$ rpki-client -vvf rpki.apnic.net/member_repository/A9168E98/0EB12B40ECC911EAB825626EC4F9AE02/789C2BD0ECCA11EAAE025C70C4F9AE02.roa File: 789C2BD0ECCA11EAAE025C70C4F9AE02.roa (raw, json) Hash identifier: RDVcGn+HZT7Xsj+oRdySXuRxFZbRgCXt6lISI6oorkI= Subject key identifier: 3A:23:E6:F8:C2:D1:07:8E:02:4B:C3:00:75:85:85:9A:70:D6:95:C7 Certificate issuer: /CN=A9168E98/serialNumber=C98592E1CD0B2E7610C84B02E661CBF336FFAF5D Certificate serial: 069A Authority key identifier: C9:85:92:E1:CD:0B:2E:76:10:C8:4B:02:E6:61:CB:F3:36:FF:AF:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yYWS4c0LLnYQyEsC5mHL8zb_r10.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168E98/0EB12B40ECC911EAB825626EC4F9AE02/789C2BD0ECCA11EAAE025C70C4F9AE02.roa Signing time: Sat 02 Sep 2023 21:48:22 +0000 ROA not before: Sat 02 Sep 2023 21:48:22 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 139288 IP address blocks: 103.140.215.0/24 maxlen: 24 2001:df0:d780::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168E98/0EB12B40ECC911EAB825626EC4F9AE02/yYWS4c0LLnYQyEsC5mHL8zb_r10.crl rsync://rpki.apnic.net/member_repository/A9168E98/0EB12B40ECC911EAB825626EC4F9AE02/yYWS4c0LLnYQyEsC5mHL8zb_r10.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yYWS4c0LLnYQyEsC5mHL8zb_r10.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 22:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1690 (0x69a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168E98/serialNumber=C98592E1CD0B2E7610C84B02E661CBF336FFAF5D Validity Not Before: Sep 2 21:48:22 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f3ada6-cd8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:20:fe:22:26:88:d8:9d:75:fd:21:92:ef:79: b2:08:ae:bf:34:ab:ae:29:48:ee:71:39:e0:56:42: 14:a0:0d:ba:0c:c3:3c:c9:4b:63:c7:a8:07:77:52: 1b:cb:37:c8:e4:48:8c:f3:d2:3e:6c:c7:4d:64:39: 61:f5:f8:9e:ce:39:8f:5a:7e:fd:cd:f3:ed:51:6b: 76:37:18:c2:8f:fb:c3:13:dd:d1:8e:84:c5:a1:60: 32:2e:a4:59:b6:b0:a4:20:50:be:9a:b4:24:d6:ff: 86:22:ee:55:23:a3:fd:ba:c4:08:10:9d:94:31:1b: d4:b5:0f:dc:39:0d:aa:04:b8:e9:b9:ee:52:4d:32: d3:11:c2:9d:f1:46:ac:53:2c:0d:51:ab:25:91:e3: 2d:61:b8:81:d1:d7:fe:70:aa:c4:db:6a:7d:0d:ad: de:3f:c2:6e:10:3a:b3:e8:72:34:d9:fe:dd:5d:9f: 88:2f:e9:23:01:3e:d1:9b:b2:94:ac:41:a7:cf:2b: 24:02:ff:42:eb:fc:ba:2c:55:af:4c:d2:b8:2c:7a: 1b:33:3e:a4:d2:2a:45:29:a7:14:0c:02:31:6a:99: d4:90:77:92:c8:04:a3:97:00:06:e1:aa:72:b6:76: 40:4e:9f:28:65:84:04:7f:c3:ca:0b:75:f1:db:f5: c2:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:23:E6:F8:C2:D1:07:8E:02:4B:C3:00:75:85:85:9A:70:D6:95:C7 X509v3 Authority Key Identifier: keyid:C9:85:92:E1:CD:0B:2E:76:10:C8:4B:02:E6:61:CB:F3:36:FF:AF:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168E98/0EB12B40ECC911EAB825626EC4F9AE02/yYWS4c0LLnYQyEsC5mHL8zb_r10.