$ rpki-client -vvf rpki.apnic.net/member_repository/A9137C94/BD0FD35CC21C11EBA51EC229C4F9AE02/DCAC0B64C22011EB9C4C3B31C4F9AE02.roa File: DCAC0B64C22011EB9C4C3B31C4F9AE02.roa (raw, json) Hash identifier: yJT8uk9eFGiCrxSvq7jQiJupNQdNXKHbw5qSKvtIGKI= Subject key identifier: 65:B0:38:0A:87:F6:44:A6:71:D8:42:37:26:79:AB:36:0E:18:8E:C6 Certificate issuer: /CN=A9137C94/serialNumber=13122ACD38E0191699862CCA7EF2477630D570E9 Certificate serial: 0451 Authority key identifier: 13:12:2A:CD:38:E0:19:16:99:86:2C:CA:7E:F2:47:76:30:D5:70:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ExIqzTjgGRaZhizKfvJHdjDVcOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137C94/BD0FD35CC21C11EBA51EC229C4F9AE02/DCAC0B64C22011EB9C4C3B31C4F9AE02.roa Signing time: Mon 05 Jun 2023 02:40:13 +0000 ROA not before: Mon 05 Jun 2023 02:40:13 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 142299 IP address blocks: 103.167.192.0/24 maxlen: 24 103.167.193.0/24 maxlen: 24 2407:7040::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137C94/BD0FD35CC21C11EBA51EC229C4F9AE02/ExIqzTjgGRaZhizKfvJHdjDVcOk.crl rsync://rpki.apnic.net/member_repository/A9137C94/BD0FD35CC21C11EBA51EC229C4F9AE02/ExIqzTjgGRaZhizKfvJHdjDVcOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ExIqzTjgGRaZhizKfvJHdjDVcOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1105 (0x451) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137C94/serialNumber=13122ACD38E0191699862CCA7EF2477630D570E9 Validity Not Before: Jun 5 02:40:13 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=647d4b0c-aee0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:78:dc:40:bc:78:23:5b:b5:78:80:6f:56:00: fc:99:bf:6a:53:95:35:3c:9a:20:a2:5e:ed:13:b4: 05:68:6c:9f:c0:b8:47:b2:1a:88:b8:0a:ee:de:88: 3f:3b:eb:73:e6:33:ef:9f:45:88:2d:d3:22:22:bf: d9:ed:c8:a5:7d:ef:bc:14:91:82:a3:ce:11:f4:73: 60:52:78:b9:0c:61:21:24:98:a9:21:74:47:3a:2f: 4a:04:1f:2e:63:c9:9b:11:70:2a:30:4d:81:a2:0c: e1:e9:31:d1:e7:4a:b4:0f:84:1e:7f:b1:6f:c1:5d: 6b:25:bd:44:8b:56:79:90:c8:20:fb:43:f6:ed:bb: de:64:25:fb:54:61:84:ef:5a:dc:1c:5a:38:a5:49: 8b:d1:57:8e:41:9c:8e:f1:55:99:58:3e:30:b9:7e: cd:f1:7c:c8:63:69:13:a5:75:61:88:12:9c:46:f4: 6d:a0:a1:33:af:be:45:43:1f:fe:a5:68:01:29:90: f5:07:a0:1b:95:13:a7:37:26:99:e4:15:99:9c:c7: d1:5d:49:1c:6e:7a:b1:ff:4e:1f:94:a7:23:76:c4: 84:99:54:77:45:c3:42:59:52:ce:02:f3:9f:2f:d3: 93:69:26:30:7f:61:c2:54:ba:6d:1a:4f:7a:4d:12: 3a:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:B0:38:0A:87:F6:44:A6:71:D8:42:37:26:79:AB:36:0E:18:8E:C6 X509v3 Authority Key Identifier: keyid:13:12:2A:CD:38:E0:19:16:99:86:2C:CA:7E:F2:47:76:30:D5:70:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137C94/BD0FD35CC21C11EBA51EC229C4F9AE02/ExIqzTjgGRaZhizKfvJHdjDVcOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ExIqzTjgGRaZhizKfvJHdjDVcOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137C94/BD0FD35CC21C11EBA51EC229C4F9AE02/DCAC0B64C22011EB9C4C3B31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.192.0/23 IPv6: 2407:7040::/32 Signature Algorithm: sha256WithRSAEncryption 2a:5b:be:8b:22:71:23:a1:6f:8e:99:13:40:e5:ac:f3:ac:39: 5e:d7:46:cf:3f:f1:e2:47:0f:08:48:d6:91:5d:dd:eb:84:a6: db:53:65:8f:3d:ef:57:a6:52:ce:c8:84:2a:28:a4:07:e9:3c: 4f:6c:81:26:f1:2f:2e:91:89:68:17:23:b6:75:ab:1d:06:1b: 01:a0:93:9e:93:57:4b:06:fd:18:df:cb:cb:89:fe:8d:d1:fc: 82:1e:51:6c:a4:59:c8:4a:7e:31:86:32:c2:de:2e:7f:19:bf: 9c:fe:5c:e0:27:fd:ef:47:59:87:8a:ca:7d:64:db:93:3b:89: 67:0d:43:8e:cf:10:78:59:7e:a4:97:96:f5:ac:97:3e:dd:0d: ea:d6:4c:88:91:d9:c8:a4:98:4a:b3:ce:86:b2:ac:55:03:47: 6c:0c:b6:a0:13:a7:dd:27:2e:d4:16:eb:f2:26:45:c3:a9:46: f2:50:5f:37:0c:ec:e7:37:2e:41:54:c9:dc:8b:18:d5:e2:84: 8c:da:d8:25:37:a8:bb:c3:0d:af:c8:3e:57:f0:bf:36:fa:ed: 41:20:7d:76:aa:dc:42:36:70:a3:e8:b8:13:fe:bb:6f:29:20: 02:04:da:00:4a:c4:e6:db:29:b3:74:93:fd:d7:c8:4e:3a:0a: c8:9a:3a:01 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdDOTQxMTAvBgNVBAUTKDEzMTIyQUNEMzhFMDE5MTY5OTg2MkNDQTdFRjI0Nzc2 MzBENTcwRTkwHhcNMjMwNjA1MDI0MDEzWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdkNGIwYy1hZWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvHjcQLx4I1u1eIBvVgD8mb9qU5U1PJogol7tE7QFaGyfwLhHshqIuAru3og/ O+tz5jPvn0WILdMiIr/Z7cilfe+8FJGCo84R9HNgUni5DGEhJJipIXRHOi9KBB8u Y8mbEXAqME2Bogzh6THR50q0D4Qef7FvwV1rJb1Ei1Z5kMgg+0P27bveZCX7VGGE 71rcHFo4pUmL0VeOQZyO8VWZWD4wuX7N8XzIY2kTpXVhiBKcRvRtoKEzr75FQx/+ pWgBKZD1B6AblROnNyaZ5BWZnMfRXUkcbnqx/04flKcjdsSEmVR3RcNCWVLOAvOf L9OTaSYwf2HCVLptGk96TRI67wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFGWwOAqH 9kSmcdhCNyZ5qzYOGI7GMB8GA1UdIwQYMBaAFBMSKs044BkWmYYsyn7yR3Yw1XDp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0M5NC9CRDBGRDM1Q0My MUMxMUVCQTUxRUMyMjlDNEY5QUUwMi9FeElxelRqZ0dSYVpoaXpLZnZKSGRqRFZj T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0V4SXF6VGpnR1JhWmhpektmdkpIZGpEVmNPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdDOTQvQkQwRkQzNUNDMjFDMTFFQkE1MUVDMjI5QzRGOUFFMDIvRENBQzBCNjRD MjIwMTFFQjlDNEMzQjMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnp8AwDQQCAAIwBwMFACQHcEAwDQYJKoZIhvcNAQELBQAD ggEBACpbvosicSOhb46ZE0DlrPOsOV7XRs8/8eJHDwhI1pFd3euEpttTZY8971em Us7IhCoopAfpPE9sgSbxLy6RiWgXI7Z1qx0GGwGgk56TV0sG/Rjfy8uJ/o3R/IIe UWykWchKfjGGMsLeLn8Zv5z+XOAn/e9HWYeKyn1k25M7iWcNQ47PEHhZfqSXlvWs lz7dDerWTIiR2cikmEqzzoayrFUDR2wMtqATp90nLtQW6/ImRcOpRvJQXzcM7Oc3 LkFUydyLGNXihIza2CU3qLvDDa/IPlfwvzb67UEgfXaq3EI2cKPouBP+u28pIAIE 2gBKxObbKbN0k/3XyE46CsiaOgE= -----END CERTIFICATE-----Generated at Sun May 19 01:47:12 2024 by rpki-client on console-fra.rpki-client.org