$ rpki-client -vvf rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/D34D9A72BBEB11EC83BEA22AC4F9AE02.roa File: D34D9A72BBEB11EC83BEA22AC4F9AE02.roa (raw, json) Hash identifier: S4rhqjpIZ+3JNGkbTMllgEIlejnvPKzYGkm3jEV6cw0= Subject key identifier: B8:D3:7B:34:4B:5A:EA:DE:3B:CF:36:84:91:31:BA:62:32:A7:DE:3F Certificate issuer: /CN=A912176D/serialNumber=96F42E19F69D596A0318921590A17DD53233E595 Certificate serial: 0688 Authority key identifier: 96:F4:2E:19:F6:9D:59:6A:03:18:92:15:90:A1:7D:D5:32:33:E5:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvQuGfadWWoDGJIVkKF91TIz5ZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/D34D9A72BBEB11EC83BEA22AC4F9AE02.roa Signing time: Wed 06 Sep 2023 22:29:26 +0000 ROA not before: Wed 06 Sep 2023 22:29:26 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 132825 IP address blocks: 103.250.4.0/24 maxlen: 24 103.250.5.0/24 maxlen: 24 103.250.6.0/24 maxlen: 24 103.250.7.0/24 maxlen: 24 118.107.192.0/24 maxlen: 24 118.107.193.0/24 maxlen: 24 118.107.194.0/24 maxlen: 24 118.107.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/lvQuGfadWWoDGJIVkKF91TIz5ZU.crl rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/lvQuGfadWWoDGJIVkKF91TIz5ZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvQuGfadWWoDGJIVkKF91TIz5ZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1672 (0x688) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912176D/serialNumber=96F42E19F69D596A0318921590A17DD53233E595 Validity Not Before: Sep 6 22:29:26 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f8fd46-200f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a6:2c:58:bf:ba:62:b0:da:eb:97:86:02:7a: f7:8e:92:c2:9a:21:96:0b:62:d8:99:5f:59:83:bd: e4:1f:9c:1b:ce:b4:35:97:8c:3d:d4:b6:0f:44:bb: ec:d8:b4:b2:ae:b3:07:61:76:96:e2:89:d6:f4:49: 6e:bd:2b:c5:70:32:77:6f:db:7e:ca:37:b2:21:03: f0:9a:7f:e8:68:fd:73:68:88:9d:b1:62:fd:40:b5: b8:0f:31:35:15:15:53:1c:32:a9:04:5f:9f:16:74: 45:f3:3a:f0:d0:a3:cb:3c:64:59:77:28:c0:97:cf: d1:68:c2:42:78:11:c5:2c:a9:2b:8b:6e:e4:c4:55: fd:b2:07:98:21:a0:86:dc:6f:cc:b5:fd:8e:42:68: dc:92:8c:61:6e:de:be:5f:46:65:28:27:cb:a7:76: 66:fe:a2:79:92:da:0a:dd:c7:38:7c:ed:6c:b3:0b: 87:6b:9d:4a:1d:46:1e:97:af:06:43:bb:f1:6e:29: b0:70:c4:17:fd:c3:a3:28:90:88:be:80:87:a5:fb: 6a:35:2b:00:c1:42:ab:89:e0:c3:7d:0d:83:16:d0: c6:cc:5a:06:32:bc:2a:7f:ae:62:d3:4f:02:b5:fd: b4:b5:a1:e5:28:8b:b4:0d:a2:05:01:3d:7b:4d:1d: 36:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:D3:7B:34:4B:5A:EA:DE:3B:CF:36:84:91:31:BA:62:32:A7:DE:3F X509v3 Authority Key Identifier: keyid:96:F4:2E:19:F6:9D:59:6A:03:18:92:15:90:A1:7D:D5:32:33:E5:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/lvQuGfadWWoDGJIVkKF91TIz5ZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvQuGfadWWoDGJIVkKF91TIz5ZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/D34D9A72BBEB11EC83BEA22AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.250.4.0/22 