$ rpki-client -vvf rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/42D0E9A4AFD911E7B8A7E96CC4F9AE02.roa File: 42D0E9A4AFD911E7B8A7E96CC4F9AE02.roa (raw, json) Hash identifier: xoIXW6TCjNLsVuPia3043Qf+XP8C2oeAFUHVrNh01ss= Subject key identifier: 01:49:B7:4B:EA:A4:8C:D8:8E:C6:5B:B7:B1:B5:71:D8:C3:86:FD:FD Certificate issuer: /CN=A9194A58/serialNumber=40BD25A2D6031873E55DFCDDAD3A48F7BCF88C8B Certificate serial: 1713 Authority key identifier: 40:BD:25:A2:D6:03:18:73:E5:5D:FC:DD:AD:3A:48:F7:BC:F8:8C:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/42D0E9A4AFD911E7B8A7E96CC4F9AE02.roa Signing time: Mon 30 Oct 2023 17:04:16 +0000 ROA not before: Mon 30 Oct 2023 17:04:16 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 137023 IP address blocks: 103.102.27.0/24 maxlen: 24 103.130.11.0/24 maxlen: 24 103.131.180.0/24 maxlen: 24 103.131.181.0/24 maxlen: 24 2401:dec0::/32 maxlen: 32 2401:dec0::/33 maxlen: 33 2401:dec0:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.crl rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 17:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5907 (0x1713) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194A58/serialNumber=40BD25A2D6031873E55DFCDDAD3A48F7BCF88C8B Validity Not Before: Oct 30 17:04:16 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=653fe210-7c98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:ad:8a:3a:7e:7d:9b:77:3f:2b:f5:1a:d2:44: a9:bd:47:61:ec:54:ae:a5:dc:8c:25:b4:66:5c:fa: 3b:28:6a:4a:06:c0:39:70:91:b7:1e:6e:7c:ef:24: e4:be:6e:80:b6:35:b1:ed:89:7a:29:50:a1:aa:c0: 49:e1:b2:b4:6f:f8:98:a7:f1:1d:4b:b2:f3:b8:9d: 10:de:78:e2:e6:2f:7c:ee:68:d5:09:92:bc:31:33: 78:59:9a:0b:31:d7:a3:bc:f2:6a:7d:d1:52:93:d7: 5c:00:ac:de:6a:c3:79:a3:98:76:a7:5d:c6:c3:10: 30:3b:c9:79:df:26:fa:fd:ec:fd:ce:f8:45:e8:6f: b7:bb:df:19:91:04:9f:a9:d0:75:7a:22:ea:31:32: f8:ec:1a:e6:2e:4d:f3:79:c3:90:f8:26:af:fe:89: 52:bd:78:99:3f:e1:ea:0c:17:39:58:9b:32:70:85: 8f:24:7c:ad:33:72:0e:fb:2c:a6:b1:77:e8:0c:3c: d8:90:84:d4:6a:e6:9c:0a:60:49:dc:8c:45:8a:3d: 4a:b7:df:d7:b8:74:d8:90:44:d3:38:c2:09:9f:84: e4:7d:27:79:17:27:1b:7b:6f:88:90:f3:17:e2:87: a5:d8:93:0d:82:b2:0b:cb:cf:be:27:39:b9:58:28: c8:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:49:B7:4B:EA:A4:8C:D8:8E:C6:5B:B7:B1:B5:71:D8:C3:86:FD:FD X509v3 Authority Key Identifier: keyid:40:BD:25:A2:D6:03:18:73:E5:5D:FC:DD:AD:3A:48:F7:BC:F8:8C:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/42D0E9A4AFD911E7B8A7E96CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.102.27.0/24 103.130.11.0/24 103.131.180.0/23 IPv6: 2401:dec0::/32 