$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/00C137A2BE7911E990831772C4F9AE02.roa File: 00C137A2BE7911E990831772C4F9AE02.roa (raw, json) Hash identifier: ApqDQT65tuEFZUyPhlAuunreh/CAhuVEw+6OQ+LeQPE= Subject key identifier: 38:2D:D3:7F:B0:B3:1D:C9:53:A6:80:B0:9E:3C:80:B7:CB:BD:BE:C4 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 3352 Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/00C137A2BE7911E990831772C4F9AE02.roa Signing time: Tue 30 Jan 2024 16:12:36 +0000 ROA not before: Tue 30 Jan 2024 16:12:36 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 136079 IP address blocks: 103.86.100.0/23 maxlen: 24 2405:2cc0::/32 maxlen: 32 2405:2cc0:600d::/48 maxlen: 48 2405:2cc0:600e::/48 maxlen: 48 2405:2cc0:600f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 15:54:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13138 (0x3352) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Jan 30 16:12:36 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65b91ff4-0da5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:13:45:a6:5b:d6:98:ca:5f:ab:25:9e:1a:a4: be:cb:c1:a6:fa:56:97:1a:b3:d3:ef:ff:88:77:a7: a1:a4:d0:c9:e1:6a:a4:53:ee:b5:b3:cd:b0:59:60: d9:58:21:a1:24:14:c6:64:2c:fe:84:39:fa:de:94: 83:8e:ad:5a:5f:fd:7d:03:49:5c:79:bf:0b:d0:8e: 31:ce:1a:73:1c:5d:a2:45:1b:d9:d7:8e:df:0b:85: fe:18:20:26:41:4e:cf:c4:05:47:2b:88:51:dc:62: f9:a2:ee:ea:49:69:e6:b5:26:e7:f3:b3:6e:9b:aa: 16:80:cc:41:1a:f2:f1:ca:9f:00:c2:87:7d:14:95: ab:23:83:75:a8:d7:97:16:50:1d:5c:7a:f6:f7:7c: f4:d4:f8:e0:d0:6e:20:24:81:e8:3c:51:6d:4c:78: fe:12:97:86:3e:96:ed:69:db:c4:e0:c7:9d:fb:c2: 77:b5:65:c7:5a:0f:6c:95:ba:9d:af:3f:ed:d1:7e: f8:95:7d:45:53:be:99:42:0a:a2:fd:2a:81:99:0e: 04:06:03:50:ca:78:94:72:80:6c:8c:e8:3a:8c:37: f7:87:c4:aa:33:05:59:ec:d4:bf:f5:79:7a:b3:ae: ed:c5:28:4a:48:a1:ca:ed:45:4e:a8:0a:cb:07:2b: b0:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:2D:D3:7F:B0:B3:1D:C9:53:A6:80:B0:9E:3C:80:B7:CB:BD:BE:C4 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/00C137A2BE7911E990831772C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.86.100.0/23 IPv6: 2405:2cc0::/32 Signature Algorithm: sha256WithRSAEncryption 23:85:0e:87:89:46:7c:80:43:1a:1c:21:79:15:2a:ed:b9:b1: 4b:ed:e7:ef:f1:92:7a:cf:d7:03:d2:66:25:ea:73:e9:53:f9: cd:55:5b:15:00:d1:fe:be:78:2a:2b:08:ba:cb:5f:e3:fb:ec: 8b:2a:6a:47:87:41:34:fe:cb:7d:2d:d6:b2:33:14:25:a0:ee: 01:fb:2c:d8:85:9a:76:bd:c0:a8:65:4a:ed:78:5a:ca:76:0b: 61:a5:77:b6:48:a3:9a:a2:a3:a9:03:02:62:3c:ef:e8:22:38: cc:87:36:da:df:69:a2:a3:16:0b:31:16:64:83:a4:b0:f9:25: fb:00:df:90:74:3d:fd:bc:3c:24:67:6c:f0:4c:4d:9c:fb:8f: 3d:e1:71:5e:09:63:d8:d8:04:c9:72:a1:13:2f:84:79:f8:68: 4a:ef:44:19:60:d8:77:56:4e:f4:32:2a:43:6d:e6:cf:d1:a4: 95:45:3a:9d:60:c5:b6:68:54:8b:29:ec:bf:76:e0:87:34:0b: 16:7a:c0:de:20:d3:89:3f:d6:75:35:7e:2a:bc:e0:fb:c5:54: 7c:1a:f1:de:e5:9a:82:4a:30:8b:96:1c:20:64:c9:71:71:bb: 82:3a:df:73:7c:cc:8e:60:26:5c:75:6e:f7:3f:5e:09:79:1c: 3f:9a:2b:05 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICM1IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjQwMTMwMTYxMjM2WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5MWZmNC0wZGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwRNFplvWmMpfqyWeGqS+y8Gm+laXGrPT7/+Id6ehpNDJ4WqkU+61s82wWWDZ WCGhJBTGZCz+hDn63pSDjq1aX/19A0lceb8L0I4xzhpzHF2iRRvZ147fC4X+GCAm QU7PxAVHK4hR3GL5ou7qSWnmtSbn87Num6oWgMxBGvLxyp8Awod9FJWrI4N1qNeX FlAdXHr293z01Pjg0G4gJIHoPFFtTHj+EpeGPpbtadvE4Med+8J3tWXHWg9slbqd rz/t0X74lX1FU76ZQgqi/SqBmQ4EBgNQyniUcoBsjOg6jDf3h8SqMwVZ7NS/9Xl6 s67txShKSKHK7UVOqArLByuw6QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFDgt03+w sx3JU6aAsJ48gLfLvb7EMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvMDBDMTM3QTJC RTc5MTFFOTkwODMxNzcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnVmQwDQQCAAIwBwMFACQFLMAwDQYJKoZIhvcNAQELBQAD ggEBACOFDoeJRnyAQxocIXkVKu25sUvt5+/xknrP1wPSZiXqc+lT+c1VWxUA0f6+ eCorCLrLX+P77IsqakeHQTT+y30t1rIzFCWg7gH7LNiFmna9wKhlSu14Wsp2C2Gl d7ZIo5qio6kDAmI87+giOMyHNtrfaaKjFgsxFmSDpLD5JfsA35B0Pf28PCRnbPBM TZz7jz3hcV4JY9jYBMlyoRMvhHn4aErvRBlg2HdWTvQyKkNt5s/RpJVFOp1gxbZo VIsp7L924Ic0CxZ6wN4g04k/1nU1fiq84PvFVHwa8d7lmoJKMIuWHCBkyXFxu4I6 33N8zI5gJlx1bvc/Xgl5HD+aKwU= -----END CERTIFICATE-----Generated at Tue Apr 30 19:21:34 2024 by rpki-client on console-ams.rpki-client.org