$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/73E0191A967811EA92E45A27C4F9AE02.roa File: 73E0191A967811EA92E45A27C4F9AE02.roa (raw, json) Hash identifier: 7Yf4VE2coY+3d+ZqwZVw446e/DnJW+FG0JbcHMiRayM= Subject key identifier: 60:CE:37:C8:2A:6D:44:41:7D:33:BF:68:DA:AF:4A:F3:BA:D3:97:E0 Certificate issuer: /CN=A9123D19/serialNumber=BE9854B9849936643E0D4015A3B37B5E4484AD5A Certificate serial: 28CF Authority key identifier: BE:98:54:B9:84:99:36:64:3E:0D:40:15:A3:B3:7B:5E:44:84:AD:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vphUuYSZNmQ-DUAVo7N7XkSErVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/73E0191A967811EA92E45A27C4F9AE02.roa Signing time: Sun 04 Feb 2024 22:55:01 +0000 ROA not before: Sun 04 Feb 2024 22:55:01 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 56304 IP address blocks: 103.39.44.0/22 maxlen: 24 202.36.170.0/24 maxlen: 24 202.49.187.0/24 maxlen: 24 2401:9480::/32 maxlen: 32 2401:9480:300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.crl rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vphUuYSZNmQ-DUAVo7N7XkSErVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10447 (0x28cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D19/serialNumber=BE9854B9849936643E0D4015A3B37B5E4484AD5A Validity Not Before: Feb 4 22:55:01 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65c015c5-9ea7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:72:95:b7:10:c5:de:b2:09:1c:0a:eb:df:63: 94:6c:ad:a1:0f:78:d0:c6:fd:b7:35:7d:c7:08:9f: 50:fb:8a:4a:27:14:51:2b:9b:60:d6:7e:1f:e1:e6: b0:00:bb:6f:9e:83:0d:68:d9:47:53:2e:e7:e3:43: 50:33:f9:4a:ee:14:80:c7:f2:7f:3b:3c:19:ec:66: 82:26:fc:77:30:eb:92:33:6c:8f:a3:2b:9a:d9:dc: 74:bf:2f:c0:81:e0:a6:06:3f:58:f1:03:03:76:c3: 06:1d:83:15:10:a7:7f:d5:25:70:de:b2:6a:cb:9e: e8:22:7e:3f:91:72:5f:d7:97:f2:74:04:3d:42:7d: c5:a9:36:cc:13:59:7a:8b:43:25:9a:13:0d:b5:2d: 1a:bf:31:3e:50:95:3b:c6:ba:21:04:5b:62:29:b3: cc:31:00:92:d2:4a:a1:f3:70:03:aa:f7:f0:d7:a8: 4f:0d:5f:2f:aa:6d:8d:88:0c:19:d3:0b:f1:10:23: a0:ba:b8:42:19:5b:58:b2:92:a1:dd:f9:b1:28:30: 6c:b2:ba:71:ff:5d:79:65:5c:61:e6:c5:05:32:e7: 9f:28:7c:1f:70:85:51:6a:e0:f0:bb:7f:af:c5:a9: 29:dd:17:75:69:dc:27:22:97:fa:27:95:6e:76:93: a2:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:CE:37:C8:2A:6D:44:41:7D:33:BF:68:DA:AF:4A:F3:BA:D3:97:E0 X509v3 Authority Key Identifier: keyid:BE:98:54:B9:84:99:36:64:3E:0D:40:15:A3:B3:7B:5E:44:84:AD:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vphUuYSZNmQ-DUAVo7N7XkSErVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/73E0191A967811EA92E45A27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.39.44.0/22 