$ rpki-client -vvf rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/C73BE8A654F311E7AC64ED3AC4F9AE02.roa File: C73BE8A654F311E7AC64ED3AC4F9AE02.roa (raw, json) Hash identifier: cXCUtqyzTBSaS+66YCtz9xU+Bt6CR1gpuarL0X5WNE8= Subject key identifier: 3A:E9:EF:EE:1D:3B:59:C4:3E:5E:0A:B6:88:5D:97:12:FE:FA:EC:D9 Certificate issuer: /CN=A9196BD8/serialNumber=F97C8DACC27E9FCCD33AEB85350B26A4815F10B7 Certificate serial: 2205 Authority key identifier: F9:7C:8D:AC:C2:7E:9F:CC:D3:3A:EB:85:35:0B:26:A4:81:5F:10:B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/C73BE8A654F311E7AC64ED3AC4F9AE02.roa Signing time: Mon 28 Aug 2023 16:12:44 +0000 ROA not before: Mon 28 Aug 2023 16:12:44 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 58629 IP address blocks: 103.12.72.0/22 maxlen: 24 2001:df0:2c5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.crl rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:20:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8709 (0x2205) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196BD8/serialNumber=F97C8DACC27E9FCCD33AEB85350B26A4815F10B7 Validity Not Before: Aug 28 16:12:44 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64ecc77c-b6ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ee:bb:0c:b5:9a:b1:a8:6f:06:f6:89:03:7c: 5e:bc:6d:ad:0c:1d:42:82:6f:28:54:5d:68:6c:9d: 29:5b:2c:66:39:77:76:a5:af:88:20:d7:89:53:04: 46:5f:0d:06:8b:f9:9f:52:c2:b4:82:8a:6c:b1:0e: f5:d6:42:fa:42:af:49:b4:b5:04:2a:2d:b8:e0:7f: 62:cc:85:95:21:7e:60:16:17:06:aa:c5:38:7c:43: 00:bf:cf:cc:aa:f4:32:cb:9a:8b:16:c4:2f:84:c4: c0:94:16:61:de:a6:c8:f8:1f:1c:fc:da:ec:ac:4f: 6e:09:d8:3c:08:a0:c1:b6:fe:77:a2:6a:00:23:0c: 95:86:74:c0:4f:a2:84:12:9a:56:28:d1:30:fe:52: ee:b2:07:70:e1:58:b2:d4:4d:63:85:4c:28:58:cc: 24:6e:d1:15:ae:12:d4:b6:23:4e:ac:ef:bd:3e:5c: b7:4f:94:51:fa:fb:3b:14:da:b8:f3:1e:2f:ca:37: 37:a3:15:47:c8:62:a9:81:53:17:4d:64:55:ca:ba: b8:00:fb:f0:a3:15:a4:34:5f:91:98:c1:ed:95:22: 69:c2:3d:20:a7:9a:bf:cf:d8:0f:d8:1d:bc:14:6b: 1d:5e:71:b3:ea:20:03:10:ba:94:2d:25:96:9a:bc: 27:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:E9:EF:EE:1D:3B:59:C4:3E:5E:0A:B6:88:5D:97:12:FE:FA:EC:D9 X509v3 Authority Key Identifier: keyid:F9:7C:8D:AC:C2:7E:9F:CC:D3:3A:EB:85:35:0B:26:A4:81:5F:10:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/C73BE8A654F311E7AC64ED3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.12.72.0/22 IPv6: 2001:df0:2c5::/48 Signature Algorithm: sha256WithRSAEncryption 19:21:d8:4c:20:31:f6:84:9f:3d:36:59:a3:67:79:3c:2f:2f: 