$ rpki-client -vvf rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/8818EDF88F2C11EDA558DE4DC4F9AE02.roa File: 8818EDF88F2C11EDA558DE4DC4F9AE02.roa (raw, json) Hash identifier: 9ZtezB8hQdfPgJFvBydKPUcodj0XdME7TcutDEv2H/Q= Subject key identifier: 69:D9:BF:C5:9C:D6:64:09:C4:EA:33:DB:6B:7B:D3:E5:40:55:80:1A Certificate issuer: /CN=A9129797/serialNumber=70BD1A5D9512BF6DE0BA69253DBBF01103E53A43 Certificate serial: 1019 Authority key identifier: 70:BD:1A:5D:95:12:BF:6D:E0:BA:69:25:3D:BB:F0:11:03:E5:3A:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/8818EDF88F2C11EDA558DE4DC4F9AE02.roa Signing time: Fri 02 Feb 2024 18:06:33 +0000 ROA not before: Fri 02 Feb 2024 18:06:33 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 58689 IP address blocks: 103.132.248.0/23 maxlen: 23 103.132.248.0/24 maxlen: 24 103.132.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.crl rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4121 (0x1019) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129797/serialNumber=70BD1A5D9512BF6DE0BA69253DBBF01103E53A43 Validity Not Before: Feb 2 18:06:33 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65bd2f29-594b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c9:1e:e2:34:3f:76:54:33:dd:f6:d2:cb:54: 83:24:a1:7d:75:37:b7:f5:51:e9:34:46:02:af:f0: 5d:3d:19:ea:05:99:18:9e:d2:c6:0e:6c:c4:ea:96: fd:d3:99:48:40:6a:00:d6:36:5f:9e:8b:b8:0b:b4: 75:92:de:1b:76:2b:d4:fe:e0:97:1d:58:15:a9:69: 30:9e:11:bf:d6:24:6b:01:15:c6:11:9a:bd:1e:5d: 9d:1f:b1:2d:39:a1:33:27:2c:58:1b:f5:78:c7:a9: 74:e8:4e:55:1f:09:8a:86:4b:73:2b:95:c8:8a:22: e0:fa:f9:a4:f5:08:52:bf:43:2b:12:46:5f:da:12: 49:32:38:43:c5:cd:ad:ca:41:2f:3e:3d:ae:9a:b9: 3c:79:e1:25:e6:ec:c6:a2:97:d6:a5:62:c5:1f:b8: c6:74:88:2d:89:76:b9:7f:4a:e3:f1:12:95:ff:50: 89:9e:f2:f8:6a:a4:06:f2:3d:c3:8e:69:09:55:04: 8c:42:b7:0c:f4:fd:c1:f9:22:62:ba:65:ff:19:20: d8:c8:89:db:7e:55:a7:b2:8b:5f:9a:62:cc:f7:17: 8e:69:a2:a4:a4:eb:31:7c:43:a1:8e:c2:b2:a3:fe: b5:1c:86:e7:5b:f1:0d:2a:e9:9f:a0:d2:98:68:3b: 33:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:D9:BF:C5:9C:D6:64:09:C4:EA:33:DB:6B:7B:D3:E5:40:55:80:1A X509v3 Authority Key Identifier: keyid:70:BD:1A:5D:95:12:BF:6D:E0:BA:69:25:3D:BB:F0:11:03:E5:3A:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/8818EDF88F2C11EDA558DE4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.132.248.0/23 Signature Algorithm: sha256WithRSAEncryption 