$ rpki-client -vvf rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/1ABD64C4FC4B11EC9E374483C4F9AE02.roa File: 1ABD64C4FC4B11EC9E374483C4F9AE02.roa (raw, json) Hash identifier: pU1vPEKHKX3MOYQLTe0KME/abi6a4AV9Hhdy4Bzh3YM= Subject key identifier: F8:EE:34:00:19:5C:29:5A:11:04:CA:F8:46:4D:E5:21:49:8E:84:65 Certificate issuer: /CN=A9127FC2/serialNumber=73BA21BE36DDDFD58690116D6EEC7BDC7EFEFB28 Certificate serial: 02BF Authority key identifier: 73:BA:21:BE:36:DD:DF:D5:86:90:11:6D:6E:EC:7B:DC:7E:FE:FB:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c7ohvjbd39WGkBFtbux73H7--yg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/1ABD64C4FC4B11EC9E374483C4F9AE02.roa Signing time: Sun 21 Apr 2024 03:45:31 +0000 ROA not before: Sun 21 Apr 2024 03:45:31 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 976 IP address blocks: 103.91.219.0/24 maxlen: 24 103.95.207.0/24 maxlen: 24 103.101.153.0/24 maxlen: 24 103.107.8.0/24 maxlen: 24 2001:df0:a540::/48 maxlen: 48 2401:1740:1000::/48 maxlen: 48 2401:1740:2000::/48 maxlen: 48 2401:1740:3000::/48 maxlen: 48 2401:1740:6000::/48 maxlen: 48 2401:1740:9000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/c7ohvjbd39WGkBFtbux73H7--yg.crl rsync://rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/c7ohvjbd39WGkBFtbux73H7--yg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c7ohvjbd39WGkBFtbux73H7--yg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 703 (0x2bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127FC2/serialNumber=73BA21BE36DDDFD58690116D6EEC7BDC7EFEFB28 Validity Not Before: Apr 21 03:45:31 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66248bdb-335b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:fb:1a:75:b1:27:fc:5f:de:e6:c5:fd:0b:90: 14:d7:2b:15:6a:ef:e0:5d:10:f6:f1:af:1a:9c:c2: 94:68:d7:b0:04:f4:0e:a2:4d:fe:54:9c:aa:49:e3: 38:ec:ae:98:1b:23:96:0b:68:64:60:ab:e5:18:0b: 6a:12:42:b4:02:0c:02:6b:9e:f0:d4:47:a3:f8:3b: 65:1c:b8:be:5c:37:b7:8a:aa:7a:54:88:f2:62:af: f7:9e:68:39:ea:e4:20:cf:b6:85:07:51:bc:70:26: 81:47:2a:7b:d4:74:7b:ac:92:3b:58:62:a0:39:99: f1:ab:cb:c4:a4:2d:8d:68:3b:12:34:78:70:06:d2: 75:fc:fc:6d:ee:23:38:2e:fe:73:af:c3:80:35:43: 20:d2:3f:75:a7:f0:5e:7d:6c:b6:15:07:59:d2:2f: 1f:a4:aa:56:72:ba:dd:e2:dc:65:66:11:39:96:b9: 4b:1d:ec:21:3d:b7:44:07:f0:50:bf:77:2f:75:8e: c6:8c:d8:f9:98:fb:9a:5f:6f:69:67:82:6f:d1:c6: eb:6c:58:ea:c9:53:6c:65:ec:0b:3b:c5:13:dd:95: fa:65:47:b1:9b:4a:56:69:be:01:06:be:ec:4c:73: 8f:ab:1a:23:8d:3f:14:f9:0a:21:27:3e:53:5a:55: 1a:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:EE:34:00:19:5C:29:5A:11:04:CA:F8:46:4D:E5:21:49:8E:84:65 X509v3 Authority Key Identifier: keyid:73:BA:21:BE:36:DD:DF:D5:86:90:11:6D:6E:EC:7B:DC:7E:FE:FB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/c7ohvjbd39WGkBFtbux73H7--yg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c7ohvjbd39WGkBFtbux73H7--yg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/1ABD64C4FC4B11EC9E374483C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.219.0/24 