$ rpki-client -vvf rpki.apnic.net/member_repository/A9138478/6B8AD84E433011EBA6E0221EC4F9AE02/6AC2B9AA187B11ED92148716C4F9AE02.roa File: 6AC2B9AA187B11ED92148716C4F9AE02.roa (raw, json) Hash identifier: UVWZxjhQwVPDFy3VbmeOiO4yarjkR3sA0bGxj31r7PU= Subject key identifier: 9D:E9:DA:77:82:F5:52:AC:D2:25:EF:B1:5F:13:BD:99:3D:E4:BC:AD Certificate issuer: /CN=A9138478/serialNumber=34E8C662AA9DCD51950DF5FAC405ACF16C8D30A0 Certificate serial: 05E4 Authority key identifier: 34:E8:C6:62:AA:9D:CD:51:95:0D:F5:FA:C4:05:AC:F1:6C:8D:30:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NOjGYqqdzVGVDfX6xAWs8WyNMKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138478/6B8AD84E433011EBA6E0221EC4F9AE02/6AC2B9AA187B11ED92148716C4F9AE02.roa Signing time: Thu 02 Nov 2023 23:50:56 +0000 ROA not before: Thu 02 Nov 2023 23:50:56 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 134072 IP address blocks: 103.76.112.0/22 maxlen: 22 103.76.112.0/24 maxlen: 24 103.76.113.0/24 maxlen: 24 103.76.114.0/24 maxlen: 24 103.76.115.0/24 maxlen: 24 116.206.116.0/22 maxlen: 22 116.206.116.0/24 maxlen: 24 116.206.117.0/24 maxlen: 24 116.206.118.0/24 maxlen: 24 116.206.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138478/6B8AD84E433011EBA6E0221EC4F9AE02/NOjGYqqdzVGVDfX6xAWs8WyNMKA.crl rsync://rpki.apnic.net/member_repository/A9138478/6B8AD84E433011EBA6E0221EC4F9AE02/NOjGYqqdzVGVDfX6xAWs8WyNMKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NOjGYqqdzVGVDfX6xAWs8WyNMKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 23:13:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1508 (0x5e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138478/serialNumber=34E8C662AA9DCD51950DF5FAC405ACF16C8D30A0 Validity Not Before: Nov 2 23:50:56 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=654435e0-ff96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:97:c8:c7:11:2e:09:36:19:25:f8:ba:f4:4e: ab:de:89:ff:66:34:7c:97:e3:2e:0b:7e:61:f3:73: 99:9a:7b:4d:83:02:4d:50:5c:03:e7:ad:56:5a:05: 2d:ef:a3:a0:95:e0:dd:21:d7:f0:e7:95:60:45:e7: 6a:6a:4e:eb:d4:94:a9:a0:4d:14:80:c6:fe:eb:0e: 7a:d4:db:7b:57:0b:69:f8:1d:4f:12:a0:18:b6:ec: 8a:01:16:47:8d:12:2e:49:c7:dd:cf:89:9f:e2:21: 0a:22:43:6a:ba:cd:57:35:20:45:aa:57:34:78:77: 7b:cf:9e:e1:a6:a6:e3:7d:f4:27:5b:d2:af:9e:b7: d3:6a:aa:23:92:59:cf:b2:91:25:59:b7:ad:d7:16: db:24:c7:56:54:5a:63:c6:a2:9e:7a:75:57:62:f8: fa:d1:fa:f2:9a:da:c0:a8:d7:77:cb:bb:bf:ae:69: fc:04:c1:66:11:5c:75:83:2c:d5:da:dc:ea:d4:6e: b6:f1:61:5b:05:8e:37:a8:32:1e:ac:08:14:79:41: ed:53:e0:54:89:37:f8:10:2a:00:75:b5:d3:f7:4f: d7:7e:51:e8:cf:b6:f1:74:4c:ac:a1:b8:ec:6f:96: 58:24:a6:f9:f5:35:34:98:ab:52:ff:61:a6:1f:8a: 38:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:E9:DA:77:82:F5:52:AC:D2:25:EF:B1:5F:13:BD:99:3D:E4:BC:AD X509v3 Authority Key Identifier: