$ rpki-client -vvf rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/9D9E8D0C11DC11EABC4FB55AC4F9AE02.roa File: 9D9E8D0C11DC11EABC4FB55AC4F9AE02.roa (raw, json) Hash identifier: Jeh3zOQgbNPMApItqeyCkWdXrJAzm9EwiIIngDfy7jQ= Subject key identifier: 61:97:AE:5C:08:E3:4D:88:D3:E9:0F:44:F7:23:66:32:EC:06:96:F1 Certificate issuer: /CN=A913E4AA/serialNumber=63883E4CA2C8E7DDDAC3987E484FD1D672D93949 Certificate serial: 0AD8 Authority key identifier: 63:88:3E:4C:A2:C8:E7:DD:DA:C3:98:7E:48:4F:D1:D6:72:D9:39:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/9D9E8D0C11DC11EABC4FB55AC4F9AE02.roa Signing time: Mon 16 Oct 2023 19:47:26 +0000 ROA not before: Mon 16 Oct 2023 19:47:26 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 138192 IP address blocks: 103.129.212.0/22 maxlen: 24 2403:88c0::/32 maxlen: 36 2403:88c0::/48 maxlen: 48 2403:88c0:1::/48 maxlen: 48 2403:88c0:a::/48 maxlen: 48 2403:88c0:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.crl rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 19:58:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2776 (0xad8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E4AA/serialNumber=63883E4CA2C8E7DDDAC3987E484FD1D672D93949 Validity Not Before: Oct 16 19:47:26 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=652d934e-05a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:46:e1:4c:fe:f3:8e:5e:7b:44:06:ee:ca:3e: a6:a3:e6:9b:10:8c:b2:21:1d:74:7d:d8:38:44:58: 16:a1:2a:5c:26:fd:56:66:4c:8f:1b:1c:0e:6d:f3: d5:34:7a:81:a0:d2:8a:42:00:3f:c9:07:75:dc:60: c3:af:10:18:af:48:58:99:83:07:c4:e3:12:fc:5a: 10:ec:84:65:c9:09:4d:1e:ac:b2:39:48:5a:fd:2a: 31:ca:3b:88:14:c8:14:62:3b:a0:23:31:fb:13:a1: 48:c9:6f:50:ff:45:e5:87:5b:db:46:a1:a5:82:6b: 46:7d:3b:d0:c1:d9:de:02:88:c7:8f:4e:80:b9:a7: c5:40:00:92:58:dc:f5:0c:9f:c0:11:13:70:b1:ee: 4e:6e:eb:a8:59:70:b6:fa:0c:41:1e:c3:4c:e4:27: e9:aa:de:0c:dd:18:1e:56:30:73:b6:89:72:61:bd: 38:d4:83:7b:49:51:4f:1b:1a:30:1a:4c:39:88:a3: 18:7e:4a:fa:49:69:21:03:88:50:8b:c4:a3:a8:da: 86:48:06:e0:d5:a9:35:53:0b:f7:8c:46:3e:a3:5f: a5:7e:17:89:67:f1:79:4d:88:29:7d:40:44:f3:99: ba:84:c3:94:72:98:30:a3:fe:cb:33:cf:2f:1b:86: 8c:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:97:AE:5C:08:E3:4D:88:D3:E9:0F:44:F7:23:66:32:EC:06:96:F1 X509v3 Authority Key Identifier: keyid:63:88:3E:4C:A2:C8:E7:DD:DA:C3:98:7E:48:4F:D1:D6:72:D9:39:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/9D9E8D0C11DC11EABC4FB55AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.212.0/22 IPv6: 