$ rpki-client -vvf rpki.apnic.net/member_repository/A9142209/A6B56784589F11E6BDDFF121C4F9AE02/74F3F11098BB11EA9B1BD75CC4F9AE02.roa File: 74F3F11098BB11EA9B1BD75CC4F9AE02.roa (raw, json) Hash identifier: US2vOOdOmbwjdOKwSlqRIv0aYXlY/MBwxivjRy+yLM0= Subject key identifier: 77:25:FE:92:94:8E:6F:2C:BE:2B:D6:3C:F6:C7:63:C0:40:5A:84:18 Certificate issuer: /CN=A9142209/serialNumber=B140529C69B2590FF769D6AAEEF99F266104CD50 Certificate serial: 1DD8 Authority key identifier: B1:40:52:9C:69:B2:59:0F:F7:69:D6:AA:EE:F9:9F:26:61:04:CD:50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUBSnGmyWQ_3adaq7vmfJmEEzVA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142209/A6B56784589F11E6BDDFF121C4F9AE02/74F3F11098BB11EA9B1BD75CC4F9AE02.roa Signing time: Thu 28 Sep 2023 16:33:19 +0000 ROA not before: Thu 28 Sep 2023 16:33:19 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 132123 IP address blocks: 103.70.228.0/22 maxlen: 22 103.70.228.0/24 maxlen: 24 103.70.229.0/24 maxlen: 24 103.70.230.0/24 maxlen: 24 103.70.231.0/24 maxlen: 24 2001:df3:be00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142209/A6B56784589F11E6BDDFF121C4F9AE02/sUBSnGmyWQ_3adaq7vmfJmEEzVA.crl rsync://rpki.apnic.net/member_repository/A9142209/A6B56784589F11E6BDDFF121C4F9AE02/sUBSnGmyWQ_3adaq7vmfJmEEzVA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUBSnGmyWQ_3adaq7vmfJmEEzVA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 16:26:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7640 (0x1dd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142209/serialNumber=B140529C69B2590FF769D6AAEEF99F266104CD50 Validity Not Before: Sep 28 16:33:19 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6515aace-edd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:a2:63:b0:31:dc:c2:37:24:70:79:43:de:89: 86:ab:37:14:0d:b5:27:a4:64:47:fc:4c:18:86:8f: ab:45:6d:14:f1:ec:73:24:8c:3b:29:1b:8b:72:93: 3f:90:de:22:70:b6:bc:2d:4f:b5:62:f2:03:f3:65: e0:d8:c2:b7:51:26:43:f4:82:41:8c:1b:be:21:89: f6:31:45:8e:6a:16:1d:df:ce:c5:3c:7e:65:43:c1: 1b:83:99:c2:45:dd:d8:31:c6:5a:c0:46:49:33:58: 67:42:86:75:05:e5:5d:3b:12:69:68:1b:f6:27:0a: c8:4a:61:d7:6b:e9:18:cc:53:d3:11:67:9f:6e:b5: 3c:c1:04:85:2f:ff:34:67:c0:46:e9:82:2f:2d:cd: 9c:55:86:b0:a0:dc:fd:13:40:21:56:29:8d:1c:87: 58:c3:7f:da:ce:f7:62:f8:dc:f9:35:82:8b:c9:5a: fd:8b:66:df:fb:21:4c:20:ae:bb:5c:2f:88:30:1b: 2b:80:b8:55:c5:2e:dc:11:c7:43:47:8a:9e:12:3f: d3:4c:e0:55:35:d3:07:30:ea:7c:b3:84:a2:2a:d0: 0f:e9:58:85:dd:5d:89:3f:17:2d:23:97:ca:9c:05: b1:40:da:da:62:99:5b:07:bf:b4:63:d2:32:b5:56: 23:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:25:FE:92:94:8E:6F:2C:BE:2B:D6:3C:F6:C7:63:C0:40:5A:84:18 X509v3 Authority Key Identifier: keyid:B1:40:52:9C:69:B2:59:0F:F7:69:D6:AA:EE:F9:9F:26:61:04:CD:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142209/A6B56784589F11E6BDDFF121C4F9AE02/sUBSnGmyWQ_3adaq7vmfJmEEzVA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUBSnGmyWQ_3adaq7vmfJmEEzVA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142209/A6B56784589F11E6BDDFF121C4F9AE02/74F3F11098BB11EA9B1BD75CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.228.0/22 IPv6: 2001:df3:be00::/48 Signature Algorithm: sha256WithRSAEncryption bc:08:5c:05:7c:bb:10:8e:a8:7a:8f:f6:9e:46:11:07:74:75: f7:9c:a8:49:80:b1:c3:dd:43:64:ed:4d:57:db:4d:95:b2:bd: bb:32:2c:40:0c:7b:f9:91:d2:19:f7:5e:95:e2:eb:b7:5e:86: 79:3f:33:69:1f:eb:3e:8b:c1:ed:60:ed:52:e8:a7:97:15:0e: 31:40:94:23:9f:99:dd:e8:a8:6e:00:ed:d2:d1:17:96:55:05: 41:fd:0b:ce:82:71:5e:6c:6e:25:1f:03:17:03:ca:f8:b0:c9: c5:11:96:33:00:f8:f3:ff:95:a9:3c:c0:46:f8:81:3d:e0:32: 61:2f:15:77:f7:85:e9:53:d1:13:a1:4b:ee:a6:93:da:27:ff: dc:08:58:3f:1a:14:ef:35:ef:53:04:5f:a1:02:ad:e0:31:61: f4:7b:ef:1b:be:bb:04:0d:e1:cd:1a:94:10:a2:9e:5b:d7:42: f7:10:7c:19:85:83:8e:70:ca:57:f6:44:96:f1:be:e4:2e:df: 2d:37:90:55:f6:28:08:10:3c:24:b7:2e:65:05:64:48:d8:ba: a8:8b:75:77:bb:04:cb:9a:51:3d:55:22:0e:5f:82:0a:37:29: 15:4f:e0:ef:2c:89:49:cb:ae:9d:f9:6b:ed:88:60:33:94:cf: b7:05:05:51 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICHdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIyMDkxMTAvBgNVBAUTKEIxNDA1MjlDNjlCMjU5MEZGNzY5RDZBQUVFRjk5RjI2 NjEwNENENTAwHhcNMjMwOTI4MTYzMzE5WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTE1YWFjZS1lZGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1qJjsDHcwjckcHlD3omGqzcUDbUnpGRH/EwYho+rRW0U8exzJIw7KRuLcpM/ kN4icLa8LU+1YvID82Xg2MK3USZD9IJBjBu+IYn2MUWOahYd387FPH5lQ8Ebg5nC Rd3YMcZawEZJM1hnQoZ1BeVdOxJpaBv2JwrISmHXa+kYzFPTEWefbrU8wQSFL/80 Z8BG6YIvLc2cVYawoNz9E0AhVimNHIdYw3/azvdi+Nz5NYKLyVr9i2bf+yFMIK67 XC+IMBsrgLhVxS7cEcdDR4qeEj/TTOBVNdMHMOp8s4SiKtAP6ViF3V2JPxctI5fK nAWxQNraYplbB7+0Y9IytVYjXQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHcl/pKU jm8svivWPPbHY8BAWoQYMB8GA1UdIwQYMBaAFLFAUpxpslkP92nWqu75nyZhBM1Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjIwOS9BNkI1Njc4NDU4 OUYxMUU2QkRERkYxMjFDNEY5QUUwMi9zVUJTbkdteVdRXzNhZGFxN3ZtZkptRUV6 VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NVQlNuR215V1FfM2FkYXE3dm1mSm1FRXpWQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIyMDkvQTZCNTY3ODQ1ODlGMTFFNkJEREZGMTIxQzRGOUFFMDIvNzRGM0YxMTA5 OEJCMTFFQTlCMUJENzVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnRuQwDwQCAAIwCQMHACABDfO+ADANBgkqhkiG9w0BAQsF AAOCAQEAvAhcBXy7EI6oeo/2nkYRB3R195yoSYCxw91DZO1NV9tNlbK9uzIsQAx7 +ZHSGfdeleLrt16GeT8zaR/rPovB7WDtUuinlxUOMUCUI5+Z3eiobgDt0tEXllUF Qf0LzoJxXmxuJR8DFwPK+LDJxRGWMwD48/+VqTzARviBPeAyYS8Vd/eF6VPRE6FL 7qaT2if/3AhYPxoU7zXvUwRfoQKt4DFh9HvvG767BA3hzRqUEKKeW9dC9xB8GYWD jnDKV/ZElvG+5C7fLTeQVfYoCBA8JLcuZQVkSNi6qIt1d7sEy5pRPVUiDl+CCjcp FU/g7yyJScuunflr7YhgM5TPtwUFUQ== -----END CERTIFICATE-----Generated at Sun May 26 18:02:30 2024 by rpki-client on console-fra.rpki-client.org