$ rpki-client -vvf rpki.apnic.net/member_repository/A9142127/20F4443A546D11EABDD3C117C4F9AE02/7B3737EE546E11EAAA4CF919C4F9AE02.roa File: 7B3737EE546E11EAAA4CF919C4F9AE02.roa (raw, json) Hash identifier: NT/eIPYnVSHpCL1VUGjxlJQLQnrtnvZboPiK6CUlFl4= Subject key identifier: 1E:51:5A:47:4F:FA:E1:55:55:F3:64:57:F3:69:59:37:26:9E:83:E2 Certificate issuer: /CN=A9142127/serialNumber=415027D8C9298E97DA05C0C43DCD8BAF52174175 Certificate serial: 09EC Authority key identifier: 41:50:27:D8:C9:29:8E:97:DA:05:C0:C4:3D:CD:8B:AF:52:17:41:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVAn2MkpjpfaBcDEPc2Lr1IXQXU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142127/20F4443A546D11EABDD3C117C4F9AE02/7B3737EE546E11EAAA4CF919C4F9AE02.roa Signing time: Tue 26 Mar 2024 20:39:46 +0000 ROA not before: Tue 26 Mar 2024 20:39:46 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 4049 IP address blocks: 59.153.20.0/22 maxlen: 24 103.47.3.0/24 maxlen: 24 103.65.244.0/22 maxlen: 24 103.148.132.0/23 maxlen: 24 103.250.198.0/24 maxlen: 24 202.27.113.0/24 maxlen: 24 202.36.150.0/23 maxlen: 24 202.36.152.0/23 maxlen: 24 202.49.20.0/22 maxlen: 24 202.49.24.0/21 maxlen: 24 202.134.32.0/20 maxlen: 24 2406:2b00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142127/20F4443A546D11EABDD3C117C4F9AE02/QVAn2MkpjpfaBcDEPc2Lr1IXQXU.crl rsync://rpki.apnic.net/member_repository/A9142127/20F4443A546D11EABDD3C117C4F9AE02/QVAn2MkpjpfaBcDEPc2Lr1IXQXU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVAn2MkpjpfaBcDEPc2Lr1IXQXU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 21:21:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2540 (0x9ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142127/serialNumber=415027D8C9298E97DA05C0C43DCD8BAF52174175 Validity Not Before: Mar 26 20:39:46 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66033292-8fa0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:bd:ae:39:c6:ed:9c:57:41:1b:5d:52:f6:bc: c8:87:36:53:86:ad:de:cb:35:b0:f8:c7:0b:c3:42: b2:a1:21:78:b6:c1:8b:a9:a9:7e:35:e4:0d:48:91: 6c:6f:ad:98:cb:5a:23:3a:0f:ee:44:c0:05:68:db: 46:b8:e6:94:60:2e:2d:5a:15:f7:19:5f:ba:40:94: d8:23:48:32:95:38:80:80:6f:a5:44:00:66:1d:a6: ce:bf:ee:69:0b:ff:c6:5d:3f:de:96:f8:91:8b:4e: 4d:b8:39:c8:2f:b8:14:e3:57:ca:6b:50:bd:4b:70: 9d:12:10:82:0a:0c:71:de:3a:31:10:c1:6f:2d:18: 70:45:05:08:18:d4:3b:4d:b3:b2:36:43:2c:22:87: 0f:83:80:c2:5d:4a:c2:1d:80:69:47:60:d0:6f:d4: 60:6d:14:42:d9:60:0c:cb:23:30:85:f1:bf:be:5d: bb:85:8b:35:5d:57:73:87:11:77:18:be:64:1e:1d: 74:ab:2d:78:a2:27:1a:fb:7a:0c:e4:30:30:c6:35: 2d:f5:5b:de:8d:9c:e9:6d:b1:67:da:b0:50:6b:b1: c8:a7:c1:86:a8:1c:81:ec:fc:5a:7f:15:aa:99:94: b0:52:c3:c2:65:8d:99:1a:62:c1:c5:94:47:f3:21: a1:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:51:5A:47:4F:FA:E1:55:55:F3:64:57:F3:69:59:37:26:9E:83:E2 X509v3 Authority Key Identifier: keyid:41:50:27:D8:C9:29:8E:97:DA:05:C0:C4:3D:CD:8B:AF:52:17:41:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142127/20F4443A546D11EABDD3C117C4F9AE02/QVAn2MkpjpfaBcDEPc2Lr1IXQXU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVAn2MkpjpfaBcDEPc2Lr1IXQXU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142127/20F4443A546D11EABDD3C117C4F9AE02/7B3737EE546E11EAAA4CF919C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.153.20.0/22 103.47.3.0/24 103.65.244.0/22 103.148.132.0/23 103.250.198.0/24 202.27.113.0/24 202.36.150.0-202.36.153.255 202.49.20.0-202.49.31.255 202.134.32.0/20 IPv6: 2406:2b00::/32 Signature Algorithm: sha256WithRSAEncryption 71:a5:b2:73:78:f1:8f:8e:62:d5:82:29:b9:d3:13:88:49:69: 05:36:e0:8a:3e:16:ee:9e:27:cf:37:e4:cd:67:2a:49:c1:7b: e1:87:4a:58:93:bd:2d:fb:a2:85:59:f1:a7:48:c4:fe:dc:48: f7:34:b7:0d:94:fc:44:47:69:69:d2:60:ef:c1:83:2d:66:9c: 5d:cf:a8:ff:8c:3c:30:33:0e:0c:3b:ec:74:ce:69:5e:31:dd: c8:4e:fb:a4:1e:f1:b7:7a:47:d3:16:f4:16:c7:17:57:5f:1c: cc:69:23:7f:a5:88:32:50:71:73:b6:cc:e1:08:b9:a7:69:0a: ec:b5:14:3e:d1:70:e1:f9:c7:a8:0a:a5:08:35:f0:a6:47:c5: f5:c4:5c:b1:08:aa:48:b1:8d:1d:5d:65:45:3e:04:bd:e7:ef: f0:ad:d9:3e:47:aa:cd:a4:16:ce:f2:5a:31:ae:c9:14:b3:14: 87:72:40:4f:2a:36:19:06:16:39:77:42:e4:46:f7:7c:8d:93: 2b:38:1c:3c:bc:7a:10:fa:ec:0f:28:ab:0e:45:d2:97:ef:db: be:bc:f2:2a:b9:11:d1:d8:b5:83:2c:f6:39:51:4e:3d:4e:3e: 5b:71:00:2a:4a:1a:2a:1b:61:12:8d:5b:70:f0:e7:7d:3f:be: f3:f4:d6:cd -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgICCewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIxMjcxMTAvBgNVBAUTKDQxNTAyN0Q4QzkyOThFOTdEQTA1QzBDNDNEQ0Q4QkFG NTIxNzQxNzUwHhcNMjQwMzI2MjAzOTQ2WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjAzMzI5Mi04ZmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqb2uOcbtnFdBG11S9rzIhzZThq3eyzWw+McLw0KyoSF4tsGLqal+NeQNSJFs b62Yy1ojOg/uRMAFaNtGuOaUYC4tWhX3GV+6QJTYI0gylTiAgG+lRABmHabOv+5p C//GXT/elviRi05NuDnIL7gU41fKa1C9S3CdEhCCCgxx3joxEMFvLRhwRQUIGNQ7 TbOyNkMsIocPg4DCXUrCHYBpR2DQb9RgbRRC2WAMyyMwhfG/vl27hYs1XVdzhxF3 GL5kHh10qy14oica+3oM5DAwxjUt9VvejZzpbbFn2rBQa7HIp8GGqByB7PxafxWq mZSwUsPCZY2ZGmLBxZRH8yGhdQIDAQABo4IC5DCCAuAwHQYDVR0OBBYEFB5RWkdP +uFVVfNkV/NpWTcmnoPiMB8GA1UdIwQYMBaAFEFQJ9jJKY6X2gXAxD3Ni69SF0F1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjEyNy8yMEY0NDQzQTU0 NkQxMUVBQkREM0MxMTdDNEY5QUUwMi9RVkFuMk1rcGpwZmFCY0RFUGMyTHIxSVhR WFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FWQW4yTWtwanBmYUJjREVQYzJMcjFJWFFYVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIxMjcvMjBGNDQ0M0E1NDZEMTFFQUJERDNDMTE3QzRGOUFFMDIvN0IzNzM3RUU1 NDZFMTFFQUFBNENGOTE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwbgYIKwYBBQUHAQcBAf8E XzBdMEwEAgABMEYDBAI7mRQDBABnLwMDBAJnQfQDBAFnlIQDBABn+sYDBADKG3Ew DAMEAcoklgMEAcokmDAMAwQCyjEUAwQFyjEAAwQEyoYgMA0EAgACMAcDBQAkBisA MA0GCSqGSIb3DQEBCwUAA4IBAQBxpbJzePGPjmLVgim50xOISWkFNuCKPhbunifP N+TNZypJwXvhh0pYk70t+6KFWfGnSMT+3Ej3NLcNlPxER2lp0mDvwYMtZpxdz6j/ jDwwMw4MO+x0zmleMd3ITvukHvG3ekfTFvQWxxdXXxzMaSN/pYgyUHFztszhCLmn aQrstRQ+0XDh+ceoCqUINfCmR8X1xFyxCKpIsY0dXWVFPgS95+/wrdk+R6rNpBbO 8loxrskUsxSHckBPKjYZBhY5d0LkRvd8jZMrOBw8vHoQ+uwPKKsORdKX79u+vPIq uRHR2LWDLPY5UU49Tj5bcQAqShoqG2ESjVtw8Od9P77z9NbN -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:12 2024 by rpki-client on console-ams.rpki-client.org