$ rpki-client -vvf rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/E938CA160B8311EABDDD354EC4F9AE02.roa File: E938CA160B8311EABDDD354EC4F9AE02.roa (raw, json) Hash identifier: p9dbIcqnoAuCJhNNaUEynVsoUs5YC13EgZnj2lLl7ls= Subject key identifier: AE:88:AE:59:A8:3A:01:05:DE:7C:E8:F8:B5:8F:37:3E:3E:5B:39:D8 Certificate issuer: /CN=A9158840/serialNumber=FAE6201C666392340BEE138ED41799BA86DAA688 Certificate serial: 0AED Authority key identifier: FA:E6:20:1C:66:63:92:34:0B:EE:13:8E:D4:17:99:BA:86:DA:A6:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-uYgHGZjkjQL7hOO1BeZuobapog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/E938CA160B8311EABDDD354EC4F9AE02.roa Signing time: Mon 02 Oct 2023 19:17:06 +0000 ROA not before: Mon 02 Oct 2023 19:17:06 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 138146 IP address blocks: 103.121.60.0/24 maxlen: 24 103.121.61.0/24 maxlen: 24 103.121.62.0/24 maxlen: 24 103.121.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/-uYgHGZjkjQL7hOO1BeZuobapog.crl rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/-uYgHGZjkjQL7hOO1BeZuobapog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-uYgHGZjkjQL7hOO1BeZuobapog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 19:51:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2797 (0xaed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158840/serialNumber=FAE6201C666392340BEE138ED41799BA86DAA688 Validity Not Before: Oct 2 19:17:06 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651b1732-b74b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:82:eb:00:19:d9:5d:27:51:a6:d7:e1:67:8d: f9:16:75:29:b0:e5:79:ff:b5:ee:a5:ce:4f:be:7e: 18:97:fe:d4:ab:fd:3d:a5:53:20:69:f6:85:bf:f1: da:82:5e:92:f7:81:fd:d4:d8:20:35:bd:23:97:b2: 88:d4:51:51:63:d1:aa:98:0f:e7:33:7e:6e:0f:ba: 33:aa:71:4e:61:3a:73:63:ec:ae:c5:39:73:79:0c: ae:63:76:6b:0f:41:86:bf:1a:83:8c:3c:73:d6:95: 57:7c:15:73:6d:92:b6:99:ff:cc:8f:13:0e:1f:7a: 29:e7:00:b4:83:58:9f:17:b6:b6:81:a3:28:b1:eb: a9:85:34:6a:87:d6:ab:31:64:26:09:57:a4:13:f8: f0:98:d0:04:d9:75:31:8d:9d:cb:d6:db:61:7c:a2: 3c:1d:3b:0d:6a:db:14:b8:a9:56:3d:02:16:9a:1f: 78:53:84:90:14:78:c3:24:31:68:bb:26:e6:3b:45: ca:26:5b:f0:05:bb:b8:c9:59:87:56:a3:94:34:ee: e6:a1:75:09:2b:fd:33:61:fd:57:bb:b2:fa:11:e2: c7:e0:a5:52:c2:c4:5e:98:0f:68:19:ef:fc:a6:1a: 1a:50:f9:89:c9:ee:02:03:25:e3:04:c0:b9:0d:5f: e0:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:88:AE:59:A8:3A:01:05:DE:7C:E8:F8:B5:8F:37:3E:3E:5B:39:D8 X509v3 Authority Key Identifier: keyid:FA:E6:20:1C:66:63:92:34:0B:EE:13:8E:D4:17:99:BA:86:DA:A6:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/-uYgHGZjkjQL7hOO1BeZuobapog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-uYgHGZjkjQL7hOO1BeZuobapog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/E938CA160B8311EABDDD354EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.60.0/22 