$ rpki-client -vvf rpki.apnic.net/member_repository/A9148E62/D6B9796202A211ED91216E19C4F9AE02/6DFDBF0C02A511ED8277D41AC4F9AE02.roa File: 6DFDBF0C02A511ED8277D41AC4F9AE02.roa (raw, json) Hash identifier: 5w9g8PvSMKwlKnWjZ6ZpkKo36qxKq//ptQ/Rj3z+2Do= Subject key identifier: 99:65:13:AF:EE:1B:8E:A6:0B:66:A3:9A:27:16:26:70:47:7C:FE:56 Certificate issuer: /CN=A9148E62/serialNumber=C63056041C0F90B92B2B87DBFFA97E3E9DA028D4 Certificate serial: 0143 Authority key identifier: C6:30:56:04:1C:0F:90:B9:2B:2B:87:DB:FF:A9:7E:3E:9D:A0:28:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xjBWBBwPkLkrK4fb_6l-Pp2gKNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148E62/D6B9796202A211ED91216E19C4F9AE02/6DFDBF0C02A511ED8277D41AC4F9AE02.roa Signing time: Tue 25 Jul 2023 03:24:03 +0000 ROA not before: Tue 25 Jul 2023 03:24:03 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 59379 IP address blocks: 103.234.236.0/24 maxlen: 24 103.234.237.0/24 maxlen: 24 103.234.238.0/24 maxlen: 24 103.234.239.0/24 maxlen: 24 2001:df6:e800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148E62/D6B9796202A211ED91216E19C4F9AE02/xjBWBBwPkLkrK4fb_6l-Pp2gKNQ.crl rsync://rpki.apnic.net/member_repository/A9148E62/D6B9796202A211ED91216E19C4F9AE02/xjBWBBwPkLkrK4fb_6l-Pp2gKNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xjBWBBwPkLkrK4fb_6l-Pp2gKNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:34:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148E62/serialNumber=C63056041C0F90B92B2B87DBFFA97E3E9DA028D4 Validity Not Before: Jul 25 03:24:03 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64bf4053-762f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ab:89:6e:78:36:7a:58:6d:4e:94:ec:b4:64: 11:dc:31:11:ca:d5:c9:f9:fc:7b:1c:62:70:52:bc: 10:98:36:f3:a7:79:28:f9:38:bc:36:2b:65:a9:24: 24:1a:64:79:70:b0:3a:19:1a:f8:19:dc:34:d6:a9: 4e:f5:d1:34:0f:39:6c:86:ed:c9:d8:5a:1a:81:e7: 9d:c8:34:0b:9f:bc:4e:3d:5b:50:fe:07:a4:17:c2: 58:cb:e5:10:20:7d:b8:e3:56:e3:e7:b7:28:4f:15: 7a:6a:10:f5:f7:c7:e5:57:5d:71:f3:f9:11:c9:d8: 12:e0:bb:7e:13:11:7b:05:f2:6b:44:ed:e6:3b:49: 6c:5c:25:a8:2b:89:da:b4:73:b5:cb:bf:21:1d:69: da:85:f2:cd:f1:40:50:b3:ca:10:77:46:76:ac:c6: c5:89:4c:30:bf:fb:61:0f:e2:35:36:94:ae:9d:7a: 77:2f:9f:5f:0d:63:81:ff:8e:c1:63:b5:c2:43:55: a7:b7:ae:82:af:f5:8a:8a:ce:8c:8d:cf:93:55:71: c7:6e:19:75:0a:35:9b:7e:3a:13:7c:2e:a9:07:b9: b1:65:61:eb:15:ea:ab:8d:c0:9e:2f:36:a0:72:6a: 13:77:97:a0:f4:e2:89:be:c1:80:fd:af:27:bc:84: 8c:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:65:13:AF:EE:1B:8E:A6:0B:66:A3:9A:27:16:26:70:47:7C:FE:56 X509v3 Authority Key Identifier: keyid:C6:30:56:04:1C:0F:90:B9:2B:2B:87:DB:FF:A9:7E:3E:9D:A0:28:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148E62/D6B9796202A211ED91216E19C4F9AE02/xjBWBBwPkLkrK4fb_6l-Pp2gKNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xjBWBBwPkLkrK4fb_6l-Pp2gKNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148E62/D6B9796202A211ED91216E19C4F9AE02/6DFDBF0C02A511ED8277D41AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.234.236.0/22 IPv6: 2001:df6:e800::/48 Signature Algorithm: sha256WithRSAEncryption 01:04:11:88:98:db:e6:b7:c6:f1:90:27:f0:a3:00:5f:da:d0: 7d:21:a1:08:62:5a:79:89:da:92:3e:d5:fe:90:af:55:34:43: 81:e5:f2:65:b4:d4:59:0d:7f:08:0a:64:82:5f:38:db:cf:98: 0a:51:81:aa:44:86:65:08:41:02:10:7e:66:87:1c:cb:e1:17: f8:f8:36:c9:d0:6e:28:54:7d:39:ac:7a:93:51:d9:45:82:07: cd:9d:ce:ef:85:35:46:5e:bd:9b:c8:33:86:6d:57:5e:dc:37: c9:11:20:5e:81:28:0e:61:6e:c7:bd:05:72:71:c5:2e:6a:f6: 72:1b:fb:e4:13:8b:71:f0:65:99:b3:08:06:05:7d:c3:b3:65: fe:5e:2a:84:cd:d9:cf:0f:28:e7:1b:22:fc:0a:75:7a:5b:fa: 91:c8:93:e3:5d:a1:dd:fa:a7:cd:1c:b0:92:84:d7:02:09:2b: 2a:d6:59:de:ec:e0:9e:9a:0c:89:c6:4a:0a:e1:19:85:56:59: f4:ac:a0:2a:9d:ea:95:d6:2d:75:91:0c:b6:69:63:32:d1:05: 60:79:a1:5c:ac:ef:f6:90:1f:53:17:5f:8f:84:83:38:87:0e: 71:6f:ee:8b:e3:09:2f:9d:32:df:48:3c:f6:87:12:1a:fb:fb: 54:92:9e:bf -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhFNjIxMTAvBgNVBAUTKEM2MzA1NjA0MUMwRjkwQjkyQjJCODdEQkZGQTk3RTNF OURBMDI4RDQwHhcNMjMwNzI1MDMyNDAzWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGJmNDA1My03NjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr6uJbng2elhtTpTstGQR3DERytXJ+fx7HGJwUrwQmDbzp3ko+Ti8NitlqSQk GmR5cLA6GRr4Gdw01qlO9dE0Dzlshu3J2FoageedyDQLn7xOPVtQ/gekF8JYy+UQ IH2441bj57coTxV6ahD198flV11x8/kRydgS4Lt+ExF7BfJrRO3mO0lsXCWoK4na tHO1y78hHWnahfLN8UBQs8oQd0Z2rMbFiUwwv/thD+I1NpSunXp3L59fDWOB/47B Y7XCQ1Wnt66Cr/WKis6Mjc+TVXHHbhl1CjWbfjoTfC6pB7mxZWHrFeqrjcCeLzag cmoTd5eg9OKJvsGA/a8nvISMyQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJllE6/u G46mC2ajmicWJnBHfP5WMB8GA1UdIwQYMBaAFMYwVgQcD5C5KyuH2/+pfj6doCjU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEU2Mi9ENkI5Nzk2MjAy QTIxMUVEOTEyMTZFMTlDNEY5QUUwMi94akJXQkJ3UGtMa3JLNGZiXzZsLVBwMmdL TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hqQldCQndQa0xrcks0ZmJfNmwtUHAyZ0tOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhFNjIvRDZCOTc5NjIwMkEyMTFFRDkxMjE2RTE5QzRGOUFFMDIvNkRGREJGMEMw MkE1MTFFRDgyNzdENDFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJn6uwwDwQCAAIwCQMHACABDfboADANBgkqhkiG9w0BAQsF AAOCAQEAAQQRiJjb5rfG8ZAn8KMAX9rQfSGhCGJaeYnakj7V/pCvVTRDgeXyZbTU WQ1/CApkgl8428+YClGBqkSGZQhBAhB+Zoccy+EX+Pg2ydBuKFR9Oax6k1HZRYIH zZ3O74U1Rl69m8gzhm1XXtw3yREgXoEoDmFux70FcnHFLmr2chv75BOLcfBlmbMI BgV9w7Nl/l4qhM3Zzw8o5xsi/Ap1elv6kciT412h3fqnzRywkoTXAgkrKtZZ3uzg npoMicZKCuEZhVZZ9KygKp3qldYtdZEMtmljMtEFYHmhXKzv9pAfUxdfj4SDOIcO cW/ui+MJL50y30g89ocSGvv7VJKevw== -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:15 2024 by rpki-client on console-ams.rpki-client.org