$ rpki-client -vvf rpki.apnic.net/member_repository/A9190EF5/9406628E577811EE8CDF857AC4F9AE02/688DBA84577911EE8A10F47BC4F9AE02.roa File: 688DBA84577911EE8A10F47BC4F9AE02.roa (raw, json) Hash identifier: F0K355M1aG7oGDdsprpmFmgy3E7CbG8XN18PJkx+ngE= Subject key identifier: FF:A5:BF:49:92:FA:50:B5:42:BB:9C:A3:2C:62:F6:77:A8:B9:6F:77 Certificate issuer: /CN=A9190EF5/serialNumber=98F4ED1EA56EFE37CA134F876A965F2AC6FA3748 Certificate serial: 02 Authority key identifier: 98:F4:ED:1E:A5:6E:FE:37:CA:13:4F:87:6A:96:5F:2A:C6:FA:37:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mPTtHqVu_jfKE0-HapZfKsb6N0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190EF5/9406628E577811EE8CDF857AC4F9AE02/688DBA84577911EE8A10F47BC4F9AE02.roa Signing time: Wed 20 Sep 2023 05:49:05 +0000 ROA not before: Wed 20 Sep 2023 05:49:05 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 1221 IP address blocks: 103.226.244.0/24 maxlen: 24 103.226.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190EF5/9406628E577811EE8CDF857AC4F9AE02/mPTtHqVu_jfKE0-HapZfKsb6N0g.crl rsync://rpki.apnic.net/member_repository/A9190EF5/9406628E577811EE8CDF857AC4F9AE02/mPTtHqVu_jfKE0-HapZfKsb6N0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mPTtHqVu_jfKE0-HapZfKsb6N0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 30 Jun 2024 02:51:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190EF5/serialNumber=98F4ED1EA56EFE37CA134F876A965F2AC6FA3748 Validity Not Before: Sep 20 05:49:05 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=650a87d1-3842 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:52:f2:8a:d6:57:a4:a2:97:87:ca:d4:b9:4c: 8c:6a:1a:4f:33:66:46:e2:7a:99:6a:89:6e:dc:7d: 90:f8:53:15:d4:6c:a3:c3:48:84:cd:4f:72:22:1f: 46:d6:4e:b3:d0:cf:a1:38:77:6b:ea:1f:c3:f1:53: 78:30:23:f2:1f:eb:16:23:53:c5:d0:18:98:d9:82: f1:dd:eb:8d:4d:10:53:51:db:97:92:c2:69:24:31: f9:63:22:f2:d4:62:c2:3f:75:98:97:06:e8:72:d4: f9:1b:00:f2:2c:73:2f:3f:67:f9:2c:c7:21:4c:74: 49:6c:a3:28:1d:cf:22:51:d7:0d:da:d3:a9:83:bc: ba:9b:30:a8:5a:4c:2f:cc:ba:68:41:93:75:ac:fc: 0e:47:4a:18:28:9a:06:b6:8d:6a:92:8a:91:60:28: 5c:2d:60:f5:be:ec:f2:c9:0d:eb:19:21:b4:5c:5e: d5:52:d7:e6:9c:35:a5:c2:71:f4:df:b8:76:bb:0d: 19:88:a0:82:91:b9:c2:83:6e:73:1e:c7:ba:d8:bd: b1:20:44:e2:0e:5e:62:78:3e:ab:a7:44:18:cf:95: cc:90:c7:79:98:92:56:a5:01:5d:70:fb:81:fc:ea: 1f:c3:46:62:4d:89:33:cd:90:a7:a8:c5:b9:8c:4b: d5:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:A5:BF:49:92:FA:50:B5:42:BB:9C:A3:2C:62:F6:77:A8:B9:6F:77 X509v3 Authority Key Identifier: