$ rpki-client -vvf rpki.apnic.net/member_repository/A911E74F/1E157038638B11EDB103C02CC4F9AE02/B695C976638F11EDB427BF33C4F9AE02.roa File: B695C976638F11EDB427BF33C4F9AE02.roa (raw, json) Hash identifier: uBw9Aqk4dRdoE/7YoKcX1Ka7LHHB4GelESZKav8niz0= Subject key identifier: C3:A7:95:B2:99:B5:DA:20:B0:42:BA:28:19:62:0E:9D:A3:85:A4:16 Certificate issuer: /CN=A911E74F/serialNumber=F602A6293F7E6492077E7B4D6016307ED12C1C31 Certificate serial: 54 Authority key identifier: F6:02:A6:29:3F:7E:64:92:07:7E:7B:4D:60:16:30:7E:D1:2C:1C:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9gKmKT9-ZJIHfntNYBYwftEsHDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E74F/1E157038638B11EDB103C02CC4F9AE02/B695C976638F11EDB427BF33C4F9AE02.roa Signing time: Wed 19 Apr 2023 07:06:47 +0000 ROA not before: Wed 19 Apr 2023 07:06:47 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 137704 IP address blocks: 103.113.196.0/22 maxlen: 24 2402:c140::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E74F/1E157038638B11EDB103C02CC4F9AE02/9gKmKT9-ZJIHfntNYBYwftEsHDE.crl rsync://rpki.apnic.net/member_repository/A911E74F/1E157038638B11EDB103C02CC4F9AE02/9gKmKT9-ZJIHfntNYBYwftEsHDE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9gKmKT9-ZJIHfntNYBYwftEsHDE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 05:20:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E74F/serialNumber=F602A6293F7E6492077E7B4D6016307ED12C1C31 Validity Not Before: Apr 19 07:06:47 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=643f9306-21ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:c8:f0:df:43:b7:a5:24:4b:b1:b0:91:e6:e6: d2:3d:f5:cd:f4:78:c8:5d:d7:55:bc:47:a7:d1:06: 6c:74:eb:97:0a:4c:fb:13:82:d6:78:6f:1e:de:05: fc:8c:91:a2:60:fa:77:93:60:98:27:59:2c:3c:5c: 5b:b2:7f:18:fc:9b:af:d5:49:ee:e7:1c:e2:64:dc: 83:b4:5f:43:a5:6a:1d:42:4f:51:73:13:84:58:73: 58:26:85:39:ec:a2:d7:9e:90:6a:6f:87:bf:29:e8: bc:bd:5d:9c:8c:3f:19:c4:89:36:48:28:1d:3e:2f: 68:72:0b:88:95:e4:4b:ac:37:30:9e:25:2e:9b:b5: b9:07:92:f9:a8:15:ab:7e:da:34:98:8a:41:f7:7a: e4:07:0f:d7:ac:79:20:12:09:7a:0a:dc:a7:ff:f7: 08:23:c4:b0:7c:dc:44:38:2a:e7:76:12:37:09:2b: de:58:a2:3c:b1:e3:d8:49:33:66:62:e6:0f:d7:39: bf:be:8b:5d:19:ec:35:7e:97:30:e3:c4:c0:e6:c4: 04:ca:b9:27:ba:57:30:51:4b:01:f6:12:c5:16:a1: ac:d8:79:ce:55:93:61:44:17:ab:83:ec:6e:d0:69: e0:85:a8:c1:3b:26:0b:0f:51:ae:76:ee:81:62:40: fe:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:A7:95:B2:99:B5:DA:20:B0:42:BA:28:19:62:0E:9D:A3:85:A4:16 X509v3 Authority Key Identifier: keyid:F6:02:A6:29:3F:7E:64:92:07:7E:7B:4D:60:16:30:7E:D1:2C:1C:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E74F/1E157038638B11EDB103C02CC4F9AE02/9gKmKT9-ZJIHfntNYBYwftEsHDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9gKmKT9-ZJIHfntNYBYwftEsHDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E74F/1E157038638B11EDB103C02CC4F9AE02/B695C976638F11EDB427BF33C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.113.196.0/22 