72:ae:64:a8:41:7e:b5:d3:78:55:b4:f1:aa:41:9e:87:9e:34: 69:ae:d6:a8:d2:8f:80:6a:f0:59:db:6e:b2:41:eb:c5:86:de: 94:e6:dc:8e:13:4f:37:89:fe:ad:f4:01:96:4f:ca:5b:94:6e: bb:76:1a:de:7b:89:b2:c9:38:18:f4:08:47:88:eb:15:ee:46: 15:aa:49:fb:2c:f4:fb:cc:ae:1e:79:fb:3f:fb:e8:b9:d6:62: ad:39:67:ec:01:2b:a9:b3:9e:41:5d:a3:ea:e9:ab:f0:35:ac: 5b:2f:ac:e4:b8:8a:b8:c4:02:22:49:33:5c:85:b6:c1:d3:af: b7:b0:a0:d4:5b:89:c9:f7:ea:dc:6e:a8:7f:ee:86:f1:ee:80: b4:10:70:f4:1e:6f:d3:45:02:fc:72:54:f9:08:b6:90:63:9d: 9c:72:18:39:a4:ac:d0:32:e8:d8:5c:cd:96:53:75:da:cf:5f: 42:61:66:22:76:e3:8e:68:bd:4d:4f:0b:bc:50:91:3f:22:e1: c8:27:4f:35:65:fd:94:a7:2d:aa:2a:6d:5f:0a:67:18:ae:b6: 1a:d7:97:e2:cd:f4:31:ee:ad:c4:93:d3:b3:ec:54:75:16:c4: f6:c9:10:5c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICIgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZCRDgxMTAvBgNVBAUTKEY5N0M4REFDQzI3RTlGQ0NEMzNBRUI4NTM1MEIyNkE0 ODE1RjEwQjcwHhcNMjMwODI4MTYxMjQ0WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVjYzc3Yy1iNmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5e67DLWasahvBvaJA3xevG2tDB1Cgm8oVF1obJ0pWyxmOXd2pa+IINeJUwRG Xw0Gi/mfUsK0gopssQ711kL6Qq9JtLUEKi244H9izIWVIX5gFhcGqsU4fEMAv8/M qvQyy5qLFsQvhMTAlBZh3qbI+B8c/NrsrE9uCdg8CKDBtv53omoAIwyVhnTAT6KE EppWKNEw/lLusgdw4Viy1E1jhUwoWMwkbtEVrhLUtiNOrO+9Ply3T5RR+vs7FNq4 8x4vyjc3oxVHyGKpgVMXTWRVyrq4APvwoxWkNF+RmMHtlSJpwj0gp5q/z9gP2B28 FGsdXnGz6iADELqULSWWmrwnewIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDrp7+4d O1nEPl4KtohdlxL++uzZMB8GA1UdIwQYMBaAFPl8jazCfp/M0zrrhTULJqSBXxC3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkJEOC9DNTgzRDIzMjg3 QTIxMUU1OUU1MUYyNTFDNEY5QUUwMi8tWHlOck1KLW44elRPdXVGTlFzbXBJRmZF TGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YeU5yTUotbjh6VE91dUZOUXNtcElGZkVMYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTZCRDgvQzU4M0QyMzI4N0EyMTFFNTlFNTFGMjUxQzRGOUFFMDIvQzczQkU4QTY1 NEYzMTFFN0FDNjRFRDNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnDEgwDwQCAAIwCQMHACABDfACxTANBgkqhkiG9w0BAQsF AAOCAQEAGSHYTCAx9oSfPTZZo2d5PC8vcq5kqEF+tdN4VbTxqkGeh540aa7WqNKP gGrwWdtuskHrxYbelObcjhNPN4n+rfQBlk/KW5Ruu3Ya3nuJssk4GPQIR4jrFe5G FapJ+yz0+8yuHnn7P/voudZirTln7AErqbOeQV2j6umr8DWsWy+s5LiKuMQCIkkz XIW2wdOvt7Cg1FuJyffq3G6of+6G8e6AtBBw9B5v00UC/HJU+Qi2kGOdnHIYOaSs 0DLo2FzNllN12s9fQmFmInbjjmi9TU8LvFCRPyLhyCdPNWX9lKctqiptXwpnGK62 GteX4s30Me6txJPTs+xUdRbE9skQXA== -----END CERTIFICATE-----Generated at Fri May 31 20:34:10 2024 by rpki-client on console-ams.rpki-client.org