2403:88c0::/32 Signature Algorithm: sha256WithRSAEncryption 61:3d:8e:bc:00:0e:86:fd:be:3f:34:a8:18:10:fe:ba:25:74: 81:fa:3d:eb:4f:ed:22:b3:6e:28:7c:2e:3e:62:33:8f:9a:7a: 58:28:9d:41:9d:fb:b8:a2:53:27:68:30:52:2b:ef:aa:c8:96: af:12:34:81:1b:0e:93:84:f1:b9:4b:39:b1:38:ab:a9:f4:33: ac:55:c6:1d:e8:6d:20:9a:1d:bb:e1:ba:0a:4a:b1:3e:9f:c6: bd:df:be:a1:3c:cc:56:ae:6b:b2:0b:35:eb:22:16:4d:3a:f0: 8f:03:01:0d:4e:de:8a:50:f2:46:76:3e:80:3c:ad:a0:0b:04: dc:bb:9e:e8:8d:c8:86:d1:59:a1:5e:2f:ed:0e:94:c0:ca:24: 63:28:cd:1e:e0:75:bc:2e:01:64:9d:37:28:0d:f1:36:86:7f: 8e:32:93:42:63:51:3f:f0:31:0f:db:78:6f:73:7b:d4:46:cb: 8e:ac:92:62:24:4c:23:2a:b0:ea:dd:a9:ba:08:c1:2f:99:bf: d8:d6:a2:3e:8c:d8:5f:64:39:c6:e3:0a:e7:d0:89:2b:03:46: 88:8c:29:c4:78:74:66:1a:9f:4f:45:45:f0:ee:e4:47:b9:4e: 53:e0:5f:3b:b4:3d:4e:c7:9b:24:a8:d2:f2:0c:dd:19:7f:79: 84:cc:58:24 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U0QUExMTAvBgNVBAUTKDYzODgzRTRDQTJDOEU3REREQUMzOTg3RTQ4NEZEMUQ2 NzJEOTM5NDkwHhcNMjMxMDE2MTk0NzI2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTJkOTM0ZS0wNWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkbhTP7zjl57RAbuyj6mo+abEIyyIR10fdg4RFgWoSpcJv1WZkyPGxwObfPV NHqBoNKKQgA/yQd13GDDrxAYr0hYmYMHxOMS/FoQ7IRlyQlNHqyyOUha/SoxyjuI FMgUYjugIzH7E6FIyW9Q/0Xlh1vbRqGlgmtGfTvQwdneAojHj06AuafFQACSWNz1 DJ/AERNwse5ObuuoWXC2+gxBHsNM5Cfpqt4M3RgeVjBztolyYb041IN7SVFPGxow Gkw5iKMYfkr6SWkhA4hQi8SjqNqGSAbg1ak1Uwv3jEY+o1+lfheJZ/F5TYgpfUBE 85m6hMOUcpgwo/7LM88vG4aMDwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFGGXrlwI 402I0+kPRPcjZjLsBpbxMB8GA1UdIwQYMBaAFGOIPkyiyOfd2sOYfkhP0dZy2TlJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTRBQS82NzRDQTI5RTEx REIxMUVBQkY0NURBNTVDNEY5QUUwMi9ZNGctVEtMSTU5M2F3NWgtU0VfUjFuTFpP VWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1k0Zy1US0xJNTkzYXc1aC1TRV9SMW5MWk9Vay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0U0QUEvNjc0Q0EyOUUxMURCMTFFQUJGNDVEQTU1QzRGOUFFMDIvOUQ5RThEMEMx MURDMTFFQUJDNEZCNTVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJngdQwDQQCAAIwBwMFACQDiMAwDQYJKoZIhvcNAQELBQAD ggEBAGE9jrwADob9vj80qBgQ/roldIH6PetP7SKzbih8Lj5iM4+aelgonUGd+7ii UydoMFIr76rIlq8SNIEbDpOE8blLObE4q6n0M6xVxh3obSCaHbvhugpKsT6fxr3f vqE8zFaua7ILNesiFk068I8DAQ1O3opQ8kZ2PoA8raALBNy7nuiNyIbRWaFeL+0O lMDKJGMozR7gdbwuAWSdNygN8TaGf44yk0JjUT/wMQ/beG9ze9RGy46skmIkTCMq sOrdqboIwS+Zv9jWoj6M2F9kOcbjCufQiSsDRoiMKcR4dGYan09FRfDu5Ee5TlPg Xzu0PU7HmySo0vIM3Rl/eYTMWCQ= -----END CERTIFICATE-----Generated at Sun Jun 2 21:14:19 2024 by rpki-client on console-ams.rpki-client.org