202.36.170.0/24 202.49.187.0/24 IPv6: 2401:9480::/32 Signature Algorithm: sha256WithRSAEncryption 35:a9:9d:5a:9c:4f:76:71:06:66:ac:65:ad:41:06:ba:46:35: 9f:d9:e3:c1:ef:61:87:cd:7c:c1:c8:52:0a:f2:1a:74:b9:bc: e7:59:2c:e7:4c:81:b9:50:87:dd:f7:f2:d1:1f:50:58:9b:ce: ef:55:d5:54:62:47:81:f0:f2:25:fc:b5:91:53:37:d6:e4:ab: 96:45:28:bd:4c:ad:a4:01:75:6e:ac:9f:8b:d6:84:63:54:be: 3e:2a:a2:27:5e:36:65:b5:e8:a9:75:d0:4c:1f:41:3a:7c:ee: c6:b5:5a:55:dc:93:36:8b:ab:96:b1:75:b3:7e:cf:af:0c:14: 6f:a3:b8:e5:0d:3f:ac:e4:c6:b5:15:02:1d:91:df:32:16:11: cf:a3:33:59:83:fd:b8:3c:ab:97:c3:02:68:3e:db:4f:f7:a3: ae:61:98:7f:45:fc:0c:13:57:07:44:13:6f:c1:a6:0c:2f:8e: 17:a3:0b:70:57:4b:3d:2d:0f:d8:a8:23:af:a4:44:87:49:26: d4:e2:3e:cf:bb:4b:da:f4:37:d5:e0:44:1b:20:de:f2:ee:4a: 22:08:80:5d:4c:da:1d:31:a2:13:5c:e1:c6:45:4e:b7:04:4e: 65:5a:d3:1c:b6:25:8f:0b:11:f4:e2:14:74:aa:db:71:7f:75: 29:23:5c:24 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICKM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEMTkxMTAvBgNVBAUTKEJFOTg1NEI5ODQ5OTM2NjQzRTBENDAxNUEzQjM3QjVF NDQ4NEFENUEwHhcNMjQwMjA0MjI1NTAxWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWMwMTVjNS05ZWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz3KVtxDF3rIJHArr32OUbK2hD3jQxv23NX3HCJ9Q+4pKJxRRK5tg1n4f4eaw ALtvnoMNaNlHUy7n40NQM/lK7hSAx/J/OzwZ7GaCJvx3MOuSM2yPoyua2dx0vy/A geCmBj9Y8QMDdsMGHYMVEKd/1SVw3rJqy57oIn4/kXJf15fydAQ9Qn3FqTbME1l6 i0MlmhMNtS0avzE+UJU7xrohBFtiKbPMMQCS0kqh83ADqvfw16hPDV8vqm2NiAwZ 0wvxECOgurhCGVtYspKh3fmxKDBssrpx/115ZVxh5sUFMuefKHwfcIVRauDwu3+v xakp3Rd1adwnIpf6J5VudpOiuwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFGDON8gq bURBfTO/aNqvSvO605fgMB8GA1UdIwQYMBaAFL6YVLmEmTZkPg1AFaOze15EhK1a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0QxOS80MEVEODAyMDQy OUYxMUU0ODZCNDRENzJDNEY5QUUwMi92cGhVdVlTWk5tUS1EVUFWbzdON1hrU0Vy Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZwaFV1WVNaTm1RLURVQVZvN043WGtTRXJWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNEMTkvNDBFRDgwMjA0MjlGMTFFNDg2QjQ0RDcyQzRGOUFFMDIvNzNFMDE5MUE5 Njc4MTFFQTkyRTQ1QTI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJnJywDBADKJKoDBADKMbswDQQCAAIwBwMFACQBlIAwDQYJ KoZIhvcNAQELBQADggEBADWpnVqcT3ZxBmasZa1BBrpGNZ/Z48HvYYfNfMHIUgry GnS5vOdZLOdMgblQh9338tEfUFibzu9V1VRiR4Hw8iX8tZFTN9bkq5ZFKL1MraQB dW6sn4vWhGNUvj4qoideNmW16Kl10EwfQTp87sa1WlXckzaLq5axdbN+z68MFG+j uOUNP6zkxrUVAh2R3zIWEc+jM1mD/bg8q5fDAmg+20/3o65hmH9F/AwTVwdEE2/B pgwvjhejC3BXSz0tD9ioI6+kRIdJJtTiPs+7S9r0N9XgRBsg3vLuSiIIgF1M2h0x ohNc4cZFTrcETmVa0xy2JY8LEfTiFHSq23F/dSkjXCQ= -----END CERTIFICATE-----Generated at Sat May 18 16:19:51 2024 by rpki-client on console-fra.rpki-client.org