$ rpki-client -vvf rpki.apnic.net/member_repository/A9147609/632C30AE440E11E8903D3A5BC4F9AE02/E4195D06657C11EDA6716016C4F9AE02.roa File: E4195D06657C11EDA6716016C4F9AE02.roa (raw, json) Hash identifier: oHxSTwLl1YGmu6SauNK1TsYdumJNvjH9MKYKmUvcJbo= Subject key identifier: B6:AE:6E:70:EE:F4:BA:59:62:6D:B8:A3:4E:B1:2C:C1:71:F0:BF:04 Certificate issuer: /CN=A9147609/serialNumber=4509689966D37927569CF2CBB44FFE93ACA8E681 Certificate serial: 0661 Authority key identifier: 45:09:68:99:66:D3:79:27:56:9C:F2:CB:B4:4F:FE:93:AC:A8:E6:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RQlomWbTeSdWnPLLtE_-k6yo5oE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147609/632C30AE440E11E8903D3A5BC4F9AE02/E4195D06657C11EDA6716016C4F9AE02.roa Signing time: Fri 26 May 2023 17:58:15 +0000 ROA not before: Fri 26 May 2023 17:58:15 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 137578 IP address blocks: 103.114.10.0/23 maxlen: 23 103.114.10.0/24 maxlen: 24 103.114.11.0/24 maxlen: 24 2405:4440::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147609/632C30AE440E11E8903D3A5BC4F9AE02/RQlomWbTeSdWnPLLtE_-k6yo5oE.crl rsync://rpki.apnic.net/member_repository/A9147609/632C30AE440E11E8903D3A5BC4F9AE02/RQlomWbTeSdWnPLLtE_-k6yo5oE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RQlomWbTeSdWnPLLtE_-k6yo5oE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Feb 2024 02:50:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1633 (0x661) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147609/serialNumber=4509689966D37927569CF2CBB44FFE93ACA8E681 Validity Not Before: May 26 17:58:15 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=6470f337-e9ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5a:33:6d:55:82:83:16:e7:43:7f:55:cf:62: ed:7b:de:fb:02:39:ac:85:5d:e2:97:ae:e6:de:56: cc:fe:2e:8d:86:98:e3:8f:93:28:a5:6c:1b:69:e9: 94:57:ac:e8:08:69:49:53:e7:16:e4:52:9a:db:75: 21:95:81:7e:89:c8:23:04:02:b7:05:44:82:c3:44: 8e:aa:9a:50:3e:d2:84:01:13:eb:e8:14:d4:fc:9f: ff:70:b9:f8:81:31:b7:78:01:38:4d:70:5d:84:6b: 36:12:f4:cb:16:37:97:d9:c1:cd:74:91:cd:2d:50: a6:82:b5:9c:b6:d3:cc:cb:b1:be:c9:b9:c8:71:5d: 22:3f:25:7c:e9:3c:cc:87:90:d8:04:a8:84:08:0e: ad:ba:a6:00:2e:c7:d9:d1:82:bc:e3:f5:6b:e4:f7: 76:62:16:67:1a:ab:4c:40:5d:83:21:b4:2c:5f:fc: 48:c8:e7:28:7f:bb:94:58:94:04:65:fd:af:2f:8b: 02:bc:50:9d:25:99:34:b9:80:15:b9:22:d6:bf:04: 23:19:8e:7f:1c:1a:fd:08:ca:0e:ec:fa:3d:cd:29: d0:0d:cd:07:75:96:bd:11:42:91:cf:ef:6e:86:2e: bf:1c:b1:3c:1e:07:29:f4:ec:23:b5:bb:c0:77:22: 80:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:AE:6E:70:EE:F4:BA:59:62:6D:B8:A3:4E:B1:2C:C1:71:F0:BF:04 X509v3 Authority Key Identifier: keyid:45:09:68:99:66:D3:79:27:56:9C:F2:CB:B4:4F:FE:93:AC:A8:E6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147609/632C30AE440E11E8903D3A5BC4F9AE02/RQlomWbTeSdWnPLLtE_-k6yo5oE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RQlomWbTeSdWnPLLtE_-k6yo5oE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147609/632C30AE440E11E8903D3A5BC4F9AE02/E4195D06657C11EDA6716016C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.10.0/23 IPv6: 2405:4440::/32 Signature Algorithm: sha256WithRSAEncryption 6b:82:42:fa:8c:e0:cb:36:e5:fc:92:7e:11:fc:4b:99:44:b2: e1:2a:ac:dc:a7:16:7a:88:a0:d3:32:03:6a:48:d5:c6:1f:5c: 9d:04:86:0c:d9:a0:e4:4d:70:97:31:a1:e5:d1:e8:8e:76:6f: 09:ab:ce:26:de:88:f5:22:4c:4b:bf:9c:2a:a4:32:64:a6:50: c2:4a:2a:dc:15:60:df:75:71:c6:25:ab:e2:b1:08:82:80:3b: 01:92:88:78:77:52:52:34:02:6e:68:35:c1:bd:90:e0:c4:e9: 4d:32:f0:e1:88:ec:80:e0:33:03:75:80:ad:40:ce:d1:a5:11: 68:ee:f4:5d:26:99:47:63:d3:d9:27:fc:f1:c4:42:a1:f0:e2: 1d:f3:62:69:31:8e:07:f8:03:6a:b4:17:29:5b:3f:c6:ad:9a: 63:dd:90:ab:c9:77:f8:54:d2:6d:5e:51:71:3d:cb:fa:a3:5b: c6:6e:8e:a5:89:2c:29:8b:c1:ad:08:99:4c:45:a2:b6:d1:28: 25:ea:a8:a9:39:64:88:39:99:eb:f8:95:95:b3:31:e3:05:2f: 5a:54:0a:8a:5d:b3:77:91:61:da:6d:e6:45:06:7e:61:fc:df: 58:a0:e7:82:70:21:bc:9b:b4:9b:18:fe:3d:36:2e:08:4a:8a: 17:8c:44:15 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc2MDkxMTAvBgNVBAUTKDQ1MDk2ODk5NjZEMzc5Mjc1NjlDRjJDQkI0NEZGRTkz QUNBOEU2ODEwHhcNMjMwNTI2MTc1ODE1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDcwZjMzNy1lOWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1ozbVWCgxbnQ39Vz2Lte977AjmshV3il67m3lbM/i6Nhpjjj5MopWwbaemU V6zoCGlJU+cW5FKa23UhlYF+icgjBAK3BUSCw0SOqppQPtKEARPr6BTU/J//cLn4 gTG3eAE4TXBdhGs2EvTLFjeX2cHNdJHNLVCmgrWcttPMy7G+ybnIcV0iPyV86TzM h5DYBKiECA6tuqYALsfZ0YK84/Vr5Pd2YhZnGqtMQF2DIbQsX/xIyOcof7uUWJQE Zf2vL4sCvFCdJZk0uYAVuSLWvwQjGY5/HBr9CMoO7Po9zSnQDc0HdZa9EUKRz+9u hi6/HLE8Hgcp9OwjtbvAdyKA+wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLaubnDu 9LpZYm24o06xLMFx8L8EMB8GA1UdIwQYMBaAFEUJaJlm03knVpzyy7RP/pOsqOaB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzYwOS82MzJDMzBBRTQ0 MEUxMUU4OTAzRDNBNUJDNEY5QUUwMi9SUWxvbVdiVGVTZFduUExMdEVfLWs2eW81 b0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JRbG9tV2JUZVNkV25QTEx0RV8tazZ5bzVvRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDc2MDkvNjMyQzMwQUU0NDBFMTFFODkwM0QzQTVCQzRGOUFFMDIvRTQxOTVEMDY2 NTdDMTFFREE2NzE2MDE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFncgowDQQCAAIwBwMFACQFREAwDQYJKoZIhvcNAQELBQAD ggEBAGuCQvqM4Ms25fySfhH8S5lEsuEqrNynFnqIoNMyA2pI1cYfXJ0EhgzZoORN cJcxoeXR6I52bwmrzibeiPUiTEu/nCqkMmSmUMJKKtwVYN91ccYlq+KxCIKAOwGS iHh3UlI0Am5oNcG9kODE6U0y8OGI7IDgMwN1gK1AztGlEWju9F0mmUdj09kn/PHE QqHw4h3zYmkxjgf4A2q0FylbP8atmmPdkKvJd/hU0m1eUXE9y/qjW8ZujqWJLCmL wa0ImUxForbRKCXqqKk5ZIg5mev4lZWzMeMFL1pUCopds3eRYdpt5kUGfmH831ig 54JwIbybtJsY/j02LghKiheMRBU= -----END CERTIFICATE-----Generated at Sun Feb 11 10:06:08 2024 by rpki-client on console-fra.rpki-client.org