$ rpki-client -vvf rpki.apnic.net/member_repository/A9148E62/D6B9796202A211ED91216E19C4F9AE02/6CBBC25602A511ED8277D41AC4F9AE02.roa File: 6CBBC25602A511ED8277D41AC4F9AE02.roa (raw, json) Hash identifier: YVkrNJKJxaiOUkGvgEZkRsxADzp5O0Zfbj/YNPuxxas= Subject key identifier: 4B:1A:9F:F4:79:D3:44:EE:09:C6:B3:26:A6:07:76:3D:4A:73:45:17 Certificate issuer: /CN=A9148E62/serialNumber=C63056041C0F90B92B2B87DBFFA97E3E9DA028D4 Certificate serial: 0141 Authority key identifier: C6:30:56:04:1C:0F:90:B9:2B:2B:87:DB:FF:A9:7E:3E:9D:A0:28:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xjBWBBwPkLkrK4fb_6l-Pp2gKNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148E62/D6B9796202A211ED91216E19C4F9AE02/6CBBC25602A511ED8277D41AC4F9AE02.roa Signing time: Tue 25 Jul 2023 03:24:01 +0000 ROA not before: Tue 25 Jul 2023 03:24:01 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 135602 IP address blocks: 103.234.237.0/24 maxlen: 24 103.234.238.0/24 maxlen: 24 103.234.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148E62/D6B9796202A211ED91216E19C4F9AE02/xjBWBBwPkLkrK4fb_6l-Pp2gKNQ.crl rsync://rpki.apnic.net/member_repository/A9148E62/D6B9796202A211ED91216E19C4F9AE02/xjBWBBwPkLkrK4fb_6l-Pp2gKNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xjBWBBwPkLkrK4fb_6l-Pp2gKNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Jul 2024 03:21:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 321 (0x141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148E62/serialNumber=C63056041C0F90B92B2B87DBFFA97E3E9DA028D4 Validity Not Before: Jul 25 03:24:01 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64bf4051-614c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:02:4b:5e:61:c1:03:84:37:51:ef:e3:46:3c: 14:c2:de:7e:15:39:0b:21:aa:a3:bf:21:21:d6:a0: 57:63:58:1c:5a:f1:15:eb:2d:76:67:d2:0c:5b:91: b4:e9:c3:a5:a8:1d:c1:86:69:18:fc:58:af:b8:d7: 07:2b:2b:e8:58:4a:a9:4b:d3:12:99:5d:04:1e:17: fa:98:1e:e9:41:06:30:1f:62:22:84:a4:b1:09:79: 57:9c:9d:f1:7a:7c:77:5e:a4:61:c8:73:2e:54:36: 5b:a9:1f:ab:2c:e1:42:6d:43:05:de:3c:b7:30:f3: d0:8b:90:5c:b1:d8:42:4a:ad:24:38:d3:36:d7:93: bd:92:74:7b:6d:cb:1a:87:d2:86:7e:e8:88:1a:f4: 26:4d:b2:ba:c9:11:11:28:91:f2:aa:39:d3:19:cf: bd:8c:ca:65:8f:0e:56:77:2f:12:79:07:06:1f:74: e9:c4:03:96:b5:77:54:a8:f9:d4:31:7c:87:96:0a: e7:81:78:08:76:68:20:1c:7d:53:14:cb:64:e0:06: 2f:db:4d:b8:ca:96:e0:80:51:e5:91:c7:36:8a:9b: a7:ea:6b:99:da:1a:30:92:3b:66:97:7a:95:66:0d: 94:8d:0b:38:dc:7e:d9:92:15:a4:88:0f:22:a6:67: c9:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:1A:9F:F4:79:D3:44:EE:09:C6:B3:26:A6:07:76:3D:4A:73:45:17 X509v3 Authority Key Identifier: keyid:C6:30:56:04:1C:0F:90:B9:2B:2B:87:DB:FF:A9:7E:3E:9D:A0:28:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148E62/D6B9796202A211ED91216E19C4F9AE02/xjBWBBwPkLkrK4fb_6l-Pp2gKNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xjBWBBwPkLkrK4fb_6l-Pp2gKNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148E62/D6B9796202A211ED91216E19C4F9AE02/6CBBC25602A511ED8277D41AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.234.237.0-103.234.239.255 Signature Algorithm: sha256WithRSAEncryption 06:2b:3b:42:ea:e5:a4:23:b1:57:49:31:ab:9a:e9:27:2c:02: 94:0a:44:77:df:d2:ac:94:41:f3:78:d0:52:68:41:7d:ec:7e: c7:75:df:62:42:b2:fe:14:e8:dd:e9:9a:f7:16:5e:51:9d:89: 00:e3:64:91:7f:0f:2b:38:7a:31:b8:4a:96:54:0e:a6:95:96: 28:1c:c9:64:05:48:22:3c:f9:a0:34:35:39:8d:6c:cd:f3:b5: c6:ee:89:89:00:a1:a9:a9:43:a5:05:5e:41:04:16:c1:32:e8: 08:d0:fd:af:7f:72:b5:d9:9a:70:d3:2e:c3:8b:30:be:ef:56: 4f:c3:3c:ef:dd:9f:f5:24:b6:e0:7d:1f:ef:db:a9:b5:a5:c7: c2:c8:6a:d3:d7:d1:2f:c7:4d:3c:c1:5c:2a:27:7d:a9:9d:7d: 0a:77:92:eb:63:d7:ca:c5:2f:99:e4:e5:b5:f1:99:6a:c7:a5: 53:ae:fa:30:d3:3d:81:04:20:41:2a:95:e9:08:fd:6e:d5:5d: 66:49:91:ed:15:0e:8c:90:64:d6:1b:88:ec:28:4a:29:c1:6b: dd:6a:a4:50:8d:53:d6:fd:67:5a:2e:95:2a:4e:b6:00:43:ca: 2a:f2:75:42:9b:48:b7:65:ad:36:64:1c:f2:2a:61:a9:cb:0e: 13:11:44:05 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICAUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhFNjIxMTAvBgNVBAUTKEM2MzA1NjA0MUMwRjkwQjkyQjJCODdEQkZGQTk3RTNF OURBMDI4RDQwHhcNMjMwNzI1MDMyNDAxWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGJmNDA1MS02MTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyAJLXmHBA4Q3Ue/jRjwUwt5+FTkLIaqjvyEh1qBXY1gcWvEV6y12Z9IMW5G0 6cOlqB3BhmkY/FivuNcHKyvoWEqpS9MSmV0EHhf6mB7pQQYwH2IihKSxCXlXnJ3x enx3XqRhyHMuVDZbqR+rLOFCbUMF3jy3MPPQi5BcsdhCSq0kONM215O9knR7bcsa h9KGfuiIGvQmTbK6yRERKJHyqjnTGc+9jMpljw5Wdy8SeQcGH3TpxAOWtXdUqPnU MXyHlgrngXgIdmggHH1TFMtk4AYv2024ypbggFHlkcc2ipun6muZ2howkjtml3qV Zg2UjQs43H7ZkhWkiA8ipmfJeQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFEsan/R5 00TuCcazJqYHdj1Kc0UXMB8GA1UdIwQYMBaAFMYwVgQcD5C5KyuH2/+pfj6doCjU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEU2Mi9ENkI5Nzk2MjAy QTIxMUVEOTEyMTZFMTlDNEY5QUUwMi94akJXQkJ3UGtMa3JLNGZiXzZsLVBwMmdL TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hqQldCQndQa0xrcks0ZmJfNmwtUHAyZ0tOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhFNjIvRDZCOTc5NjIwMkEyMTFFRDkxMjE2RTE5QzRGOUFFMDIvNkNCQkMyNTYw MkE1MTFFRDgyNzdENDFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAGfq7QMEBGfq4DANBgkqhkiG9w0BAQsFAAOCAQEABis7 QurlpCOxV0kxq5rpJywClApEd9/SrJRB83jQUmhBfex+x3XfYkKy/hTo3ema9xZe UZ2JAONkkX8PKzh6MbhKllQOppWWKBzJZAVIIjz5oDQ1OY1szfO1xu6JiQChqalD pQVeQQQWwTLoCND9r39ytdmacNMuw4swvu9WT8M8792f9SS24H0f79uptaXHwshq 09fRL8dNPMFcKid9qZ19CneS62PXysUvmeTltfGZaselU676MNM9gQQgQSqV6Qj9 btVdZkmR7RUOjJBk1huI7ChKKcFr3WqkUI1T1v1nWi6VKk62AEPKKvJ1QptIt2Wt NmQc8iphqcsOExFEBQ== -----END CERTIFICATE-----Generated at Sat Jun 29 06:49:15 2024 by rpki-client on console-fra.rpki-client.org