$ rpki-client -vvf rpki.apnic.net/member_repository/A9188CCC/7E6E0014454711EEACD35F41C4F9AE02/7D60D10A454811EEB97A0F46C4F9AE02.roa File: 7D60D10A454811EEB97A0F46C4F9AE02.roa (raw, json) Hash identifier: d5hv1IQLIOQ84kKr+HaWg9/KD2onjp9c3jsVzTncAnI= Subject key identifier: 9B:EE:AA:30:04:12:BD:3E:51:75:2B:38:9B:8E:D9:4F:BC:86:2B:A1 Certificate issuer: /CN=A9188CCC/serialNumber=E231D30927E49A6A22D9F6ACD706103BE3E5DC16 Certificate serial: 06 Authority key identifier: E2:31:D3:09:27:E4:9A:6A:22:D9:F6:AC:D7:06:10:3B:E3:E5:DC:16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4jHTCSfkmmoi2fas1wYQO-Pl3BY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188CCC/7E6E0014454711EEACD35F41C4F9AE02/7D60D10A454811EEB97A0F46C4F9AE02.roa Signing time: Tue 29 Aug 2023 05:45:52 +0000 ROA not before: Tue 29 Aug 2023 05:45:52 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 55734 IP address blocks: 43.245.0.0/22 maxlen: 22 103.232.184.0/22 maxlen: 22 223.27.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188CCC/7E6E0014454711EEACD35F41C4F9AE02/4jHTCSfkmmoi2fas1wYQO-Pl3BY.crl rsync://rpki.apnic.net/member_repository/A9188CCC/7E6E0014454711EEACD35F41C4F9AE02/4jHTCSfkmmoi2fas1wYQO-Pl3BY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4jHTCSfkmmoi2fas1wYQO-Pl3BY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:21:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188CCC/serialNumber=E231D30927E49A6A22D9F6ACD706103BE3E5DC16 Validity Not Before: Aug 29 05:45:52 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ed860f-6f7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:da:4f:38:fc:4c:44:8d:da:6f:46:7d:27:d0: d4:62:41:c3:ad:ed:93:0f:26:65:1e:01:a4:1e:94: ce:ec:1a:0f:ff:03:0f:e7:1c:df:33:52:24:46:57: 04:2b:87:bc:07:d0:82:e7:8e:36:63:b5:e7:31:20: 0f:ac:59:77:42:ec:d7:3a:ff:90:e0:59:a4:21:e4: c1:58:59:2e:04:db:5f:aa:bc:b0:af:04:b8:1a:61: ff:95:19:fe:ab:52:07:0b:19:37:2b:cd:50:a3:02: 45:b2:fd:26:5c:ea:1f:d5:1b:75:09:d9:ce:0a:bf: 3d:89:a7:88:2a:58:aa:39:a5:78:0d:d7:63:c7:9e: 66:61:32:2f:5b:55:e0:b2:62:44:b8:94:dc:a5:b0: d4:2d:2d:4b:54:af:27:84:a1:9c:74:d1:d2:ea:66: 6b:9c:b2:8a:19:d3:28:c0:a8:4d:06:f4:a8:25:9c: de:ba:a1:48:f6:b1:34:62:e4:5b:67:ce:f4:fe:a3: 46:07:cc:1b:5e:57:ec:20:a3:07:64:f0:f1:68:af: 4c:96:5d:d1:54:47:84:1b:c2:61:1d:23:be:48:63: a7:8b:cf:2c:08:d2:a5:c9:79:49:2f:11:c8:ce:6a: ea:e1:7f:bb:de:e1:93:62:f9:a8:83:34:a5:55:13: 04:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:EE:AA:30:04:12:BD:3E:51:75:2B:38:9B:8E:D9:4F:BC:86:2B:A1 X509v3 Authority Key Identifier: keyid:E2:31:D3:09:27:E4:9A:6A:22:D9:F6:AC:D7:06:10:3B:E3:E5:DC:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188CCC/7E6E0014454711EEACD35F41C4F9AE02/4jHTCSfkmmoi2fas1wYQO-Pl3BY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4jHTCSfkmmoi2fas1wYQO-Pl3BY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188CCC/7E6E0014454711EEACD35F41C4F9AE02/7D60D10A454811EEB97A0F46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.245.0.0/22 