$ rpki-client -vvf rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/61096B522DB111EDA42EBE42C4F9AE02.roa File: 61096B522DB111EDA42EBE42C4F9AE02.roa (raw, json) Hash identifier: k6F9qSkeLw6JKIKp3D86NMNnOM7LFOTSHQOKVmntDwA= Subject key identifier: 4A:E7:63:7B:89:25:16:51:49:CB:06:3C:A5:D3:B0:92:A0:71:F4:1C Certificate issuer: /CN=A9142661/serialNumber=7AE9622F834CF4C6CF5AD1A98AF07D501545A4BF Certificate serial: 08C0 Authority key identifier: 7A:E9:62:2F:83:4C:F4:C6:CF:5A:D1:A9:8A:F0:7D:50:15:45:A4:BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/euliL4NM9MbPWtGpivB9UBVFpL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/61096B522DB111EDA42EBE42C4F9AE02.roa Signing time: Fri 28 Apr 2023 22:38:41 +0000 ROA not before: Fri 28 Apr 2023 22:38:41 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 58895 IP address blocks: 103.87.192.0/22 maxlen: 22 103.87.192.0/24 maxlen: 24 103.87.193.0/24 maxlen: 24 103.87.194.0/24 maxlen: 24 103.87.195.0/24 maxlen: 24 203.96.168.0/24 maxlen: 24 203.96.169.0/24 maxlen: 24 203.96.170.0/24 maxlen: 24 203.96.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/euliL4NM9MbPWtGpivB9UBVFpL8.crl rsync://rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/euliL4NM9MbPWtGpivB9UBVFpL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/euliL4NM9MbPWtGpivB9UBVFpL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 May 2023 22:38:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2240 (0x8c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142661/serialNumber=7AE9622F834CF4C6CF5AD1A98AF07D501545A4BF Validity Not Before: Apr 28 22:38:41 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=644c4af1-d11b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:d6:47:cc:d1:a8:83:b0:24:f4:33:e5:86:39: 45:94:cb:49:62:cc:12:e6:c4:1e:a5:be:91:37:b4: 54:40:dc:15:5b:72:46:bd:20:ee:dd:f3:b2:e9:c3: 1c:8d:7f:bf:1b:5b:02:00:d1:66:23:4e:d6:24:b8: bb:ae:b5:c4:33:f5:07:1e:52:fa:43:60:9b:aa:e8: 99:27:5b:e6:ea:3b:e3:c1:4c:81:2d:f8:c6:ee:81: af:f6:29:d9:a9:14:9a:d4:ed:d7:05:5b:82:12:13: 54:f4:6d:9e:07:ce:21:51:a7:45:d7:41:3e:bd:30: b2:bc:28:39:d5:2b:03:4f:68:ca:39:40:35:e7:43: 9a:62:b0:f9:eb:14:49:4d:df:43:a3:8d:f0:2c:0a: be:7a:43:f0:b1:b8:6e:09:09:8b:62:eb:88:20:86: 8e:0d:50:e2:49:4e:57:5e:ea:70:a4:4c:7a:26:8a: 8e:56:da:1c:05:18:25:71:34:a7:2e:b8:fe:58:a2: 97:49:05:af:98:53:6f:6b:92:b5:70:2b:b2:f2:ba: d2:f7:eb:70:4c:17:51:cc:20:ca:c6:79:86:5e:b7: c7:10:31:32:b8:ed:95:2f:ac:3e:45:85:d3:73:a4: 38:ff:fb:cd:cb:c5:3f:39:dc:03:c0:19:5b:96:9f: e3:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:E7:63:7B:89:25:16:51:49:CB:06:3C:A5:D3:B0:92:A0:71:F4:1C X509v3 Authority Key Identifier: keyid:7A:E9:62:2F:83:4C:F4:C6:CF:5A:D1:A9:8A:F0:7D:50:15:45:A4:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/euliL4NM9MbPWtGpivB9UBVFpL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/euliL4NM9MbPWtGpivB9UBVFpL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/61096B522DB111EDA42EBE42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.87.192.0/22 203.96.168.0/22 Signature Algorithm: sha256WithRSAEncryption 4c:04:86:dd:3e:e8:65:69:d4:d5:e3:df:76:84:1e:95:07:3a: cb:96:cf:e9:d0:db:c9:04:cb:e4:32:aa:d7:4e:e0:a6:e5:7f: c5:22:75:cc:75:a1:d1:69:18:bd:47:1e:50:0a:2f:5c:51:2c: 7b:98:e0:4b:61:34:20:ce:1d:0e:07:44:b6:a0:3c:fa:19:11: 9c:57:a3:3c:26:59:b0:69:f6:91:2a:bb:12:7c:02:3f:50:b6: b2:4c:9e:7f:5b:72:28:0c:9d:48:a4:22:32:bd:84:3d:99:c1: 41:7f:83:9f:0e:53:73:31:eb:8f:5f:e2:7c:68:ec:eb:3b:d4: 11:d4:37:17:da:9a:92:8c:f1:23:37:b0:1e:d6:b9:6f:62:ea: 9d:22:09:e5:15:5f:6c:ed:12:c9:53:6b:15:e5:ce:0d:f4:20: 90:4a:80:2f:ed:ce:ea:2f:15:60:5a:71:11:6a:cb:cb:ef:f2: 8b:16:4e:00:99:92:01:6a:75:fc:e8:1c:08:73:b1:06:6c:22: 95:2f:4f:ed:9d:4c:7d:eb:b2:23:ea:4a:02:b3:f3:4a:3f:cc: 46:67:a7:50:ba:99:06:41:fd:47:72:1f:0e:68:0a:a3:1c:9e: 00:e3:08:36:7d:98:77:ad:87:81:36:e7:ec:22:5b:5e:d5:1e: 1c:de:33:c1 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI2NjExMTAvBgNVBAUTKDdBRTk2MjJGODM0Q0Y0QzZDRjVBRDFBOThBRjA3RDUw MTU0NUE0QkYwHhcNMjMwNDI4MjIzODQxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDRjNGFmMS1kMTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA79ZHzNGog7Ak9DPlhjlFlMtJYswS5sQepb6RN7RUQNwVW3JGvSDu3fOy6cMc jX+/G1sCANFmI07WJLi7rrXEM/UHHlL6Q2CbquiZJ1vm6jvjwUyBLfjG7oGv9inZ qRSa1O3XBVuCEhNU9G2eB84hUadF10E+vTCyvCg51SsDT2jKOUA150OaYrD56xRJ Td9Do43wLAq+ekPwsbhuCQmLYuuIIIaODVDiSU5XXupwpEx6JoqOVtocBRglcTSn Lrj+WKKXSQWvmFNva5K1cCuy8rrS9+twTBdRzCDKxnmGXrfHEDEyuO2VL6w+RYXT c6Q4//vNy8U/OdwDwBlblp/jgwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFErnY3uJ JRZRScsGPKXTsJKgcfQcMB8GA1UdIwQYMBaAFHrpYi+DTPTGz1rRqYrwfVAVRaS/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjY2MS80Q0M3NzI3NjY5 QkMxMUVBQUYxQjlGNjlDNEY5QUUwMi9ldWxpTDROTTlNYlBXdEdwaXZCOVVCVkZw TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V1bGlMNE5NOU1iUFd0R3BpdkI5VUJWRnBMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDI2NjEvNENDNzcyNzY2OUJDMTFFQUFGMUI5RjY5QzRGOUFFMDIvNjEwOTZCNTIy REIxMTFFREE0MkVCRTQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnV8ADBALLYKgwDQYJKoZIhvcNAQELBQADggEBAEwEht0+ 6GVp1NXj33aEHpUHOsuWz+nQ28kEy+QyqtdO4Kblf8Uidcx1odFpGL1HHlAKL1xR LHuY4EthNCDOHQ4HRLagPPoZEZxXozwmWbBp9pEquxJ8Aj9QtrJMnn9bcigMnUik IjK9hD2ZwUF/g58OU3Mx649f4nxo7Os71BHUNxfampKM8SM3sB7WuW9i6p0iCeUV X2ztEslTaxXlzg30IJBKgC/tzuovFWBacRFqy8vv8osWTgCZkgFqdfzoHAhzsQZs IpUvT+2dTH3rsiPqSgKz80o/zEZnp1C6mQZB/UdyHw5oCqMcngDjCDZ9mHeth4E2 5+wiW17VHhzeM8E= -----END CERTIFICATE-----Generated at Fri Apr 28 23:24:54 2023 by rpki-client on console-fra.rpki-client.org