$ rpki-client -vvf rpki.apnic.net/member_repository/A9174F24/6FD7EBF089F311EEBF7FC41FC4F9AE02/F7C7803489F311EE9AD0D13CC4F9AE02.roa File: F7C7803489F311EE9AD0D13CC4F9AE02.roa (raw, json) Hash identifier: 1La2YjR8695Kv+ENKHdPNPLlVQUHdNzlGYNxYnnCBUo= Subject key identifier: 15:F4:D9:FF:27:36:BA:38:CD:79:A9:7D:51:30:47:D0:E8:63:41:09 Certificate issuer: /CN=A9174F24/serialNumber=94C41F1AA60ED650E0FD7A7A8D237A2D46B1B1F8 Certificate serial: 62 Authority key identifier: 94:C4:1F:1A:A6:0E:D6:50:E0:FD:7A:7A:8D:23:7A:2D:46:B1:B1:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMQfGqYO1lDg_Xp6jSN6LUaxsfg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174F24/6FD7EBF089F311EEBF7FC41FC4F9AE02/F7C7803489F311EE9AD0D13CC4F9AE02.roa Signing time: Wed 15 May 2024 08:12:15 +0000 ROA not before: Wed 15 May 2024 08:12:15 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 136449 IP address blocks: 103.88.156.0/24 maxlen: 24 103.88.157.0/24 maxlen: 24 103.88.158.0/24 maxlen: 24 103.88.159.0/24 maxlen: 24 116.204.224.0/24 maxlen: 24 116.204.225.0/24 maxlen: 24 116.204.226.0/24 maxlen: 24 116.204.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174F24/6FD7EBF089F311EEBF7FC41FC4F9AE02/lMQfGqYO1lDg_Xp6jSN6LUaxsfg.crl rsync://rpki.apnic.net/member_repository/A9174F24/6FD7EBF089F311EEBF7FC41FC4F9AE02/lMQfGqYO1lDg_Xp6jSN6LUaxsfg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMQfGqYO1lDg_Xp6jSN6LUaxsfg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174F24/serialNumber=94C41F1AA60ED650E0FD7A7A8D237A2D46B1B1F8 Validity Not Before: May 15 08:12:15 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66446e5f-8bf6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7b:44:68:c9:6e:35:b2:22:de:95:ed:5e:16: 96:a2:25:58:9e:7a:f3:e2:33:95:53:5b:07:e4:8a: 28:2e:aa:59:b4:8d:2e:5d:76:17:0f:0a:97:49:dd: 03:57:8d:e2:4a:f8:73:e3:8b:01:ee:4c:06:b1:2e: 08:18:78:39:37:d7:7b:6b:20:88:fb:ed:cd:ba:a3: 60:4d:44:06:39:5e:64:5b:de:22:90:78:f7:37:0d: a8:fe:2c:0a:9b:fa:c9:25:54:ae:1b:29:21:d2:10: 27:a4:8b:5e:1b:ce:cb:38:4d:2d:38:d4:22:77:a9: cb:8d:e1:4a:3e:cb:2a:96:2f:df:61:a5:c6:b9:54: ec:6e:8c:54:0f:21:1c:ed:53:15:7a:12:a9:4f:a4: 07:d0:aa:31:99:2c:42:48:57:7d:9e:3b:19:d5:03: 2f:93:a5:b9:50:f6:85:35:c6:50:db:4f:6f:ba:8d: 63:2b:d2:0f:f7:25:02:bd:e5:a7:c7:1e:4e:c9:aa: cc:4f:29:78:b9:e4:e7:88:07:ff:d5:36:34:e4:b7: eb:99:d9:f6:b3:c1:7b:ba:37:d9:b6:7a:9f:c2:da: b5:00:d3:07:d1:cf:5c:99:00:f0:81:b8:16:4e:6e: e2:4f:21:fd:68:11:f9:b6:1f:29:bc:4c:74:7a:cb: 16:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:F4:D9:FF:27:36:BA:38:CD:79:A9:7D:51:30:47:D0:E8:63:41:09 X509v3 Authority Key Identifier: keyid:94:C4:1F:1A:A6:0E:D6:50:E0:FD:7A:7A:8D:23:7A:2D:46:B1:B1:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174F24/6FD7EBF089F311EEBF7FC41FC4F9AE02/lMQfGqYO1lDg_Xp6jSN6LUaxsfg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMQfGqYO1lDg_Xp6jSN6LUaxsfg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174F24/6FD7EBF089F311EEBF7FC41FC4F9AE02/F7C7803489F311EE9AD0D13CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.156.0/22 116.204.224.0/22 Signature Algorithm: sha256WithRSAEncryption 57:85:5b:95:24:3b:9f:e9:6f:ab:c8:1b:c2:fd:60:ca:f6:57: 9a:e8:75:14:16:1c:4e:49:dc:f5:25:26:be:0f:c5:47:8e:09: 67:89:d4:11:d1:97:a9:fd:7d:5a:7a:5b:c2:a7:22:99:42:10: 1d:2f:5b:ca:e1:60:66:5e:f5:d0:92:8f:0b:b0:22:10:69:82: ad:c5:e2:74:a4:20:31:5b:ae:9b:af:72:6f:b7:63:e8:9d:d2: 32:00:02:b5:bb:da:3a:a6:a6:c7:12:f3:73:6f:4b:20:79:81: 12:86:c7:22:17:75:2f:7c:c4:c6:bc:54:0c:09:57:48:96:80: 76:6c:61:91:6b:de:83:ac:0f:cc:71:71:09:af:13:8b:a4:56: ff:3c:68:14:14:46:8e:dc:e2:ad:0a:de:ab:88:69:40:fe:a0: 51:cb:16:e0:d7:43:e9:6c:7c:9a:45:09:47:d4:c9:17:b5:06: d3:96:5a:f7:05:c0:83:b8:36:f1:fa:68:74:0e:35:b5:ff:39: ce:ce:d8:28:13:23:b2:81:89:ef:99:b9:ae:c1:9f:44:bd:06: d4:c3:50:6f:04:c4:83:e6:3c:44:ad:a9:d2:ae:40:2e:f9:d1: 2d:f6:c5:41:55:26:ad:7a:5a:43:7d:3b:6f:d2:3d:65:69:be: 5e:82:d8:36 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NEYyNDExMC8GA1UEBRMoOTRDNDFGMUFBNjBFRDY1MEUwRkQ3QTdBOEQyMzdBMkQ0 NkIxQjFGODAeFw0yNDA1MTUwODEyMTVaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NDQ2ZTVmLThiZjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/e0RoyW41siLele1eFpaiJVieevPiM5VTWwfkiiguqlm0jS5ddhcPCpdJ3QNX jeJK+HPjiwHuTAaxLggYeDk313trIIj77c26o2BNRAY5XmRb3iKQePc3Daj+LAqb +sklVK4bKSHSECeki14bzss4TS041CJ3qcuN4Uo+yyqWL99hpca5VOxujFQPIRzt UxV6EqlPpAfQqjGZLEJIV32eOxnVAy+TpblQ9oU1xlDbT2+6jWMr0g/3JQK95afH Hk7JqsxPKXi55OeIB//VNjTkt+uZ2fazwXu6N9m2ep/C2rUA0wfRz1yZAPCBuBZO buJPIf1oEfm2Hym8THR6yxatAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUFfTZ/yc2 ujjNeal9UTBH0OhjQQkwHwYDVR0jBBgwFoAUlMQfGqYO1lDg/Xp6jSN6LUaxsfgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc0RjI0LzZGRDdFQkYwODlG MzExRUVCRjdGQzQxRkM0RjlBRTAyL2xNUWZHcVlPMWxEZ19YcDZqU042TFVheHNm Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbE1RZkdxWU8xbERnX1hwNmpTTjZMVWF4c2ZnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEYyNC82RkQ3RUJGMDg5RjMxMUVFQkY3RkM0MUZDNEY5QUUwMi9GN0M3ODAzNDg5 RjMxMUVFOUFEMEQxM0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAmdYnAMEAnTM4DANBgkqhkiG9w0BAQsFAAOCAQEAV4VblSQ7 n+lvq8gbwv1gyvZXmuh1FBYcTknc9SUmvg/FR44JZ4nUEdGXqf19WnpbwqcimUIQ HS9byuFgZl710JKPC7AiEGmCrcXidKQgMVuum69yb7dj6J3SMgACtbvaOqamxxLz c29LIHmBEobHIhd1L3zExrxUDAlXSJaAdmxhkWveg6wPzHFxCa8Ti6RW/zxoFBRG jtzirQreq4hpQP6gUcsW4NdD6Wx8mkUJR9TJF7UG05Za9wXAg7g28fpodA41tf85 zs7YKBMjsoGJ75m5rsGfRL0G1MNQbwTEg+Y8RK2p0q5ALvnRLfbFQVUmrXpaQ307 b9I9ZWm+XoLYNg== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:28 2024 by rpki-client on console-fra.rpki-client.org