$ rpki-client -vvf rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/6385C93829BF11EEBB384B81C4F9AE02.roa File: 6385C93829BF11EEBB384B81C4F9AE02.roa (raw, json) Hash identifier: gNYg6QaGZDrioD/TLFdocc9CoWzgGh+5es7wx6Ke2Ik= Subject key identifier: A3:3C:3C:43:48:3F:37:50:CD:4A:C9:A2:15:F9:55:BF:0F:8C:31:40 Certificate issuer: /CN=A9160EEF/serialNumber=958A4ED9D7D64FAC87BD16EC8A36571E1A2F508A Certificate serial: 0B7C Authority key identifier: 95:8A:4E:D9:D7:D6:4F:AC:87:BD:16:EC:8A:36:57:1E:1A:2F:50:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lYpO2dfWT6yHvRbsijZXHhovUIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/6385C93829BF11EEBB384B81C4F9AE02.roa Signing time: Sat 28 Oct 2023 13:16:46 +0000 ROA not before: Sat 28 Oct 2023 13:16:46 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 138398 IP address blocks: 103.139.78.0/24 maxlen: 24 103.139.79.0/24 maxlen: 24 2404:ddc0:6000::/36 maxlen: 36 2404:ddc0:aa00::/40 maxlen: 40 2404:ddc0:af00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/lYpO2dfWT6yHvRbsijZXHhovUIo.crl rsync://rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/lYpO2dfWT6yHvRbsijZXHhovUIo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lYpO2dfWT6yHvRbsijZXHhovUIo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 19:41:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2940 (0xb7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160EEF/serialNumber=958A4ED9D7D64FAC87BD16EC8A36571E1A2F508A Validity Not Before: Oct 28 13:16:46 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=653d09be-edeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:c6:3b:8a:b6:03:77:32:35:97:ea:70:28:64: 1c:12:80:a7:fe:b1:a7:80:60:16:c6:e3:aa:05:2c: 4a:72:4f:34:6e:7e:82:ef:78:d5:d6:64:cd:58:a6: 0b:28:92:f2:4a:1d:3b:39:01:14:dd:b1:99:6a:e7: 3e:ba:14:03:7d:23:94:16:f5:87:38:30:7c:cf:e2: 40:c5:0b:60:da:e3:91:c1:16:04:bd:43:9d:96:54: 61:39:34:8f:10:12:66:9d:34:d4:88:3d:7c:99:a3: 09:8e:12:bc:a6:39:86:97:34:a5:b9:e5:fa:0b:be: 95:18:82:33:d9:ad:f6:14:aa:71:8e:07:9c:c6:30: a9:df:5b:d8:bd:b7:33:85:b4:d0:79:f7:3b:44:79: 93:7f:a5:13:c4:62:91:47:da:58:2a:de:d1:07:93: 90:3c:97:c5:97:e4:2e:02:ec:21:71:57:9b:64:59: 3b:47:07:f3:ad:79:c5:13:dd:44:30:c1:78:97:f1: f9:68:a3:94:92:b5:77:30:34:f1:e3:16:e2:5d:99: 6d:e5:47:7b:1e:80:20:5a:c9:05:08:63:5f:50:86: 6e:2a:d4:5b:c0:f8:4e:56:06:48:9f:da:1a:8c:c4: cc:d1:b7:75:ec:45:c0:75:2f:83:46:70:71:a7:d6: 7a:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:3C:3C:43:48:3F:37:50:CD:4A:C9:A2:15:F9:55:BF:0F:8C:31:40 X509v3 Authority Key Identifier: keyid:95:8A:4E:D9:D7:D6:4F:AC:87:BD:16:EC:8A:36:57:1E:1A:2F:50:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/lYpO2dfWT6yHvRbsijZXHhovUIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lYpO2dfWT6yHvRbsijZXHhovUIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/6385C93829BF11EEBB384B81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.78.0/23 