$ rpki-client -vvf rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/6DCAE03219E011EBB6529F58C4F9AE02.roa File: 6DCAE03219E011EBB6529F58C4F9AE02.roa (raw, json) Hash identifier: eSOpHMxFYoCqWhMTOPbWZdLo9wTwIlVZN08iovkhPSI= Subject key identifier: 4B:2F:46:94:B2:F9:E4:AF:25:96:92:AC:5B:88:70:61:45:87:D8:C6 Certificate issuer: /CN=A9116D68/serialNumber=5CE59BEA40493FCC5746716922F1988D96291FBE Certificate serial: 06D7 Authority key identifier: 5C:E5:9B:EA:40:49:3F:CC:57:46:71:69:22:F1:98:8D:96:29:1F:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOWb6kBJP8xXRnFpIvGYjZYpH74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/6DCAE03219E011EBB6529F58C4F9AE02.roa Signing time: Fri 26 May 2023 19:29:20 +0000 ROA not before: Fri 26 May 2023 19:29:20 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136419 IP address blocks: 103.87.36.0/24 maxlen: 24 103.87.236.0/23 maxlen: 24 103.87.238.0/24 maxlen: 24 2001:df0:7700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/XOWb6kBJP8xXRnFpIvGYjZYpH74.crl rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/XOWb6kBJP8xXRnFpIvGYjZYpH74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOWb6kBJP8xXRnFpIvGYjZYpH74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Jun 2024 18:37:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1751 (0x6d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116D68/serialNumber=5CE59BEA40493FCC5746716922F1988D96291FBE Validity Not Before: May 26 19:29:20 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64710890-5ce2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:aa:f1:15:f5:e7:94:57:88:5d:15:71:a6:97: 8b:3b:21:05:b5:b8:8d:7a:fe:98:43:56:97:c7:cf: c8:c2:9a:ce:c8:b1:49:c9:e9:8a:6b:f0:d8:f9:75: fa:29:15:54:4a:8d:8c:00:49:08:44:be:05:38:ac: d3:f4:36:c6:0e:a6:d8:01:62:4c:e2:6d:18:92:bc: 47:c5:35:62:4c:0b:c0:cd:09:57:ea:d1:ee:60:ce: bc:8c:44:72:ab:92:f2:3c:34:51:c3:6a:56:eb:0a: 73:8e:f0:a8:86:ef:ec:6b:1d:89:3a:3d:e5:5f:08: 3e:1c:3c:32:ec:a2:45:fa:d3:a7:a0:08:df:91:67: 3a:65:0e:97:6d:e8:73:28:39:19:b8:c5:12:1f:18: ac:ab:16:73:08:7b:16:98:e2:b3:47:eb:c8:e2:6f: a4:5b:93:9c:8a:92:23:cf:f8:07:81:37:7e:57:e4: de:3e:36:9b:f2:08:50:a4:1b:25:6b:84:62:c8:6e: ed:f4:de:d7:3d:e0:7e:56:2b:ab:60:3b:22:05:fc: 95:0f:47:e8:05:63:d4:3f:16:d5:d3:8c:fa:e0:31: c3:ae:f3:d6:fe:d3:ef:3b:95:62:0c:54:ac:b3:bc: 69:03:9c:bf:01:1b:a5:86:6d:32:16:69:7c:04:1c: f2:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:2F:46:94:B2:F9:E4:AF:25:96:92:AC:5B:88:70:61:45:87:D8:C6 X509v3 Authority Key Identifier: keyid:5C:E5:9B:EA:40:49:3F:CC:57:46:71:69:22:F1:98:8D:96:29:1F:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/XOWb6kBJP8xXRnFpIvGYjZYpH74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOWb6kBJP8xXRnFpIvGYjZYpH74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/6DCAE03219E011EBB6529F58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.87.36.0/24 