$ rpki-client -vvf rpki.apnic.net/member_repository/A9134AD7/E37EC8E68F4E11E68EE7CE6EC4F9AE02/EF2F0372C9F211E986C3B486C4F9AE02.roa File: EF2F0372C9F211E986C3B486C4F9AE02.roa (raw, json) Hash identifier: UJv8BcXFWdkDpS4Pf9wPcj0noM0eUuyaFyqSYilIOoI= Subject key identifier: FE:EE:0C:18:93:FE:24:02:D0:A9:A6:97:C4:2D:76:C1:44:6F:0A:02 Certificate issuer: /CN=A9134AD7/serialNumber=9C039CE49B5779FDB84DE3B698F676E844236679 Certificate serial: 1C8D Authority key identifier: 9C:03:9C:E4:9B:57:79:FD:B8:4D:E3:B6:98:F6:76:E8:44:23:66:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAOc5JtXef24TeO2mPZ26EQjZnk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134AD7/E37EC8E68F4E11E68EE7CE6EC4F9AE02/EF2F0372C9F211E986C3B486C4F9AE02.roa Signing time: Wed 28 Jun 2023 16:34:03 +0000 ROA not before: Wed 28 Jun 2023 16:34:03 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 63989 IP address blocks: 103.58.148.0/24 maxlen: 24 103.58.149.0/24 maxlen: 24 103.58.150.0/24 maxlen: 24 103.58.151.0/24 maxlen: 24 202.9.89.0/24 maxlen: 24 202.9.90.0/24 maxlen: 24 202.94.166.0/24 maxlen: 24 2402:6880:1000::/48 maxlen: 48 2402:6880:2000::/48 maxlen: 48 2402:6880:3000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134AD7/E37EC8E68F4E11E68EE7CE6EC4F9AE02/nAOc5JtXef24TeO2mPZ26EQjZnk.crl rsync://rpki.apnic.net/member_repository/A9134AD7/E37EC8E68F4E11E68EE7CE6EC4F9AE02/nAOc5JtXef24TeO2mPZ26EQjZnk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAOc5JtXef24TeO2mPZ26EQjZnk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7309 (0x1c8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134AD7/serialNumber=9C039CE49B5779FDB84DE3B698F676E844236679 Validity Not Before: Jun 28 16:34:03 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=649c60fa-027b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:90:48:c0:13:98:97:14:78:47:d2:86:0b:2e: eb:4b:5b:5a:ba:97:30:f9:d0:d6:2c:cc:b3:8a:d1: e5:9e:fd:05:24:2c:a9:0c:d7:c1:1e:e1:03:98:9d: 95:9e:9d:a2:3c:91:5d:e3:3b:7e:c8:eb:9a:eb:8c: c2:d0:64:d0:9e:05:e1:b9:f3:36:26:4d:7e:09:f5: 68:6c:91:31:e2:30:97:36:70:61:76:d0:7d:f0:22: a5:05:84:2f:a5:b7:6c:a0:7d:64:a1:41:0d:a0:41: b1:15:44:52:16:05:6a:c6:66:d2:26:a7:f9:6f:d4: 99:d6:7e:e5:7d:5d:bf:ad:f7:a3:75:c4:70:0a:5a: 86:a0:20:8c:3c:6e:c9:3b:da:8c:ec:d8:fb:ec:e1: a8:08:dd:57:42:fc:db:17:0a:e6:69:7a:64:c5:5b: d6:e6:7c:9f:29:9a:1b:aa:a0:85:d0:64:b1:e4:49: ff:81:6c:54:70:9f:3f:21:2a:32:b1:ca:7a:2a:97: f5:b2:6c:96:fe:af:f7:e5:a3:94:bb:f7:4f:0f:d6: b8:4e:ee:4b:c5:52:94:03:c6:85:3a:b4:b1:d8:c5: 63:9f:53:2f:e3:c3:da:d9:4c:52:a0:ba:23:fe:44: 18:f7:ee:ac:50:44:a3:90:38:64:c1:85:74:f5:da: 74:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:EE:0C:18:93:FE:24:02:D0:A9:A6:97:C4:2D:76:C1:44:6F:0A:02 X509v3 Authority Key Identifier: