$ rpki-client -vvf rpki.apnic.net/member_repository/A9129AD6/D677DC94DFD011E393DB795F5911EA32/9AD04EAAD58A11EE9992494AC4F9AE02.roa File: 9AD04EAAD58A11EE9992494AC4F9AE02.roa (raw, json) Hash identifier: KDp7yXLQRucasOyaQ4PbwZ8ehU0bGG8x2NcGZC5rFL4= Subject key identifier: CE:70:E0:5D:EB:21:04:88:0B:C4:10:AE:CA:BA:37:B3:30:46:A0:E6 Certificate issuer: /CN=A9129AD6/serialNumber=A5A6A9EAC1ACF76E552C78BDD78BA74FEDDD3FF9 Certificate serial: 2ABE Authority key identifier: A5:A6:A9:EA:C1:AC:F7:6E:55:2C:78:BD:D7:8B:A7:4F:ED:DD:3F:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/paap6sGs925VLHi914unT-3dP_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129AD6/D677DC94DFD011E393DB795F5911EA32/9AD04EAAD58A11EE9992494AC4F9AE02.roa Signing time: Tue 27 Feb 2024 16:09:38 +0000 ROA not before: Tue 27 Feb 2024 16:09:38 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 59365 IP address blocks: 103.231.228.0/24 maxlen: 24 103.231.230.0/24 maxlen: 24 103.231.231.0/24 maxlen: 24 157.119.48.0/22 maxlen: 24 2404:4b80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129AD6/D677DC94DFD011E393DB795F5911EA32/paap6sGs925VLHi914unT-3dP_k.crl rsync://rpki.apnic.net/member_repository/A9129AD6/D677DC94DFD011E393DB795F5911EA32/paap6sGs925VLHi914unT-3dP_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/paap6sGs925VLHi914unT-3dP_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:53:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10942 (0x2abe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129AD6/serialNumber=A5A6A9EAC1ACF76E552C78BDD78BA74FEDDD3FF9 Validity Not Before: Feb 27 16:09:38 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=65de0941-f023 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:92:b0:f1:a1:b3:99:fa:07:f7:db:99:02:8b: 92:68:a4:4d:4b:fa:c0:30:af:17:c5:6a:de:3a:54: aa:a1:53:1e:52:7c:ce:d3:19:00:6e:7a:fa:fe:5a: 29:df:12:5a:8f:dc:96:a1:e6:78:03:e7:fb:97:9f: aa:d0:52:aa:e8:6f:92:f7:f8:1d:bf:e9:11:e2:ee: 2c:51:f3:3a:46:c7:d6:93:ca:8c:69:d1:8b:99:17: 3d:ed:c3:18:6d:4e:a1:d8:22:0e:96:2a:d5:0f:fb: a0:4c:16:0b:11:63:b2:4c:61:8b:88:26:bf:99:ed: 12:b0:5c:52:47:3a:63:0c:71:81:9c:38:a9:5f:95: 3e:1c:99:90:7d:ca:93:31:01:fd:db:3a:e9:ef:e1: 76:57:26:c5:b0:a5:83:5f:7b:06:57:f7:02:3a:66: 51:8c:06:a0:de:9b:65:79:b5:da:b5:d9:54:25:95: db:1f:98:07:bf:f5:0d:d5:02:ea:29:8c:60:05:ff: d0:72:94:48:62:26:31:e6:5e:d5:fe:dd:60:58:38: e0:ff:33:59:cd:76:ab:9d:09:d2:a0:2c:02:9b:16: c2:09:8f:b1:5f:9a:a6:08:d9:78:a1:79:ff:0e:ec: 85:34:b3:0e:94:09:08:1a:59:0a:86:c8:e0:da:a9: d2:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:70:E0:5D:EB:21:04:88:0B:C4:10:AE:CA:BA:37:B3:30:46:A0:E6 X509v3 Authority Key Identifier: keyid:A5:A6:A9:EA:C1:AC:F7:6E:55:2C:78:BD:D7:8B:A7:4F:ED:DD:3F:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129AD6/D677DC94DFD011E393DB795F5911EA32/paap6sGs925VLHi914unT-3dP_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/paap6sGs925VLHi914unT-3dP_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129AD6/D677DC94DFD011E393DB795F5911EA32/9AD04EAAD58A11EE9992494AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.231.228.0/24 103.231.230.0/23 157.119.48.0/22 IPv6: 2404:4b80::/32 Signature Algorithm: sha256WithRSAEncryption 23:0f:4d:f5:8a:da:68:e5:c8:4b:38:26:41:4f:8d:c1:61:25: 90:a4:4f:0a:c1:e6:14:1f:4d:77:c8:4c:a7:89:99:28:0c:e0: fa:59:f6:46:c0:34:b7:d7:ff:cd:da:cf:90:ab:87:dd:6c:27: 2e:32:b0:f2:f2:60:bc:62:39:3c:97:d6:f3:d2:cf:0d:ff:eb: df:fc:f9:8c:89:44:7f:ba:dd:52:19:00:bc:ca:7b:e5:05:c3: 06:1e:b7:a2:9e:57:6a:09:1f:8e:72:94:2e:37:37:44:c4:51: 71:07:a8:23:70:79:bf:11:3a:98:bd:b3:88:c2:6b:38:56:48: dd:62:96:6a:fa:ea:85:54:6b:55:ba:85:a4:68:ba:2d:6c:b6: d0:ec:20:f5:96:53:93:36:69:e0:af:4d:43:7d:9b:79:8e:20: ba:a1:47:6b:bb:3b:cd:53:b4:4b:5b:6e:c8:dd:96:12:74:73: 5f:30:49:ba:fa:dc:1d:b2:2d:e6:1d:6a:54:31:35:4f:f0:e7: b9:3d:76:b4:14:6d:33:db:f3:1a:82:8f:db:ed:1f:4c:1b:f9: 44:83:70:f1:14:e3:3d:99:74:0d:7b:f9:d9:21:e6:77:60:fa: 7a:3f:be:3e:0f:6f:97:0a:10:81:62:d2:60:84:f9:e4:0f:85: e6:a3:3f:06 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICKr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlBRDYxMTAvBgNVBAUTKEE1QTZBOUVBQzFBQ0Y3NkU1NTJDNzhCREQ3OEJBNzRG RURERDNGRjkwHhcNMjQwMjI3MTYwOTM4WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRlMDk0MS1mMDIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZKw8aGzmfoH99uZAouSaKRNS/rAMK8XxWreOlSqoVMeUnzO0xkAbnr6/lop 3xJaj9yWoeZ4A+f7l5+q0FKq6G+S9/gdv+kR4u4sUfM6RsfWk8qMadGLmRc97cMY bU6h2CIOlirVD/ugTBYLEWOyTGGLiCa/me0SsFxSRzpjDHGBnDipX5U+HJmQfcqT MQH92zrp7+F2VybFsKWDX3sGV/cCOmZRjAag3ptlebXatdlUJZXbH5gHv/UN1QLq KYxgBf/QcpRIYiYx5l7V/t1gWDjg/zNZzXarnQnSoCwCmxbCCY+xX5qmCNl4oXn/ DuyFNLMOlAkIGlkKhsjg2qnSDQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFM5w4F3r IQSIC8QQrsq6N7MwRqDmMB8GA1UdIwQYMBaAFKWmqerBrPduVSx4vdeLp0/t3T/5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUFENi9ENjc3REM5NERG RDAxMUUzOTNEQjc5NUY1OTExRUEzMi9wYWFwNnNHczkyNVZMSGk5MTR1blQtM2RQ X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BhYXA2c0dzOTI1VkxIaTkxNHVuVC0zZFBfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjlBRDYvRDY3N0RDOTRERkQwMTFFMzkzREI3OTVGNTkxMUVBMzIvOUFEMDRFQUFE NThBMTFFRTk5OTI0OTRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBABn5+QDBAFn5+YDBAKddzAwDQQCAAIwBwMFACQES4AwDQYJ KoZIhvcNAQELBQADggEBACMPTfWK2mjlyEs4JkFPjcFhJZCkTwrB5hQfTXfITKeJ mSgM4PpZ9kbANLfX/83az5Crh91sJy4ysPLyYLxiOTyX1vPSzw3/69/8+YyJRH+6 3VIZALzKe+UFwwYet6KeV2oJH45ylC43N0TEUXEHqCNweb8ROpi9s4jCazhWSN1i lmr66oVUa1W6haRoui1sttDsIPWWU5M2aeCvTUN9m3mOILqhR2u7O81TtEtbbsjd lhJ0c18wSbr63B2yLeYdalQxNU/w57k9drQUbTPb8xqCj9vtH0wb+USDcPEU4z2Z dA17+dkh5ndg+no/vj4Pb5cKEIFi0mCE+eQPheajPwY= -----END CERTIFICATE-----Generated at Thu May 16 18:26:02 2024 by rpki-client on console-fra.rpki-client.org