$ rpki-client -vvf rpki.apnic.net/member_repository/A9146B71/F5407D1CCAB811EC87893C56C4F9AE02/8719518C26AD11EDA881874BC4F9AE02.roa File: 8719518C26AD11EDA881874BC4F9AE02.roa (raw, json) Hash identifier: KKyWmXe2YCJmonEpi+LRlbRY47Oe+frZ0gDIA6/MoNY= Subject key identifier: AC:19:0E:61:47:CB:EE:F0:26:40:F0:98:A6:57:A7:B8:5F:2A:99:68 Certificate issuer: /CN=A9146B71/serialNumber=4639D290986F4F0054FDC059014441621D3ABBFF Certificate serial: 0277 Authority key identifier: 46:39:D2:90:98:6F:4F:00:54:FD:C0:59:01:44:41:62:1D:3A:BB:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RjnSkJhvTwBU_cBZAURBYh06u_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146B71/F5407D1CCAB811EC87893C56C4F9AE02/8719518C26AD11EDA881874BC4F9AE02.roa Signing time: Fri 31 May 2024 05:00:34 +0000 ROA not before: Fri 31 May 2024 05:00:33 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 149810 IP address blocks: 103.186.240.0/23 maxlen: 23 103.186.240.0/24 maxlen: 24 103.186.241.0/24 maxlen: 24 2400:7620::/32 maxlen: 32 2400:7620::/35 maxlen: 35 2400:7620:2000::/35 maxlen: 35 2400:7620:4000::/35 maxlen: 35 2400:7620:6000::/35 maxlen: 35 2400:7620:8000::/35 maxlen: 35 2400:7620:a000::/35 maxlen: 35 2400:7620:c000::/35 maxlen: 35 2400:7620:e000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146B71/F5407D1CCAB811EC87893C56C4F9AE02/RjnSkJhvTwBU_cBZAURBYh06u_8.crl rsync://rpki.apnic.net/member_repository/A9146B71/F5407D1CCAB811EC87893C56C4F9AE02/RjnSkJhvTwBU_cBZAURBYh06u_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RjnSkJhvTwBU_cBZAURBYh06u_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 00:59:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 631 (0x277) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146B71/serialNumber=4639D290986F4F0054FDC059014441621D3ABBFF Validity Not Before: May 31 05:00:33 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66595971-d3cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9e:0c:7b:bf:f5:f5:73:7a:29:a5:d1:e1:d1: b3:bf:e9:a9:59:e3:d8:79:9b:c5:66:6a:77:b5:4b: c8:45:e1:15:31:5a:0d:38:e0:49:be:3a:68:3a:48: bd:48:8f:dc:e9:81:91:a3:81:a5:15:58:6c:ea:27: 08:a9:b1:fd:c7:92:85:56:73:5b:7e:dc:7e:df:4b: 43:30:54:d3:84:f3:84:47:5f:06:c2:cb:50:b1:65: 75:46:0e:f1:87:8a:2b:c2:9a:7f:37:d1:a8:88:02: 42:a1:09:9e:14:22:88:71:26:54:2f:5e:85:ed:0d: 20:cc:d9:5f:e4:08:19:a6:7e:f2:db:c5:2e:b3:af: ae:b1:15:f6:55:0c:43:48:86:c3:f2:5f:43:72:f5: c7:06:dd:5c:d7:40:93:29:6d:bd:d9:4b:fc:a1:89: c0:83:fb:22:d7:7a:fd:c2:c0:19:71:2c:d5:7c:25: 1f:d0:60:4e:11:c2:36:95:83:6a:a4:ec:fc:57:ec: 60:e8:c0:b3:56:1e:7b:31:3b:85:a7:5c:ed:13:b2: 5f:4a:a2:6d:63:9a:8c:6f:86:2b:dc:91:ea:76:b5: 6b:58:ed:da:c9:ca:18:f0:7d:29:f4:d4:85:fc:74: 3b:0d:8c:d6:0a:02:46:7e:08:d5:fc:09:d4:0c:47: 58:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:19:0E:61:47:CB:EE:F0:26:40:F0:98:A6:57:A7:B8:5F:2A:99:68 X509v3 Authority Key Identifier: keyid:46:39:D2:90:98:6F:4F:00:54:FD:C0:59:01:44:41:62:1D:3A:BB:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146B71/F5407D1CCAB811EC87893C56C4F9AE02/RjnSkJhvTwBU_cBZAURBYh06u_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RjnSkJhvTwBU_cBZAURBYh06u_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146B71/F5407D1CCAB811EC87893C56C4F9AE02/8719518C26AD11EDA881874BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.240.0/23 IPv6: 2400:7620::/32 Signature Algorithm: sha256WithRSAEncryption 7e:47:ae:4f:05:22:54:35:ce:16:b4:d1:d7:4d:05:92:d1:d9: 36:e8:ee:6e:7a:75:2f:14:47:4d:1c:c7:27:b2:b1:59:e6:7c: 9a:a1:ee:8d:77:a5:a9:f7:4b:3d:65:4c:74:7d:ee:25:f7:97: 1f:38:8d:85:8d:d8:3e:d7:64:f2:97:8f:43:40:bb:21:f6:85: 97:bd:c4:36:50:45:5b:95:cc:48:2e:ba:1b:27:45:79:8e:d0: 26:b2:a8:9c:17:c3:9d:15:db:25:42:a5:8f:9e:56:8a:d7:a2: a8:c2:d6:3a:c6:37:ab:9f:59:fe:87:a5:bb:b0:a3:37:63:e0: 05:01:09:c7:81:7f:9b:a0:6a:04:10:98:08:a6:c2:f7:93:69: 43:3c:c2:ce:96:c4:17:16:15:1a:bc:2d:7d:d5:83:5b:a5:b9: 2d:57:b2:f7:6e:e4:8f:e0:26:7e:62:1b:53:20:23:04:2e:60: ba:48:fe:08:07:de:91:b7:d0:55:16:2b:09:1e:af:bf:c7:00: 58:01:a3:d4:74:59:92:12:6c:52:8a:8b:6c:8f:25:56:68:8d: 6a:3f:9a:d5:4d:b6:ea:66:c7:4b:a9:f4:3f:3e:15:4a:b1:ca: c4:07:14:7e:6e:58:49:db:ad:ff:4f:7b:e7:6b:c5:32:de:c8: fe:0a:dd:1a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZCNzExMTAvBgNVBAUTKDQ2MzlEMjkwOTg2RjRGMDA1NEZEQzA1OTAxNDQ0MTYy MUQzQUJCRkYwHhcNMjQwNTMxMDUwMDMzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU5NTk3MS1kM2NkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtp4Me7/19XN6KaXR4dGzv+mpWePYeZvFZmp3tUvIReEVMVoNOOBJvjpoOki9 SI/c6YGRo4GlFVhs6icIqbH9x5KFVnNbftx+30tDMFTThPOER18GwstQsWV1Rg7x h4orwpp/N9GoiAJCoQmeFCKIcSZUL16F7Q0gzNlf5AgZpn7y28Uus6+usRX2VQxD SIbD8l9DcvXHBt1c10CTKW292Uv8oYnAg/si13r9wsAZcSzVfCUf0GBOEcI2lYNq pOz8V+xg6MCzVh57MTuFp1ztE7JfSqJtY5qMb4Yr3JHqdrVrWO3aycoY8H0p9NSF /HQ7DYzWCgJGfgjV/AnUDEdY5QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKwZDmFH y+7wJkDwmKZXp7hfKploMB8GA1UdIwQYMBaAFEY50pCYb08AVP3AWQFEQWIdOrv/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkI3MS9GNTQwN0QxQ0NB QjgxMUVDODc4OTNDNTZDNEY5QUUwMi9Sam5Ta0podlR3QlVfY0JaQVVSQlloMDZ1 XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JqblNrSmh2VHdCVV9jQlpBVVJCWWgwNnVfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZCNzEvRjU0MDdEMUNDQUI4MTFFQzg3ODkzQzU2QzRGOUFFMDIvODcxOTUxOEMy NkFEMTFFREE4ODE4NzRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnuvAwDQQCAAIwBwMFACQAdiAwDQYJKoZIhvcNAQELBQAD ggEBAH5Hrk8FIlQ1zha00ddNBZLR2Tbo7m56dS8UR00cxyeysVnmfJqh7o13pan3 Sz1lTHR97iX3lx84jYWN2D7XZPKXj0NAuyH2hZe9xDZQRVuVzEguuhsnRXmO0Cay qJwXw50V2yVCpY+eVorXoqjC1jrGN6ufWf6Hpbuwozdj4AUBCceBf5ugagQQmAim wveTaUM8ws6WxBcWFRq8LX3Vg1uluS1Xsvdu5I/gJn5iG1MgIwQuYLpI/ggH3pG3 0FUWKwker7/HAFgBo9R0WZISbFKKi2yPJVZojWo/mtVNtupmx0up9D8+FUqxysQH FH5uWEnbrf9Pe+drxTLeyP4K3Ro= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:38 2024 by rpki-client on console-ams.rpki-client.org