$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/F6FAEC5CCB0411EEAB05F93CC4F9AE02.roa File: F6FAEC5CCB0411EEAB05F93CC4F9AE02.roa (raw, json) Hash identifier: txFXdabrwb9rotse9oV5dX9NAzYwQjuUobWlYcV7Wo0= Subject key identifier: D5:15:1F:57:8E:25:3F:8F:9B:C3:CA:8A:54:A7:6C:B4:39:B3:CB:FC Certificate issuer: /CN=A9194C0D/serialNumber=634E28B1002E556E8EB14F953EAD63B6D6775809 Certificate serial: 6D Authority key identifier: 63:4E:28:B1:00:2E:55:6E:8E:B1:4F:95:3E:AD:63:B6:D6:77:58:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/F6FAEC5CCB0411EEAB05F93CC4F9AE02.roa Signing time: Wed 14 Feb 2024 06:48:36 +0000 ROA not before: Wed 14 Feb 2024 06:48:36 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 134090 IP address blocks: 45.249.116.0/22 maxlen: 24 103.51.112.0/22 maxlen: 24 103.85.36.0/22 maxlen: 24 103.95.112.0/22 maxlen: 24 103.106.88.0/22 maxlen: 24 123.253.188.0/22 maxlen: 24 202.128.112.0/20 maxlen: 20 202.128.112.0/21 maxlen: 24 202.128.120.0/21 maxlen: 24 202.179.128.0/22 maxlen: 24 2400:a840::/31 maxlen: 34 2400:a842::/31 maxlen: 34 2400:a844::/31 maxlen: 34 2400:a846::/31 maxlen: 34 2400:a848::/31 maxlen: 34 2400:a84a::/31 maxlen: 34 2400:a84c::/31 maxlen: 34 2400:a84e::/31 maxlen: 34 2402:2c80::/32 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.crl rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:33:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194C0D/serialNumber=634E28B1002E556E8EB14F953EAD63B6D6775809 Validity Not Before: Feb 14 06:48:36 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65cc6244-d98d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:38:22:b0:85:d6:d5:0b:51:05:43:9b:88:73: fe:16:2f:ce:15:94:95:c3:aa:b8:7f:ab:7d:09:67: e5:37:02:81:a4:23:99:78:79:ca:08:69:09:23:72: ac:52:cf:da:e1:42:2c:32:c9:98:0c:e2:de:66:d0: 71:26:d3:8c:ec:c7:9a:e2:35:db:0c:fc:d7:6a:d9: bb:61:c8:da:2a:2e:bc:d3:a4:7e:ad:48:a7:b8:a3: 32:ac:17:6c:b4:c1:6a:b9:8d:fe:9a:64:99:02:83: f1:54:2c:26:8c:86:7e:9c:76:e4:18:87:79:b7:8b: d1:ae:88:a5:48:a3:e6:73:d2:de:2b:a8:e2:ed:03: 5e:5a:6b:dc:ef:8c:61:41:43:75:31:1b:a3:51:dd: 74:03:fc:4d:9f:c0:21:6f:64:13:1f:43:fd:75:34: b5:72:64:36:fe:4a:45:ee:ea:7f:3a:ed:7e:db:99: 9a:cd:4e:74:71:9e:67:b7:9c:31:dd:e7:9c:bc:7f: e7:fd:8b:72:bb:d3:75:fd:35:d4:f2:1b:b7:df:36: cc:77:44:e4:54:e5:d8:0f:41:de:ab:e7:09:83:cc: 09:a2:16:f0:71:de:b2:c6:b8:61:81:ae:c2:c6:e7: 83:33:93:cf:49:29:09:fb:04:6f:62:62:d1:02:0a: 7b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:15:1F:57:8E:25:3F:8F:9B:C3:CA:8A:54:A7:6C:B4:39:B3:CB:FC X509v3 Authority Key Identifier: keyid:63:4E:28:B1:00:2E:55:6E:8E:B1:4F:95:3E:AD:63:B6:D6:77:58:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/F6FAEC5CCB0411EEAB05F93CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.249.116.0/22 103.51.112.0/22 