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yYWS4c0LLnYQyEsC5mHL8zb_r10.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168E98/0EB12B40ECC911EAB825626EC4F9AE02/789C2BD0ECCA11EAAE025C70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.215.0/24 IPv6: 2001:df0:d780::/48 Signature Algorithm: sha256WithRSAEncryption 43:c0:bd:8c:48:72:ca:23:4b:81:53:00:6c:11:8c:5c:26:96: 3d:8b:50:62:29:73:dd:19:22:a4:51:69:ef:b4:89:8f:36:2a: e2:d7:27:74:ba:3a:11:ee:f4:19:94:c2:77:2c:30:af:6b:ef: 5a:59:90:42:1d:0c:ba:8d:f8:45:24:02:0f:fe:1e:bd:2b:ea: 9f:d1:67:c0:6e:6a:d0:9c:07:a2:ab:2c:6f:f9:6c:c8:ee:69: 73:1d:a0:e1:90:dc:f8:17:39:63:ac:15:29:10:f5:22:c0:c8: 98:5d:33:30:66:f6:64:9f:23:51:a5:e1:e5:2e:4f:e8:84:8d: 80:31:2a:a1:12:ac:35:13:c5:87:3c:4f:f3:7b:9a:67:e6:8b: 11:34:2d:27:39:64:cc:37:1a:f0:c9:9a:28:47:bb:d4:e7:1d: af:81:04:1b:8c:91:bd:59:d5:64:22:ef:22:8c:74:ec:34:e1: f3:c7:6f:cd:a5:fa:f5:9c:5b:2e:05:b3:13:46:c4:5f:6f:6f: 4f:2d:be:0d:7f:7c:02:2e:30:2f:e6:d1:ca:e9:50:64:8d:cb: 7a:1b:1e:f7:77:2e:c7:6a:f3:c2:3b:40:14:4a:8d:f9:ff:91: af:0b:39:73:7a:44:46:76:fa:68:76:0b:b3:cb:f3:fd:fa:8b: c8:b3:4e:ca -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhFOTgxMTAvBgNVBAUTKEM5ODU5MkUxQ0QwQjJFNzYxMEM4NEIwMkU2NjFDQkYz MzZGRkFGNUQwHhcNMjMwOTAyMjE0ODIyWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYzYWRhNi1jZDhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlCD+IiaI2J11/SGS73myCK6/NKuuKUjucTngVkIUoA26DMM8yUtjx6gHd1Ib yzfI5EiM89I+bMdNZDlh9fiezjmPWn79zfPtUWt2NxjCj/vDE93RjoTFoWAyLqRZ trCkIFC+mrQk1v+GIu5VI6P9usQIEJ2UMRvUtQ/cOQ2qBLjpue5STTLTEcKd8Uas UywNUaslkeMtYbiB0df+cKrE22p9Da3eP8JuEDqz6HI02f7dXZ+IL+kjAT7Rm7KU rEGnzyskAv9C6/y6LFWvTNK4LHobMz6k0ipFKacUDAIxapnUkHeSyASjlwAG4apy tnZATp8oZYQEf8PKC3Xx2/XC+QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDoj5vjC 0QeOAkvDAHWFhZpw1pXHMB8GA1UdIwQYMBaAFMmFkuHNCy52EMhLAuZhy/M2/69d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEU5OC8wRUIxMkI0MEVD QzkxMUVBQjgyNTYyNkVDNEY5QUUwMi95WVdTNGMwTExuWVF5RXNDNW1ITDh6Yl9y MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lZV1M0YzBMTG5ZUXlFc0M1bUhMOHpiX3IxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjhFOTgvMEVCMTJCNDBFQ0M5MTFFQUI4MjU2MjZFQzRGOUFFMDIvNzg5QzJCRDBF Q0NBMTFFQUFFMDI1QzcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnjNcwDwQCAAIwCQMHACABDfDXgDANBgkqhkiG9w0BAQsF AAOCAQEAQ8C9jEhyyiNLgVMAbBGMXCaWPYtQYilz3RkipFFp77SJjzYq4tcndLo6 Ee70GZTCdywwr2vvWlmQQh0Muo34RSQCD/4evSvqn9FnwG5q0JwHoqssb/lsyO5p cx2g4ZDc+Bc5Y6wVKRD1IsDImF0zMGb2ZJ8jUaXh5S5P6ISNgDEqoRKsNRPFhzxP 83uaZ+aLETQtJzlkzDca8MmaKEe71Ocdr4EEG4yRvVnVZCLvIox07DTh88dvzaX6 9ZxbLgWzE0bEX29vTy2+DX98Ai4wL+bRyulQZI3Lehse93cux2rzwjtAFEqN+f+R rws5c3pERnb6aHYLs8vz/fqLyLNOyg== -----END CERTIFICATE-----Generated at Fri May 31 23:53:06 2024 by rpki-client on console-fra.rpki-client.org