$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/960764842D4211EA907A566EC4F9AE02.roa File: 960764842D4211EA907A566EC4F9AE02.roa (raw, json) Hash identifier: i/p90vR/sFtXv/n69cNNWXu8/XgNkPpkTmPhQzPRUz8= Subject key identifier: E0:C4:BD:7B:9A:8D:4A:E7:81:BB:CB:8C:71:08:DE:DE:BB:C2:72:E8 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 334B Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/960764842D4211EA907A566EC4F9AE02.roa Signing time: Tue 30 Jan 2024 16:12:30 +0000 ROA not before: Tue 30 Jan 2024 16:12:30 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 133809 IP address blocks: 103.50.128.0/22 maxlen: 22 103.50.128.0/24 maxlen: 24 103.50.129.0/24 maxlen: 24 103.50.130.0/24 maxlen: 24 103.50.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13131 (0x334b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Jan 30 16:12:30 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65b91fee-428b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a5:fb:a3:9c:0e:ed:2b:80:fa:b1:45:3f:86: 7e:8f:b1:85:81:e2:8d:f2:e4:57:ec:e7:19:bc:78: 40:ed:d7:32:d2:f9:40:61:85:32:62:86:88:c3:2e: e5:35:2e:70:f5:cb:64:03:48:96:af:72:db:c9:3d: 50:67:e6:cc:bb:35:d5:c1:49:6c:37:a8:12:f0:dc: 19:cd:c8:20:2e:76:01:07:12:4b:b3:7e:5c:9f:1a: c7:e6:cf:a1:2e:e3:dd:29:2e:4d:8d:95:6e:59:5a: c9:05:d0:39:d0:1d:fc:7b:0c:37:76:0b:bb:c0:11: 57:51:7c:12:95:51:a5:d6:d6:6e:90:0f:3e:70:20: 1a:e2:a3:f4:15:c5:3f:8e:4b:31:a4:16:74:13:fc: 81:93:63:6b:88:6f:a3:c6:72:77:3c:f4:cc:7d:dc: 0d:65:85:e7:ae:84:e8:87:21:16:c5:c7:53:ca:b7: fd:f0:85:fe:01:1e:fb:be:96:ce:e1:f3:8d:9b:8e: 96:48:95:8b:de:3a:ce:4d:87:23:22:ac:b1:bc:95: 00:39:f6:c7:95:2a:6b:3d:b7:24:65:9c:ed:07:ac: 62:43:85:9b:fc:9f:e0:82:76:d4:d4:c9:c7:32:af: 46:84:de:9e:36:a1:31:cf:c5:f4:e7:35:92:2b:1a: 06:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:C4:BD:7B:9A:8D:4A:E7:81:BB:CB:8C:71:08:DE:DE:BB:C2:72:E8 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/960764842D4211EA907A566EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.50.128.0/22 Signature Algorithm: sha256WithRSAEncryption 46:c9:3f:f6:7d:26:9a:25:3a:c9:f7:14:32:02:ef:13:26:76: 89:5e:5d:d1:e0:2e:53:7e:33:84:10:06:0e:e3:bf:b4:a8:91: 1c:ac:90:31:7c:4f:1a:e1:d0:7b:16:7e:48:5a:ec:0e:ee:76: 51:be:21:bb:6a:71:3d:b2:3d:9a:7e:f2:f3:c3:e0:47:d2:6e: b5:e9:38:ca:b9:59:3f:4d:6b:96:f9:e1:96:12:65:24:a2:ca: 25:5f:8e:62:78:f1:d3:a8:36:b0:a8:fd:ce:92:2f:d6:14:1e: 6e:8f:e1:43:db:5a:89:af:05:7e:ed:a8:9e:4e:d4:af:7d:dd: 37:35:70:32:15:cc:30:7a:c3:de:2f:5b:9f:b1:66:a1:0f:12: fa:8c:c7:8d:40:c5:c9:67:12:d3:bd:a5:a8:74:5a:b4:28:5d: d7:d2:4d:ff:2a:cb:f5:0c:15:d0:3c:0d:77:f0:dc:23:f1:ae: af:53:4a:8e:73:b4:f9:45:7f:f6:9d:d8:9d:98:0c:05:16:1a: 5a:69:e7:8b:5e:7e:1b:b5:c0:fc:82:00:0f:48:43:8d:12:c9: e7:cb:90:c1:a7:46:bf:4a:21:5c:cd:8b:91:26:79:98:0c:36: 1d:cb:5c:21:a8:d1:a3:c0:92:34:db:f2:2c:0a:57:48:4e:b3: 2e:87:91:d1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICM0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjQwMTMwMTYxMjMwWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5MWZlZS00MjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxKX7o5wO7SuA+rFFP4Z+j7GFgeKN8uRX7OcZvHhA7dcy0vlAYYUyYoaIwy7l NS5w9ctkA0iWr3LbyT1QZ+bMuzXVwUlsN6gS8NwZzcggLnYBBxJLs35cnxrH5s+h LuPdKS5NjZVuWVrJBdA50B38eww3dgu7wBFXUXwSlVGl1tZukA8+cCAa4qP0FcU/ jksxpBZ0E/yBk2NriG+jxnJ3PPTMfdwNZYXnroTohyEWxcdTyrf98IX+AR77vpbO 4fONm46WSJWL3jrOTYcjIqyxvJUAOfbHlSprPbckZZztB6xiQ4Wb/J/ggnbU1MnH Mq9GhN6eNqExz8X05zWSKxoGkwIDAQABo4IClTCCApEwHQYDVR0OBBYEFODEvXua jUrngbvLjHEI3t67wnLoMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvOTYwNzY0ODQy RDQyMTFFQTkwN0E1NjZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnMoAwDQYJKoZIhvcNAQELBQADggEBAEbJP/Z9JpolOsn3 FDIC7xMmdoleXdHgLlN+M4QQBg7jv7SokRyskDF8Txrh0HsWfkha7A7udlG+Ibtq cT2yPZp+8vPD4EfSbrXpOMq5WT9Na5b54ZYSZSSiyiVfjmJ48dOoNrCo/c6SL9YU Hm6P4UPbWomvBX7tqJ5O1K993Tc1cDIVzDB6w94vW5+xZqEPEvqMx41AxclnEtO9 pah0WrQoXdfSTf8qy/UMFdA8DXfw3CPxrq9TSo5ztPlFf/ad2J2YDAUWGlpp54te fhu1wPyCAA9IQ40SyefLkMGnRr9KIVzNi5EmeZgMNh3LXCGo0aPAkjTb8iwKV0hO sy6HkdE= -----END CERTIFICATE-----Generated at Fri May 10 17:10:27 2024 by rpki-client on console-fra.rpki-client.org