118.107.192.0/22 Signature Algorithm: sha256WithRSAEncryption a3:8d:da:41:7c:7b:35:56:2c:ab:dc:25:e1:7c:1f:54:34:bc: 47:94:a7:61:1e:28:c7:61:09:c4:bf:aa:83:7b:5a:2c:2d:4d: 6a:3d:be:0d:e3:29:c9:72:46:f5:85:f9:4c:e3:b4:29:4b:b0: e2:8b:70:8d:b1:9e:a5:21:07:99:3d:37:cb:72:94:69:b2:3e: 42:bb:c5:75:22:c4:85:4e:8f:76:f5:25:fa:18:62:b3:ab:16: 48:9c:f0:4f:c9:81:d6:d4:4d:1e:db:7b:02:82:9c:9f:a4:12: 55:66:4e:fc:0f:cb:19:05:b7:d4:92:0a:9a:fc:27:6c:70:76: 17:33:f4:2d:be:eb:c6:e2:2c:e9:cb:7b:16:96:02:f3:59:af: 46:19:f1:f1:a9:61:f6:82:4f:5a:3d:62:29:ba:33:80:4a:b2: 86:ce:41:36:94:57:dd:2c:2c:ec:64:2e:96:20:41:31:c1:1e: 8c:76:df:22:ff:b0:32:79:49:fd:fd:aa:d2:5d:26:63:48:7b: 60:32:77:e0:29:d4:ac:19:3e:e3:dd:35:ef:3b:40:41:2d:1a: ee:fe:39:02:62:66:39:2d:16:9f:d9:50:18:85:6d:3f:c4:32: 7d:76:f6:dd:7f:15:50:d4:b5:37:d4:6c:89:dd:a0:8e:68:8b: 53:cd:1f:0e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBogwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE3NkQxMTAvBgNVBAUTKDk2RjQyRTE5RjY5RDU5NkEwMzE4OTIxNTkwQTE3REQ1 MzIzM0U1OTUwHhcNMjMwOTA2MjIyOTI2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY4ZmQ0Ni0yMDBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw6YsWL+6YrDa65eGAnr3jpLCmiGWC2LYmV9Zg73kH5wbzrQ1l4w91LYPRLvs 2LSyrrMHYXaW4onW9EluvSvFcDJ3b9t+yjeyIQPwmn/oaP1zaIidsWL9QLW4DzE1 FRVTHDKpBF+fFnRF8zrw0KPLPGRZdyjAl8/RaMJCeBHFLKkri27kxFX9sgeYIaCG 3G/Mtf2OQmjckoxhbt6+X0ZlKCfLp3Zm/qJ5ktoK3cc4fO1sswuHa51KHUYel68G Q7vxbimwcMQX/cOjKJCIvoCHpftqNSsAwUKrieDDfQ2DFtDGzFoGMrwqf65i008C tf20taHlKIu0DaIFAT17TR02sQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLjTezRL WureO882hJExumIyp94/MB8GA1UdIwQYMBaAFJb0Lhn2nVlqAxiSFZChfdUyM+WV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTc2RC85M0QxN0NEMDA2 QTAxMUVCQjQwOTA4NTlDNEY5QUUwMi9sdlF1R2ZhZFdXb0RHSklWa0tGOTFUSXo1 WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x2UXVHZmFkV1dvREdKSVZrS0Y5MVRJejVaVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjE3NkQvOTNEMTdDRDAwNkEwMTFFQkI0MDkwODU5QzRGOUFFMDIvRDM0RDlBNzJC QkVCMTFFQzgzQkVBMjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn+gQDBAJ2a8AwDQYJKoZIhvcNAQELBQADggEBAKON2kF8 ezVWLKvcJeF8H1Q0vEeUp2EeKMdhCcS/qoN7WiwtTWo9vg3jKclyRvWF+UzjtClL sOKLcI2xnqUhB5k9N8tylGmyPkK7xXUixIVOj3b1JfoYYrOrFkic8E/JgdbUTR7b ewKCnJ+kElVmTvwPyxkFt9SSCpr8J2xwdhcz9C2+68biLOnLexaWAvNZr0YZ8fGp YfaCT1o9Yim6M4BKsobOQTaUV90sLOxkLpYgQTHBHox23yL/sDJ5Sf39qtJdJmNI e2Ayd+Ap1KwZPuPdNe87QEEtGu7+OQJiZjktFp/ZUBiFbT/EMn129t1/FVDUtTfU bIndoI5oi1PNHw4= -----END CERTIFICATE-----Generated at Sun May 19 00:16:12 2024 by rpki-client on console-fra.rpki-client.org