$ rpki-client -vvf rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/E6B9A5DA95F611EC88E42C7EC4F9AE02.roa File: E6B9A5DA95F611EC88E42C7EC4F9AE02.roa (raw, json) Hash identifier: URmOwaK14Qe2DOOS4i75kjoPIc7hNmBHmQ8AHTtXT9w= Subject key identifier: 6A:97:6E:9A:B4:39:C7:DB:62:43:D8:F8:7C:37:F0:16:59:EC:45:23 Certificate issuer: /CN=A9135020/serialNumber=B63213D8E662F454BEAEEC7F3C42E3AF6F895FB2 Certificate serial: 02E0 Authority key identifier: B6:32:13:D8:E6:62:F4:54:BE:AE:EC:7F:3C:42:E3:AF:6F:89:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tjIT2OZi9FS-rux_PELjr2-JX7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/E6B9A5DA95F611EC88E42C7EC4F9AE02.roa Signing time: Wed 20 Mar 2024 03:27:07 +0000 ROA not before: Wed 20 Mar 2024 03:27:07 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 9299 IP address blocks: 103.146.59.0/24 maxlen: 24 202.0.116.0/24 maxlen: 24 2001:df2:4d80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/tjIT2OZi9FS-rux_PELjr2-JX7I.crl rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/tjIT2OZi9FS-rux_PELjr2-JX7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tjIT2OZi9FS-rux_PELjr2-JX7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 736 (0x2e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135020/serialNumber=B63213D8E662F454BEAEEC7F3C42E3AF6F895FB2 Validity Not Before: Mar 20 03:27:07 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65fa578b-7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9e:0f:ab:03:22:ce:f1:34:b6:26:29:88:76: 99:6e:91:b4:39:05:fe:af:4a:d3:d8:6c:b3:f5:92: dd:6c:68:2f:48:5a:44:1b:f6:b3:b3:62:13:79:ba: 0b:bb:36:36:e7:32:c5:f5:cc:24:a3:e0:5f:ee:85: af:df:64:06:40:f1:a7:4e:82:43:c3:8a:a5:60:47: 11:50:63:af:b0:a3:96:b5:f9:9b:52:8d:bb:ff:7f: df:be:ac:60:9f:61:77:c1:bf:3a:e0:4c:2a:a7:35: 95:75:79:9c:a6:e9:67:9c:b7:58:e1:14:79:6c:87: 81:bb:41:45:ef:d0:93:c1:66:1b:64:f6:1b:54:a3: c8:4d:27:b9:3a:cb:d9:01:57:7c:85:25:cc:d1:ed: 6e:d2:f8:37:51:56:f7:d2:0c:e6:95:0c:d1:d9:84: 8e:cd:94:d7:f8:0f:48:3e:c4:99:d6:d1:cd:c4:bb: 90:df:0c:7a:d6:f4:d6:16:45:6a:cc:e6:d1:df:72: 0d:7c:62:0a:83:e8:51:d8:a5:2d:09:63:e8:58:2f: 6f:b0:3c:03:47:b6:fa:ef:9b:80:3d:3b:53:c5:d6: 46:ce:bb:15:7f:4d:62:5e:1f:68:3e:60:1c:f5:de: 47:bc:55:7a:b0:7e:de:9b:db:2f:83:76:0a:ae:3c: dd:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:97:6E:9A:B4:39:C7:DB:62:43:D8:F8:7C:37:F0:16:59:EC:45:23 X509v3 Authority Key Identifier: keyid:B6:32:13:D8:E6:62:F4:54:BE:AE:EC:7F:3C:42:E3:AF:6F:89:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/tjIT2OZi9FS-rux_PELjr2-JX7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tjIT2OZi9FS-rux_PELjr2-JX7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/E6B9A5DA95F611EC88E42C7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.59.0/24 