$ rpki-client -vvf rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/627B1438281211EA881CC32DC4F9AE02.roa File: 627B1438281211EA881CC32DC4F9AE02.roa (raw, json) Hash identifier: Z3D+L/qJxKIXuxn8K2S5jNbQ4blqvpNfzAmj9hQoa48= Subject key identifier: F3:C0:1E:14:2E:8C:F9:BC:90:51:88:C4:45:C7:C0:76:7A:06:50:ED Certificate issuer: /CN=A912D70A/serialNumber=ED330820FFABD0AB2841BA93E902EA682992DAA9 Certificate serial: 0A5F Authority key identifier: ED:33:08:20:FF:AB:D0:AB:28:41:BA:93:E9:02:EA:68:29:92:DA:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/627B1438281211EA881CC32DC4F9AE02.roa Signing time: Wed 10 May 2023 21:01:34 +0000 ROA not before: Wed 10 May 2023 21:01:34 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 16509 IP address blocks: 103.229.8.0/24 maxlen: 24 103.229.9.0/24 maxlen: 24 103.229.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.crl rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 20:03:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2655 (0xa5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D70A/serialNumber=ED330820FFABD0AB2841BA93E902EA682992DAA9 Validity Not Before: May 10 21:01:34 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645c062d-1a6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:92:26:11:7a:05:cd:70:aa:a4:15:b0:98:6c: c0:1d:c8:80:88:b5:03:5a:99:a7:88:fb:9d:e3:96: 88:12:77:82:ae:10:e4:fc:7f:2f:47:72:7d:1e:e1: aa:82:0d:01:7b:60:3f:ff:dd:d9:0d:44:97:f0:f5: 09:7d:96:f2:16:ac:db:46:9e:94:bb:e4:e2:9f:23: cb:57:0a:74:f9:9c:bb:3b:85:c4:c1:73:e2:5d:c5: fa:05:d2:9f:3e:b7:21:f4:fa:65:9c:1d:8a:85:f8: 13:23:89:b9:52:00:60:a2:f6:3a:5d:e5:a7:3a:72: d6:41:85:0b:64:4c:a8:47:6a:6f:47:92:9d:49:a6: 66:2b:53:81:3e:75:ca:57:87:16:59:1f:38:dd:8c: 00:a1:0b:3a:89:88:d1:5f:4c:a1:71:28:ed:36:55: e6:7c:ac:53:22:c3:dd:04:fb:de:bf:ca:f4:fe:17: 9b:36:05:a8:3d:29:af:2b:93:78:b6:05:34:2a:86: 3f:cb:96:c1:ba:56:eb:61:42:29:09:f5:2b:c9:7b: a3:ae:25:5b:22:55:35:43:62:9b:ab:8d:9f:d4:ea: 15:ee:c8:e1:b7:cd:64:36:f9:2b:8e:59:6c:31:8d: a9:10:63:2f:3c:9b:d9:c7:66:f8:fc:6e:fd:35:25: f1:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:C0:1E:14:2E:8C:F9:BC:90:51:88:C4:45:C7:C0:76:7A:06:50:ED X509v3 Authority Key Identifier: keyid:ED:33:08:20:FF:AB:D0:AB:28:41:BA:93:E9:02:EA:68:29:92:DA:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/627B1438281211EA881CC32DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.229.8.0-103.229.10.255 Signature Algorithm: sha256WithRSAEncryption