103.87.236.0-103.87.238.255 IPv6: 2001:df0:7700::/48 Signature Algorithm: sha256WithRSAEncryption a7:1e:04:6f:14:20:f6:66:06:4f:1f:05:5e:77:76:e1:69:a5: 12:d0:35:e0:31:60:a3:7f:b0:bd:bf:08:9d:0d:c6:03:95:62: 39:29:08:61:f0:fe:ad:ef:98:ab:ba:4e:ce:a6:24:b3:0e:37: e7:b8:97:87:69:36:ee:dc:98:bf:f1:e4:7b:63:88:dd:2d:13: de:f3:c3:9e:ce:8d:09:18:fa:13:e4:eb:b6:52:82:3e:2f:96: 2c:82:f0:cb:21:29:d4:12:03:aa:8c:77:6d:f2:7c:7c:6d:67: 3b:d8:cd:eb:e4:03:0e:39:59:3b:d7:08:36:ed:f1:14:20:09: c8:b3:31:43:09:8d:3b:24:05:03:0a:81:31:26:29:91:ec:c6: 7c:be:fd:85:42:94:76:7d:5e:54:c6:85:6a:ad:b4:cd:bc:62: c7:ef:c8:23:ad:b0:ec:f9:ed:7e:44:d7:a8:09:08:10:d0:a8: 40:c9:86:24:89:73:ae:ed:e7:6b:13:0a:11:3b:43:2d:aa:fa: cc:c6:72:13:ea:f5:81:19:e1:68:ed:4a:61:50:0b:bb:ce:37: 04:42:0c:6c:e1:53:2e:8b:87:80:28:cc:e3:ef:2e:28:9d:ff: 11:1e:c8:fc:6b:15:85:14:b6:78:0b:f9:ef:ef:90:6e:25:a7: 91:1d:1a:8f -----BEGIN CERTIFICATE----- MIIFkDCCBHigAwIBAgICBtcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZENjgxMTAvBgNVBAUTKDVDRTU5QkVBNDA0OTNGQ0M1NzQ2NzE2OTIyRjE5ODhE OTYyOTFGQkUwHhcNMjMwNTI2MTkyOTIwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDcxMDg5MC01Y2UyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1KrxFfXnlFeIXRVxppeLOyEFtbiNev6YQ1aXx8/IwprOyLFJyemKa/DY+XX6 KRVUSo2MAEkIRL4FOKzT9DbGDqbYAWJM4m0YkrxHxTViTAvAzQlX6tHuYM68jERy q5LyPDRRw2pW6wpzjvCohu/sax2JOj3lXwg+HDwy7KJF+tOnoAjfkWc6ZQ6Xbehz KDkZuMUSHxisqxZzCHsWmOKzR+vI4m+kW5OcipIjz/gHgTd+V+TePjab8ghQpBsl a4RiyG7t9N7XPeB+ViurYDsiBfyVD0foBWPUPxbV04z64DHDrvPW/tPvO5ViDFSs s7xpA5y/ARulhm0yFml8BBzy6QIDAQABo4ICtDCCArAwHQYDVR0OBBYEFEsvRpSy +eSvJZaSrFuIcGFFh9jGMB8GA1UdIwQYMBaAFFzlm+pAST/MV0ZxaSLxmI2WKR++ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkQ2OC83MjRDQzg0Qzc4 ODcxMUU5QTA4QUVDNjBDNEY5QUUwMi9YT1diNmtCSlA4eFhSbkZwSXZHWWpaWXBI NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hPV2I2a0JKUDh4WFJuRnBJdkdZalpZcEg3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTZENjgvNzI0Q0M4NEM3ODg3MTFFOUEwOEFFQzYwQzRGOUFFMDIvNkRDQUUwMzIx OUUwMTFFQkI2NTI5RjU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPgYIKwYBBQUHAQcBAf8E LzAtMBoEAgABMBQDBABnVyQwDAMEAmdX7AMEAGdX7jAPBAIAAjAJAwcAIAEN8HcA MA0GCSqGSIb3DQEBCwUAA4IBAQCnHgRvFCD2ZgZPHwVed3bhaaUS0DXgMWCjf7C9 vwidDcYDlWI5KQhh8P6t75iruk7OpiSzDjfnuJeHaTbu3Ji/8eR7Y4jdLRPe88Oe zo0JGPoT5Ou2UoI+L5YsgvDLISnUEgOqjHdt8nx8bWc72M3r5AMOOVk71wg27fEU IAnIszFDCY07JAUDCoExJimR7MZ8vv2FQpR2fV5UxoVqrbTNvGLH78gjrbDs+e1+ RNeoCQgQ0KhAyYYkiXOu7edrEwoRO0MtqvrMxnIT6vWBGeFo7UphUAu7zjcEQgxs 4VMui4eAKMzj7y4onf8RHsj8axWFFLZ4C/nv75BuJaeRHRqP -----END CERTIFICATE-----Generated at Thu Jun 6 18:04:46 2024 by rpki-client on console-ams.rpki-client.org