$ rpki-client -vvf rpki.apnic.net/member_repository/A912359E/6F2B6552547C11E5971F3B48C4F9AE02/B6A9D8EEB0F411E5BE86D757C4F9AE02.roa File: B6A9D8EEB0F411E5BE86D757C4F9AE02.roa (raw, json) Hash identifier: b5wTP1s0WI6qO63RwbIC1+8mETnuMbCWHPaXYtzE2jo= Subject key identifier: 0E:96:0F:B4:F4:D9:87:50:40:36:D1:C6:DB:D4:06:E6:F2:C8:6B:D4 Certificate issuer: /CN=A912359E/serialNumber=F993570AA0D5496EF5DEE7E906370E68FBDCCB84 Certificate serial: 22D6 Authority key identifier: F9:93:57:0A:A0:D5:49:6E:F5:DE:E7:E9:06:37:0E:68:FB:DC:CB:84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ZNXCqDVSW713ufpBjcOaPvcy4Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912359E/6F2B6552547C11E5971F3B48C4F9AE02/B6A9D8EEB0F411E5BE86D757C4F9AE02.roa Signing time: Mon 26 Jun 2023 16:43:28 +0000 ROA not before: Mon 26 Jun 2023 16:43:28 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 132267 IP address blocks: 103.9.136.0/24 maxlen: 24 103.9.137.0/24 maxlen: 24 103.9.138.0/24 maxlen: 24 103.9.139.0/24 maxlen: 24 163.53.140.0/24 maxlen: 24 163.53.141.0/24 maxlen: 24 163.53.142.0/24 maxlen: 24 2403:eb00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912359E/6F2B6552547C11E5971F3B48C4F9AE02/-ZNXCqDVSW713ufpBjcOaPvcy4Q.crl rsync://rpki.apnic.net/member_repository/A912359E/6F2B6552547C11E5971F3B48C4F9AE02/-ZNXCqDVSW713ufpBjcOaPvcy4Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ZNXCqDVSW713ufpBjcOaPvcy4Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 16:08:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8918 (0x22d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912359E/serialNumber=F993570AA0D5496EF5DEE7E906370E68FBDCCB84 Validity Not Before: Jun 26 16:43:28 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6499c030-1d3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5e:84:66:64:7a:c4:21:35:4e:c5:62:fa:ca: 66:e2:ae:d4:36:d9:fd:83:a0:82:4b:ae:d5:20:3a: 2f:e8:b0:d8:3d:8e:1b:dd:c4:ea:c4:38:c4:9b:94: e5:d1:b8:7f:d2:74:44:ee:fb:6b:4c:dc:db:2b:46: e7:ae:a5:fd:8a:9f:5d:4d:d6:de:c4:1a:57:8a:65: 9d:f8:bc:c0:1a:9f:f4:0e:c8:64:47:5e:34:c4:35: c1:fd:4a:74:3b:60:08:7c:8c:21:d3:c8:9c:bf:b9: ef:98:33:28:83:e0:80:0c:07:2c:94:b1:eb:e9:c8: ae:d9:2e:2f:ec:b8:25:a5:ff:98:37:6e:ab:2d:77: fe:06:c6:fc:2b:17:4d:64:28:21:b0:6c:7e:ed:f7: ac:0c:17:ac:12:fe:3a:2d:c4:36:78:51:dc:37:88: ec:7e:bf:51:91:49:32:71:8a:87:58:19:ce:1f:27: ea:f0:9e:19:d1:4d:72:de:3f:f9:1d:f8:0d:f3:df: 5d:99:e1:ab:4e:59:d5:b8:56:17:6b:ef:b2:11:14: 23:c3:df:e2:19:08:fd:c3:0b:30:ac:24:c8:72:09: 88:b4:20:0c:6f:92:2b:ab:78:a8:fc:ad:de:1a:02: 81:0a:d0:17:14:88:d0:25:3a:94:85:92:65:86:a7: de:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:96:0F:B4:F4:D9:87:50:40:36:D1:C6:DB:D4:06:E6:F2:C8:6B:D4 X509v3 Authority Key Identifier: keyid:F9:93:57:0A:A0:D5:49:6E:F5:DE:E7:E9:06:37:0E:68:FB:DC:CB:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912359E/6F2B6552547C11E5971F3B48C4F9AE02/-ZNXCqDVSW713ufpBjcOaPvcy4Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ZNXCqDVSW713ufpBjcOaPvcy4Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912359E/6F2B6552547C11E5971F3B48C4F9AE02/B6A9D8EEB0F411E5BE86D757C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.9.136.0/22 163.53.140.0-163.53.142.255 IPv6: 2403:eb00::/32 Signature Algorithm: sha256WithRSAEncryption 6f:1e:d7:83:7d:5f:a5:a4:20:3a:33:11:7f:46:73:5b:ff:d4: 1c:d7:8f:3c:47:3a:3f:c5:6a:50:7b:3b:38:5c:05:a9:d8:6f: 4e:c1:9b:ff:7c:d4:bf:02:a9:f2:0d:99:10:6d:ea:d2:13:0b: 72:14:a9:f7:40:e5:31:5e:7c:7f:98:70:a3:9c:03:93:71:24: 73:a1:d9:d7:1a:b8:a3:86:92:7e:dc:91:6a:8a:d8:d3:df:53: a1:6e:30:17:ce:e2:fb:f4:32:aa:4a:10:7a:03:40:ef:36:b4: 1d:98:c8:95:cc:2f:d7:ad:75:27:bd:5a:a1:fb:e5:ee:c6:90: eb:90:e1:91:03:1c:89:92:4f:53:5d:2c:77:db:d6:26:68:59: 91:20:87:a6:0d:11:00:e8:02:e9:37:79:76:35:60:02:b5:9a: bc:2b:70:dc:e9:b7:7c:a6:52:09:15:21:e4:3c:0d:66:7f:93: bf:2e:19:24:a6:2e:7c:1a:d1:58:46:63:b7:dd:5a:da:3a:cb: 28:e9:62:e7:9d:e5:ae:0d:89:f5:a5:9f:b7:a8:6f:16:ee:7f: 93:4c:e9:b3:ae:01:52:96:6f:12:0c:fe:74:94:31:e3:32:11: a5:77:00:10:1b:a6:c7:3a:0b:e6:a3:8c:e2:46:af:a9:dd:c8: ff:8b:a6:b9 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICItYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM1OUUxMTAvBgNVBAUTKEY5OTM1NzBBQTBENTQ5NkVGNURFRTdFOTA2MzcwRTY4 RkJEQ0NCODQwHhcNMjMwNjI2MTY0MzI4WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDk5YzAzMC0xZDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwF6EZmR6xCE1TsVi+spm4q7UNtn9g6CCS67VIDov6LDYPY4b3cTqxDjEm5Tl 0bh/0nRE7vtrTNzbK0bnrqX9ip9dTdbexBpXimWd+LzAGp/0DshkR140xDXB/Up0 O2AIfIwh08icv7nvmDMog+CADAcslLHr6ciu2S4v7Lglpf+YN26rLXf+Bsb8KxdN ZCghsGx+7fesDBesEv46LcQ2eFHcN4jsfr9RkUkycYqHWBnOHyfq8J4Z0U1y3j/5 HfgN899dmeGrTlnVuFYXa++yERQjw9/iGQj9wwswrCTIcgmItCAMb5Irq3io/K3e GgKBCtAXFIjQJTqUhZJlhqfePwIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFA6WD7T0 2YdQQDbRxtvUBubyyGvUMB8GA1UdIwQYMBaAFPmTVwqg1Ulu9d7n6QY3Dmj73MuE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzU5RS82RjJCNjU1MjU0 N0MxMUU1OTcxRjNCNDhDNEY5QUUwMi8tWk5YQ3FEVlNXNzEzdWZwQmpjT2FQdmN5 NFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1aTlhDcURWU1c3MTN1ZnBCamNPYVB2Y3k0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjM1OUUvNkYyQjY1NTI1NDdDMTFFNTk3MUYzQjQ4QzRGOUFFMDIvQjZBOUQ4RUVC MEY0MTFFNUJFODZENzU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBoEAgABMBQDBAJnCYgwDAMEAqM1jAMEAKM1jjANBAIAAjAHAwUAJAPrADAN BgkqhkiG9w0BAQsFAAOCAQEAbx7Xg31fpaQgOjMRf0ZzW//UHNePPEc6P8VqUHs7 OFwFqdhvTsGb/3zUvwKp8g2ZEG3q0hMLchSp90DlMV58f5hwo5wDk3Ekc6HZ1xq4 o4aSftyRaorY099ToW4wF87i+/QyqkoQegNA7za0HZjIlcwv1611J71aofvl7saQ 65DhkQMciZJPU10sd9vWJmhZkSCHpg0RAOgC6Td5djVgArWavCtw3Om3fKZSCRUh 5DwNZn+Tvy4ZJKYufBrRWEZjt91a2jrLKOli553lrg2J9aWft6hvFu5/k0zps64B UpZvEgz+dJQx4zIRpXcAEBumxzoL5qOM4kavqd3I/4umuQ== -----END CERTIFICATE-----Generated at Fri May 24 17:56:31 2024 by rpki-client on console-fra.rpki-client.org