$ rpki-client -vvf rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/AD46C158EDA911EA977E1C36C4F9AE02.roa File: AD46C158EDA911EA977E1C36C4F9AE02.roa (raw, json) Hash identifier: ftTAj83As+pHtKdRn/zZtUvT8mYIjljP4vGjyKP+o1M= Subject key identifier: 72:74:3A:B8:09:3A:B8:24:A4:3B:57:71:ED:4C:06:7D:D4:BA:60:E9 Certificate issuer: /CN=A9120119/serialNumber=9A44030403D50B71B998463B3AE56843B92595E1 Certificate serial: 0681 Authority key identifier: 9A:44:03:04:03:D5:0B:71:B9:98:46:3B:3A:E5:68:43:B9:25:95:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mkQDBAPVC3G5mEY7OuVoQ7klleE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/AD46C158EDA911EA977E1C36C4F9AE02.roa Signing time: Thu 22 Jun 2023 18:17:24 +0000 ROA not before: Thu 22 Jun 2023 18:17:24 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 135553 IP address blocks: 103.65.188.0/22 maxlen: 24 202.3.75.0/24 maxlen: 24 203.20.63.0/24 maxlen: 24 203.28.143.0/24 maxlen: 24 203.34.154.0/24 maxlen: 24 2405:d680::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/mkQDBAPVC3G5mEY7OuVoQ7klleE.crl rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/mkQDBAPVC3G5mEY7OuVoQ7klleE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mkQDBAPVC3G5mEY7OuVoQ7klleE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 18:07:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1665 (0x681) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120119/serialNumber=9A44030403D50B71B998463B3AE56843B92595E1 Validity Not Before: Jun 22 18:17:24 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64949033-e85e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:23:1d:90:dc:b0:86:c1:76:3c:30:8d:cf:0f: 96:00:76:57:19:f5:06:12:bc:90:24:9d:73:12:40: 29:55:d1:eb:9c:d0:11:2a:92:a7:95:10:be:54:4f: df:98:4d:08:93:19:d2:f1:11:0f:0e:f1:e5:da:40: 97:39:45:8a:2f:dc:ef:6e:e3:04:65:59:69:d5:b0: 0e:0c:be:c9:62:ff:12:55:92:0c:ef:20:76:c6:73: 6b:f6:e8:55:fd:4d:e4:8f:c6:62:06:13:0d:64:85: 04:76:08:27:94:43:fc:dd:05:90:db:a2:04:fe:2b: 70:b7:6f:e8:b6:24:1a:59:d9:49:33:ce:07:5d:00: e2:1f:01:19:0a:10:75:cf:84:04:e7:e1:0c:34:f2: 8d:d9:9d:ea:5c:a7:0d:0d:21:1c:9b:5b:63:78:fa: 9b:29:c3:27:1f:ff:9b:be:57:29:bf:6c:11:5c:01: c2:9c:98:01:df:b9:0a:db:05:80:0a:bf:c9:3a:ae: c1:67:dc:01:6c:00:3e:1a:05:3a:37:ef:bf:f0:ab: 82:80:16:95:20:40:b1:74:52:4c:9c:e7:ba:98:ee: e0:f4:02:a6:af:82:a2:b2:a4:60:fa:a1:56:d8:8a: a1:df:20:dd:f9:16:61:d6:ed:4b:63:da:b7:d6:80: 74:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:74:3A:B8:09:3A:B8:24:A4:3B:57:71:ED:4C:06:7D:D4:BA:60:E9 X509v3 Authority Key Identifier: keyid:9A:44:03:04:03:D5:0B:71:B9:98:46:3B:3A:E5:68:43:B9:25:95:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/mkQDBAPVC3G5mEY7OuVoQ7klleE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mkQDBAPVC3G5mEY7OuVoQ7klleE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/AD46C158EDA911EA977E1C36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.65.188.0/22 