IPv6: 2404:ddc0:6000::/36 2404:ddc0:aa00::/40 2404:ddc0:af00::/40 Signature Algorithm: sha256WithRSAEncryption c6:18:7c:69:e2:9c:82:c8:30:99:33:e1:c9:35:09:c1:c6:1e: 0d:0b:8d:e1:4b:38:2d:e3:93:5f:f6:c3:6f:e3:9e:ea:f6:10: c5:45:d8:67:24:18:5c:df:cb:dd:fc:a5:62:04:88:83:ea:ea: ee:19:e7:22:8d:cc:b1:b4:32:78:bb:63:7d:c1:27:82:70:2f: 72:e2:54:f8:a4:b2:26:f3:e2:42:80:16:d4:9d:f9:51:e6:59: 06:8c:fb:38:b2:40:6f:26:42:f0:ac:dc:57:80:67:a3:b8:d3: 23:4f:ab:2f:9a:90:22:74:76:6e:0f:67:7d:72:13:23:77:3a: 4d:f8:a3:06:9b:8c:97:2e:b3:7f:62:61:73:ee:59:f5:36:e5: 72:56:ec:c3:ba:08:cc:a0:96:14:9e:00:ba:e6:ff:f1:52:f7: 40:b0:cb:56:69:12:ae:5f:93:32:c4:db:13:a4:06:c6:1a:60: 21:11:5a:0e:b0:ad:b7:51:81:f3:09:d9:6b:e3:ad:ea:41:5d: e5:28:e5:4e:f6:57:d2:7c:29:91:4e:c4:9c:7c:a7:d7:bc:12: f8:24:32:06:86:cf:53:b3:6c:ff:16:eb:b9:70:42:cb:82:fd: 73:72:81:52:25:ee:12:fe:2b:c8:d0:8f:5d:f3:56:fd:c2:ec: 04:29:45:9a -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICC3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBFRUYxMTAvBgNVBAUTKDk1OEE0RUQ5RDdENjRGQUM4N0JEMTZFQzhBMzY1NzFF MUEyRjUwOEEwHhcNMjMxMDI4MTMxNjQ2WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTNkMDliZS1lZGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA28Y7irYDdzI1l+pwKGQcEoCn/rGngGAWxuOqBSxKck80bn6C73jV1mTNWKYL KJLySh07OQEU3bGZauc+uhQDfSOUFvWHODB8z+JAxQtg2uORwRYEvUOdllRhOTSP EBJmnTTUiD18maMJjhK8pjmGlzSlueX6C76VGIIz2a32FKpxjgecxjCp31vYvbcz hbTQefc7RHmTf6UTxGKRR9pYKt7RB5OQPJfFl+QuAuwhcVebZFk7RwfzrXnFE91E MMF4l/H5aKOUkrV3MDTx4xbiXZlt5Ud7HoAgWskFCGNfUIZuKtRbwPhOVgZIn9oa jMTM0bd17EXAdS+DRnBxp9Z6dwIDAQABo4ICtTCCArEwHQYDVR0OBBYEFKM8PENI PzdQzUrJohX5Vb8PjDFAMB8GA1UdIwQYMBaAFJWKTtnX1k+sh70W7Io2Vx4aL1CK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEVFRi82QzRDRDY5MEY4 ODgxMUU5OEZBMDBBN0NDNEY5QUUwMi9sWXBPMmRmV1Q2eUh2UmJzaWpaWEhob3ZV SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xZcE8yZGZXVDZ5SHZSYnNpalpYSGhvdlVJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjBFRUYvNkM0Q0Q2OTBGODg4MTFFOThGQTAwQTdDQzRGOUFFMDIvNjM4NUM5Mzgy OUJGMTFFRUJCMzg0QjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMAwEAgABMAYDBAFni04wHgQCAAIwGAMGBCQE3cBgAwYAJATdwKoDBgAkBN3A rzANBgkqhkiG9w0BAQsFAAOCAQEAxhh8aeKcgsgwmTPhyTUJwcYeDQuN4Us4LeOT X/bDb+Oe6vYQxUXYZyQYXN/L3fylYgSIg+rq7hnnIo3MsbQyeLtjfcEngnAvcuJU +KSyJvPiQoAW1J35UeZZBoz7OLJAbyZC8KzcV4Bno7jTI0+rL5qQInR2bg9nfXIT I3c6TfijBpuMly6zf2Jhc+5Z9Tblclbsw7oIzKCWFJ4Auub/8VL3QLDLVmkSrl+T MsTbE6QGxhpgIRFaDrCtt1GB8wnZa+Ot6kFd5SjlTvZX0nwpkU7EnHyn17wS+CQy BobPU7Ns/xbruXBCy4L9c3KBUiXuEv4ryNCPXfNW/cLsBClFmg== -----END CERTIFICATE-----Generated at Fri May 31 20:34:04 2024 by rpki-client on console-ams.rpki-client.org