Signature Algorithm: sha256WithRSAEncryption 1c:8e:90:b3:c1:de:aa:3f:1d:4c:bb:fd:75:f3:54:2e:81:0a: 22:17:ac:07:4d:43:8d:cc:be:34:d7:dd:1f:37:6d:69:b5:56: 8c:39:5d:54:9a:b2:b9:4e:1c:17:75:72:06:95:0d:ef:32:27: ea:74:4a:82:eb:a3:b7:32:1e:cf:c5:75:10:d9:49:f5:1a:67: 27:df:28:69:73:c6:08:53:00:19:3b:db:57:2e:2e:4a:1d:bb: 35:35:9b:c6:54:e1:d2:8d:9b:ba:f5:3f:56:b8:97:cd:57:47: c4:8e:6c:b3:9a:12:6b:f6:16:19:c7:4c:ac:cd:b5:5d:41:d6: 53:4b:7a:8f:cf:a7:7a:96:35:23:09:87:c2:34:e2:57:66:f3: 40:42:0d:fd:c0:66:58:83:76:17:99:ce:b1:fe:d7:a7:d6:72: 2a:9a:33:21:f8:30:b9:53:cf:6e:ed:22:43:12:00:b1:05:0d: ac:f4:38:66:2c:9c:0a:e9:7f:ae:c5:66:e2:87:22:94:ab:25: 0d:85:b6:3b:9b:11:4e:75:80:f6:51:2e:e9:52:6b:57:11:5d: c4:16:34:14:0f:a0:8a:a0:8d:a8:7e:b1:95:2a:2c:fe:80:ca: de:38:b9:d5:9a:43:5f:ef:df:f7:c2:ac:92:1b:ad:e9:ab:12: 81:87:06:97 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICFxMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRBNTgxMTAvBgNVBAUTKDQwQkQyNUEyRDYwMzE4NzNFNTVERkNEREFEM0E0OEY3 QkNGODhDOEIwHhcNMjMxMDMwMTcwNDE2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTNmZTIxMC03Yzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnK2KOn59m3c/K/Ua0kSpvUdh7FSupdyMJbRmXPo7KGpKBsA5cJG3Hm587yTk vm6AtjWx7Yl6KVChqsBJ4bK0b/iYp/EdS7LzuJ0Q3nji5i987mjVCZK8MTN4WZoL MdejvPJqfdFSk9dcAKzeasN5o5h2p13GwxAwO8l53yb6/ez9zvhF6G+3u98ZkQSf qdB1eiLqMTL47BrmLk3zecOQ+Cav/olSvXiZP+HqDBc5WJsycIWPJHytM3IO+yym sXfoDDzYkITUauacCmBJ3IxFij1Kt9/XuHTYkETTOMIJn4TkfSd5Fycbe2+IkPMX 4oel2JMNgrILy8++Jzm5WCjIAQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFAFJt0vq pIzYjsZbt7G1cdjDhv39MB8GA1UdIwQYMBaAFEC9JaLWAxhz5V383a06SPe8+IyL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEE1OC80RUFDRTQ5MEFF NDMxMUU3ODgxQzY0MTZDNEY5QUUwMi9RTDBsb3RZREdIUGxYZnpkclRwSTk3ejRq SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FMMGxvdFlER0hQbFhmemRyVHBJOTd6NGpJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTRBNTgvNEVBQ0U0OTBBRTQzMTFFNzg4MUM2NDE2QzRGOUFFMDIvNDJEMEU5QTRB RkQ5MTFFN0I4QTdFOTZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBABnZhsDBABnggsDBAFng7QwDQQCAAIwBwMFACQB3sAwDQYJ KoZIhvcNAQELBQADggEBAByOkLPB3qo/HUy7/XXzVC6BCiIXrAdNQ43MvjTX3R83 bWm1Vow5XVSasrlOHBd1cgaVDe8yJ+p0SoLro7cyHs/FdRDZSfUaZyffKGlzxghT ABk721cuLkoduzU1m8ZU4dKNm7r1P1a4l81XR8SObLOaEmv2FhnHTKzNtV1B1lNL eo/Pp3qWNSMJh8I04ldm80BCDf3AZliDdheZzrH+16fWciqaMyH4MLlTz27tIkMS ALEFDaz0OGYsnArpf67FZuKHIpSrJQ2FtjubEU51gPZRLulSa1cRXcQWNBQPoIqg jah+sZUqLP6Ayt44udWaQ1/v3/fCrJIbremrEoGHBpc= -----END CERTIFICATE-----Generated at Fri May 31 19:47:51 2024 by rpki-client on console-fra.rpki-client.org