$ rpki-client -vvf rpki.apnic.net/member_repository/A9135597/E9707D1E9A3A11ED81B1271DC4F9AE02/14BB63805EC111EEBE63A109C4F9AE02.roa File: 14BB63805EC111EEBE63A109C4F9AE02.roa (raw, json) Hash identifier: wrwNDqhTULnAoV3dT8oiFzEJGsEpucdP0ccKDc/iXNE= Subject key identifier: AC:84:99:94:16:18:89:B2:17:37:4E:14:6E:67:FC:D9:94:0E:13:BC Certificate issuer: /CN=A9135597/serialNumber=3FEC73EFDA8A9E5C93D0A60AB2159CE070830B71 Certificate serial: 0103 Authority key identifier: 3F:EC:73:EF:DA:8A:9E:5C:93:D0:A6:0A:B2:15:9C:E0:70:83:0B:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-xz79qKnlyT0KYKshWc4HCDC3E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135597/E9707D1E9A3A11ED81B1271DC4F9AE02/14BB63805EC111EEBE63A109C4F9AE02.roa Signing time: Mon 20 May 2024 18:45:20 +0000 ROA not before: Mon 20 May 2024 18:45:20 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 150728 IP address blocks: 103.72.198.0/24 maxlen: 24 103.72.199.0/24 maxlen: 24 2001:df3:c740::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135597/E9707D1E9A3A11ED81B1271DC4F9AE02/P-xz79qKnlyT0KYKshWc4HCDC3E.crl rsync://rpki.apnic.net/member_repository/A9135597/E9707D1E9A3A11ED81B1271DC4F9AE02/P-xz79qKnlyT0KYKshWc4HCDC3E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-xz79qKnlyT0KYKshWc4HCDC3E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 06:56:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135597/serialNumber=3FEC73EFDA8A9E5C93D0A60AB2159CE070830B71 Validity Not Before: May 20 18:45:20 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=664b9a40-b015 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:63:2c:bd:42:05:52:06:83:58:f5:db:d0:57: 92:80:a3:02:e2:8a:19:c8:72:b6:40:d4:68:f4:fb: 52:96:9b:c6:8f:8d:df:87:35:68:15:5b:94:c5:ab: e9:32:8a:7b:e2:a6:91:85:36:8b:d5:d7:c1:90:ba: e8:46:ff:54:17:c5:9e:bc:40:3f:d7:50:07:20:ab: 73:d0:0b:f0:80:4d:da:44:a5:a5:02:ec:03:8b:f2: 60:ab:c2:f0:2d:cd:e0:fd:db:76:95:1a:06:20:69: e7:60:9e:67:2c:a8:f0:7b:d0:c2:11:51:38:42:24: 45:a4:a7:6a:36:e9:f8:a3:38:e7:a6:79:fe:4b:3c: 00:c6:3c:9d:48:f7:9d:1a:cf:32:10:a1:4b:28:ce: cc:ee:4f:62:e4:2c:7b:99:34:75:8e:be:1c:ed:d7: d1:f1:ca:df:b0:8a:4c:97:62:a8:66:4b:db:a8:10: 41:ce:23:1f:f7:cb:1b:b0:66:0c:07:e1:9d:cb:58: 9d:1e:50:55:1a:f3:77:f8:30:2c:c5:7a:e5:86:bd: 19:e5:f6:0e:e7:a5:36:76:ee:3b:c7:30:83:da:e8: 8d:b7:ad:15:11:ef:a1:4a:75:e0:36:0c:c3:9f:7d: c9:78:19:79:3d:6b:77:1f:49:11:25:d2:3e:cd:8d: f0:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:84:99:94:16:18:89:B2:17:37:4E:14:6E:67:FC:D9:94:0E:13:BC X509v3 Authority Key Identifier: keyid:3F:EC:73:EF:DA:8A:9E:5C:93:D0:A6:0A:B2:15:9C:E0:70:83:0B:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135597/E9707D1E9A3A11ED81B1271DC4F9AE02/P-xz79qKnlyT0KYKshWc4HCDC3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-xz79qKnlyT0KYKshWc4HCDC3E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135597/E9707D1E9A3A11ED81B1271DC4F9AE02/14BB63805EC111EEBE63A109C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.72.198.0/23 IPv6: 2001:df3:c740::/48 Signature Algorithm: sha256WithRSAEncryption 51:31:5c:d7:2b:da:e4:0e:04:fc:b3:04:95:8d:47:de:23:be: c7:09:77:cb:55:3a:28:40:20:c0:13:e3:b3:fa:32:23:e5:69: 85:f5:3b:35:72:bc:66:b7:bc:ad:3e:6d:4c:59:d3:12:e6:6b: c8:47:2e:54:bf:7c:62:6d:86:fd:d8:f2:f9:2f:8c:5a:77:f2: 3c:4f:9d:f5:79:ef:75:9e:5b:14:67:75:af:f2:1d:64:90:c9: de:1f:a7:b2:5a:f9:ab:9a:97:43:a8:49:41:1e:9d:d6:f6:ae: af:f0:1e:af:6d:78:6d:70:c2:dd:e9:56:72:5b:31:94:6e:46: e0:8b:6e:8c:39:75:3a:4c:1c:e4:d4:7f:f6:0a:66:c0:8b:fd: 7b:94:79:a6:cb:3a:44:51:49:11:bd:1e:64:2d:ff:37:9b:33: 48:05:09:2e:83:1d:ae:ed:40:73:5a:1c:a9:a9:dd:2d:a5:26: 0e:f8:5f:05:44:e8:a2:3f:c0:e7:f6:c7:bc:da:4e:07:c5:11: d8:cf:2a:49:3c:9c:ed:cd:a5:b7:4c:3f:b8:39:bd:e3:93:dd: ad:30:de:6e:93:7a:86:b3:b8:0b:4c:1a:a9:33:2d:78:91:e1: 31:d1:4f:2f:f5:27:8b:80:c5:07:51:d5:82:45:f1:a2:51:b3: 4e:69:09:df -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU1OTcxMTAvBgNVBAUTKDNGRUM3M0VGREE4QTlFNUM5M0QwQTYwQUIyMTU5Q0Uw NzA4MzBCNzEwHhcNMjQwNTIwMTg0NTIwWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjRiOWE0MC1iMDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoWMsvUIFUgaDWPXb0FeSgKMC4ooZyHK2QNRo9PtSlpvGj43fhzVoFVuUxavp Mop74qaRhTaL1dfBkLroRv9UF8WevEA/11AHIKtz0AvwgE3aRKWlAuwDi/Jgq8Lw Lc3g/dt2lRoGIGnnYJ5nLKjwe9DCEVE4QiRFpKdqNun4ozjnpnn+SzwAxjydSPed Gs8yEKFLKM7M7k9i5Cx7mTR1jr4c7dfR8crfsIpMl2KoZkvbqBBBziMf98sbsGYM B+Gdy1idHlBVGvN3+DAsxXrlhr0Z5fYO56U2du47xzCD2uiNt60VEe+hSnXgNgzD n33JeBl5PWt3H0kRJdI+zY3wZQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKyEmZQW GImyFzdOFG5n/NmUDhO8MB8GA1UdIwQYMBaAFD/sc+/aip5ck9CmCrIVnOBwgwtx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTU5Ny9FOTcwN0QxRTlB M0ExMUVEODFCMTI3MURDNEY5QUUwMi9QLXh6NzlxS25seVQwS1lLc2hXYzRIQ0RD M0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AteHo3OXFLbmx5VDBLWUtzaFdjNEhDREMzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzU1OTcvRTk3MDdEMUU5QTNBMTFFRDgxQjEyNzFEQzRGOUFFMDIvMTRCQjYzODA1 RUMxMTFFRUJFNjNBMTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnSMYwDwQCAAIwCQMHACABDfPHQDANBgkqhkiG9w0BAQsF AAOCAQEAUTFc1yva5A4E/LMElY1H3iO+xwl3y1U6KEAgwBPjs/oyI+VphfU7NXK8 Zre8rT5tTFnTEuZryEcuVL98Ym2G/djy+S+MWnfyPE+d9XnvdZ5bFGd1r/IdZJDJ 3h+nslr5q5qXQ6hJQR6d1vaur/Aer214bXDC3elWclsxlG5G4ItujDl1Okwc5NR/ 9gpmwIv9e5R5pss6RFFJEb0eZC3/N5szSAUJLoMdru1Ac1ocqandLaUmDvhfBUTo oj/A5/bHvNpOB8UR2M8qSTyc7c2lt0w/uDm945PdrTDebpN6hrO4C0waqTMteJHh MdFPL/Uni4DFB1HVgkXxolGzTmkJ3w== -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:29 2024 by rpki-client on console-fra.rpki-client.org