$ rpki-client -vvf rpki.apnic.net/member_repository/A9125590/FC44B38A1D7011E28951A9B508B02CD2/26E02598562F11EB94FD0463C4F9AE02.roa File: 26E02598562F11EB94FD0463C4F9AE02.roa (raw, json) Hash identifier: GEPeB5NOrL1RsXf0aXVgWq4yej9ldwNEyokTbgbSed0= Subject key identifier: 5B:C8:BE:16:B8:F3:B8:AD:54:C1:3E:07:C6:C3:CE:82:8A:55:4C:3A Certificate issuer: /CN=A9125590/serialNumber=C40EB7816451875486DA643F8F9361B77DFB21A3 Certificate serial: 3382 Authority key identifier: C4:0E:B7:81:64:51:87:54:86:DA:64:3F:8F:93:61:B7:7D:FB:21:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xA63gWRRh1SG2mQ_j5Nht337IaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125590/FC44B38A1D7011E28951A9B508B02CD2/26E02598562F11EB94FD0463C4F9AE02.roa Signing time: Sat 14 Oct 2023 14:20:15 +0000 ROA not before: Sat 14 Oct 2023 14:20:15 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 55789 IP address blocks: 103.9.116.0/24 maxlen: 24 103.9.117.0/24 maxlen: 24 103.9.118.0/24 maxlen: 24 103.9.119.0/24 maxlen: 24 202.59.250.0/23 maxlen: 23 202.59.250.0/24 maxlen: 24 2001:df4:8a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125590/FC44B38A1D7011E28951A9B508B02CD2/xA63gWRRh1SG2mQ_j5Nht337IaM.crl rsync://rpki.apnic.net/member_repository/A9125590/FC44B38A1D7011E28951A9B508B02CD2/xA63gWRRh1SG2mQ_j5Nht337IaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xA63gWRRh1SG2mQ_j5Nht337IaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:20:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13186 (0x3382) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125590/serialNumber=C40EB7816451875486DA643F8F9361B77DFB21A3 Validity Not Before: Oct 14 14:20:15 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=652aa39e-6252 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9d:e4:bc:7b:df:31:e7:c3:18:71:ad:4e:92: c3:4a:90:4b:91:1e:bd:05:45:19:64:dd:35:fb:8f: 51:35:a6:a6:26:c9:1e:4a:a5:d8:26:0b:75:fd:d8: 14:9b:09:e6:7f:39:90:fd:0b:5f:01:2d:53:ed:4b: 39:2c:0e:34:f7:05:c6:e0:aa:a3:1d:9e:07:bb:29: 94:e3:c5:1e:f8:19:fe:69:59:3b:c4:20:58:47:39: 1c:25:05:1c:7c:0c:a9:18:6b:d5:63:d7:29:25:12: ab:87:08:6c:4f:d6:dc:b4:58:9a:90:36:28:f3:cd: 6d:fb:e6:97:1a:4d:1e:7c:2e:c3:d1:f9:db:78:7d: 84:c1:c4:e4:ad:32:dd:4f:b8:20:89:31:ce:45:a7: c5:b7:2e:a2:ee:6a:e8:41:5c:29:1a:93:c7:0c:68: 99:ba:2f:dc:96:85:3b:63:08:b6:85:a0:15:81:01: a4:ae:31:c6:85:cd:5a:90:7f:1d:57:b6:e0:0b:66: 0f:4c:32:e3:c1:e2:83:08:70:fa:2c:e1:4d:dc:4f: 22:c7:7c:95:3d:b8:3f:cb:4f:af:32:36:fc:e3:e0: 00:37:b8:6e:66:4c:fa:15:6b:52:a2:40:64:71:58: c3:0f:bd:1a:f2:3c:e8:60:f5:6d:22:32:43:0a:b4: a5:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:C8:BE:16:B8:F3:B8:AD:54:C1:3E:07:C6:C3:CE:82:8A:55:4C:3A X509v3 Authority Key Identifier: keyid:C4:0E:B7:81:64:51:87:54:86:DA:64:3F:8F:93:61:B7:7D:FB:21:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125590/FC44B38A1D7011E28951A9B508B02CD2/xA63gWRRh1SG2mQ_j5Nht337IaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xA63gWRRh1SG2mQ_j5Nht337IaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125590/FC44B38A1D7011E28951A9B508B02CD2/26E02598562F11EB94FD0463C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.9.116.0/22 202.59.250.0/23 IPv6: 2001:df4:8a00::/48 Signature Algorithm: sha256WithRSAEncryption 94:ee:fc:78:7a:bb:d0:fa:87:b0:2f:ab:76:48:8b:d0:ab:75: c4:84:79:80:e0:dd:e4:a3:23:bd:f3:76:cd:94:d9:17:3a:5f: b2:6d:12:a1:4c:59:18:09:dc:a7:a7:d0:11:c1:c5:3c:15:ab: 3e:70:04:f3:eb:2b:00:91:f1:2b:12:43:6d:5f:54:91:29:49: d4:d5:76:36:b7:d0:c1:51:9e:5e:19:39:ea:d4:81:a9:6b:25: f9:be:25:b0:8c:6c:09:75:ef:63:4e:6a:ba:78:00:66:cf:c6: 8c:dc:7e:2e:e7:df:b8:c2:ac:58:c3:0d:3a:84:36:9c:d1:d2: 3c:78:36:7e:7c:5d:b9:cb:b5:8d:73:79:fd:be:09:32:25:bf: ef:40:ed:f0:88:bd:ae:48:a0:10:a9:bf:bd:5e:ab:31:c2:b1: a7:c4:6d:8c:c0:c4:c1:c9:20:44:09:01:ba:39:23:20:c3:66: bd:b5:80:7a:2e:00:24:60:bb:a2:07:c2:11:9d:9d:1e:90:ee: d2:39:82:5e:94:64:c6:99:22:9f:61:fd:9e:a2:c4:6b:f4:c1: 50:69:8c:99:52:c2:16:77:b9:ee:e1:5a:5f:98:64:ab:2c:ec: 9c:ce:2d:34:17:3f:57:b5:a0:d4:1c:05:2f:d1:d0:be:b3:77: f4:13:0a:01 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICM4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU1OTAxMTAvBgNVBAUTKEM0MEVCNzgxNjQ1MTg3NTQ4NkRBNjQzRjhGOTM2MUI3 N0RGQjIxQTMwHhcNMjMxMDE0MTQyMDE1WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTJhYTM5ZS02MjUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvp3kvHvfMefDGHGtTpLDSpBLkR69BUUZZN01+49RNaamJskeSqXYJgt1/dgU mwnmfzmQ/QtfAS1T7Us5LA409wXG4KqjHZ4HuymU48Ue+Bn+aVk7xCBYRzkcJQUc fAypGGvVY9cpJRKrhwhsT9bctFiakDYo881t++aXGk0efC7D0fnbeH2EwcTkrTLd T7ggiTHORafFty6i7mroQVwpGpPHDGiZui/cloU7Ywi2haAVgQGkrjHGhc1akH8d V7bgC2YPTDLjweKDCHD6LOFN3E8ix3yVPbg/y0+vMjb84+AAN7huZkz6FWtSokBk cVjDD70a8jzoYPVtIjJDCrSlZwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFFvIvha4 87itVME+B8bDzoKKVUw6MB8GA1UdIwQYMBaAFMQOt4FkUYdUhtpkP4+TYbd9+yGj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTU5MC9GQzQ0QjM4QTFE NzAxMUUyODk1MUE5QjUwOEIwMkNEMi94QTYzZ1dSUmgxU0cybVFfajVOaHQzMzdJ YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hBNjNnV1JSaDFTRzJtUV9qNU5odDMzN0lhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU1OTAvRkM0NEIzOEExRDcwMTFFMjg5NTFBOUI1MDhCMDJDRDIvMjZFMDI1OTg1 NjJGMTFFQjk0RkQwNDYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAJnCXQDBAHKO/owDwQCAAIwCQMHACABDfSKADANBgkqhkiG 9w0BAQsFAAOCAQEAlO78eHq70PqHsC+rdkiL0Kt1xIR5gODd5KMjvfN2zZTZFzpf sm0SoUxZGAncp6fQEcHFPBWrPnAE8+srAJHxKxJDbV9UkSlJ1NV2NrfQwVGeXhk5 6tSBqWsl+b4lsIxsCXXvY05qungAZs/GjNx+LuffuMKsWMMNOoQ2nNHSPHg2fnxd ucu1jXN5/b4JMiW/70Dt8Ii9rkigEKm/vV6rMcKxp8RtjMDEwckgRAkBujkjIMNm vbWAei4AJGC7ogfCEZ2dHpDu0jmCXpRkxpkin2H9nqLEa/TBUGmMmVLCFne57uFa X5hkqyzsnM4tNBc/V7Wg1BwFL9HQvrN39BMKAQ== -----END CERTIFICATE-----Generated at Sat May 18 15:58:20 2024 by rpki-client on console-ams.rpki-client.org