$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/9F0E9576B9C411EE903B7417C4F9AE02.roa File: 9F0E9576B9C411EE903B7417C4F9AE02.roa (raw, json) Hash identifier: W6H9H9LwBoEmL90fNd3rQ0U3Qmsn0xykwMt5+6WyjPs= Subject key identifier: E6:9E:35:FE:B6:F3:4D:E9:1A:33:48:97:D3:77:8D:45:78:49:08:8E Certificate issuer: /CN=A9143CB3/serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Certificate serial: 1A3C Authority key identifier: CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/9F0E9576B9C411EE903B7417C4F9AE02.roa Signing time: Mon 11 Mar 2024 07:46:23 +0000 ROA not before: Mon 11 Mar 2024 07:46:23 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 4837 IP address blocks: 43.248.4.0/24 maxlen: 24 43.248.7.0/24 maxlen: 24 103.3.132.0/24 maxlen: 24 113.9.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Jun 2024 16:55:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6716 (0x1a3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3/serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Validity Not Before: Mar 11 07:46:23 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65eeb6ce-e9c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:18:0f:73:62:e1:18:74:56:0a:3f:c7:9e:fb: 7e:48:f6:e2:c5:40:cf:6d:f0:8e:36:2a:ac:fe:74: e5:62:aa:02:be:37:2e:53:a0:a2:13:98:9e:c2:03: ff:79:85:29:e5:d3:b2:c9:5f:28:6a:8a:10:c0:ac: 8c:18:39:0f:a9:93:5f:14:f4:5d:b9:31:cb:c5:4e: a0:52:90:55:6a:57:0b:ce:f3:45:9a:e3:43:ec:f5: ac:83:2b:f3:12:f2:bd:f3:6b:cd:98:45:35:0b:93: 79:48:04:5a:b0:fd:82:00:c6:9a:22:be:43:75:86: b9:72:f6:ae:b6:e6:3f:71:e4:dd:80:6c:82:da:11: 37:7b:75:a0:63:7d:49:30:8f:05:2d:94:1a:2b:94: 38:b2:21:59:8f:dc:63:a6:07:27:ed:06:0e:e7:bb: 68:e5:25:0b:bc:a2:59:4f:61:4c:bf:d7:0f:50:c2: 5b:17:7a:12:40:c6:5d:a4:ee:89:6e:90:8a:a5:9f: 01:b5:a2:5f:12:f9:d3:c1:37:e1:98:c5:7f:b8:6b: 92:19:6b:95:b3:ed:fb:13:27:96:2a:08:80:f1:38: a9:f5:dc:1e:ba:2d:72:50:76:9d:2e:aa:34:b8:dd: 28:c8:ce:94:ba:69:cc:f4:8d:39:69:97:e3:9e:0a: 70:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:9E:35:FE:B6:F3:4D:E9:1A:33:48:97:D3:77:8D:45:78:49:08:8E X509v3 Authority Key Identifier: keyid:CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/9F0E9576B9C411EE903B7417C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.248.4.0/24 43.248.7.0/24 103.3.132.0/24 113.9.196.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:85:81:8a:11:df:27:1b:e9:0e:ca:96:e7:85:5b:57:5e:9c: c0:db:cd:e0:3d:28:2a:88:71:e4:23:5b:20:aa:46:65:66:7a: 9a:4c:ff:33:52:d4:52:d0:52:17:19:f7:f3:20:ef:e5:9b:82: 27:d2:28:86:7f:ff:2e:cf:b1:a6:66:2f:e4:f7:44:94:46:72: 4c:c9:c5:f9:f4:a4:fc:5d:82:25:d7:17:de:95:34:d4:76:60: ac:63:a5:50:36:e3:f9:55:30:72:50:a0:e4:30:cd:30:3a:c5: fc:93:05:9c:39:65:38:96:aa:ff:94:7f:42:dc:6b:ed:35:e1: f7:70:d1:49:3f:b8:b5:77:d8:61:c3:25:48:f6:4c:a8:2e:5b: cb:31:64:6e:aa:f7:9d:d7:48:49:93:0a:82:ad:40:92:68:ae: ac:2c:34:80:73:93:45:cd:1b:8d:b0:2b:e8:79:39:5d:11:b7: d5:72:1d:67:d3:13:97:4c:bd:1e:d6:a3:16:0d:f0:3b:ea:61: 0c:50:d6:c2:b3:b5:6b:0a:50:ce:dd:7c:42:75:65:b9:36:d7: 91:0d:c3:c9:ab:95:6a:0d:cc:48:c5:32:bc:97:ce:98:61:2d: 24:42:35:b3:75:b8:3c:0e:47:1b:92:df:e5:d7:70:3a:ce:1d: 3c:0b:23:0e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICGjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKENCQTE5N0MwNENBQTlCRDI5NUY1Nzg4NDcyQTZBMTBB QTNGQkVGNzAwHhcNMjQwMzExMDc0NjIzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWVlYjZjZS1lOWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBgPc2LhGHRWCj/Hnvt+SPbixUDPbfCONiqs/nTlYqoCvjcuU6CiE5iewgP/ eYUp5dOyyV8oaooQwKyMGDkPqZNfFPRduTHLxU6gUpBValcLzvNFmuND7PWsgyvz EvK982vNmEU1C5N5SARasP2CAMaaIr5DdYa5cvautuY/ceTdgGyC2hE3e3WgY31J MI8FLZQaK5Q4siFZj9xjpgcn7QYO57to5SULvKJZT2FMv9cPUMJbF3oSQMZdpO6J bpCKpZ8BtaJfEvnTwTfhmMV/uGuSGWuVs+37EyeWKgiA8Tip9dweui1yUHadLqo0 uN0oyM6UumnM9I05aZfjngpwPQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFOaeNf62 803pGjNIl9N3jUV4SQiOMB8GA1UdIwQYMBaAFMuhl8BMqpvSlfV4hHKmoQqj++9w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xREI3OTgzQzI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05S1Y5WGlFY3FhaENxUDc3 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k2R1h3RXlxbTlLVjlYaUVjcWFoQ3FQNzczQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDNDQjMvMURCNzk4M0MyNTlEMTFFNzg1RDMyNTBBQzRGOUFFMDIvOUYwRTk1NzZC OUM0MTFFRTkwM0I3NDE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAAr+AQDBAAr+AcDBABnA4QDBABxCcQwDQYJKoZIhvcNAQEL BQADggEBAB6FgYoR3ycb6Q7KlueFW1denMDbzeA9KCqIceQjWyCqRmVmeppM/zNS 1FLQUhcZ9/Mg7+WbgifSKIZ//y7PsaZmL+T3RJRGckzJxfn0pPxdgiXXF96VNNR2 YKxjpVA24/lVMHJQoOQwzTA6xfyTBZw5ZTiWqv+Uf0Lca+014fdw0Uk/uLV32GHD JUj2TKguW8sxZG6q953XSEmTCoKtQJJorqwsNIBzk0XNG42wK+h5OV0Rt9VyHWfT E5dMvR7WoxYN8DvqYQxQ1sKztWsKUM7dfEJ1Zbk215ENw8mrlWoNzEjFMryXzphh LSRCNbN1uDwORxuS3+XXcDrOHTwLIw4= -----END CERTIFICATE-----Generated at Fri Jun 14 19:09:19 2024 by rpki-client on console-ams.rpki-client.org