202.0.116.0/24 IPv6: 2001:df2:4d80::/48 Signature Algorithm: sha256WithRSAEncryption 2f:2b:9e:8c:cf:5a:2a:af:74:49:25:e6:16:11:f6:a3:da:f7: ab:f8:53:82:a4:d8:ae:9e:a0:89:ea:c1:6c:fa:22:91:91:1e: 48:70:3c:3d:7a:cb:83:b8:41:05:79:20:1c:71:a7:13:6a:f8: 57:85:36:2d:8e:a6:75:6c:bb:3a:dc:ad:d6:5c:ee:5a:99:e5: f8:dd:69:e7:10:a4:5a:56:66:f0:d5:fd:e9:7b:08:a9:54:8e: f5:bd:bd:07:c6:44:a8:9c:9f:74:6c:f8:ac:30:79:c3:b0:6c: 02:17:4c:66:94:7b:c8:80:89:40:78:20:b2:a2:a3:6c:db:ea: 15:70:8e:3a:69:ed:71:5f:b0:19:a0:ec:08:b7:78:e7:60:c5: 08:92:26:8e:75:84:24:1f:82:04:64:7f:93:da:9d:07:ea:0d: b5:15:59:23:96:fc:da:9c:dc:78:0c:6b:d9:9e:4f:d7:40:bf: 40:06:e9:b2:c5:4a:96:5f:de:e2:91:9e:fd:18:3a:c5:0b:74: 30:d1:d0:e1:f7:12:ae:c7:96:e6:28:d4:26:40:0b:b0:dc:e7: b2:29:60:64:b5:f9:77:8c:e2:98:77:37:c3:51:24:62:27:3c: dc:0a:f6:9a:8e:f6:ed:7c:86:d6:fe:47:4d:20:d0:93:2f:19: 3c:d3:87:a9 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUwMjAxMTAvBgNVBAUTKEI2MzIxM0Q4RTY2MkY0NTRCRUFFRUM3RjNDNDJFM0FG NkY4OTVGQjIwHhcNMjQwMzIwMDMyNzA3WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWZhNTc4Yi03YjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzZ4PqwMizvE0tiYpiHaZbpG0OQX+r0rT2Gyz9ZLdbGgvSFpEG/azs2ITeboL uzY25zLF9cwko+Bf7oWv32QGQPGnToJDw4qlYEcRUGOvsKOWtfmbUo27/3/fvqxg n2F3wb864EwqpzWVdXmcpulnnLdY4RR5bIeBu0FF79CTwWYbZPYbVKPITSe5OsvZ AVd8hSXM0e1u0vg3UVb30gzmlQzR2YSOzZTX+A9IPsSZ1tHNxLuQ3wx61vTWFkVq zObR33INfGIKg+hR2KUtCWPoWC9vsDwDR7b675uAPTtTxdZGzrsVf01iXh9oPmAc 9d5HvFV6sH7em9svg3YKrjzdoQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFGqXbpq0 OcfbYkPY+Hw38BZZ7EUjMB8GA1UdIwQYMBaAFLYyE9jmYvRUvq7sfzxC469viV+y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTAyMC9CRTFFRTUwNDk0 NzAxMUVDOTFCNDZDNERDNEY5QUUwMi90aklUMk9aaTlGUy1ydXhfUEVManIyLUpY N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RqSVQyT1ppOUZTLXJ1eF9QRUxqcjItSlg3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzUwMjAvQkUxRUU1MDQ5NDcwMTFFQzkxQjQ2QzREQzRGOUFFMDIvRTZCOUE1REE5 NUY2MTFFQzg4RTQyQzdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnkjsDBADKAHQwDwQCAAIwCQMHACABDfJNgDANBgkqhkiG 9w0BAQsFAAOCAQEALyuejM9aKq90SSXmFhH2o9r3q/hTgqTYrp6gierBbPoikZEe SHA8PXrLg7hBBXkgHHGnE2r4V4U2LY6mdWy7Otyt1lzuWpnl+N1p5xCkWlZm8NX9 6XsIqVSO9b29B8ZEqJyfdGz4rDB5w7BsAhdMZpR7yICJQHggsqKjbNvqFXCOOmnt cV+wGaDsCLd452DFCJImjnWEJB+CBGR/k9qdB+oNtRVZI5b82pzceAxr2Z5P10C/ QAbpssVKll/e4pGe/Rg6xQt0MNHQ4fcSrseW5ijUJkALsNznsilgZLX5d4zimHc3 w1EkYic83Ar2mo727XyG1v5HTSDQky8ZPNOHqQ== -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:14 2024 by rpki-client on console-ams.rpki-client.org