$ rpki-client -vvf rpki.apnic.net/member_repository/A9127E99/0ACE19B07A8511EDAD692887C4F9AE02/3AA7BED6ECBA11EE8736F274C4F9AE02.roa File: 3AA7BED6ECBA11EE8736F274C4F9AE02.roa (raw, json) Hash identifier: doDbLm33kDqozRbUunYGEw2IDBvQYUrzGkFtMGAu1dQ= Subject key identifier: A8:2E:2D:D8:C2:E2:4C:38:76:08:37:D8:E0:03:9A:D4:F5:D0:42:76 Certificate issuer: /CN=A9127E99/serialNumber=E2534D26C78C9701790996438C114108254776AA Certificate serial: FA Authority key identifier: E2:53:4D:26:C7:8C:97:01:79:09:96:43:8C:11:41:08:25:47:76:AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4lNNJseMlwF5CZZDjBFBCCVHdqo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127E99/0ACE19B07A8511EDAD692887C4F9AE02/3AA7BED6ECBA11EE8736F274C4F9AE02.roa Signing time: Thu 28 Mar 2024 04:18:29 +0000 ROA not before: Thu 28 Mar 2024 04:18:29 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 134218 IP address blocks: 103.234.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127E99/0ACE19B07A8511EDAD692887C4F9AE02/4lNNJseMlwF5CZZDjBFBCCVHdqo.crl rsync://rpki.apnic.net/member_repository/A9127E99/0ACE19B07A8511EDAD692887C4F9AE02/4lNNJseMlwF5CZZDjBFBCCVHdqo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4lNNJseMlwF5CZZDjBFBCCVHdqo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 250 (0xfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127E99/serialNumber=E2534D26C78C9701790996438C114108254776AA Validity Not Before: Mar 28 04:18:29 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=6604ef94-051f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a8:f2:aa:05:6a:67:f7:74:9a:21:50:74:a2: ab:14:a0:8d:8c:15:f4:26:1f:8a:cf:38:b0:49:c4: 2b:f4:d0:83:01:9f:20:96:1e:1f:10:48:0d:d1:8e: 33:ea:04:0b:d2:7f:da:f3:29:34:af:16:ea:fe:fc: b6:c4:00:ee:e3:9d:9e:b7:3c:c7:61:ae:58:87:70: db:fc:4b:ee:89:44:9a:17:5d:66:e1:fa:06:76:7f: 64:bf:29:6d:55:68:0f:c8:c2:93:f4:37:99:d9:20: 1c:b4:30:bb:eb:ce:ef:1c:55:49:23:84:53:36:61: fb:1f:fd:cd:99:50:13:70:a1:9d:44:ad:da:b7:42: 94:29:30:65:4c:49:74:b4:f5:31:e7:03:07:0d:5b: f4:52:6d:e0:0a:76:93:b1:84:df:1b:72:da:50:18: 25:ba:08:25:3b:a7:6e:e6:69:2c:82:a6:47:89:42: 6e:e4:ef:7a:48:72:d8:07:5d:7e:7b:10:52:31:f5: ab:b9:f6:ae:39:d8:ab:34:89:ea:10:91:ec:a2:b2: d5:63:3e:d5:45:20:08:70:2f:86:49:48:18:4b:66: ff:77:50:36:b9:af:6c:99:09:ee:12:16:2e:7b:5d: b7:eb:4e:06:8a:8e:df:8d:7f:6b:56:39:d6:48:f5: f5:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:2E:2D:D8:C2:E2:4C:38:76:08:37:D8:E0:03:9A:D4:F5:D0:42:76 X509v3 Authority Key Identifier: keyid:E2:53:4D:26:C7:8C:97:01:79:09:96:43:8C:11:41:08:25:47:76:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127E99/0ACE19B07A8511EDAD692887C4F9AE02/4lNNJseMlwF5CZZDjBFBCCVHdqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4lNNJseMlwF5CZZDjBFBCCVHdqo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127E99/0ACE19B07A8511EDAD692887C4F9AE02/3AA7BED6ECBA11EE8736F274C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.234.109.0/24 Signature Algorithm: sha256WithRSAEncryption 97:9e:40:a7:dc:5b:53:53:2b:a3:10:58:d1:f8:a7:62:13:c9: 75:89:3c:21:77:da:ba:06:f2:f0:4d:c1:54:e0:ab:ca:d3:4d: d2:94:78:1b:d3:ab:27:8e:21:f7:14:a4:a3:c7:81:5d:84:21: 3f:ff:bf:78:34:0d:ca:ea:8b:9c:bf:c5:fa:e3:b4:e5:8f:ef: 51:05:23:7b:25:74:de:bf:94:34:67:67:f9:4c:66:6c:70:2c: 5a:db:91:78:8a:85:fc:3a:c9:74:27:dc:70:2f:45:bc:c0:43: 84:56:33:b7:c7:9d:b4:4f:6f:de:33:23:65:3e:a8:6b:53:2f: b5:b6:fd:4f:0f:4e:b9:54:ff:36:e9:12:16:fb:67:a5:e6:e4: f6:93:01:f0:a1:7a:09:5e:fe:f8:de:3b:92:39:25:5d:ba:aa: 28:1f:27:4c:47:ae:b0:70:6d:1c:b2:22:13:2a:70:d8:5c:a3: 4e:38:2f:3a:62:f0:1e:83:f3:83:fe:36:81:22:b8:c9:29:ed: 25:e1:12:b6:ca:79:4c:26:0b:81:77:ca:1d:f9:72:21:71:76: 6b:31:16:44:90:ab:a8:30:38:a0:27:ad:61:9d:3a:b1:34:1b: 1e:12:d0:58:5d:6b:17:f1:ff:43:1c:ee:8d:fe:77:70:cc:a5: ee:46:77:4a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdFOTkxMTAvBgNVBAUTKEUyNTM0RDI2Qzc4Qzk3MDE3OTA5OTY0MzhDMTE0MTA4 MjU0Nzc2QUEwHhcNMjQwMzI4MDQxODI5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjA0ZWY5NC0wNTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtajyqgVqZ/d0miFQdKKrFKCNjBX0Jh+KzziwScQr9NCDAZ8glh4fEEgN0Y4z 6gQL0n/a8yk0rxbq/vy2xADu452etzzHYa5Yh3Db/EvuiUSaF11m4foGdn9kvylt VWgPyMKT9DeZ2SActDC7687vHFVJI4RTNmH7H/3NmVATcKGdRK3at0KUKTBlTEl0 tPUx5wMHDVv0Um3gCnaTsYTfG3LaUBglugglO6du5mksgqZHiUJu5O96SHLYB11+ exBSMfWrufauOdirNInqEJHsorLVYz7VRSAIcC+GSUgYS2b/d1A2ua9smQnuEhYu e123604Gio7fjX9rVjnWSPX1pQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKguLdjC 4kw4dgg32OADmtT10EJ2MB8GA1UdIwQYMBaAFOJTTSbHjJcBeQmWQ4wRQQglR3aq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0U5OS8wQUNFMTlCMDdB ODUxMUVEQUQ2OTI4ODdDNEY5QUUwMi80bE5OSnNlTWx3RjVDWlpEakJGQkNDVkhk cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRsTk5Kc2VNbHdGNUNaWkRqQkZCQ0NWSGRxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjdFOTkvMEFDRTE5QjA3QTg1MTFFREFENjkyODg3QzRGOUFFMDIvM0FBN0JFRDZF Q0JBMTFFRTg3MzZGMjc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn6m0wDQYJKoZIhvcNAQELBQADggEBAJeeQKfcW1NTK6MQ WNH4p2ITyXWJPCF32roG8vBNwVTgq8rTTdKUeBvTqyeOIfcUpKPHgV2EIT//v3g0 Dcrqi5y/xfrjtOWP71EFI3sldN6/lDRnZ/lMZmxwLFrbkXiKhfw6yXQn3HAvRbzA Q4RWM7fHnbRPb94zI2U+qGtTL7W2/U8PTrlU/zbpEhb7Z6Xm5PaTAfChegle/vje O5I5JV26qigfJ0xHrrBwbRyyIhMqcNhco044Lzpi8B6D84P+NoEiuMkp7SXhErbK eUwmC4F3yh35ciFxdmsxFkSQq6gwOKAnrWGdOrE0Gx4S0Fhdaxfx/0Mc7o3+d3DM pe5Gd0o= -----END CERTIFICATE-----Generated at Sun May 19 06:14:33 2024 by rpki-client on console-ams.rpki-client.org