202.3.75.0/24 203.20.63.0/24 203.28.143.0/24 203.34.154.0/24 IPv6: 2405:d680::/32 Signature Algorithm: sha256WithRSAEncryption 3c:92:3b:61:87:75:20:e2:87:b8:33:e4:34:56:d8:9f:34:c9: bb:ec:f9:be:3e:61:bd:d3:fb:d4:af:95:93:03:5e:de:d3:0a: 05:c9:bc:fe:a3:4a:4e:00:e3:dc:5a:72:61:a5:4c:e3:ff:26: 27:c7:03:c2:b0:ab:3e:f3:b1:03:c8:75:ac:cc:3b:f3:9d:4f: be:50:37:9e:2a:82:c8:03:fc:40:fa:54:24:c5:2a:c2:16:86: 10:22:fd:37:5f:86:b1:43:17:81:b9:41:d9:c4:ea:0a:3f:44: 85:f9:49:a7:5b:46:38:54:f4:b6:98:62:17:e5:7c:16:29:99: b9:57:de:9e:81:30:4b:28:ea:c6:bc:61:9e:97:b6:1d:4c:51: b2:c6:91:dc:43:50:ea:99:a1:58:f8:0a:ec:e1:c7:d4:5e:95: a2:f4:c6:c4:58:5b:88:cc:fd:3a:57:7e:f9:5e:d2:3f:39:7b: 9e:3d:67:79:a3:3c:fa:5c:6d:b9:5e:bd:be:52:97:1d:bb:4c: e5:85:c8:58:c3:43:ef:71:a5:75:34:0e:76:a5:97:c8:1e:ce: 92:5c:b3:ba:4b:7c:20:ae:ad:ed:f7:22:05:c9:76:d5:c1:c3: 44:a7:9c:e7:19:1c:42:4b:3a:9f:fa:40:ac:e4:fb:ac:2d:85: 78:d5:a1:01 -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICBoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAxMTkxMTAvBgNVBAUTKDlBNDQwMzA0MDNENTBCNzFCOTk4NDYzQjNBRTU2ODQz QjkyNTk1RTEwHhcNMjMwNjIyMTgxNzI0WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDk0OTAzMy1lODVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoyMdkNywhsF2PDCNzw+WAHZXGfUGEryQJJ1zEkApVdHrnNARKpKnlRC+VE/f mE0IkxnS8REPDvHl2kCXOUWKL9zvbuMEZVlp1bAODL7JYv8SVZIM7yB2xnNr9uhV /U3kj8ZiBhMNZIUEdggnlEP83QWQ26IE/itwt2/otiQaWdlJM84HXQDiHwEZChB1 z4QE5+EMNPKN2Z3qXKcNDSEcm1tjePqbKcMnH/+bvlcpv2wRXAHCnJgB37kK2wWA Cr/JOq7BZ9wBbAA+GgU6N++/8KuCgBaVIECxdFJMnOe6mO7g9AKmr4KisqRg+qFW 2Iqh3yDd+RZh1u1LY9q31oB0/QIDAQABo4ICvDCCArgwHQYDVR0OBBYEFHJ0OrgJ OrgkpDtXce1MBn3UumDpMB8GA1UdIwQYMBaAFJpEAwQD1QtxuZhGOzrlaEO5JZXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDExOS9FRUI3MUJFMjEz RjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9ta1FEQkFQVkMzRzVtRVk3T3VWb1E3a2xs ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21rUURCQVBWQzNHNW1FWTdPdVZvUTdrbGxlRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjAxMTkvRUVCNzFCRTIxM0YzMTFFOTg4MkY5QjY3QzRGOUFFMDIvQUQ0NkMxNThF REE5MTFFQTk3N0UxQzM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DBAJnQbwDBADKA0sDBADLFD8DBADLHI8DBADLIpowDQQCAAIw BwMFACQF1oAwDQYJKoZIhvcNAQELBQADggEBADySO2GHdSDih7gz5DRW2J80ybvs +b4+Yb3T+9SvlZMDXt7TCgXJvP6jSk4A49xacmGlTOP/JifHA8Kwqz7zsQPIdazM O/OdT75QN54qgsgD/ED6VCTFKsIWhhAi/TdfhrFDF4G5QdnE6go/RIX5SadbRjhU 9LaYYhflfBYpmblX3p6BMEso6sa8YZ6Xth1MUbLGkdxDUOqZoVj4Cuzhx9RelaL0 xsRYW4jM/TpXfvle0j85e549Z3mjPPpcbblevb5Slx27TOWFyFjDQ+9xpXU0Dnal l8gezpJcs7pLfCCure33IgXJdtXBw0SnnOcZHEJLOp/6QKzk+6wthXjVoQE= -----END CERTIFICATE-----Generated at Thu May 16 19:10:54 2024 by rpki-client on console-fra.rpki-client.org