$ rpki-client -vvf rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/1B120B6E563B11EE9C93E334C4F9AE02.roa File: 1B120B6E563B11EE9C93E334C4F9AE02.roa (raw, json) Hash identifier: VUfYYGUfVgXIhkgz5s5HyLNUsWHidDwIj7X1Pl5aTe4= Subject key identifier: FE:FB:5E:0F:21:6C:1F:58:B2:E6:E1:71:77:51:42:85:2F:EC:80:A0 Certificate issuer: /CN=A9187E80/serialNumber=7CB0E5825101C665443F2CFAB19E84D1A7797597 Certificate serial: 0552 Authority key identifier: 7C:B0:E5:82:51:01:C6:65:44:3F:2C:FA:B1:9E:84:D1:A7:79:75:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fLDlglEBxmVEPyz6sZ6E0ad5dZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/1B120B6E563B11EE9C93E334C4F9AE02.roa Signing time: Wed 03 Apr 2024 01:03:50 +0000 ROA not before: Wed 03 Apr 2024 01:03:50 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 18464 IP address blocks: 103.136.124.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/fLDlglEBxmVEPyz6sZ6E0ad5dZc.crl rsync://rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/fLDlglEBxmVEPyz6sZ6E0ad5dZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fLDlglEBxmVEPyz6sZ6E0ad5dZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 01:41:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1362 (0x552) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187E80/serialNumber=7CB0E5825101C665443F2CFAB19E84D1A7797597 Validity Not Before: Apr 3 01:03:50 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=660caaf6-f790 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:20:56:21:d6:38:fd:a1:2c:5f:0c:cf:04:f3: db:2e:2e:f8:95:1e:63:7b:d7:85:49:4b:55:a1:0b: ad:96:9f:43:c3:80:af:40:e6:f6:20:28:ee:c4:a4: 2e:af:8d:ad:93:be:3c:6f:37:95:bd:0b:be:e7:a5: 65:6f:86:29:ed:4f:cd:59:65:b0:0b:bb:97:f4:f4: 54:29:37:42:95:9e:01:25:9c:8f:b2:3b:33:a4:f6: 85:eb:c5:29:e3:2d:c0:ed:8f:e7:ef:66:52:23:3d: 0c:ee:9a:ce:d9:f9:45:11:d1:03:93:23:fa:d7:20: b1:d8:95:49:d5:aa:c9:88:0f:18:af:a4:65:27:bb: f5:89:f6:36:39:46:8e:44:4e:3e:f4:d0:4f:83:9a: 65:36:42:85:91:be:65:37:89:79:01:b3:43:e6:2b: 02:94:cf:04:40:e7:2b:cb:61:e5:5b:f4:f7:23:76: c0:30:e4:6d:ae:ce:c4:6f:9c:9a:e4:b2:01:94:d7: 83:65:2b:36:30:75:1e:3e:da:32:34:3e:ed:de:23: 7e:da:a6:b6:2d:35:53:68:03:30:bc:d7:9d:d5:47: 54:86:7f:d9:c7:dd:21:33:44:31:a9:0a:ab:2f:70: 17:ff:d8:b9:aa:61:4c:a0:41:ca:8b:93:11:a4:7a: 2f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:FB:5E:0F:21:6C:1F:58:B2:E6:E1:71:77:51:42:85:2F:EC:80:A0 X509v3 Authority Key Identifier: keyid:7C:B0:E5:82:51:01:C6:65:44:3F:2C:FA:B1:9E:84:D1:A7:79:75:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/fLDlglEBxmVEPyz6sZ6E0ad5dZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fLDlglEBxmVEPyz6sZ6E0ad5dZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/1B120B6E563B11EE9C93E334C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.124.0/22 