$ rpki-client -vvf rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/14C5F2A62F3C11ED84084082C4F9AE02.roa File: 14C5F2A62F3C11ED84084082C4F9AE02.roa (raw, json) Hash identifier: cAVCV/9lxvq8XlQTFfTG333mCLEGnHm+MmPxBaNaH3g= Subject key identifier: 9E:62:48:0E:17:DD:EB:2C:DF:AF:07:57:AD:BC:FC:2C:BE:7A:E3:83 Certificate issuer: /CN=A9176B32/serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Certificate serial: 0111 Authority key identifier: D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/14C5F2A62F3C11ED84084082C4F9AE02.roa Signing time: Fri 01 Dec 2023 04:54:51 +0000 ROA not before: Fri 01 Dec 2023 04:54:51 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 137409 IP address blocks: 103.120.20.0/24 maxlen: 24 103.120.21.0/24 maxlen: 24 103.120.22.0/24 maxlen: 24 103.120.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176B32/serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Validity Not Before: Dec 1 04:54:51 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6569671b-52bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ed:f1:b5:ca:7a:68:47:d2:c5:5c:42:50:19: fb:4e:80:a0:cc:7e:7d:0d:de:b8:6f:b9:f4:d1:ac: b9:dd:1d:a3:b1:b1:9b:d1:6b:6c:0c:e2:23:4e:0f: 78:eb:7c:88:3d:c6:1d:38:9e:67:99:fd:4c:38:25: ab:0a:27:f9:8b:9a:87:08:99:be:7e:22:28:5b:f0: 3d:39:4d:3b:1e:cf:ca:61:4a:63:19:47:b2:9b:0e: 75:be:4c:98:33:ce:51:fa:5c:95:1e:6c:ba:2d:11: 91:c2:99:eb:58:08:23:90:ed:d0:de:6c:a3:c5:27: 30:89:57:58:87:15:4f:df:4f:ef:b8:ab:e9:d5:bc: a3:88:54:64:03:1b:a1:ec:05:75:da:0d:5a:12:81: ae:22:56:c4:d0:4c:e9:5f:90:23:ca:6e:e1:36:d0: 7b:ba:f8:f8:ba:34:70:48:2b:d0:ff:5e:0d:34:72: ca:0a:3f:d4:6e:8d:2b:1a:b7:f9:e5:f4:7a:ca:5b: 9e:f6:3f:47:76:38:1c:5d:5a:23:09:a2:79:13:bd: 8d:c5:d9:f7:e3:34:db:cc:68:98:5d:1b:db:fd:83: 25:00:50:b8:07:1d:8a:ed:29:52:62:2b:14:b1:bb: 98:82:98:66:32:17:ab:cd:8b:6f:47:8e:3d:d9:3a: aa:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:62:48:0E:17:DD:EB:2C:DF:AF:07:57:AD:BC:FC:2C:BE:7A:E3:83 X509v3 Authority Key Identifier: keyid:D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/14C5F2A62F3C11ED84084082C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.20.0/22 Signature Algorithm: sha256WithRSAEncryption 86:10:b5:40:a2:ca:fa:59:48:36:af:e7:5e:cc:f7:cf:59:c7: 20:03:bb:37:42:c0:29:45:f5:f7:6f:2c:24:b6:e8:d4:ba:e5: 61:b5:68:0c:6a:d6:6d:71:19:f5:49:aa:ec:31:34:33:67:51: cf:5e:2b:8d:5f:3e:27:3a:a7:b3:9e:02:76:12:6c:cf:68:d2: 6e:91:14:4d:25:75:e0:de:40:60:cd:4f:a0:a8:58:90:6e:e4: 78:68:c2:e3:d5:f1:c1:43:2c:5b:b7:8e:8e:90:ab:7a:0c:9e: 7a:76:54:4d:08:05:44:47:a1:00:6d:f5:f1:18:fe:06:69:f5: ca:73:a4:f3:72:f1:24:cf:15:7b:94:73:64:3c:c6:3e:dd:18: 64:97:f1:be:f3:87:ba:63:b4:ed:a5:46:2a:59:97:19:10:7a: f6:c6:62:55:6c:0a:4a:16:61:dd:35:30:42:4d:c3:e2:c8:78: 69:77:9d:de:9e:40:f8:76:df:78:a2:78:5c:0e:ec:17:21:f2: 85:38:4a:ae:df:d6:0b:42:e5:ab:68:a7:ae:ba:0f:24:02:72: f9:6d:ce:15:6e:9a:4f:ca:2a:c3:ac:30:6d:1e:df:92:0c:aa: 83:d4:8f:b3:9e:6d:2a:59:c9:c8:02:03:58:f9:89:2c:cf:91: 30:b3:d5:48 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCMzIxMTAvBgNVBAUTKEQ4MjJBMkRCQzg4MjM0RjgwRjcwRTQ2NzgyQjJENEQ5 Q0QzRjlCREMwHhcNMjMxMjAxMDQ1NDUxWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY5NjcxYi01MmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAru3xtcp6aEfSxVxCUBn7ToCgzH59Dd64b7n00ay53R2jsbGb0WtsDOIjTg94 63yIPcYdOJ5nmf1MOCWrCif5i5qHCJm+fiIoW/A9OU07Hs/KYUpjGUeymw51vkyY M85R+lyVHmy6LRGRwpnrWAgjkO3Q3myjxScwiVdYhxVP30/vuKvp1byjiFRkAxuh 7AV12g1aEoGuIlbE0EzpX5Ajym7hNtB7uvj4ujRwSCvQ/14NNHLKCj/Ubo0rGrf5 5fR6ylue9j9HdjgcXVojCaJ5E72Nxdn34zTbzGiYXRvb/YMlAFC4Bx2K7SlSYisU sbuYgphmMherzYtvR4492TqqJQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ5iSA4X 3ess368HV628/Cy+euODMB8GA1UdIwQYMBaAFNgiotvIgjT4D3DkZ4Ky1NnNP5vc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkIzMi83Mzg3OTYxODJG MzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05QZ1BjT1JuZ3JMVTJjMF9t OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDS2kyOGlDTlBnUGNPUm5nckxVMmMwX205dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzZCMzIvNzM4Nzk2MTgyRjM4MTFFRDlFN0UwMjdEQzRGOUFFMDIvMTRDNUYyQTYy RjNDMTFFRDg0MDg0MDgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJneBQwDQYJKoZIhvcNAQELBQADggEBAIYQtUCiyvpZSDav 517M989ZxyADuzdCwClF9fdvLCS26NS65WG1aAxq1m1xGfVJquwxNDNnUc9eK41f Pic6p7OeAnYSbM9o0m6RFE0ldeDeQGDNT6CoWJBu5HhowuPV8cFDLFu3jo6Qq3oM nnp2VE0IBURHoQBt9fEY/gZp9cpzpPNy8STPFXuUc2Q8xj7dGGSX8b7zh7pjtO2l RipZlxkQevbGYlVsCkoWYd01MEJNw+LIeGl3nd6eQPh233iieFwO7Bch8oU4Sq7f 1gtC5atop666DyQCcvltzhVumk/KKsOsMG0e35IMqoPUj7OebSpZycgCA1j5iSzP kTCz1Ug= -----END CERTIFICATE-----Generated at Sat Jun 1 06:27:36 2024 by rpki-client on console-fra.rpki-client.org