$ rpki-client -vvf rpki.apnic.net/member_repository/A9175F5F/7011FDB2430811EA8194A66EC4F9AE02/49CE816E430A11EAA674EA74C4F9AE02.roa File: 49CE816E430A11EAA674EA74C4F9AE02.roa (raw, json) Hash identifier: J1wCr3pN1RsjONx2dcBw5yx7cNEc3c4459YNy9NAPiU= Subject key identifier: 98:BF:B5:E6:EB:A4:2C:73:23:E3:84:9A:E1:F6:68:CB:A1:FD:D9:27 Certificate issuer: /CN=A9175F5F/serialNumber=25A430F16BA87DBBD5155321B80F8201E56DEAFD Certificate serial: 09BE Authority key identifier: 25:A4:30:F1:6B:A8:7D:BB:D5:15:53:21:B8:0F:82:01:E5:6D:EA:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JaQw8WuofbvVFVMhuA-CAeVt6v0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175F5F/7011FDB2430811EA8194A66EC4F9AE02/49CE816E430A11EAA674EA74C4F9AE02.roa Signing time: Wed 30 Aug 2023 20:28:07 +0000 ROA not before: Wed 30 Aug 2023 20:28:07 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 132398 IP address blocks: 103.72.192.0/24 maxlen: 24 2001:df4:2600::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175F5F/7011FDB2430811EA8194A66EC4F9AE02/JaQw8WuofbvVFVMhuA-CAeVt6v0.crl rsync://rpki.apnic.net/member_repository/A9175F5F/7011FDB2430811EA8194A66EC4F9AE02/JaQw8WuofbvVFVMhuA-CAeVt6v0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JaQw8WuofbvVFVMhuA-CAeVt6v0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 21:06:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2494 (0x9be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175F5F/serialNumber=25A430F16BA87DBBD5155321B80F8201E56DEAFD Validity Not Before: Aug 30 20:28:07 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64efa657-e868 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:56:0d:a7:ea:9e:2a:25:22:81:2a:d5:0e:54: 41:1e:8e:ce:53:ae:7b:89:42:ba:54:bd:f1:f5:ee: d4:94:37:de:91:93:30:b8:22:4e:d8:94:f0:59:ac: 07:0e:bb:be:0f:fd:fe:6e:33:ba:c1:2b:aa:f3:1a: 67:a0:95:7e:f7:ff:30:67:0e:f7:e0:37:2d:e0:ab: ac:c3:7a:c8:3b:da:be:ae:8e:1e:17:87:4b:01:78: d3:01:1d:ca:50:2f:da:0b:ae:a2:77:4f:16:40:43: 35:69:a1:d9:01:05:04:6d:9d:7a:f5:8c:fa:13:1f: 92:76:be:97:3a:e5:17:be:34:de:af:43:d5:9a:c0: 43:c4:dd:89:62:d5:b1:33:2b:3a:54:62:e9:c9:8c: 60:5e:16:bd:97:4e:35:2e:0c:89:d1:3b:99:c0:be: 3e:da:71:1a:0b:3f:dd:f8:d2:b3:f4:8b:12:da:37: b8:ff:2a:b2:44:94:60:4d:65:6b:30:8e:c7:01:96: fb:e1:8c:b6:e7:b6:52:f2:30:8c:0c:3d:88:79:15: 9b:a5:b8:dd:de:7d:bb:72:85:a2:81:52:ec:81:b4: 19:fd:f0:34:f9:fe:d9:c2:64:e6:24:6e:c3:75:b7: 5a:48:53:a3:04:6f:fa:ca:36:8f:bc:b3:b8:2b:41: 1c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:BF:B5:E6:EB:A4:2C:73:23:E3:84:9A:E1:F6:68:CB:A1:FD:D9:27 X509v3 Authority Key Identifier: keyid:25:A4:30:F1:6B:A8:7D:BB:D5:15:53:21:B8:0F:82:01:E5:6D:EA:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175F5F/7011FDB2430811EA8194A66EC4F9AE02/JaQw8WuofbvVFVMhuA-CAeVt6v0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JaQw8WuofbvVFVMhuA-CAeVt6v0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175F5F/7011FDB2430811EA8194A66EC4F9AE02/49CE816E430A11EAA674EA74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.72.192.0/24 IPv6: 2001:df4:2600::/48 Signature Algorithm: sha256WithRSAEncryption 58:78:08:ba:b2:5e:8f:8a:dd:fe:16:40:c1:1f:d1:ad:03:4c: 19:cf:c9:99:09:c2:3a:f0:fa:35:62:b1:76:e5:a2:4c:ac:cb: 83:68:e5:82:01:57:bc:c1:43:f6:cd:be:07:34:a4:2e:dc:ef: 12:5a:ab:b9:41:83:b4:74:7f:a9:23:08:93:72:98:1a:eb:33: b4:68:29:a9:7c:2f:6d:d7:75:0d:43:57:1e:65:8b:23:07:b1: 3c:82:df:ea:ba:cd:66:47:5a:33:c6:b8:97:dc:2c:db:72:23: 9c:6b:5f:ed:08:d0:b2:22:76:7d:8a:d3:68:01:c7:87:d0:79: 87:9a:87:2b:4f:ac:90:f2:3f:5e:cd:73:4d:45:9b:c6:56:96: ce:2e:93:b2:2f:1f:c3:8f:23:cc:e1:76:18:b2:f1:16:7f:12: 2c:fc:26:e2:44:68:d0:f5:55:f0:17:da:3b:a5:5e:5b:24:ba: 1c:db:a4:b2:d6:09:0b:06:44:ca:25:01:5d:1d:44:0a:98:e0: 73:24:54:db:64:54:35:90:3f:9b:67:ac:1f:93:a0:99:91:96: 89:a0:ec:d0:96:02:d6:d2:f0:c0:1f:ea:2d:01:34:29:c1:e2: 20:02:35:ee:ea:5c:89:f2:25:e4:01:f7:d7:74:16:aa:15:73: 09:62:79:6e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVGNUYxMTAvBgNVBAUTKDI1QTQzMEYxNkJBODdEQkJENTE1NTMyMUI4MEY4MjAx RTU2REVBRkQwHhcNMjMwODMwMjAyODA3WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVmYTY1Ny1lODY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1YNp+qeKiUigSrVDlRBHo7OU657iUK6VL3x9e7UlDfekZMwuCJO2JTwWawH Dru+D/3+bjO6wSuq8xpnoJV+9/8wZw734Dct4Kusw3rIO9q+ro4eF4dLAXjTAR3K UC/aC66id08WQEM1aaHZAQUEbZ169Yz6Ex+Sdr6XOuUXvjTer0PVmsBDxN2JYtWx Mys6VGLpyYxgXha9l041LgyJ0TuZwL4+2nEaCz/d+NKz9IsS2je4/yqyRJRgTWVr MI7HAZb74Yy257ZS8jCMDD2IeRWbpbjd3n27coWigVLsgbQZ/fA0+f7ZwmTmJG7D dbdaSFOjBG/6yjaPvLO4K0EczQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJi/tebr pCxzI+OEmuH2aMuh/dknMB8GA1UdIwQYMBaAFCWkMPFrqH271RVTIbgPggHlber9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUY1Ri83MDExRkRCMjQz MDgxMUVBODE5NEE2NkVDNEY5QUUwMi9KYVF3OFd1b2ZidlZGVk1odUEtQ0FlVnQ2 djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0phUXc4V3VvZmJ2VkZWTWh1QS1DQWVWdDZ2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzVGNUYvNzAxMUZEQjI0MzA4MTFFQTgxOTRBNjZFQzRGOUFFMDIvNDlDRTgxNkU0 MzBBMTFFQUE2NzRFQTc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnSMAwDwQCAAIwCQMHACABDfQmADANBgkqhkiG9w0BAQsF AAOCAQEAWHgIurJej4rd/hZAwR/RrQNMGc/JmQnCOvD6NWKxduWiTKzLg2jlggFX vMFD9s2+BzSkLtzvElqruUGDtHR/qSMIk3KYGusztGgpqXwvbdd1DUNXHmWLIwex PILf6rrNZkdaM8a4l9ws23IjnGtf7QjQsiJ2fYrTaAHHh9B5h5qHK0+skPI/Xs1z TUWbxlaWzi6Tsi8fw48jzOF2GLLxFn8SLPwm4kRo0PVV8BfaO6VeWyS6HNukstYJ CwZEyiUBXR1ECpjgcyRU22RUNZA/m2esH5OgmZGWiaDs0JYC1tLwwB/qLQE0KcHi IAI17upcifIl5AH313QWqhVzCWJ5bg== -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:19 2024 by rpki-client on console-ams.rpki-client.org