keyid:98:F4:ED:1E:A5:6E:FE:37:CA:13:4F:87:6A:96:5F:2A:C6:FA:37:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190EF5/9406628E577811EE8CDF857AC4F9AE02/mPTtHqVu_jfKE0-HapZfKsb6N0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mPTtHqVu_jfKE0-HapZfKsb6N0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190EF5/9406628E577811EE8CDF857AC4F9AE02/688DBA84577911EE8A10F47BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.226.244.0/23 Signature Algorithm: sha256WithRSAEncryption 03:9f:19:c0:43:5d:f8:90:bb:28:97:87:89:b3:79:9f:1e:f7: 32:c2:e7:85:e9:4b:64:33:65:68:58:8f:b7:e3:9a:1e:9e:ec: fc:bf:67:a1:17:e5:69:d4:6a:d7:92:2f:ad:b1:72:8c:c6:f4: c2:b4:f7:07:2a:ef:e2:c7:5a:ef:89:47:9b:c5:99:77:b9:09: 53:54:66:1b:a2:7d:fc:02:3f:fb:70:2a:66:e8:a3:71:36:c5: 5a:79:cb:3f:b8:4d:41:a0:8e:7e:17:83:fe:1f:93:6c:7c:cc: 3f:d2:54:de:fe:c7:08:12:58:6b:fc:34:96:52:67:bf:34:e6: 06:5f:97:67:7e:d4:58:7d:4c:9a:80:fa:73:19:68:e4:4c:05: be:09:e7:5e:20:f1:7c:b4:92:98:38:0d:53:b5:8a:f8:3e:80: 26:1d:ef:a1:74:5f:1d:8b:04:57:1c:8c:8e:dd:bc:7a:a8:4b: 76:1b:8f:d0:06:6b:4f:26:fa:87:e6:6b:96:08:74:aa:08:23: 5d:66:e8:8b:a1:8b:7f:24:a2:8b:b0:8f:ac:89:71:70:fc:5a: c9:61:2b:09:b1:55:cc:0f:19:55:b6:68:08:9f:48:4d:0b:05: 98:09:47:0b:0f:53:73:34:15:e8:97:2e:b2:a5:cb:9b:3b:23: 2a:af:25:d0 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MEVGNTExMC8GA1UEBRMoOThGNEVEMUVBNTZFRkUzN0NBMTM0Rjg3NkE5NjVGMkFD NkZBMzc0ODAeFw0yMzA5MjAwNTQ5MDVaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MGE4N2QxLTM4NDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDoUvKK1lekopeHytS5TIxqGk8zZkbieplqiW7cfZD4UxXUbKPDSITNT3IiH0bW TrPQz6E4d2vqH8PxU3gwI/If6xYjU8XQGJjZgvHd641NEFNR25eSwmkkMfljIvLU YsI/dZiXBuhy1PkbAPIscy8/Z/ksxyFMdElsoygdzyJR1w3a06mDvLqbMKhaTC/M umhBk3Ws/A5HShgomga2jWqSipFgKFwtYPW+7PLJDesZIbRcXtVS1+acNaXCcfTf uHa7DRmIoIKRucKDbnMex7rYvbEgROIOXmJ4PqunRBjPlcyQx3mYklalAV1w+4H8 6h/DRmJNiTPNkKeoxbmMS9WpAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU/6W/SZL6 ULVCu5yjLGL2d6i5b3cwHwYDVR0jBBgwFoAUmPTtHqVu/jfKE0+HapZfKsb6N0gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkwRUY1Lzk0MDY2MjhFNTc3 ODExRUU4Q0RGODU3QUM0RjlBRTAyL21QVHRIcVZ1X2pmS0UwLUhhcFpmS3NiNk4w Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbVBUdEhxVnVfamZLRTAtSGFwWmZLc2I2TjBnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MEVGNS85NDA2NjI4RTU3NzgxMUVFOENERjg1N0FDNEY5QUUwMi82ODhEQkE4NDU3 NzkxMUVFOEExMEY0N0JDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWfi9DANBgkqhkiG9w0BAQsFAAOCAQEAA58ZwENd+JC7KJeH ibN5nx73MsLnhelLZDNlaFiPt+OaHp7s/L9noRfladRq15IvrbFyjMb0wrT3Byrv 4sda74lHm8WZd7kJU1RmG6J9/AI/+3AqZuijcTbFWnnLP7hNQaCOfheD/h+TbHzM P9JU3v7HCBJYa/w0llJnvzTmBl+XZ37UWH1MmoD6cxlo5EwFvgnnXiDxfLSSmDgN U7WK+D6AJh3voXRfHYsEVxyMjt28eqhLdhuP0AZrTyb6h+Zrlgh0qggjXWboi6GL fySii7CPrIlxcPxayWErCbFVzA8ZVbZoCJ9ITQsFmAlHCw9TczQV6JcusqXLmzsj Kq8l0A== -----END CERTIFICATE-----Generated at Sun Jun 23 07:26:12 2024 by rpki-client on console-ams.rpki-client.org