$ rpki-client -vvf rpki.apnic.net/member_repository/A9137730/3A49E70E12DD11EABD95596DC4F9AE02/6CE24548425E11EAB623F258C4F9AE02.roa File: 6CE24548425E11EAB623F258C4F9AE02.roa (raw, json) Hash identifier: lKGrdUpFTKCrwBRh2fcb2KWgtUgDOTbidK/t7yQBVrM= Subject key identifier: 66:20:A3:6D:D0:3B:8D:AA:62:38:7A:84:CF:64:03:2D:96:D7:AE:AC Certificate issuer: /CN=A9137730/serialNumber=0E318A6A941E60C990861D869B203948C8B48841 Certificate serial: 0AAE Authority key identifier: 0E:31:8A:6A:94:1E:60:C9:90:86:1D:86:9B:20:39:48:C8:B4:88:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DjGKapQeYMmQhh2GmyA5SMi0iEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137730/3A49E70E12DD11EABD95596DC4F9AE02/6CE24548425E11EAB623F258C4F9AE02.roa Signing time: Mon 31 Jul 2023 19:57:09 +0000 ROA not before: Mon 31 Jul 2023 19:57:09 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 139276 IP address blocks: 103.140.158.0/23 maxlen: 23 103.140.158.0/24 maxlen: 24 103.140.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137730/3A49E70E12DD11EABD95596DC4F9AE02/DjGKapQeYMmQhh2GmyA5SMi0iEE.crl rsync://rpki.apnic.net/member_repository/A9137730/3A49E70E12DD11EABD95596DC4F9AE02/DjGKapQeYMmQhh2GmyA5SMi0iEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DjGKapQeYMmQhh2GmyA5SMi0iEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 19:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2734 (0xaae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137730/serialNumber=0E318A6A941E60C990861D869B203948C8B48841 Validity Not Before: Jul 31 19:57:09 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c81215-7302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3b:d4:b4:36:cb:7a:d0:be:50:b7:80:7d:36: c2:23:3f:41:bc:77:ff:d9:79:29:a0:e7:ab:4e:39: cf:77:66:da:cc:71:2f:1d:ad:5b:86:1d:3e:0f:61: ae:34:26:bb:8e:ef:b5:5b:d3:28:7e:65:98:33:03: 7b:37:48:a4:38:1f:78:44:f7:88:82:d3:10:6f:0a: 96:83:ab:ce:a3:ee:d8:c8:43:2f:2c:6d:22:3d:5d: b7:aa:fb:91:f6:da:8f:72:fe:d7:b8:48:e6:5d:8e: cc:36:57:9d:e6:f2:d3:d8:02:59:10:98:9f:b9:8d: b0:32:f2:52:33:97:8a:8f:15:b4:e0:29:07:b8:77: 98:96:c6:5a:f8:af:e6:7c:18:0f:fe:65:7e:b3:6f: 25:c8:82:51:64:8a:c9:b6:1c:0c:df:45:9e:0f:b5: 18:23:30:0b:e9:08:d7:b8:78:24:31:f3:b7:1e:93: f2:4f:21:48:db:6f:b5:f5:20:6a:d1:cf:0b:83:d1: a3:07:a3:9e:23:e9:fa:96:b0:1d:46:1b:72:96:75: f0:f1:9d:4b:49:5d:2d:40:a5:9a:e0:ab:db:76:aa: ce:77:8e:a1:15:01:e8:fc:bd:a5:d5:86:26:7b:b3: 21:e5:52:03:b8:7f:98:7e:38:f1:fa:d3:b9:bd:b0: f3:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:20:A3:6D:D0:3B:8D:AA:62:38:7A:84:CF:64:03:2D:96:D7:AE:AC X509v3 Authority Key Identifier: keyid:0E:31:8A:6A:94:1E:60:C9:90:86:1D:86:9B:20:39:48:C8:B4:88:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137730/3A49E70E12DD11EABD95596DC4F9AE02/DjGKapQeYMmQhh2GmyA5SMi0iEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DjGKapQeYMmQhh2GmyA5SMi0iEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137730/3A49E70E12DD11EABD95596DC4F9AE02/6CE24548425E11EAB623F258C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.158.0/23 Signature Algorithm: sha256WithRSAEncryption 59:2e:6f:5c:4d:69:4b:a2:40:44:5d:a9:fb:8a:a0:9b:ce:9d: 8d:04:1c:7e:84:63:26:71:f1:71:a0:c1:b3:d0:25:e0:87:50: 9b:bf:be:af:a3:a9:9d:c8:32:a4:6f:15:e5:6d:c4:20:60:6f: 22:c1:0f:79:41:14:76:a3:50:4a:38:c0:6a:b8:7c:1a:e3:28: 43:25:19:8d:b8:ad:35:99:6b:a4:ab:43:eb:7e:d9:d8:a0:ae: 6a:18:51:44:1a:de:fc:a1:84:e4:44:22:6f:0c:9f:d6:f3:70: d3:92:c6:e7:48:4b:be:27:99:ad:cb:b6:8c:b8:c7:8e:94:81: ef:0e:ee:91:92:13:2f:3d:fa:25:65:d7:ce:21:12:9e:a6:94: 39:26:2d:d0:69:75:90:56:d2:43:66:f2:25:d3:62:4b:c2:7d: 3a:50:91:ba:55:42:41:7f:46:b8:8e:bc:ee:5b:5e:25:26:44: fc:61:dd:1a:ac:01:93:38:1e:a1:ff:c0:28:01:90:e8:db:18: 18:40:c8:3c:df:2d:f7:39:2b:b6:06:42:6b:0d:e6:f3:ad:28: aa:65:1a:72:72:93:f8:f5:da:2a:4d:67:e6:5f:47:08:50:07: 39:40:a8:08:86:c4:29:36:a9:94:2c:0a:e8:e8:6f:1b:53:72: ee:b9:06:a1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzc3MzAxMTAvBgNVBAUTKDBFMzE4QTZBOTQxRTYwQzk5MDg2MUQ4NjlCMjAzOTQ4 QzhCNDg4NDEwHhcNMjMwNzMxMTk1NzA5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGM4MTIxNS03MzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApzvUtDbLetC+ULeAfTbCIz9BvHf/2XkpoOerTjnPd2bazHEvHa1bhh0+D2Gu NCa7ju+1W9MofmWYMwN7N0ikOB94RPeIgtMQbwqWg6vOo+7YyEMvLG0iPV23qvuR 9tqPcv7XuEjmXY7MNled5vLT2AJZEJifuY2wMvJSM5eKjxW04CkHuHeYlsZa+K/m fBgP/mV+s28lyIJRZIrJthwM30WeD7UYIzAL6QjXuHgkMfO3HpPyTyFI22+19SBq 0c8Lg9GjB6OeI+n6lrAdRhtylnXw8Z1LSV0tQKWa4KvbdqrOd46hFQHo/L2l1YYm e7Mh5VIDuH+Yfjjx+tO5vbDz3wIDAQABo4IClTCCApEwHQYDVR0OBBYEFGYgo23Q O42qYjh6hM9kAy2W166sMB8GA1UdIwQYMBaAFA4ximqUHmDJkIYdhpsgOUjItIhB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzczMC8zQTQ5RTcwRTEy REQxMUVBQkQ5NTU5NkRDNEY5QUUwMi9EakdLYXBRZVlNbVFoaDJHbXlBNVNNaTBp RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RqR0thcFFlWU1tUWhoMkdteUE1U01pMGlFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzc3MzAvM0E0OUU3MEUxMkREMTFFQUJEOTU1OTZEQzRGOUFFMDIvNkNFMjQ1NDg0 MjVFMTFFQUI2MjNGMjU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjJ4wDQYJKoZIhvcNAQELBQADggEBAFkub1xNaUuiQERd qfuKoJvOnY0EHH6EYyZx8XGgwbPQJeCHUJu/vq+jqZ3IMqRvFeVtxCBgbyLBD3lB FHajUEo4wGq4fBrjKEMlGY24rTWZa6SrQ+t+2digrmoYUUQa3vyhhOREIm8Mn9bz cNOSxudIS74nma3Ltoy4x46Uge8O7pGSEy89+iVl184hEp6mlDkmLdBpdZBW0kNm 8iXTYkvCfTpQkbpVQkF/RriOvO5bXiUmRPxh3RqsAZM4HqH/wCgBkOjbGBhAyDzf Lfc5K7YGQmsN5vOtKKplGnJyk/j12ipNZ+ZfRwhQBzlAqAiGxCk2qZQsCujobxtT cu65BqE= -----END CERTIFICATE-----Generated at Wed May 22 20:42:45 2024 by rpki-client on console-fra.rpki-client.org