103.85.36.0/22 103.95.112.0/22 103.106.88.0/22 123.253.188.0/22 202.128.112.0/20 202.179.128.0/22 IPv6: 2400:a840::/28 2402:2c80::/32 Signature Algorithm: sha256WithRSAEncryption 25:42:a4:20:5c:52:b2:7d:18:21:35:fb:c6:6b:73:e9:04:f9: fc:90:8a:9d:0a:cf:c5:6b:0f:89:63:32:ae:d1:ac:47:a2:d3: 39:8c:3b:f4:52:11:29:17:2e:e3:b3:d3:14:aa:a5:c0:ec:ad: b0:67:49:f4:5c:31:ed:2f:69:70:1e:21:45:ec:27:e1:47:6b: 01:4c:da:90:1c:d3:40:2e:ed:4c:3e:51:66:94:f1:b8:71:46: 9f:40:1e:e4:0b:8b:39:4e:4d:06:36:ad:9f:f6:d8:06:db:07: f0:0b:2d:0b:c8:9f:be:bb:0c:1d:bd:79:61:2f:6f:c9:66:cb: cb:41:3f:58:37:c8:44:8e:33:e2:eb:d3:51:96:f6:ad:f0:c9: 82:af:1f:37:a2:78:8c:3c:46:ef:4b:09:a5:7c:42:4f:15:0b: a8:5d:5e:ae:e0:65:61:51:85:34:b9:7f:d3:20:4e:33:93:e9: 31:ab:b5:4c:51:76:cd:d2:e8:62:d7:25:33:0c:ae:6e:7f:5a: 2e:ba:cb:7c:ca:c5:f1:2d:46:03:47:d6:28:fc:85:a0:9d:a5: 4e:3d:9f:56:72:60:5b:1d:80:32:6a:cc:94:37:11:dd:cd:2b: ea:9f:dc:6c:c9:a2:25:bf:d7:2b:62:8a:ae:c7:18:67:3d:c6: 07:e5:8d:29 -----BEGIN CERTIFICATE----- MIIFsDCCBJigAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NEMwRDExMC8GA1UEBRMoNjM0RTI4QjEwMDJFNTU2RThFQjE0Rjk1M0VBRDYzQjZE Njc3NTgwOTAeFw0yNDAyMTQwNjQ4MzZaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1Y2M2MjQ0LWQ5OGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDOCKwhdbVC1EFQ5uIc/4WL84VlJXDqrh/q30JZ+U3AoGkI5l4ecoIaQkjcqxS z9rhQiwyyZgM4t5m0HEm04zsx5riNdsM/Ndq2bthyNoqLrzTpH6tSKe4ozKsF2y0 wWq5jf6aZJkCg/FULCaMhn6cduQYh3m3i9GuiKVIo+Zz0t4rqOLtA15aa9zvjGFB Q3UxG6NR3XQD/E2fwCFvZBMfQ/11NLVyZDb+SkXu6n867X7bmZrNTnRxnme3nDHd 55y8f+f9i3K703X9NdTyG7ffNsx3RORU5dgPQd6r5wmDzAmiFvBx3rLGuGGBrsLG 54Mzk89JKQn7BG9iYtECCnulAgMBAAGjggLVMIIC0TAdBgNVHQ4EFgQU1RUfV44l P4+bw8qKVKdstDmzy/wwHwYDVR0jBBgwFoAUY04osQAuVW6OsU+VPq1jttZ3WAkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk0QzBEL0FEMjU4ODkwNTc1 NDExRUU5NDBDRDk1NEM0RjlBRTAyL1kwNG9zUUF1Vlc2T3NVLVZQcTFqdHRaM1dB ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWTA0b3NRQXVWVzZPc1UtVlBxMWp0dFozV0FrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEMwRC9BRDI1ODg5MDU3NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9GNkZBRUM1Q0NC MDQxMUVFQUIwNUY5M0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDBfBggrBgEFBQcBBwEB/wRQ ME4wNgQCAAEwMAMEAi35dAMEAmczcAMEAmdVJAMEAmdfcAMEAmdqWAMEAnv9vAME BMqAcAMEAsqzgDAUBAIAAjAOAwUEJACoQAMFACQCLIAwDQYJKoZIhvcNAQELBQAD ggEBACVCpCBcUrJ9GCE1+8Zrc+kE+fyQip0Kz8VrD4ljMq7RrEei0zmMO/RSESkX LuOz0xSqpcDsrbBnSfRcMe0vaXAeIUXsJ+FHawFM2pAc00Au7Uw+UWaU8bhxRp9A HuQLizlOTQY2rZ/22AbbB/ALLQvIn767DB29eWEvb8lmy8tBP1g3yESOM+Lr01GW 9q3wyYKvHzeieIw8Ru9LCaV8Qk8VC6hdXq7gZWFRhTS5f9MgTjOT6TGrtUxRds3S 6GLXJTMMrm5/Wi66y3zKxfEtRgNH1ij8haCdpU49n1ZyYFsdgDJqzJQ3Ed3NK+qf 3GzJoiW/1ytiiq7HGGc9xgfljSk= -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:21 2024 by rpki-client on console-ams.rpki-client.org