$ rpki-client -vvf rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/63DC5AA6C67611EEB1126C70C4F9AE02.roa File: 63DC5AA6C67611EEB1126C70C4F9AE02.roa (raw, json) Hash identifier: 5gugZWMlRWcGfURdlEL7v6YlsC8vwoJfNVXYniet7Tw= Subject key identifier: B1:95:81:73:B9:50:8C:24:C0:AC:A2:2D:8B:E7:8D:6A:14:41:B9:C0 Certificate issuer: /CN=A9121836/serialNumber=66B214D11C7F961A95C4256703428E93CBA72986 Certificate serial: 9F Authority key identifier: 66:B2:14:D1:1C:7F:96:1A:95:C4:25:67:03:42:8E:93:CB:A7:29:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/63DC5AA6C67611EEB1126C70C4F9AE02.roa Signing time: Thu 08 Feb 2024 11:37:47 +0000 ROA not before: Thu 08 Feb 2024 11:37:47 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 4851 IP address blocks: 103.74.217.0/24 maxlen: 24 103.74.218.0/23 maxlen: 23 103.194.229.0/24 maxlen: 24 103.206.187.0/24 maxlen: 24 2407:3280::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.crl rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 May 2024 04:40:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121836/serialNumber=66B214D11C7F961A95C4256703428E93CBA72986 Validity Not Before: Feb 8 11:37:47 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65c4bd0b-cd87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:19:f2:1a:2e:37:6f:6a:38:b4:fa:67:47:c4: 8b:15:a2:be:b3:ae:47:31:e1:fd:33:cd:29:b1:13: 80:4b:fe:bd:b5:66:11:81:fe:05:08:51:02:93:ef: fe:0f:48:37:5a:2a:3e:27:85:01:c9:9f:f2:22:60: 27:08:0c:49:81:14:34:a8:cc:5f:b1:4b:56:d5:0b: d7:ef:a3:85:4d:17:f9:56:13:ef:fe:9c:7a:7a:11: 7f:1a:1f:d7:a9:3a:5c:4b:a0:9e:fa:bf:bd:65:6a: 50:41:42:fc:f8:92:c9:da:29:d2:87:2e:96:ef:ee: c2:6e:f0:36:36:d2:71:1b:72:e5:0a:5c:ab:a9:42: 25:e8:18:ec:d0:ac:56:07:0e:11:d2:6f:14:17:34: 59:ba:aa:58:15:70:f4:15:bf:6d:d2:f0:12:23:79: 62:73:7b:e0:90:e7:80:40:b0:e4:1a:fd:97:f7:9e: 99:14:a8:51:01:76:7a:96:ec:eb:0f:8a:f7:90:77: 6b:da:cf:6c:c0:dc:c3:63:1c:c9:95:f4:8f:7e:b7: ee:ca:72:8d:5a:86:71:30:76:eb:cb:ef:56:a8:79: 52:a1:80:9a:dc:e8:07:22:39:c3:41:21:8d:06:4b: 00:8a:fa:7a:10:48:52:ca:f5:23:99:c1:30:7c:a3: eb:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:95:81:73:B9:50:8C:24:C0:AC:A2:2D:8B:E7:8D:6A:14:41:B9:C0 X509v3 Authority Key Identifier: keyid:66:B2:14:D1:1C:7F:96:1A:95:C4:25:67:03:42:8E:93:CB:A7:29:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/63DC5AA6C67611EEB1126C70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.74.217.0-103.74.219.255 103.194.229.0/24 103.206.187.0/24 IPv6: 2407:3280::/32 Signature Algorithm: sha256WithRSAEncryption 7c:44:08:21:cb:d1:b2:8e:3d:5f:48:4b:dc:3d:89:27:2d:6d: 58:b5:d8:ab:0e:69:b3:f9:50:e2:fb:1d:2a:0f:31:5e:25:2c: 0f:32:13:fa:64:c5:69:c7:83:cc:52:2c:13:3e:70:df:c3:53: 30:ab:b9:e4:22:85:69:f4:d8:10:0c:4b:76:b2:b9:f7:a5:8e: 63:98:e4:ba:be:8a:50:1f:ed:21:68:bc:d7:13:bb:46:10:23: 42:1e:75:c3:d1:49:d9:1e:fe:40:dc:4b:e7:08:ae:48:78:78: 93:6d:0c:a2:fd:04:e3:4e:75:a4:df:eb:04:d3:22:12:c8:39: 75:32:c7:67:84:9b:14:b2:90:46:ae:ab:a5:70:7b:e0:08:55: 42:b8:b4:0b:7b:69:a7:f1:5b:cf:6b:c2:60:3b:d1:73:49:1d: df:d0:2b:e9:6f:e4:58:43:55:69:71:ce:31:f5:08:75:db:ef: 27:c7:6e:fd:d6:8d:4e:ff:fc:66:60:90:a3:65:ce:9f:24:8c: cd:3c:3c:ed:2e:84:05:83:67:68:16:b9:5c:e5:f3:ee:03:5c: 1c:f9:e8:6f:59:1f:da:73:5b:a4:14:b0:3e:73:6c:50:d6:67: fa:32:2e:3c:00:87:a6:4d:4a:e3:56:f5:43:6e:00:f5:60:f8: ed:ad:1e:2b -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE4MzYxMTAvBgNVBAUTKDY2QjIxNEQxMUM3Rjk2MUE5NUM0MjU2NzAzNDI4RTkz Q0JBNzI5ODYwHhcNMjQwMjA4MTEzNzQ3WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWM0YmQwYi1jZDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzhnyGi43b2o4tPpnR8SLFaK+s65HMeH9M80psROAS/69tWYRgf4FCFECk+/+ D0g3Wio+J4UByZ/yImAnCAxJgRQ0qMxfsUtW1QvX76OFTRf5VhPv/px6ehF/Gh/X qTpcS6Ce+r+9ZWpQQUL8+JLJ2inShy6W7+7CbvA2NtJxG3LlClyrqUIl6Bjs0KxW Bw4R0m8UFzRZuqpYFXD0Fb9t0vASI3lic3vgkOeAQLDkGv2X956ZFKhRAXZ6luzr D4r3kHdr2s9swNzDYxzJlfSPfrfuynKNWoZxMHbry+9WqHlSoYCa3OgHIjnDQSGN BksAivp6EEhSyvUjmcEwfKPrYQIDAQABo4ICuDCCArQwHQYDVR0OBBYEFLGVgXO5 UIwkwKyiLYvnjWoUQbnAMB8GA1UdIwQYMBaAFGayFNEcf5YalcQlZwNCjpPLpymG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTgzNi9GMURCMUQ0NEY0 RkIxMUVEOTM4Rjk0NDdDNEY5QUUwMi9acklVMFJ4X2xocVZ4Q1ZuQTBLT2s4dW5L WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pySVUwUnhfbGhxVnhDVm5BMEtPazh1bktZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjE4MzYvRjFEQjFENDRGNEZCMTFFRDkzOEY5NDQ3QzRGOUFFMDIvNjNEQzVBQTZD Njc2MTFFRUIxMTI2QzcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMCAEAgABMBowDAMEAGdK2QMEAmdK2AMEAGfC5QMEAGfOuzANBAIAAjAHAwUA JAcygDANBgkqhkiG9w0BAQsFAAOCAQEAfEQIIcvRso49X0hL3D2JJy1tWLXYqw5p s/lQ4vsdKg8xXiUsDzIT+mTFaceDzFIsEz5w38NTMKu55CKFafTYEAxLdrK596WO Y5jkur6KUB/tIWi81xO7RhAjQh51w9FJ2R7+QNxL5wiuSHh4k20Mov0E4051pN/r BNMiEsg5dTLHZ4SbFLKQRq6rpXB74AhVQri0C3tpp/Fbz2vCYDvRc0kd39Ar6W/k WENVaXHOMfUIddvvJ8du/daNTv/8ZmCQo2XOnySMzTw87S6EBYNnaBa5XOXz7gNc HPnob1kf2nNbpBSwPnNsUNZn+jIuPACHpk1K41b1Q24A9WD47a0eKw== -----END CERTIFICATE-----Generated at Thu May 23 06:54:43 2024 by rpki-client on console-fra.rpki-client.org