$ rpki-client -vvf rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/ED8E5BC8CFD411EBA3172446C4F9AE02.roa File: ED8E5BC8CFD411EBA3172446C4F9AE02.roa (raw, json) Hash identifier: ebNeLW0EQd5j9i9mFWYfA/lc3enK3rlGGUazkEOZjZc= Subject key identifier: B1:AE:F9:71:4D:F9:DD:A2:89:E4:FD:7B:0B:76:CF:96:4F:14:6D:20 Certificate issuer: /CN=A9140A8F/serialNumber=3D93EB66D81A276A039246168D3278B267EBAEEC Certificate serial: 0696 Authority key identifier: 3D:93:EB:66:D8:1A:27:6A:03:92:46:16:8D:32:78:B2:67:EB:AE:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PZPrZtgaJ2oDkkYWjTJ4smfrruw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/ED8E5BC8CFD411EBA3172446C4F9AE02.roa Signing time: Mon 01 Apr 2024 00:02:29 +0000 ROA not before: Mon 01 Apr 2024 00:02:29 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 45426 IP address blocks: 103.198.41.0/24 maxlen: 24 103.198.42.0/24 maxlen: 24 202.129.244.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/PZPrZtgaJ2oDkkYWjTJ4smfrruw.crl rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/PZPrZtgaJ2oDkkYWjTJ4smfrruw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PZPrZtgaJ2oDkkYWjTJ4smfrruw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1686 (0x696) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140A8F/serialNumber=3D93EB66D81A276A039246168D3278B267EBAEEC Validity Not Before: Apr 1 00:02:29 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6609f995-e9f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:08:b1:4c:3a:b3:b1:d9:29:bb:32:bf:1e:19: 3b:2f:58:e6:4e:b2:a9:10:ba:3b:9b:89:ae:d3:9c: 2b:0d:ef:ef:7c:83:4d:df:70:c0:3c:b5:57:3f:c9: 07:48:88:86:22:40:ca:bb:7f:5c:b9:b8:ea:0f:04: 85:f9:23:57:40:dc:9f:ab:65:12:a1:88:a8:e2:63: 2f:6e:03:e2:0c:be:97:82:b2:ca:5f:a3:fa:e0:a1: e9:a8:58:9c:ba:3c:0d:c8:ff:a4:82:92:33:f8:ad: d0:b0:0f:6c:f4:c7:62:9c:ac:8d:0f:f1:b0:17:6a: 74:9d:fa:9f:e1:08:7b:6a:5c:c3:c2:fc:a5:23:2c: 1d:57:1b:06:d2:25:6c:7b:ca:69:ae:4a:f6:8d:47: 87:76:14:4b:c9:e4:fb:e9:07:c7:68:17:be:d6:bd: 98:e0:2d:21:7b:e3:10:32:c0:9a:a7:45:78:b6:80: 4c:cc:88:4b:f2:a4:62:bb:87:ba:28:17:91:7f:77: 49:eb:07:d8:70:4f:d1:09:0d:a2:74:e8:3a:16:41: b5:85:cd:e7:94:26:47:ae:b7:b9:22:83:51:87:4f: 76:85:67:24:0b:05:60:7b:9a:c7:32:c2:21:a2:a0: ab:65:3a:35:e0:e2:35:ec:fe:a5:10:f3:5d:ea:35: 5a:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:AE:F9:71:4D:F9:DD:A2:89:E4:FD:7B:0B:76:CF:96:4F:14:6D:20 X509v3 Authority Key Identifier: keyid:3D:93:EB:66:D8:1A:27:6A:03:92:46:16:8D:32:78:B2:67:EB:AE:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/PZPrZtgaJ2oDkkYWjTJ4smfrruw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PZPrZtgaJ2oDkkYWjTJ4smfrruw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/ED8E5BC8CFD411EBA3172446C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.198.41.0-103.198.42.255 