Signature Algorithm: sha256WithRSAEncryption 03:56:59:80:18:ec:40:a1:d7:b8:f1:b2:28:a2:eb:98:d8:15: 08:99:41:3c:d6:17:1a:0d:2e:95:a5:1b:9d:94:23:cc:17:ba: cd:56:67:b9:93:3c:33:12:24:65:25:df:11:11:7e:af:70:ff: 11:c8:12:09:78:57:f4:1d:27:8d:a4:9e:af:56:29:d6:9f:b9: ae:93:23:5e:2d:3a:f6:14:5c:56:10:8b:5f:37:06:00:f8:03: 60:f8:dd:5c:c4:7b:e3:00:a8:2c:40:c5:e6:65:19:7c:3d:66: 91:fe:4e:78:e8:52:4b:14:d4:fb:18:e2:6a:9d:85:04:fe:17: 5a:e1:93:b4:7d:2b:da:2a:fd:df:01:02:12:c4:9f:9a:2f:3f: 60:d7:6b:95:67:76:1b:c9:a3:a5:37:00:3c:96:ad:60:30:46: 3d:0b:df:ae:bb:33:14:d5:7f:5e:97:e3:03:e6:87:90:67:8f: b2:d8:d4:bd:55:f7:ef:e7:42:4f:e9:67:f3:93:e8:c4:59:b3: 0f:a9:f6:4b:9b:6b:c1:d4:a0:29:7e:c2:c4:e6:82:ce:9b:c3: 01:33:2d:72:24:bf:be:c4:64:ed:88:93:aa:11:05:c1:b6:13: 0a:ca:6b:78:4a:85:c6:af:4e:9e:9c:1d:5f:3a:55:b3:ed:d7: f3:82:70:a0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODdFODAxMTAvBgNVBAUTKDdDQjBFNTgyNTEwMUM2NjU0NDNGMkNGQUIxOUU4NEQx QTc3OTc1OTcwHhcNMjQwNDAzMDEwMzUwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjYWFmNi1mNzkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3yBWIdY4/aEsXwzPBPPbLi74lR5je9eFSUtVoQutlp9Dw4CvQOb2ICjuxKQu r42tk748bzeVvQu+56Vlb4Yp7U/NWWWwC7uX9PRUKTdClZ4BJZyPsjszpPaF68Up 4y3A7Y/n72ZSIz0M7prO2flFEdEDkyP61yCx2JVJ1arJiA8Yr6RlJ7v1ifY2OUaO RE4+9NBPg5plNkKFkb5lN4l5AbND5isClM8EQOcry2HlW/T3I3bAMORtrs7Eb5ya 5LIBlNeDZSs2MHUePtoyND7t3iN+2qa2LTVTaAMwvNed1UdUhn/Zx90hM0QxqQqr L3AX/9i5qmFMoEHKi5MRpHovpQIDAQABo4IClTCCApEwHQYDVR0OBBYEFP77Xg8h bB9YsubhcXdRQoUv7ICgMB8GA1UdIwQYMBaAFHyw5YJRAcZlRD8s+rGehNGneXWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4N0U4MC9EMjc4Q0E2NDlF NzcxMUVCOEMyNURCNkNDNEY5QUUwMi9mTERsZ2xFQnhtVkVQeXo2c1o2RTBhZDVk WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZMRGxnbEVCeG1WRVB5ejZzWjZFMGFkNWRaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODdFODAvRDI3OENBNjQ5RTc3MTFFQjhDMjVEQjZDQzRGOUFFMDIvMUIxMjBCNkU1 NjNCMTFFRTlDOTNFMzM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJniHwwDQYJKoZIhvcNAQELBQADggEBAANWWYAY7ECh17jx siii65jYFQiZQTzWFxoNLpWlG52UI8wXus1WZ7mTPDMSJGUl3xERfq9w/xHIEgl4 V/QdJ42knq9WKdafua6TI14tOvYUXFYQi183BgD4A2D43VzEe+MAqCxAxeZlGXw9 ZpH+TnjoUksU1PsY4mqdhQT+F1rhk7R9K9oq/d8BAhLEn5ovP2DXa5VndhvJo6U3 ADyWrWAwRj0L3667MxTVf16X4wPmh5Bnj7LY1L1V9+/nQk/pZ/OT6MRZsw+p9kub a8HUoCl+wsTmgs6bwwEzLXIkv77EZO2Ik6oRBcG2EwrKa3hKhcavTp6cHV86VbPt 1/OCcKA= -----END CERTIFICATE-----Generated at Sat Jun 1 04:07:28 2024 by rpki-client on console-ams.rpki-client.org