$ rpki-client -vvf rpki.apnic.net/member_repository/A9192B60/B32F3E7208E311ED83640C21C4F9AE02/2475821008E611EDA969EC24C4F9AE02.roa File: 2475821008E611EDA969EC24C4F9AE02.roa (raw, json) Hash identifier: s/PFH4sFKBMsDOi1l2qBULkXK8psSYn1pjwjF5Izh9g= Subject key identifier: BF:14:30:98:01:F8:8D:BA:D7:3C:58:35:54:83:A5:EF:8E:1F:E4:3A Certificate issuer: /CN=A9192B60/serialNumber=13E1899C23FEB07FE13162EB103CC3C038D70824 Certificate serial: 0130 Authority key identifier: 13:E1:89:9C:23:FE:B0:7F:E1:31:62:EB:10:3C:C3:C0:38:D7:08:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E-GJnCP-sH_hMWLrEDzDwDjXCCQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192B60/B32F3E7208E311ED83640C21C4F9AE02/2475821008E611EDA969EC24C4F9AE02.roa Signing time: Wed 19 Jul 2023 03:23:01 +0000 ROA not before: Wed 19 Jul 2023 03:23:01 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 140267 IP address blocks: 103.191.158.0/24 maxlen: 24 103.191.159.0/24 maxlen: 24 2001:df1:540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192B60/B32F3E7208E311ED83640C21C4F9AE02/E-GJnCP-sH_hMWLrEDzDwDjXCCQ.crl rsync://rpki.apnic.net/member_repository/A9192B60/B32F3E7208E311ED83640C21C4F9AE02/E-GJnCP-sH_hMWLrEDzDwDjXCCQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E-GJnCP-sH_hMWLrEDzDwDjXCCQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:39:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192B60/serialNumber=13E1899C23FEB07FE13162EB103CC3C038D70824 Validity Not Before: Jul 19 03:23:01 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64b75715-8c39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f6:dc:a2:29:0a:ed:78:60:a4:b1:15:2d:5f: 19:06:b8:21:e3:c8:4d:85:bc:ac:f9:86:a8:43:fe: 42:a0:c2:69:54:c4:f8:db:23:d4:91:9c:2d:12:47: 02:98:d9:a2:8e:b6:53:8f:04:d5:96:be:de:fc:f8: 97:04:4e:89:9c:2e:d3:67:05:59:3d:dc:05:53:29: 32:da:62:fd:cc:6a:99:de:d8:26:35:c9:57:e5:e9: a3:3c:7f:7f:f0:9e:37:8c:3e:12:de:ea:ba:07:71: f5:f5:38:12:60:78:ef:bf:0b:8e:3f:6a:02:ef:1c: 01:0b:49:58:db:79:5d:87:f5:77:ce:81:af:0e:00: c3:96:c0:f2:f5:a9:6f:11:6a:cb:f4:d3:e7:5d:10: 23:8b:03:5d:0d:93:94:f8:d4:f8:a9:a3:59:0f:7b: a1:21:4c:e6:46:05:d5:9c:72:78:3e:66:4c:c2:4b: ba:d0:41:8c:af:85:38:81:11:2f:b5:a8:06:17:03: ac:89:44:31:9b:20:c5:09:b7:a2:0a:e1:3a:86:c2: 1b:d8:29:78:bc:18:37:ef:10:71:dc:be:59:7c:30: 28:97:5b:4f:12:b1:df:24:c2:96:99:dd:03:86:2e: 64:d7:b6:85:f3:d0:ee:a8:c6:01:22:bc:58:22:d6: 0a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:14:30:98:01:F8:8D:BA:D7:3C:58:35:54:83:A5:EF:8E:1F:E4:3A X509v3 Authority Key Identifier: keyid:13:E1:89:9C:23:FE:B0:7F:E1:31:62:EB:10:3C:C3:C0:38:D7:08:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192B60/B32F3E7208E311ED83640C21C4F9AE02/E-GJnCP-sH_hMWLrEDzDwDjXCCQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E-GJnCP-sH_hMWLrEDzDwDjXCCQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192B60/B32F3E7208E311ED83640C21C4F9AE02/2475821008E611EDA969EC24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.191.158.0/23 IPv6: 2001:df1:540::/48 Signature Algorithm: sha256WithRSAEncryption da:e9:8a:91:ff:fd:38:17:eb:7b:86:29:6c:81:0f:23:fa:77: 2f:14:ce:1a:ae:b9:1d:9e:84:bd:ad:47:e1:d8:07:a2:a9:6d: 1e:64:c8:65:6f:92:77:f5:c1:d6:ea:a7:69:7b:ae:ff:21:9b: 52:81:e5:06:86:20:a8:4e:8d:0d:e7:13:d8:c2:9f:13:d6:20: 01:3d:fa:6c:95:af:e1:0b:69:15:ba:7c:92:06:19:57:54:2a: c1:e8:7e:21:cf:28:43:64:ae:c8:13:01:36:fb:62:97:cd:65: a9:70:b4:99:40:a4:bb:03:dc:21:31:de:c2:63:40:b7:75:91: 7c:9b:42:77:b0:fa:76:60:10:ef:12:00:d8:8f:aa:e0:98:04: 25:f9:92:da:74:0a:a0:fe:24:d6:9d:a3:2d:c6:92:e1:68:76: ca:4d:8f:42:69:55:f8:48:f4:42:8e:b6:88:85:3b:ad:48:f2: 45:06:7b:8a:0a:56:de:52:99:b0:28:65:ed:9e:39:86:d6:5f: 9b:04:ba:ca:f8:03:5f:62:e8:b8:24:19:ff:09:cc:7c:50:51: 0c:c4:a9:8e:14:8b:5c:29:9b:66:70:64:e8:67:e8:bf:87:bc: b8:bb:12:8e:f9:9b:fb:77:af:ea:05:d7:60:fe:92:55:7d:42: ec:a4:59:4a -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJCNjAxMTAvBgNVBAUTKDEzRTE4OTlDMjNGRUIwN0ZFMTMxNjJFQjEwM0NDM0Mw MzhENzA4MjQwHhcNMjMwNzE5MDMyMzAxWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGI3NTcxNS04YzM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPbcoikK7XhgpLEVLV8ZBrgh48hNhbys+YaoQ/5CoMJpVMT42yPUkZwtEkcC mNmijrZTjwTVlr7e/PiXBE6JnC7TZwVZPdwFUyky2mL9zGqZ3tgmNclX5emjPH9/ 8J43jD4S3uq6B3H19TgSYHjvvwuOP2oC7xwBC0lY23ldh/V3zoGvDgDDlsDy9alv EWrL9NPnXRAjiwNdDZOU+NT4qaNZD3uhIUzmRgXVnHJ4PmZMwku60EGMr4U4gREv tagGFwOsiUQxmyDFCbeiCuE6hsIb2Cl4vBg37xBx3L5ZfDAol1tPErHfJMKWmd0D hi5k17aF89DuqMYBIrxYItYKTwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFL8UMJgB +I261zxYNVSDpe+OH+Q6MB8GA1UdIwQYMBaAFBPhiZwj/rB/4TFi6xA8w8A41wgk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkI2MC9CMzJGM0U3MjA4 RTMxMUVEODM2NDBDMjFDNEY5QUUwMi9FLUdKbkNQLXNIX2hNV0xyRUR6RHdEalhD Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0UtR0puQ1Atc0hfaE1XTHJFRHpEd0RqWENDUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTJCNjAvQjMyRjNFNzIwOEUzMTFFRDgzNjQwQzIxQzRGOUFFMDIvMjQ3NTgyMTAw OEU2MTFFREE5NjlFQzI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnv54wDwQCAAIwCQMHACABDfEFQDANBgkqhkiG9w0BAQsF AAOCAQEA2umKkf/9OBfre4YpbIEPI/p3LxTOGq65HZ6Eva1H4dgHoqltHmTIZW+S d/XB1uqnaXuu/yGbUoHlBoYgqE6NDecT2MKfE9YgAT36bJWv4QtpFbp8kgYZV1Qq weh+Ic8oQ2SuyBMBNvtil81lqXC0mUCkuwPcITHewmNAt3WRfJtCd7D6dmAQ7xIA 2I+q4JgEJfmS2nQKoP4k1p2jLcaS4Wh2yk2PQmlV+Ej0Qo62iIU7rUjyRQZ7igpW 3lKZsChl7Z45htZfmwS6yvgDX2LouCQZ/wnMfFBRDMSpjhSLXCmbZnBk6Gfov4e8 uLsSjvmb+3ev6gXXYP6SVX1C7KRZSg== -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:22 2024 by rpki-client on console-ams.rpki-client.org