103.95.207.0/24 103.101.153.0/24 103.107.8.0/24 IPv6: 2001:df0:a540::/48 2401:1740:1000::/48 2401:1740:2000::/48 2401:1740:3000::/48 2401:1740:6000::/48 2401:1740:9000::/48 Signature Algorithm: sha256WithRSAEncryption 63:7d:a6:ee:41:dc:fb:32:45:c4:ca:8d:82:c7:74:33:40:24: e6:f0:c4:14:02:7b:89:f0:4c:24:86:ab:81:0c:82:de:37:ea: 8b:71:d2:21:03:39:f4:98:3f:34:66:5e:77:b2:33:96:12:92: 9f:40:b3:9e:24:40:a1:48:a9:21:4d:ea:01:07:9f:18:19:64: 94:46:b1:f2:d1:14:cc:2c:0a:69:57:bd:73:b4:04:94:94:a3: 41:8c:0e:bf:33:30:07:c9:1f:05:2c:6c:d5:f0:1b:d1:13:3e: 33:91:d0:d4:33:40:d3:a0:f3:32:d7:c9:50:f0:05:0e:ec:26: d7:8b:e7:8f:a2:03:a0:bf:0c:2b:47:4b:7d:a4:0d:5a:97:81: 33:7b:ca:87:9b:66:54:7d:7f:46:c7:5d:3a:ca:37:56:45:67: 83:8b:54:90:e5:7b:b4:19:ab:9c:b2:3e:13:5c:36:ac:a2:3d: aa:90:06:dc:43:b4:0d:ad:6e:57:43:82:62:92:22:c5:ab:1c: 93:3b:0a:fb:b1:33:2a:67:a5:fa:0d:8a:54:cf:6e:09:31:d4: fd:fe:75:f5:06:c5:37:cb:86:8f:0e:64:20:37:cc:99:ad:a2: 99:02:88:ba:a2:6e:3e:44:a8:cd:46:7a:d6:8d:6b:32:bd:1b: 5b:30:6e:11 -----BEGIN CERTIFICATE----- MIIFwTCCBKmgAwIBAgICAr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdGQzIxMTAvBgNVBAUTKDczQkEyMUJFMzZERERGRDU4NjkwMTE2RDZFRUM3QkRD N0VGRUZCMjgwHhcNMjQwNDIxMDM0NTMxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjI0OGJkYi0zMzViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvsadbEn/F/e5sX9C5AU1ysVau/gXRD28a8anMKUaNewBPQOok3+VJyqSeM4 7K6YGyOWC2hkYKvlGAtqEkK0AgwCa57w1Eej+DtlHLi+XDe3iqp6VIjyYq/3nmg5 6uQgz7aFB1G8cCaBRyp71HR7rJI7WGKgOZnxq8vEpC2NaDsSNHhwBtJ1/Pxt7iM4 Lv5zr8OANUMg0j91p/BefWy2FQdZ0i8fpKpWcrrd4txlZhE5lrlLHewhPbdEB/BQ v3cvdY7GjNj5mPuaX29pZ4Jv0cbrbFjqyVNsZewLO8UT3ZX6ZUexm0pWab4BBr7s THOPqxojjT8U+QohJz5TWlUazwIDAQABo4IC5TCCAuEwHQYDVR0OBBYEFPjuNAAZ XClaEQTK+EZN5SFJjoRlMB8GA1UdIwQYMBaAFHO6Ib423d/VhpARbW7se9x+/vso MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0ZDMi81RTMwQkY3MEJC QTYxMUVDQkFGNDMxNTZDNEY5QUUwMi9jN29odmpiZDM5V0drQkZ0YnV4NzNINy0t eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2M3b2h2amJkMzlXR2tCRnRidXg3M0g3LS15Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjdGQzIvNUUzMEJGNzBCQkE2MTFFQ0JBRjQzMTU2QzRGOUFFMDIvMUFCRDY0QzRG QzRCMTFFQzlFMzc0NDgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwbwYIKwYBBQUHAQcBAf8E YDBeMB4EAgABMBgDBABnW9sDBABnX88DBABnZZkDBABnawgwPAQCAAIwNgMHACAB DfClQAMHACQBF0AQAAMHACQBF0AgAAMHACQBF0AwAAMHACQBF0BgAAMHACQBF0CQ ADANBgkqhkiG9w0BAQsFAAOCAQEAY32m7kHc+zJFxMqNgsd0M0Ak5vDEFAJ7ifBM JIargQyC3jfqi3HSIQM59Jg/NGZed7IzlhKSn0CzniRAoUipIU3qAQefGBlklEax 8tEUzCwKaVe9c7QElJSjQYwOvzMwB8kfBSxs1fAb0RM+M5HQ1DNA06DzMtfJUPAF Duwm14vnj6IDoL8MK0dLfaQNWpeBM3vKh5tmVH1/RsddOso3VkVng4tUkOV7tBmr nLI+E1w2rKI9qpAG3EO0Da1uV0OCYpIixasckzsK+7EzKmel+g2KVM9uCTHU/f51 9QbFN8uGjw5kIDfMma2imQKIuqJuPkSozUZ61o1rMr0bWzBuEQ== -----END CERTIFICATE-----Generated at Sun May 19 04:22:04 2024 by rpki-client on console-fra.rpki-client.org