103.232.184.0/22 223.27.120.0/22 Signature Algorithm: sha256WithRSAEncryption 51:79:7e:14:21:c1:6c:35:7d:39:45:e2:3a:ac:d8:52:cd:03: 19:51:92:4d:83:a2:91:00:f3:2f:e9:91:d3:eb:a2:3d:1e:cc: 42:4a:40:ea:ed:db:97:79:3f:b4:4e:9e:90:59:c8:0c:58:3d: 45:23:73:36:12:a1:9e:a5:2d:40:b2:26:07:9e:ca:81:9a:24: 9d:a7:b3:11:82:28:87:eb:52:af:7e:8b:c4:28:a5:11:fc:16: bb:bf:53:7c:db:ea:9c:4a:fe:b8:6e:01:56:f2:8f:11:f0:80: bc:24:ab:e1:4e:58:d6:a4:58:a8:8e:17:47:d7:dc:47:c1:35: cb:fe:82:7c:7c:5c:3d:bd:07:17:4b:65:2a:d0:a7:a0:49:3f: 44:81:11:2d:41:ec:fb:fa:8d:78:ff:0a:e4:2c:c6:e6:51:48: 36:13:34:cc:f9:3f:3b:c5:8c:bb:69:21:c9:ef:49:b8:8e:34: 1e:a9:77:fb:1e:cc:c3:28:45:0f:05:79:6f:c1:80:c3:e7:0e: 05:68:86:95:00:ec:0f:78:14:93:95:cb:18:67:43:89:91:cf: 5f:2a:f3:ea:74:5a:c5:01:06:79:6d:cb:fa:79:b1:8f:2f:60: 73:19:d8:6d:de:c6:fb:59:03:62:d1:20:aa:db:f3:7a:a5:dd: 03:49:29:cd -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OENDQzExMC8GA1UEBRMoRTIzMUQzMDkyN0U0OUE2QTIyRDlGNkFDRDcwNjEwM0JF M0U1REMxNjAeFw0yMzA4MjkwNTQ1NTJaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZWQ4NjBmLTZmN2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCp2k84/ExEjdpvRn0n0NRiQcOt7ZMPJmUeAaQelM7sGg//Aw/nHN8zUiRGVwQr h7wH0ILnjjZjtecxIA+sWXdC7Nc6/5DgWaQh5MFYWS4E21+qvLCvBLgaYf+VGf6r UgcLGTcrzVCjAkWy/SZc6h/VG3UJ2c4Kvz2Jp4gqWKo5pXgN12PHnmZhMi9bVeCy YkS4lNylsNQtLUtUryeEoZx00dLqZmucsooZ0yjAqE0G9KglnN66oUj2sTRi5Ftn zvT+o0YHzBteV+wgowdk8PFor0yWXdFUR4QbwmEdI75IY6eLzywI0qXJeUkvEcjO aurhf7ve4ZNi+aiDNKVVEwSTAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUm+6qMAQS vT5RdSs4m47ZT7yGK6EwHwYDVR0jBBgwFoAU4jHTCSfkmmoi2fas1wYQO+Pl3BYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg4Q0NDLzdFNkUwMDE0NDU0 NzExRUVBQ0QzNUY0MUM0RjlBRTAyLzRqSFRDU2ZrbW1vaTJmYXMxd1lRTy1QbDNC WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNGpIVENTZmttbW9pMmZhczF3WVFPLVBsM0JZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OENDQy83RTZFMDAxNDQ1NDcxMUVFQUNEMzVGNDFDNEY5QUUwMi83RDYwRDEwQTQ1 NDgxMUVFQjk3QTBGNDZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAiv1AAMEAmfouAMEAt8beDANBgkqhkiG9w0BAQsFAAOCAQEA UXl+FCHBbDV9OUXiOqzYUs0DGVGSTYOikQDzL+mR0+uiPR7MQkpA6u3bl3k/tE6e kFnIDFg9RSNzNhKhnqUtQLImB57KgZoknaezEYIoh+tSr36LxCilEfwWu79TfNvq nEr+uG4BVvKPEfCAvCSr4U5Y1qRYqI4XR9fcR8E1y/6CfHxcPb0HF0tlKtCnoEk/ RIERLUHs+/qNeP8K5CzG5lFINhM0zPk/O8WMu2khye9JuI40Hql3+x7MwyhFDwV5 b8GAw+cOBWiGlQDsD3gUk5XLGGdDiZHPXyrz6nRaxQEGeW3L+nmxjy9gcxnYbd7G +1kDYtEgqtvzeqXdA0kpzQ== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:20 2024 by rpki-client on console-ams.rpki-client.org