202.129.244.0/22 Signature Algorithm: sha256WithRSAEncryption b1:18:99:55:3b:03:1d:12:b8:0d:71:d6:87:73:62:22:01:6a: ae:d7:77:52:0e:e3:e1:49:39:8e:ad:f7:21:df:a5:a0:92:66: 1e:ed:ba:24:d3:51:93:26:95:19:0b:99:d4:b4:76:2e:6c:54: 04:52:4f:a8:67:4a:16:87:1c:d4:48:16:c4:94:56:1c:9d:fe: db:69:3e:e3:3c:68:a6:f8:4e:17:31:bc:46:77:85:d2:d1:d2: 51:49:aa:dc:4b:78:73:e0:32:69:de:cd:15:59:db:47:91:b5: 4e:34:6b:ae:a1:d0:bc:6c:a0:18:eb:24:17:23:f6:c4:75:32: 9a:89:18:66:9e:a3:d0:dc:80:23:d0:3b:d9:05:3d:b1:88:f3: 94:0c:57:62:4b:6a:06:58:a7:fc:2f:6c:92:d5:f6:7e:fb:10: ae:1d:21:c2:50:8e:48:33:53:99:d4:0a:38:c9:88:6a:3a:ab: 21:b2:1f:7c:ba:fd:e3:81:99:50:fa:ec:52:18:b0:48:82:8c: 38:7b:6e:5b:64:74:31:ff:c8:bb:cb:bc:a0:04:52:1c:6e:35: b4:82:43:f7:a7:28:68:e0:10:0f:74:71:22:30:f1:18:54:70: 30:ce:28:5f:04:b5:9e:6e:59:cb:ee:1d:8a:05:12:c7:0f:d3: 5a:bc:7b:2e -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBpYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBBOEYxMTAvBgNVBAUTKDNEOTNFQjY2RDgxQTI3NkEwMzkyNDYxNjhEMzI3OEIy NjdFQkFFRUMwHhcNMjQwNDAxMDAwMjI5WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjA5Zjk5NS1lOWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwixTDqzsdkpuzK/Hhk7L1jmTrKpELo7m4mu05wrDe/vfINN33DAPLVXP8kH SIiGIkDKu39cubjqDwSF+SNXQNyfq2USoYio4mMvbgPiDL6XgrLKX6P64KHpqFic ujwNyP+kgpIz+K3QsA9s9MdinKyND/GwF2p0nfqf4Qh7alzDwvylIywdVxsG0iVs e8pprkr2jUeHdhRLyeT76QfHaBe+1r2Y4C0he+MQMsCap0V4toBMzIhL8qRiu4e6 KBeRf3dJ6wfYcE/RCQ2idOg6FkG1hc3nlCZHrre5IoNRh092hWckCwVge5rHMsIh oqCrZTo14OI17P6lEPNd6jVawwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFLGu+XFN +d2iieT9ewt2z5ZPFG0gMB8GA1UdIwQYMBaAFD2T62bYGidqA5JGFo0yeLJn667s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEE4Ri8zMzA1MjQ3QTIz M0MxMUVCODQ5QzVENkVDNEY5QUUwMi9QWlByWnRnYUoyb0Rra1lXalRKNHNtZnJy dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BaUHJadGdhSjJvRGtrWVdqVEo0c21mcnJ1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBBOEYvMzMwNTI0N0EyMzNDMTFFQjg0OUM1RDZFQzRGOUFFMDIvRUQ4RTVCQzhD RkQ0MTFFQkEzMTcyNDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAGfGKQMEAGfGKgMEAsqB9DANBgkqhkiG9w0BAQsFAAOC AQEAsRiZVTsDHRK4DXHWh3NiIgFqrtd3Ug7j4Uk5jq33Id+loJJmHu26JNNRkyaV GQuZ1LR2LmxUBFJPqGdKFocc1EgWxJRWHJ3+22k+4zxopvhOFzG8RneF0tHSUUmq 3Et4c+Ayad7NFVnbR5G1TjRrrqHQvGygGOskFyP2xHUymokYZp6j0NyAI9A72QU9 sYjzlAxXYktqBlin/C9sktX2fvsQrh0hwlCOSDNTmdQKOMmIajqrIbIffLr944GZ UPrsUhiwSIKMOHtuW2R0Mf/Iu8u8oARSHG41tIJD96coaOAQD3RxIjDxGFRwMM4o XwS1nm5Zy+4digUSxw/TWrx7Lg== -----END CERTIFICATE-----Generated at Sun May 19 00:30:14 2024 by rpki-client on console-ams.rpki-client.org