IPv6: 2402:c140::/32 Signature Algorithm: sha256WithRSAEncryption 55:55:02:f4:26:4e:d6:8e:c7:68:ef:4b:96:38:e9:f1:c9:36: 2a:1d:1e:87:cb:78:81:47:d6:b1:8d:4b:e9:cb:cc:8f:9a:34: c6:30:8f:59:d9:12:67:4e:7f:1c:1b:7b:5d:55:cb:72:cd:16: cf:13:4a:bb:da:ba:94:9b:a0:72:94:8e:ee:36:e6:30:87:70: 5f:c9:71:4e:71:8e:a0:b8:60:20:dc:23:1e:8e:ee:43:92:c4: e3:bc:d8:43:25:e8:f9:c4:9a:d0:ab:5b:1b:18:b3:ee:87:5e: 33:79:69:ab:44:fd:52:a5:89:59:57:44:4d:03:4c:01:be:b8: 82:0b:08:74:aa:84:1d:09:6c:56:6f:10:bb:92:83:f5:d3:d3: b2:07:ce:6e:e3:6f:a4:e3:00:5f:8e:59:45:0d:fb:f5:90:44: 84:8a:83:2d:c4:7d:fc:42:75:09:54:50:14:ee:ff:bd:61:e6: 56:2f:87:14:95:dd:54:92:ad:5b:ac:b9:4f:83:ec:20:13:72: 4d:19:6c:28:e0:a6:d3:dd:8f:1e:29:4f:31:2d:2a:ee:12:f5: 7e:0a:0f:fb:9b:5f:ec:35:3b:32:e4:a2:91:cf:50:8e:19:05: d9:fa:5b:1b:d3:1e:12:15:cc:14:fb:fe:d1:de:71:3f:9d:ab: 10:18:72:57 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTc0RjExMC8GA1UEBRMoRjYwMkE2MjkzRjdFNjQ5MjA3N0U3QjRENjAxNjMwN0VE MTJDMUMzMTAeFw0yMzA0MTkwNzA2NDdaFw0yNDA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0M2Y5MzA2LTIxZWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDayPDfQ7elJEuxsJHm5tI99c30eMhd11W8R6fRBmx065cKTPsTgtZ4bx7eBfyM kaJg+neTYJgnWSw8XFuyfxj8m6/VSe7nHOJk3IO0X0Olah1CT1FzE4RYc1gmhTns oteekGpvh78p6Ly9XZyMPxnEiTZIKB0+L2hyC4iV5EusNzCeJS6btbkHkvmoFat+ 2jSYikH3euQHD9eseSASCXoK3Kf/9wgjxLB83EQ4Kud2EjcJK95Yojyx49hJM2Zi 5g/XOb++i10Z7DV+lzDjxMDmxATKuSe6VzBRSwH2EsUWoazYec5Vk2FEF6uD7G7Q aeCFqME7JgsPUa527oFiQP4vAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUw6eVspm1 2iCwQrooGWIOnaOFpBYwHwYDVR0jBBgwFoAU9gKmKT9+ZJIHfntNYBYwftEsHDEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFNzRGLzFFMTU3MDM4NjM4 QjExRURCMTAzQzAyQ0M0RjlBRTAyLzlnS21LVDktWkpJSGZudE5ZQll3ZnRFc0hE RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOWdLbUtUOS1aSklIZm50TllCWXdmdEVzSERFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTc0Ri8xRTE1NzAzODYzOEIxMUVEQjEwM0MwMkNDNEY5QUUwMi9CNjk1Qzk3NjYz OEYxMUVEQjQyN0JGMzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAmdxxDANBAIAAjAHAwUAJALBQDANBgkqhkiG9w0BAQsFAAOC AQEAVVUC9CZO1o7HaO9Lljjp8ck2Kh0eh8t4gUfWsY1L6cvMj5o0xjCPWdkSZ05/ HBt7XVXLcs0WzxNKu9q6lJugcpSO7jbmMIdwX8lxTnGOoLhgINwjHo7uQ5LE47zY QyXo+cSa0KtbGxiz7odeM3lpq0T9UqWJWVdETQNMAb64ggsIdKqEHQlsVm8Qu5KD 9dPTsgfObuNvpOMAX45ZRQ379ZBEhIqDLcR9/EJ1CVRQFO7/vWHmVi+HFJXdVJKt W6y5T4PsIBNyTRlsKOCm092PHilPMS0q7hL1fgoP+5tf7DU7MuSikc9QjhkF2fpb G9MeEhXMFPv+0d5xP52rEBhyVw== -----END CERTIFICATE-----Generated at Fri May 17 06:46:20 2024 by rpki-client on console-ams.rpki-client.org