keyid:34:E8:C6:62:AA:9D:CD:51:95:0D:F5:FA:C4:05:AC:F1:6C:8D:30:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138478/6B8AD84E433011EBA6E0221EC4F9AE02/NOjGYqqdzVGVDfX6xAWs8WyNMKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NOjGYqqdzVGVDfX6xAWs8WyNMKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138478/6B8AD84E433011EBA6E0221EC4F9AE02/6AC2B9AA187B11ED92148716C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.76.112.0/22 116.206.116.0/22 Signature Algorithm: sha256WithRSAEncryption 5c:b2:f5:e2:b3:40:e3:8a:71:09:cc:fb:4c:c9:9b:3e:f2:75: 2d:ac:fe:53:61:5c:1c:8f:af:27:9b:dc:48:ff:fe:5b:be:a0: 2d:ae:ab:2f:d0:9b:56:e7:bb:fc:2d:4b:e1:72:05:53:0a:68: e8:02:80:3d:51:bb:90:e0:e4:37:1f:9d:bb:5e:d6:d7:ef:41: 4b:b2:4e:14:7b:12:6d:15:47:3f:0d:9a:dd:7b:71:4d:39:16: 99:52:c8:f0:3b:08:b4:fd:5a:e5:97:8e:d7:df:41:f9:ab:e4: 20:66:87:ef:00:9e:8b:c5:0d:66:19:2b:31:2d:c8:cf:b0:05: 13:d3:57:ef:7f:c4:2e:2f:34:b7:40:e2:b9:68:11:7c:22:6d: 24:b1:fc:60:0d:a1:1a:f1:10:76:eb:c6:24:76:14:a5:19:af: 09:f5:f7:99:fe:dc:8e:75:e2:f4:ae:ab:41:27:ba:37:81:f9: 52:b6:f1:c0:9f:ec:e3:25:f6:d7:72:e9:05:3d:6a:ac:f2:74: e9:ef:04:ea:16:4f:93:ff:89:07:4d:9f:01:9f:cc:2e:32:83: 30:18:a7:d6:a9:28:7d:23:40:0e:c0:7d:71:70:0a:38:6e:b6: d8:b3:0d:5d:0b:ee:4c:b2:14:9e:8c:46:6d:94:f3:89:5d:45: d7:f5:20:5c -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg0NzgxMTAvBgNVBAUTKDM0RThDNjYyQUE5RENENTE5NTBERjVGQUM0MDVBQ0Yx NkM4RDMwQTAwHhcNMjMxMTAyMjM1MDU2WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ0MzVlMC1mZjk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoJfIxxEuCTYZJfi69E6r3on/ZjR8l+MuC35h83OZmntNgwJNUFwD561WWgUt 76OgleDdIdfw55VgRedqak7r1JSpoE0UgMb+6w561Nt7Vwtp+B1PEqAYtuyKARZH jRIuScfdz4mf4iEKIkNqus1XNSBFqlc0eHd7z57hpqbjffQnW9KvnrfTaqojklnP spElWbet1xbbJMdWVFpjxqKeenVXYvj60frymtrAqNd3y7u/rmn8BMFmEVx1gyzV 2tzq1G628WFbBY43qDIerAgUeUHtU+BUiTf4ECoAdbXT90/XflHoz7bxdEysobjs b5ZYJKb59TU0mKtS/2GmH4o4KwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJ3p2neC 9VKs0iXvsV8TvZk95LytMB8GA1UdIwQYMBaAFDToxmKqnc1RlQ31+sQFrPFsjTCg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODQ3OC82QjhBRDg0RTQz MzAxMUVCQTZFMDIyMUVDNEY5QUUwMi9OT2pHWXFxZHpWR1ZEZlg2eEFXczhXeU5N S0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05PakdZcXFkelZHVkRmWDZ4QVdzOFd5Tk1LQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzg0NzgvNkI4QUQ4NEU0MzMwMTFFQkE2RTAyMjFFQzRGOUFFMDIvNkFDMkI5QUEx ODdCMTFFRDkyMTQ4NzE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnTHADBAJ0znQwDQYJKoZIhvcNAQELBQADggEBAFyy9eKz QOOKcQnM+0zJmz7ydS2s/lNhXByPryeb3Ej//lu+oC2uqy/Qm1bnu/wtS+FyBVMK aOgCgD1Ru5Dg5Dcfnbte1tfvQUuyThR7Em0VRz8Nmt17cU05FplSyPA7CLT9WuWX jtffQfmr5CBmh+8AnovFDWYZKzEtyM+wBRPTV+9/xC4vNLdA4rloEXwibSSx/GAN oRrxEHbrxiR2FKUZrwn195n+3I514vSuq0EnujeB+VK28cCf7OMl9tdy6QU9aqzy dOnvBOoWT5P/iQdNnwGfzC4ygzAYp9apKH0jQA7AfXFwCjhuttizDV0L7kyyFJ6M Rm2U84ldRdf1IFw= -----END CERTIFICATE-----Generated at Fri May 17 00:19:43 2024 by rpki-client on console-ams.rpki-client.org