78:71:94:c6:b9:4b:b9:91:62:a5:b0:bf:fb:29:21:db:c6:f9: 25:80:87:23:05:11:95:1f:08:e9:5a:2a:c6:cb:ba:ae:39:8f: ee:d4:e8:a8:ec:6c:1a:db:70:71:a3:6f:80:7b:0d:f4:0b:68: 89:54:7d:6d:43:f4:02:3f:e7:8b:15:db:ff:24:dd:44:d2:ec: de:21:7a:0d:cb:e6:93:f0:2b:8c:f7:c2:3a:16:91:09:15:88: f6:6e:e0:f3:90:b2:d5:bb:6c:70:49:08:c7:5b:73:13:79:ae: cd:92:50:b6:d2:85:47:14:56:41:29:ff:db:3a:51:4d:61:84: fc:b3:cf:5a:c1:0f:9b:ca:f0:5c:7b:c6:a2:3e:32:72:a6:52: a5:f5:ea:97:d9:33:c2:5b:6d:81:02:07:9f:3d:61:cf:6a:1e: 76:56:5a:de:f6:81:2f:e4:46:bf:9f:2e:14:5e:e8:8f:f0:13: 02:96:3c:88:f9:16:3f:b8:b6:8a:97:ed:f2:c1:79:97:10:84: a6:f7:a5:40:7e:2d:94:86:88:4d:41:41:9b:ab:88:74:e1:99: 99:fd:4b:39:7d:a3:76:0d:af:d5:d1:10:05:c7:7d:75:3b:b7: 29:29:a8:c2:a1:27:bc:b8:52:fd:cd:21:c1:fd:16:32:4b:a8: 9a:9c:3a:ff -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3OTcxMTAvBgNVBAUTKDcwQkQxQTVEOTUxMkJGNkRFMEJBNjkyNTNEQkJGMDEx MDNFNTNBNDMwHhcNMjQwMjAyMTgwNjMzWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJkMmYyOS01OTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ske4jQ/dlQz3fbSy1SDJKF9dTe39VHpNEYCr/BdPRnqBZkYntLGDmzE6pb9 05lIQGoA1jZfnou4C7R1kt4bdivU/uCXHVgVqWkwnhG/1iRrARXGEZq9Hl2dH7Et OaEzJyxYG/V4x6l06E5VHwmKhktzK5XIiiLg+vmk9QhSv0MrEkZf2hJJMjhDxc2t ykEvPj2umrk8eeEl5uzGopfWpWLFH7jGdIgtiXa5f0rj8RKV/1CJnvL4aqQG8j3D jmkJVQSMQrcM9P3B+SJiumX/GSDYyInbflWnsotfmmLM9xeOaaKkpOsxfEOhjsKy o/61HIbnW/ENKumfoNKYaDszCQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGnZv8Wc 1mQJxOoz22t70+VAVYAaMB8GA1UdIwQYMBaAFHC9Gl2VEr9t4LppJT278BED5TpD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTc5Ny8wOUYyRDk5NDFB MjIxMUU5QkMwNkQzMEFDNEY5QUUwMi9jTDBhWFpVU3YyM2d1bWtsUGJ2d0VRUGxP a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NMMGFYWlVTdjIzZ3Vta2xQYnZ3RVFQbE9rTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk3OTcvMDlGMkQ5OTQxQTIyMTFFOUJDMDZEMzBBQzRGOUFFMDIvODgxOEVERjg4 RjJDMTFFREE1NThERTREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnhPgwDQYJKoZIhvcNAQELBQADggEBAHhxlMa5S7mRYqWw v/spIdvG+SWAhyMFEZUfCOlaKsbLuq45j+7U6KjsbBrbcHGjb4B7DfQLaIlUfW1D 9AI/54sV2/8k3UTS7N4heg3L5pPwK4z3wjoWkQkViPZu4POQstW7bHBJCMdbcxN5 rs2SULbShUcUVkEp/9s6UU1hhPyzz1rBD5vK8Fx7xqI+MnKmUqX16pfZM8JbbYEC B589Yc9qHnZWWt72gS/kRr+fLhRe6I/wEwKWPIj5Fj+4toqX7fLBeZcQhKb3pUB+ LZSGiE1BQZuriHThmZn9Szl9o3YNr9XREAXHfXU7tykpqMKhJ7y4Uv3NIcH9FjJL qJqcOv8= -----END CERTIFICATE-----Generated at Sat May 18 18:46:45 2024 by rpki-client on console-fra.rpki-client.org