$ rpki-client -vvf rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/39C6EF3688BF11EABC04973FC4F9AE02.roa File: 39C6EF3688BF11EABC04973FC4F9AE02.roa (raw, json) Hash identifier: WsFnnJ9tOKw92AuHWBqArMTWSmjEnxiOvKWkqqpRfVk= Subject key identifier: B9:C6:59:A3:2C:E8:90:4F:3D:CB:AD:A0:30:86:02:43:CF:09:14:D4 Certificate issuer: /CN=A913C91D/serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Certificate serial: 0F04 Authority key identifier: 72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/39C6EF3688BF11EABC04973FC4F9AE02.roa Signing time: Thu 06 Jul 2023 17:54:50 +0000 ROA not before: Thu 06 Jul 2023 17:54:50 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 137945 IP address blocks: 203.9.40.0/24 maxlen: 24 203.9.41.0/24 maxlen: 24 203.9.42.0/24 maxlen: 24 203.9.43.0/24 maxlen: 24 203.9.44.0/24 maxlen: 24 203.9.45.0/24 maxlen: 24 203.9.46.0/24 maxlen: 24 203.9.47.0/24 maxlen: 24 2403:20c0:2::/48 maxlen: 48 2403:20c0:3::/48 maxlen: 48 2403:20c0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 18:04:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3844 (0xf04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C91D/serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Validity Not Before: Jul 6 17:54:50 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64a6ffe9-b54e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1a:47:74:98:f1:76:c4:21:37:da:c8:7d:9c: fe:db:47:fe:0a:1a:cc:47:ab:d9:94:11:58:9a:fc: 95:44:0d:03:98:ae:cb:b2:6f:89:07:96:e5:3f:8d: 41:a7:3e:50:de:27:1a:21:da:4f:cc:39:74:0b:cb: cd:51:93:91:9e:6b:dd:a1:4f:5a:e4:f1:a8:58:20: 46:e5:16:83:eb:30:d7:2d:40:79:da:03:df:1f:7c: 81:3c:ad:61:9d:f6:a4:cd:03:89:8f:20:54:03:d0: e9:42:52:fc:e8:cd:d9:51:42:84:d5:3f:6c:72:d0: 0d:db:5b:20:6a:c3:4a:6b:88:95:a7:c9:4a:92:86: c8:54:a6:66:12:fb:de:db:8f:f1:60:5a:e4:64:1f: 9e:a2:1b:cb:2e:3b:4f:59:b5:b0:c6:26:8f:d4:e0: dc:92:46:09:00:33:54:5a:3f:1c:ef:7a:e1:e8:03: 52:78:41:3e:3a:28:9f:d1:5d:55:66:bc:11:da:ba: 04:1e:26:f1:4d:ed:18:d1:8e:ac:1f:d1:4b:c8:14: b0:55:bc:4c:ce:fa:6b:80:15:20:a7:14:71:3c:14: 15:10:c5:05:ec:09:a9:f7:c0:42:7e:1f:bd:32:5b: 47:9b:3d:c0:fb:b7:9b:5d:3a:bc:e8:47:cd:9b:4f: 33:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:C6:59:A3:2C:E8:90:4F:3D:CB:AD:A0:30:86:02:43:CF:09:14:D4 X509v3 Authority Key Identifier: keyid:72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/39C6EF3688BF11EABC04973FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.9.40.0/21 IPv6: 2403:20c0:2::-2403:20c0:4:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption b0:eb:de:d1:11:a1:17:19:cd:a3:2e:16:e8:5d:a2:81:26:72: ea:f1:26:c3:7b:64:68:0a:d6:b7:b1:0d:49:b4:85:d7:dc:27: c6:cc:a5:1c:16:b7:00:74:4d:83:5b:6b:c6:37:e0:f8:c6:09: 8b:fe:70:ae:cc:39:b3:0e:6d:00:93:2b:93:30:33:05:0c:e6: 21:2d:ea:07:45:2a:c6:37:86:f0:74:8f:25:ea:45:66:41:af: b3:8c:09:53:63:25:f8:56:70:3d:58:c6:53:94:58:e8:a3:94: fa:10:6d:e7:83:fa:d0:ca:bd:7f:48:80:aa:81:0f:83:8f:4f: 58:e4:af:24:a3:0b:0a:a2:f6:d2:85:e2:4b:21:44:06:2e:8f: 89:ca:ac:5c:5c:d8:c5:b3:e8:e5:a8:d7:95:0b:fd:88:26:fd: 3c:f4:a1:df:f5:46:8e:60:5f:2d:2d:e7:ae:de:9b:b8:81:a3: d9:f2:54:4f:4b:52:79:62:a8:67:97:35:7b:4a:00:5b:cc:dc: 5e:28:6d:31:47:5b:ca:fe:a4:54:16:3e:23:71:ea:fd:b5:0c: db:25:4e:10:70:3c:66:61:5b:b5:ad:77:bc:8a:a1:a8:de:07: 19:da:c8:0c:e4:ed:2a:c3:d7:1c:9a:c7:37:89:06:c0:bd:ec: 98:8a:3e:44 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICDwQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M5MUQxMTAvBgNVBAUTKDcyRDY1QkIzQ0FENEEwOThGMzZGNDEzNzU5NENDN0ZF QzJGQTI4QTMwHhcNMjMwNzA2MTc1NDUwWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE2ZmZlOS1iNTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArxpHdJjxdsQhN9rIfZz+20f+ChrMR6vZlBFYmvyVRA0DmK7Lsm+JB5blP41B pz5Q3icaIdpPzDl0C8vNUZORnmvdoU9a5PGoWCBG5RaD6zDXLUB52gPfH3yBPK1h nfakzQOJjyBUA9DpQlL86M3ZUUKE1T9sctAN21sgasNKa4iVp8lKkobIVKZmEvve 24/xYFrkZB+eohvLLjtPWbWwxiaP1ODckkYJADNUWj8c73rh6ANSeEE+Oiif0V1V ZrwR2roEHibxTe0Y0Y6sH9FLyBSwVbxMzvprgBUgpxRxPBQVEMUF7Amp98BCfh+9 MltHmz3A+7ebXTq86EfNm08zawIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFLnGWaMs 6JBPPcutoDCGAkPPCRTUMB8GA1UdIwQYMBaAFHLWW7PK1KCY829BN1lMx/7C+iij MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzkxRC9EOTBDRDg3NDM1 ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9KanpiMEUzV1V6SF9zTDZL S00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0WmJzOHJVb0pqemIwRTNXVXpIX3NMNktLTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0M5MUQvRDkwQ0Q4NzQzNTg0MTFFOTlBOTkwMjI4QzRGOUFFMDIvMzlDNkVGMzY4 OEJGMTFFQUJDMDQ5NzNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMAwEAgABMAYDBAPLCSgwGgQCAAIwFDASAwcBJAMgwAACAwcAJAMgwAAEMA0G CSqGSIb3DQEBCwUAA4IBAQCw697REaEXGc2jLhboXaKBJnLq8SbDe2RoCta3sQ1J tIXX3CfGzKUcFrcAdE2DW2vGN+D4xgmL/nCuzDmzDm0AkyuTMDMFDOYhLeoHRSrG N4bwdI8l6kVmQa+zjAlTYyX4VnA9WMZTlFjoo5T6EG3ng/rQyr1/SICqgQ+Dj09Y 5K8kowsKovbSheJLIUQGLo+JyqxcXNjFs+jlqNeVC/2IJv089KHf9UaOYF8tLeeu 3pu4gaPZ8lRPS1J5YqhnlzV7SgBbzNxeKG0xR1vK/qRUFj4jcer9tQzbJU4QcDxm YVu1rXe8iqGo3gcZ2sgM5O0qw9ccmsc3iQbAveyYij5E -----END CERTIFICATE-----Generated at Tue May 14 19:10:13 2024 by rpki-client on console-ams.rpki-client.org