024 by rpki-client on console-ams.rpki-client.org