$ rpki-client -vvf rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/DFE29CB669E511EE92E9E35AC4F9AE02.roa File: DFE29CB669E511EE92E9E35AC4F9AE02.roa (raw, json) Hash identifier: 4bTWH9M590F1oNYI+4009Dgzv1wi5Ma+iLsvHoitUUg= Subject key identifier: 10:CA:19:51:5B:A2:08:3B:87:9E:50:8F:49:DE:88:33:09:DE:31:C0 Certificate issuer: /CN=A9136C7C/serialNumber=5D3C16896492BFC870C8A00B668BBFE95945F8DA Certificate serial: 67 Authority key identifier: 5D:3C:16:89:64:92:BF:C8:70:C8:A0:0B:66:8B:BF:E9:59:45:F8:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/DFE29CB669E511EE92E9E35AC4F9AE02.roa Signing time: Tue 09 Apr 2024 07:39:31 +0000 ROA not before: Tue 09 Apr 2024 07:39:31 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 55933 IP address blocks: 103.149.200.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.crl rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:44:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136C7C/serialNumber=5D3C16896492BFC870C8A00B668BBFE95945F8DA Validity Not Before: Apr 9 07:39:31 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6614f0b3-fb15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:74:a8:a3:3d:af:21:f8:1e:7d:46:55:5d:2f: 13:17:67:9c:3f:17:96:94:75:f1:71:7a:4a:9d:e3: 6f:e7:45:2a:a6:e7:34:24:31:ad:14:c9:de:69:25: 6b:98:fe:f8:d2:f3:ed:cd:33:a1:98:22:b6:46:6d: e9:17:c9:93:7e:78:42:95:b0:31:5b:3c:af:70:88: 04:fe:41:b0:ed:c3:b5:17:01:03:41:0b:c6:71:df: 46:e8:02:51:8b:85:10:43:0b:b9:c5:3f:43:b1:a0: 79:93:c0:5d:bc:c4:85:d8:b4:05:98:62:e8:f1:ca: 2f:fa:6c:15:15:57:c3:ad:14:7b:a0:a2:dd:e5:81: 09:cf:8f:74:da:de:92:ed:25:a8:b8:77:1b:03:5a: e3:02:26:d9:d4:93:12:19:22:91:6f:a8:17:c7:2b: 47:3f:c4:35:59:3d:42:2f:47:3d:66:68:92:94:5d: 69:a6:f2:5e:8d:37:61:33:69:8c:f4:74:5a:57:4d: 0a:c4:02:60:27:25:bb:a0:a7:b1:57:d9:27:35:d4: 1a:4b:10:19:7e:d0:71:69:1d:00:ef:25:3b:14:d6: e0:d7:ef:0d:e4:05:1b:67:17:56:af:10:e5:19:1d: 5c:51:77:b9:be:dd:4e:6b:34:54:fb:c7:ba:a5:4c: e6:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:CA:19:51:5B:A2:08:3B:87:9E:50:8F:49:DE:88:33:09:DE:31:C0 X509v3 Authority Key Identifier: keyid:5D:3C:16:89:64:92:BF:C8:70:C8:A0:0B:66:8B:BF:E9:59:45:F8:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/DFE29CB669E511EE92E9E35AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.200.0/23 Signature Algorithm: sha256WithRSAEncryption 58:7d:18:da:b9:8b:4c:01:35:65:ec:20:01:10:10:8c:a5:5b: 