keyid:9C:03:9C:E4:9B:57:79:FD:B8:4D:E3:B6:98:F6:76:E8:44:23:66:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134AD7/E37EC8E68F4E11E68EE7CE6EC4F9AE02/nAOc5JtXef24TeO2mPZ26EQjZnk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAOc5JtXef24TeO2mPZ26EQjZnk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134AD7/E37EC8E68F4E11E68EE7CE6EC4F9AE02/EF2F0372C9F211E986C3B486C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.58.148.0/22 202.9.89.0-202.9.90.255 202.94.166.0/24 IPv6: 2402:6880:1000::/48 2402:6880:2000::/48 2402:6880:3000::/48 Signature Algorithm: sha256WithRSAEncryption ae:e1:a8:69:83:95:71:52:ee:5e:f6:32:29:ff:32:bb:b7:ed: de:56:22:05:f4:26:8c:36:8b:bd:53:3f:5c:f8:2b:6e:6d:1f: 08:38:86:13:b7:e9:43:2c:f4:e2:27:f5:f6:42:84:4d:0b:3f: 92:e5:61:49:d0:51:60:fa:42:b2:90:6b:6e:e9:d9:ac:1b:a0: 01:3b:29:cc:fa:df:5d:ec:67:96:11:93:09:58:10:1f:ab:76: 0a:a7:ed:59:8e:0e:14:ea:c7:2f:1a:17:b0:9e:29:a1:98:4f: 89:f1:90:bf:f2:4c:2d:6f:8a:fb:b3:5c:2f:0a:41:ec:24:de: 5b:b1:50:35:57:fd:4d:14:aa:68:76:01:6a:5b:c8:db:e8:61: 69:57:c9:39:bd:5e:d1:b9:ff:42:1d:e0:3a:57:90:6e:61:7a: 35:8c:77:fc:b6:c2:fb:1e:03:98:13:65:f0:ce:f8:9f:00:14: 27:fa:33:99:9c:bc:6e:fc:e0:6d:1c:bf:5b:86:d2:86:1e:52: ce:21:dc:b8:e1:93:46:3c:b2:05:48:91:45:80:55:7b:8c:e1: b2:a5:30:f7:24:98:da:b7:89:e2:1e:80:47:67:27:ba:d5:f1: 13:8c:9c:21:9f:2a:90:f1:2f:03:80:ff:ca:98:8e:cc:97:36: b5:68:bc:a9 -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgICHI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRBRDcxMTAvBgNVBAUTKDlDMDM5Q0U0OUI1Nzc5RkRCODRERTNCNjk4RjY3NkU4 NDQyMzY2NzkwHhcNMjMwNjI4MTYzNDAzWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDljNjBmYS0wMjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1pBIwBOYlxR4R9KGCy7rS1taupcw+dDWLMyzitHlnv0FJCypDNfBHuEDmJ2V np2iPJFd4zt+yOua64zC0GTQngXhufM2Jk1+CfVobJEx4jCXNnBhdtB98CKlBYQv pbdsoH1koUENoEGxFURSFgVqxmbSJqf5b9SZ1n7lfV2/rfejdcRwClqGoCCMPG7J O9qM7Nj77OGoCN1XQvzbFwrmaXpkxVvW5nyfKZobqqCF0GSx5En/gWxUcJ8/ISoy scp6Kpf1smyW/q/35aOUu/dPD9a4Tu5LxVKUA8aFOrSx2MVjn1Mv48Pa2UxSoLoj /kQY9+6sUESjkDhkwYV09dp0iwIDAQABo4ICzDCCAsgwHQYDVR0OBBYEFP7uDBiT /iQC0Kmml8QtdsFEbwoCMB8GA1UdIwQYMBaAFJwDnOSbV3n9uE3jtpj2duhEI2Z5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEFENy9FMzdFQzhFNjhG NEUxMUU2OEVFN0NFNkVDNEY5QUUwMi9uQU9jNUp0WGVmMjRUZU8ybVBaMjZFUWpa bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25BT2M1SnRYZWYyNFRlTzJtUFoyNkVRalpuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzRBRDcvRTM3RUM4RTY4RjRFMTFFNjhFRTdDRTZFQzRGOUFFMDIvRUYyRjAzNzJD OUYyMTFFOTg2QzNCNDg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVgYIKwYBBQUHAQcBAf8E RzBFMCAEAgABMBoDBAJnOpQwDAMEAMoJWQMEAMoJWgMEAMpepjAhBAIAAjAbAwcA JAJogBAAAwcAJAJogCAAAwcAJAJogDAAMA0GCSqGSIb3DQEBCwUAA4IBAQCu4ahp g5VxUu5e9jIp/zK7t+3eViIF9CaMNou9Uz9c+CtubR8IOIYTt+lDLPTiJ/X2QoRN Cz+S5WFJ0FFg+kKykGtu6dmsG6ABOynM+t9d7GeWEZMJWBAfq3YKp+1Zjg4U6scv GhewnimhmE+J8ZC/8kwtb4r7s1wvCkHsJN5bsVA1V/1NFKpodgFqW8jb6GFpV8k5 vV7Ruf9CHeA6V5BuYXo1jHf8tsL7HgOYE2XwzvifABQn+jOZnLxu/OBtHL9bhtKG HlLOIdy44ZNGPLIFSJFFgFV7jOGypTD3JJjat4niHoBHZye61fETjJwhnyqQ8S8D gP/KmI7Mlza1aLyp -----END CERTIFICATE-----Generated at Sat May 18 17:20:03 2024 by rpki-client on console-ams.rpki-client.org