$ rpki-client -vvf rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/208C7D2E066C11EDB31C2239C4F9AE02.roa File: 208C7D2E066C11EDB31C2239C4F9AE02.roa (raw, json) Hash identifier: Si46K6clShpzd0dKA2PJX7F6dutQCsqznJD5EkfQr7M= Subject key identifier: BF:BE:F1:99:E2:30:74:58:AA:2F:99:94:12:FD:8E:C4:A0:08:C4:33 Certificate issuer: /CN=A9118EB2/serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Certificate serial: 0138 Authority key identifier: 86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/208C7D2E066C11EDB31C2239C4F9AE02.roa Signing time: Sat 15 Jul 2023 03:02:50 +0000 ROA not before: Sat 15 Jul 2023 03:02:50 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 139285 IP address blocks: 103.140.236.0/23 maxlen: 23 103.140.236.0/24 maxlen: 24 103.140.237.0/24 maxlen: 24 114.134.190.0/23 maxlen: 23 114.134.190.0/24 maxlen: 24 114.134.191.0/24 maxlen: 24 2400:96a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 312 (0x138) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118EB2/serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Validity Not Before: Jul 15 03:02:50 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64b20c5a-7fc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:88:88:77:aa:f3:90:9e:06:5f:35:15:3e:07: cc:99:6b:fe:5b:b8:ee:00:3c:38:64:08:6c:d0:08: ce:12:21:32:b3:ba:e4:21:38:1b:bd:04:a8:15:95: 03:cf:77:c5:d9:02:6e:1f:3e:82:01:ad:27:ff:be: f1:5d:4d:53:09:68:1f:f9:08:d8:96:5f:df:af:85: c6:58:ea:7c:15:65:e4:1c:18:27:4c:67:c1:2f:67: a4:ab:b9:67:9c:50:fb:d0:c2:a5:0f:f0:85:4f:12: bb:08:70:cf:76:32:fe:94:f5:89:9d:b3:d7:58:53: b2:b3:5b:a8:87:11:e3:3b:f6:d1:b0:67:38:76:6d: 6f:92:e4:b4:a8:13:1b:c9:5b:e9:9f:9a:72:f8:bc: 72:d0:26:83:d0:c5:c0:e8:85:d4:5b:d4:01:15:da: 59:89:b8:18:ec:67:87:68:ad:d0:f3:aa:0f:bb:bc: 40:05:16:3d:3a:70:a0:1c:ca:c4:b9:60:eb:a0:50: 08:54:a0:81:1f:4d:0c:00:84:b2:3c:0b:6a:1b:4f: c1:61:5c:44:79:94:e1:b1:43:86:60:5f:da:5c:9c: 2b:b6:71:8c:9a:b9:9f:da:11:6b:87:ca:a1:cf:ec: fe:a5:eb:3e:ba:bf:7f:e8:5c:0c:d4:e9:73:15:9c: 21:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:BE:F1:99:E2:30:74:58:AA:2F:99:94:12:FD:8E:C4:A0:08:C4:33 X509v3 Authority Key Identifier: keyid:86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/208C7D2E066C11EDB31C2239C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.236.0/23 114.134.190.0/23 IPv6: 2400:96a0::/32 Signature Algorithm: sha256WithRSAEncryption 5c:7c:2b:8c:a7:bb:20:3b:d3:83:b0:c0:d1:be:d1:4d:14:cf: d3:86:fd:ac:ea:c9:65:be:e1:0d:99:db:66:c7:10:a6:eb:54: 78:77:7a:8a:02:d7:c4:d0:89:36:52:a0:e8:54:d5:04:50:94: 4e:a8:e2:d8:1d:26:12:1e:e1:64:b0:2b:21:c3:46:6c:91:75: e3:c5:3e:69:13:7d:22:7c:f8:ff:63:fa:21:93:bd:5f:41:ff: 11:01:8b:35:55:65:78:af:53:ea:a6:7f:23:cc:9f:ed:05:2a: ee:4f:2f:72:8f:f1:00:86:33:d5:fb:ee:ba:95:3a:c5:2f:ac: 71:a2:63:a5:2a:55:6c:55:63:43:5d:b1:ad:3e:c1:33:f7:a0: 31:08:2b:49:c2:df:f6:36:61:74:a4:5d:a4:08:0c:d0:73:47: 75:40:20:e6:0b:bf:0c:b0:6b:78:ba:15:90:40:ea:b2:12:f7: db:ea:31:96:d7:62:34:71:09:76:6b:7a:5d:da:f6:8a:24:67: 00:96:42:7d:fc:27:92:3b:d5:1e:42:06:67:f7:d7:8d:2e:1b: 54:24:06:ee:d3:b1:46:64:50:ba:27:fc:42:1b:66:ee:f5:91: e3:0d:fe:9d:28:6c:ad:0c:d9:d3:97:8c:44:c0:5a:f0:24:e6: b8:0e:ea:2c -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICATgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFQjIxMTAvBgNVBAUTKDg2MDNBMEFDQTcyMDRCMEVGRUQ2NERCNzBERTUxQzc1 QkEwMzkzNTUwHhcNMjMwNzE1MDMwMjUwWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGIyMGM1YS03ZmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwYiId6rzkJ4GXzUVPgfMmWv+W7juADw4ZAhs0AjOEiEys7rkITgbvQSoFZUD z3fF2QJuHz6CAa0n/77xXU1TCWgf+QjYll/fr4XGWOp8FWXkHBgnTGfBL2ekq7ln nFD70MKlD/CFTxK7CHDPdjL+lPWJnbPXWFOys1uohxHjO/bRsGc4dm1vkuS0qBMb yVvpn5py+Lxy0CaD0MXA6IXUW9QBFdpZibgY7GeHaK3Q86oPu7xABRY9OnCgHMrE uWDroFAIVKCBH00MAISyPAtqG0/BYVxEeZThsUOGYF/aXJwrtnGMmrmf2hFrh8qh z+z+pes+ur9/6FwM1OlzFZwhrQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFL++8Zni MHRYqi+ZlBL9jsSgCMQzMB8GA1UdIwQYMBaAFIYDoKynIEsO/tZNtw3lHHW6A5NV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEVCMi83QUM3NjdERTA2 NjkxMUVEQjBBRThFMzdDNEY5QUUwMi9oZ09ncktjZ1N3Ny0xazIzRGVVY2Rib0Rr MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hnT2dyS2NnU3c3LTFrMjNEZVVjZGJvRGsxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MThFQjIvN0FDNzY3REUwNjY5MTFFREIwQUU4RTM3QzRGOUFFMDIvMjA4QzdEMkUw NjZDMTFFREIzMUMyMjM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFnjOwDBAFyhr4wDQQCAAIwBwMFACQAlqAwDQYJKoZIhvcN AQELBQADggEBAFx8K4ynuyA704OwwNG+0U0Uz9OG/azqyWW+4Q2Z22bHEKbrVHh3 eooC18TQiTZSoOhU1QRQlE6o4tgdJhIe4WSwKyHDRmyRdePFPmkTfSJ8+P9j+iGT vV9B/xEBizVVZXivU+qmfyPMn+0FKu5PL3KP8QCGM9X77rqVOsUvrHGiY6UqVWxV Y0Ndsa0+wTP3oDEIK0nC3/Y2YXSkXaQIDNBzR3VAIOYLvwywa3i6FZBA6rIS99vq MZbXYjRxCXZrel3a9ookZwCWQn38J5I71R5CBmf3140uG1QkBu7TsUZkULon/EIb Zu71keMN/p0obK0M2dOXjETAWvAk5rgO6iw= -----END CERTIFICATE-----Generated at Sun May 19 05:08:03 2024 by rpki-client on console-ams.rpki-client.org