4f:f4:d0:50:22:26:5e:c2:1a:fc:ce:9b:6b:f3:4f:a7:10:9b: 52:ba:e2:4f:36:d3:f5:7f:67:82:e2:df:f9:10:ed:d6:ca:b3: cd:68:9c:4d:55:89:8f:a1:34:c2:af:2f:0a:5a:9c:b5:cb:8c: 80:ab:67:83:89:ac:6b:da:05:dd:10:6a:6b:12:92:12:ba:d7: 84:22:d6:4d:25:cb:f8:cf:0c:80:37:52:c9:16:45:81:ea:99: 3a:27:69:4a:9d:6e:73:a7:ae:8c:9a:9c:41:70:77:1c:fc:79: 5d:8a:15:c7:01:24:e8:3a:0a:a5:43:53:3c:ea:2e:f7:45:ec: 35:dd:27:bc:51:79:ad:b3:21:fa:21:d2:f7:a6:22:cb:4e:ba: 82:b0:8e:0f:03:be:76:18:42:b1:91:5d:4d:95:1b:fd:d0:13: 93:64:39:55:59:bc:2b:da:30:c6:fa:10:68:76:33:11:e4:e7: 96:1c:e1:9d:15:0b:d7:b1:e0:57:f9:98:fd:2b:39:d0:84:2f: 4f:0f:4a:4f:20:d2:ab:fc:5b:b2:d9:36:1c:20:5e:ec:49:89: ad:37:a2:c6:b9:4f:14:1e:6e:cb:3e:e2:cd:b2:f7:af:b4:78: 66:0c:a6:91 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NkM3QzExMC8GA1UEBRMoNUQzQzE2ODk2NDkyQkZDODcwQzhBMDBCNjY4QkJGRTk1 OTQ1RjhEQTAeFw0yNDA0MDkwNzM5MzFaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MTRmMGIzLWZiMTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWdKijPa8h+B59RlVdLxMXZ5w/F5aUdfFxekqd42/nRSqm5zQkMa0Uyd5pJWuY /vjS8+3NM6GYIrZGbekXyZN+eEKVsDFbPK9wiAT+QbDtw7UXAQNBC8Zx30boAlGL hRBDC7nFP0OxoHmTwF28xIXYtAWYYujxyi/6bBUVV8OtFHugot3lgQnPj3Ta3pLt Jai4dxsDWuMCJtnUkxIZIpFvqBfHK0c/xDVZPUIvRz1maJKUXWmm8l6NN2EzaYz0 dFpXTQrEAmAnJbugp7FX2Sc11BpLEBl+0HFpHQDvJTsU1uDX7w3kBRtnF1avEOUZ HVxRd7m+3U5rNFT7x7qlTObjAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUEMoZUVui CDuHnlCPSd6IMwneMcAwHwYDVR0jBBgwFoAUXTwWiWSSv8hwyKALZou/6VlF+Now DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2QzdDLzJCNUNBQUU4NjlF NTExRUVCQjY2ODI0NkM0RjlBRTAyL1hUd1dpV1NTdjhod3lLQUxab3VfNlZsRi1O by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWFR3V2lXU1N2OGh3eUtBTFpvdV82VmxGLU5vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkM3Qy8yQjVDQUFFODY5RTUxMUVFQkI2NjgyNDZDNEY5QUUwMi9ERkUyOUNCNjY5 RTUxMUVFOTJFOUUzNUFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeVyDANBgkqhkiG9w0BAQsFAAOCAQEAWH0Y2rmLTAE1Zewg ARAQjKVbT/TQUCImXsIa/M6ba/NPpxCbUrriTzbT9X9nguLf+RDt1sqzzWicTVWJ j6E0wq8vClqctcuMgKtng4msa9oF3RBqaxKSErrXhCLWTSXL+M8MgDdSyRZFgeqZ OidpSp1uc6eujJqcQXB3HPx5XYoVxwEk6DoKpUNTPOou90XsNd0nvFF5rbMh+iHS 96Yiy066grCODwO+dhhCsZFdTZUb/dATk2Q5VVm8K9owxvoQaHYzEeTnlhzhnRUL 17HgV/mY/Ss50IQvTw9KTyDSq/xbstk2HCBe7EmJrTeixrlPFB5uyz7izbL3r7R4 ZgymkQ== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:10 2024 by rpki-client on console-ams.rpki-client.org