$ rpki-client -vvf rpki.apnic.net/member_repository/A919992D/913329F4BBA611E68FC1212DC4F9AE02/F2E707C4CB2D11E6B15E0480C4F9AE02.roa File: F2E707C4CB2D11E6B15E0480C4F9AE02.roa (raw, json) Hash identifier: f9qgypovRby+DWYPfOeSCdkmWD4hVzcNJZsrQ+vRMZQ= Subject key identifier: 08:63:02:79:2C:63:6E:FC:72:9B:51:1B:CF:BC:8A:37:4B:22:A1:12 Certificate issuer: /CN=A919992D/serialNumber=FF7704E4A7333F69372D9F3341F8D002CB4AC0CF Certificate serial: 1BC9 Authority key identifier: FF:77:04:E4:A7:33:3F:69:37:2D:9F:33:41:F8:D0:02:CB:4A:C0:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_3cE5KczP2k3LZ8zQfjQAstKwM8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919992D/913329F4BBA611E68FC1212DC4F9AE02/F2E707C4CB2D11E6B15E0480C4F9AE02.roa Signing time: Tue 08 Aug 2023 16:33:16 +0000 ROA not before: Tue 08 Aug 2023 16:33:16 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 63998 IP address blocks: 103.61.8.0/22 maxlen: 22 103.61.8.0/22 maxlen: 24 103.61.8.0/22 maxlen: 30 103.61.8.0/23 maxlen: 23 103.61.8.0/24 maxlen: 24 103.61.9.0/24 maxlen: 24 103.61.10.0/23 maxlen: 23 103.61.10.0/24 maxlen: 24 103.61.11.0/24 maxlen: 24 2403:6a80::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919992D/913329F4BBA611E68FC1212DC4F9AE02/_3cE5KczP2k3LZ8zQfjQAstKwM8.crl rsync://rpki.apnic.net/member_repository/A919992D/913329F4BBA611E68FC1212DC4F9AE02/_3cE5KczP2k3LZ8zQfjQAstKwM8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_3cE5KczP2k3LZ8zQfjQAstKwM8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:45:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7113 (0x1bc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919992D/serialNumber=FF7704E4A7333F69372D9F3341F8D002CB4AC0CF Validity Not Before: Aug 8 16:33:16 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64d26e4c-c2ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0e:46:76:11:5d:dd:80:6d:89:1f:11:0d:5c: 85:9e:54:09:66:f4:0a:78:d7:81:a3:35:0b:ec:63: f5:7e:f5:34:41:bc:90:21:32:6e:d6:a5:b8:b8:44: 02:7f:a7:c5:83:65:5e:3b:71:ed:ea:98:ab:36:32: 95:b0:6d:b1:74:bb:74:fe:71:30:4d:2c:13:59:b0: c0:7f:12:c5:ed:39:d2:d4:f0:27:67:1c:4c:ca:02: 80:54:9a:ee:7b:77:f8:f8:02:37:23:70:39:75:6e: fa:da:97:a6:4d:22:f5:5e:d9:dd:5f:95:c1:94:02: d2:9f:5a:3e:a7:bf:fa:5b:5b:5a:52:ca:e3:2f:f5: 94:6c:1d:0e:83:a9:e6:b9:54:78:8c:6a:1d:5b:25: 5a:71:9c:01:a4:19:b3:47:6d:cc:49:38:84:db:cf: 74:93:07:95:9d:a4:9e:7f:b1:e8:6c:7e:3d:f5:13: e8:02:e6:9a:e0:94:82:8a:68:37:b9:37:a1:17:1d: 86:74:66:7e:2f:e1:57:78:a3:b4:03:42:dd:41:18: 62:2d:7b:b4:c9:39:ed:d8:2e:4a:70:e1:04:8e:c8: 5c:10:34:02:ce:3d:bb:aa:7d:cb:08:11:1f:bc:82: 0d:b8:6b:50:05:d6:5e:c1:5d:69:69:23:03:1c:6e: 8c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:63:02:79:2C:63:6E:FC:72:9B:51:1B:CF:BC:8A:37:4B:22:A1:12 X509v3 Authority Key Identifier: keyid:FF:77:04:E4:A7:33:3F:69:37:2D:9F:33:41:F8:D0:02:CB:4A:C0:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919992D/913329F4BBA611E68FC1212DC4F9AE02/_3cE5KczP2k3LZ8zQfjQAstKwM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_3cE5KczP2k3LZ8zQfjQAstKwM8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919992D/913329F4BBA611E68FC1212DC4F9AE02/F2E707C4CB2D11E6B15E0480C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.61.8.0/22 IPv6: 2403:6a80::/32 Signature Algorithm: sha256WithRSAEncryption c1:27:f5:22:12:2d:bf:1a:53:2a:df:46:4a:07:2d:97:e5:c7: 74:57:16:46:a5:58:fc:28:c5:38:c7:1b:e4:58:4f:18:b7:76: 06:ae:86:62:0d:45:64:19:ce:49:0f:30:55:89:23:e5:c9:ea: 37:af:c1:f6:aa:35:39:e5:d5:f7:35:65:80:21:a1:54:c3:f7: 90:08:24:62:4d:26:72:1e:fb:d5:9d:3d:fd:91:01:c7:b8:cb: f1:99:4b:d2:92:a6:48:bf:21:38:d9:7c:5d:6b:13:83:c7:46: d5:c9:3e:bd:90:04:dd:84:ca:f5:43:47:dd:9c:0d:29:14:4b: 07:56:6e:e2:c5:cc:88:5b:e5:8b:6c:6a:c9:92:f1:2d:a7:bf: c3:55:02:60:33:d3:b6:d8:78:fe:fd:d4:26:2b:1a:b0:af:0e: 02:e9:4a:74:1e:98:d8:e8:0e:8b:02:6d:58:af:13:6f:3a:83: 0c:b4:66:65:f4:8d:2f:ca:40:43:54:33:cd:35:46:3c:11:44: d0:98:57:db:e1:53:6c:f5:e0:dd:36:0d:51:4c:2b:a2:10:23: 6a:08:61:79:87:1b:d6:bc:78:f7:39:cc:11:b5:ab:5c:1c:f7: 14:5d:a1:32:34:08:e6:cb:34:eb:22:b3:f4:fe:a1:6f:c0:cb: ff:ec:08:27 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICG8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk5MkQxMTAvBgNVBAUTKEZGNzcwNEU0QTczMzNGNjkzNzJEOUYzMzQxRjhEMDAy Q0I0QUMwQ0YwHhcNMjMwODA4MTYzMzE2WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGQyNmU0Yy1jMmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwg5GdhFd3YBtiR8RDVyFnlQJZvQKeNeBozUL7GP1fvU0QbyQITJu1qW4uEQC f6fFg2VeO3Ht6pirNjKVsG2xdLt0/nEwTSwTWbDAfxLF7TnS1PAnZxxMygKAVJru e3f4+AI3I3A5dW762pemTSL1XtndX5XBlALSn1o+p7/6W1taUsrjL/WUbB0Og6nm uVR4jGodWyVacZwBpBmzR23MSTiE2890kweVnaSef7HobH499RPoAuaa4JSCimg3 uTehFx2GdGZ+L+FXeKO0A0LdQRhiLXu0yTnt2C5KcOEEjshcEDQCzj27qn3LCBEf vIINuGtQBdZewV1paSMDHG6MGwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAhjAnks Y278cptRG8+8ijdLIqESMB8GA1UdIwQYMBaAFP93BOSnMz9pNy2fM0H40ALLSsDP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTkyRC85MTMzMjlGNEJC QTYxMUU2OEZDMTIxMkRDNEY5QUUwMi9fM2NFNUtjelAyazNMWjh6UWZqUUFzdEt3 TTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18zY0U1S2N6UDJrM0xaOHpRZmpRQXN0S3dNOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTk5MkQvOTEzMzI5RjRCQkE2MTFFNjhGQzEyMTJEQzRGOUFFMDIvRjJFNzA3QzRD QjJEMTFFNkIxNUUwNDgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnPQgwDQQCAAIwBwMFACQDaoAwDQYJKoZIhvcNAQELBQAD ggEBAMEn9SISLb8aUyrfRkoHLZflx3RXFkalWPwoxTjHG+RYTxi3dgauhmINRWQZ zkkPMFWJI+XJ6jevwfaqNTnl1fc1ZYAhoVTD95AIJGJNJnIe+9WdPf2RAce4y/GZ S9KSpki/ITjZfF1rE4PHRtXJPr2QBN2EyvVDR92cDSkUSwdWbuLFzIhb5YtsasmS 8S2nv8NVAmAz07bYeP791CYrGrCvDgLpSnQemNjoDosCbVivE286gwy0ZmX0jS/K QENUM801RjwRRNCYV9vhU2z14N02DVFMK6IQI2oIYXmHG9a8ePc5zBG1q1wc9xRd oTI0CObLNOsis/T+oW/Ay//sCCc= -----END CERTIFICATE-----Generated at Fri May 31 17:44:50 2024 by rpki-client on console-fra.rpki-client.org