d2:27:24:df:ef:6c:76:3a:5c:b2:17:10:31:5d:8d:ed:77:80: 60:d1:92:09:ab:32:33:2f:2e:2c:94:fd:18:1c:05:cd:60:ba: 87:f1:34:b9:5e:ea:1f:7e:90:a5:5a:09:66:b7:f9:3b:2b:26: a7:c7:8e:6a:4b:c2:31:ee:61:26:02:7f:24:23:66:41:99:d4: 8e:0e:55:65:e0:af:82:20:00:36:16:38:e0:f1:6e:3c:eb:0d: 5b:18:ce:f1:c1:38:97:62:90:c3:db:66:6c:29:be:80:b0:13: 35:20:16:89:b1:c0:d5:13:82:2e:d3:2f:61:6b:91:70:35:7e: 08:a8:d5:03:d8:06:b0:50:33:0e:00:8e:98:f8:96:44:8a:0b: 18:69:f2:bb:2a:d0:4f:e3:99:90:d2:65:0d:57:76:ed:7b:82: b6:81:0b:ef:83:7f:7c:10:17:ac:e7:e7:72:d0:23:40:73:12: 41:6c:af:49:31:9b:06:9f:47:e5:9d:23:7b:ad:53:df:41:88: ce:f0:a0:3b:14:3e:ae:df:15:11:19:1b:cb:c5:76:33:b4:d9: ba:99:91:ea:db:7b:54:c4:86:a0:09:87:cd:d7:1c:ad:e9:bf: ec:5c:40:1d:37:0b:ae:d6:a3:23:4e:6b:9a:21:d2:99:ec:74: e6:4f:e0:fb -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICCl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ3MEExMTAvBgNVBAUTKEVEMzMwODIwRkZBQkQwQUIyODQxQkE5M0U5MDJFQTY4 Mjk5MkRBQTkwHhcNMjMwNTEwMjEwMTM0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDVjMDYyZC0xYTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZImEXoFzXCqpBWwmGzAHciAiLUDWpmniPud45aIEneCrhDk/H8vR3J9HuGq gg0Be2A//93ZDUSX8PUJfZbyFqzbRp6Uu+TinyPLVwp0+Zy7O4XEwXPiXcX6BdKf Prch9PplnB2KhfgTI4m5UgBgovY6XeWnOnLWQYULZEyoR2pvR5KdSaZmK1OBPnXK V4cWWR843YwAoQs6iYjRX0yhcSjtNlXmfKxTIsPdBPvev8r0/hebNgWoPSmvK5N4 tgU0KoY/y5bBulbrYUIpCfUryXujriVbIlU1Q2Kbq42f1OoV7sjht81kNvkrjlls MY2pEGMvPJvZx2b4/G79NSXx4wIDAQABo4ICnTCCApkwHQYDVR0OBBYEFPPAHhQu jPm8kFGIxEXHwHZ6BlDtMB8GA1UdIwQYMBaAFO0zCCD/q9CrKEG6k+kC6mgpktqp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDcwQS80MUFCRDI5RTFC ODYxMUVBOUM5QUYyNDNDNEY5QUUwMi83VE1JSVAtcjBLc29RYnFUNlFMcWFDbVMy cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdUTUlJUC1yMEtzb1FicVQ2UUxxYUNtUzJxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkQ3MEEvNDFBQkQyOUUxQjg2MTFFQTlDOUFGMjQzQzRGOUFFMDIvNjI3QjE0Mzgy ODEyMTFFQTg4MUNDMzJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEA2flCAMEAGflCjANBgkqhkiG9w0BAQsFAAOCAQEA0ick 3+9sdjpcshcQMV2N7XeAYNGSCasyMy8uLJT9GBwFzWC6h/E0uV7qH36QpVoJZrf5 Oysmp8eOakvCMe5hJgJ/JCNmQZnUjg5VZeCvgiAANhY44PFuPOsNWxjO8cE4l2KQ w9tmbCm+gLATNSAWibHA1ROCLtMvYWuRcDV+CKjVA9gGsFAzDgCOmPiWRIoLGGny uyrQT+OZkNJlDVd27XuCtoEL74N/fBAXrOfnctAjQHMSQWyvSTGbBp9H5Z0je61T 30GIzvCgOxQ+rt8VERkby8V2M7TZupmR6tt7VMSGoAmHzdccrem/7FxAHTcLrtaj I05rmiHSmex05k/g+w== -----END CERTIFICATE-----Generated at Tue Apr 23 18:42:18 2024 by rpki-client on console-ams.rpki-client.org