Signature Algorithm: sha256WithRSAEncryption a2:07:af:dc:b0:07:2f:e6:35:64:6d:d7:f9:90:f3:60:17:99: 37:78:39:f7:ad:bf:6c:5b:31:ce:d1:57:02:a8:4b:d4:1c:b2: 38:3f:81:ad:c5:fe:a6:b1:73:29:5a:14:11:c2:39:0c:49:1f: 3e:50:ea:d2:1a:44:8b:62:20:b1:10:45:c2:19:f0:f4:bf:ac: c9:e3:63:b2:e8:a9:35:05:f0:14:84:19:22:fa:ea:54:42:28: 1a:e2:7d:0a:a3:e4:ab:12:4d:3e:3b:46:54:cb:d0:73:61:b6: 8c:c4:0e:ee:43:21:da:c8:79:01:b4:b9:9c:75:66:8a:3d:d3: 9e:90:bb:e7:bd:18:05:02:59:c6:5b:9e:c7:51:74:0a:3a:92: c6:a7:e1:35:c2:55:e5:4f:12:79:28:31:4c:b9:2a:96:c1:07: 54:6c:9b:63:c4:b2:d0:ef:9b:b4:33:f1:cd:d5:10:6a:aa:c0: 3a:38:4a:2f:f9:76:60:cc:34:1b:28:26:b9:d8:9a:ce:71:50: ed:52:e2:46:fa:9f:a9:51:15:3d:d9:fc:f7:32:5c:c3:b7:74: 76:ca:32:30:7e:1b:54:f5:0a:c8:83:a6:f0:c6:94:4d:51:79: f6:9c:88:8d:6c:ad:59:a1:62:97:0c:c9:0a:74:61:65:57:6a: 74:15:61:96 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCu0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg4NDAxMTAvBgNVBAUTKEZBRTYyMDFDNjY2MzkyMzQwQkVFMTM4RUQ0MTc5OUJB ODZEQUE2ODgwHhcNMjMxMDAyMTkxNzA2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFiMTczMi1iNzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA94LrABnZXSdRptfhZ435FnUpsOV5/7Xupc5Pvn4Yl/7Uq/09pVMgafaFv/Ha gl6S94H91NggNb0jl7KI1FFRY9GqmA/nM35uD7ozqnFOYTpzY+yuxTlzeQyuY3Zr D0GGvxqDjDxz1pVXfBVzbZK2mf/MjxMOH3op5wC0g1ifF7a2gaMoseuphTRqh9ar MWQmCVekE/jwmNAE2XUxjZ3L1tthfKI8HTsNatsUuKlWPQIWmh94U4SQFHjDJDFo uybmO0XKJlvwBbu4yVmHVqOUNO7moXUJK/0zYf1Xu7L6EeLH4KVSwsRemA9oGe/8 phoaUPmJye4CAyXjBMC5DV/gAwIDAQABo4IClTCCApEwHQYDVR0OBBYEFK6Irlmo OgEF3nzo+LWPNz4+WznYMB8GA1UdIwQYMBaAFPrmIBxmY5I0C+4TjtQXmbqG2qaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODg0MC82MTc3MzMyQTBC ODIxMUVBODA0MTE1NEJDNEY5QUUwMi8tdVlnSEdaamtqUUw3aE9PMUJlWnVvYmFw b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy11WWdIR1pqa2pRTDdoT08xQmVadW9iYXBvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTg4NDAvNjE3NzMzMkEwQjgyMTFFQTgwNDExNTRCQzRGOUFFMDIvRTkzOENBMTYw QjgzMTFFQUJEREQzNTRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJneTwwDQYJKoZIhvcNAQELBQADggEBAKIHr9ywBy/mNWRt 1/mQ82AXmTd4Ofetv2xbMc7RVwKoS9Qcsjg/ga3F/qaxcylaFBHCOQxJHz5Q6tIa RItiILEQRcIZ8PS/rMnjY7LoqTUF8BSEGSL66lRCKBrifQqj5KsSTT47RlTL0HNh tozEDu5DIdrIeQG0uZx1Zoo9056Qu+e9GAUCWcZbnsdRdAo6ksan4TXCVeVPEnko MUy5KpbBB1Rsm2PEstDvm7Qz8c3VEGqqwDo4Si/5dmDMNBsoJrnYms5xUO1S4kb6 n6lRFT3Z/PcyXMO3dHbKMjB+G1T1CsiDpvDGlE1RefaciI1srVmhYpcMyQp0YWVX anQVYZY= -----END CERTIFICATE-----Generated at Sun Jun 2 20:59:16 2024 by rpki-client on console-fra.rpki-client.org