$ rpki-client -vvf rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/6199B5668DE011ECB9F9C06EC4F9AE02.roa File: 6199B5668DE011ECB9F9C06EC4F9AE02.roa (raw, json) Hash identifier: FnRQpRezw460SfJT2VeK+2OMLg8q10iYbDYOs9JZ0ok= Subject key identifier: 7E:EC:FE:FC:46:B3:AE:68:90:6B:81:B4:50:DF:00:FC:C0:AD:41:68 Certificate issuer: /CN=A914E950/serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Certificate serial: 028A Authority key identifier: D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/6199B5668DE011ECB9F9C06EC4F9AE02.roa Signing time: Tue 03 Oct 2023 02:23:41 +0000 ROA not before: Tue 03 Oct 2023 02:23:41 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 132727 IP address blocks: 103.73.228.0/24 maxlen: 24 103.73.229.0/24 maxlen: 24 103.73.230.0/24 maxlen: 24 103.73.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 650 (0x28a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E950/serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Validity Not Before: Oct 3 02:23:41 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651b7b2d-3c89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:46:72:1d:80:fc:37:97:f6:24:26:06:02:c8: 45:c9:08:d8:f4:67:c6:2c:eb:ca:53:15:00:49:ae: 4d:06:14:df:40:9d:10:53:fd:68:bf:a4:aa:51:b8: 87:d9:df:bc:06:35:dd:e5:5b:5b:d1:1f:89:aa:7c: 96:ce:7a:a4:e7:f7:56:d3:d2:b6:00:30:42:61:63: 9f:5b:17:37:76:84:90:b7:ee:98:fd:65:b3:77:a9: 5e:8b:6a:71:27:9f:21:8b:5c:78:2a:f8:d8:a2:b4: 56:a4:af:8e:af:6b:6c:b3:6a:7b:cc:9c:6d:d7:17: 08:fd:43:5d:6f:a7:b5:b1:27:79:1d:4c:c5:a1:0f: 30:2c:31:09:d9:a8:44:47:bd:f7:36:b3:5a:d3:0d: 7f:57:7e:a4:50:62:ba:f6:12:d0:7c:76:3c:51:b3: e7:aa:be:6e:79:23:0a:e1:b9:70:6c:97:2e:2c:2a: 7f:84:3d:44:32:99:eb:6b:17:94:7c:14:8b:7a:03: 24:25:90:28:62:9c:8d:17:f2:41:a5:16:51:e1:ba: 4b:f6:3e:c7:ad:db:83:84:06:76:fc:14:7b:ab:e0: 81:82:34:14:cc:86:f1:09:44:09:a9:cf:00:b1:a8: 56:60:88:8c:8a:6c:61:4b:e6:a1:ae:72:b1:4e:e7: db:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:EC:FE:FC:46:B3:AE:68:90:6B:81:B4:50:DF:00:FC:C0:AD:41:68 X509v3 Authority Key Identifier: keyid:D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/6199B5668DE011ECB9F9C06EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.228.0/22 Signature Algorithm: sha256WithRSAEncryption 17:cb:ae:66:5c:f9:66:c9:6a:b1:f3:66:cd:20:f5:c9:f0:b9: a7:43:59:31:09:e9:e4:10:5f:ad:47:a4:91:cb:12:1c:90:1f: 5d:a2:46:4f:dc:0a:bf:6b:a2:2d:9b:82:ed:50:0c:37:cf:90: 77:e0:de:a3:7e:63:a8:75:26:c2:9a:5e:d5:05:2b:53:06:10: 2a:8f:f1:0b:f2:bc:2c:d1:15:7f:19:45:c1:66:f4:4c:92:d1: 5e:95:5c:aa:65:05:f0:fa:52:86:e1:a5:a5:5c:21:28:ed:47: 94:cb:b4:dd:23:e5:7d:ca:1e:57:95:4f:cd:b5:87:49:b5:d1: e7:78:80:64:ef:8c:05:77:9c:b0:a0:ea:f3:12:26:6d:a8:f6: a6:ac:81:bf:bb:17:06:ff:71:e9:07:a1:86:4b:f9:21:f0:15: 2b:3a:01:68:cc:24:8e:88:3d:6d:d7:02:4b:7d:24:41:22:46: 36:9b:1a:bf:2a:ba:e3:66:3f:c2:fa:03:d6:84:46:20:0f:e9: 86:42:4a:9c:19:d3:f8:39:1f:be:de:08:5a:bb:b1:78:df:f9: c6:5f:d1:88:61:3a:11:82:a9:c5:80:43:e1:02:7e:93:cb:96: e8:24:5f:34:33:dd:ca:2e:c2:8f:87:0b:2c:a4:53:19:d9:58: 81:31:de:ab -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAoowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5NTAxMTAvBgNVBAUTKEQ4NzVFNjNDNzM1MDhERDg5RjZBQ0RDQzA2MDE0NEEw OEMwODY2REMwHhcNMjMxMDAzMDIyMzQxWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFiN2IyZC0zYzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzEZyHYD8N5f2JCYGAshFyQjY9GfGLOvKUxUASa5NBhTfQJ0QU/1ov6SqUbiH 2d+8BjXd5Vtb0R+JqnyWznqk5/dW09K2ADBCYWOfWxc3doSQt+6Y/WWzd6lei2px J58hi1x4KvjYorRWpK+Or2tss2p7zJxt1xcI/UNdb6e1sSd5HUzFoQ8wLDEJ2ahE R733NrNa0w1/V36kUGK69hLQfHY8UbPnqr5ueSMK4blwbJcuLCp/hD1EMpnraxeU fBSLegMkJZAoYpyNF/JBpRZR4bpL9j7HrduDhAZ2/BR7q+CBgjQUzIbxCUQJqc8A sahWYIiMimxhS+ahrnKxTufb6QIDAQABo4IClTCCApEwHQYDVR0OBBYEFH7s/vxG s65okGuBtFDfAPzArUFoMB8GA1UdIwQYMBaAFNh15jxzUI3Yn2rNzAYBRKCMCGbc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTk1MC9DQkYwNkYzMDhE REMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpkaWZhczNNQmdGRW9Jd0la dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJIWG1QSE5RamRpZmFzM01CZ0ZFb0l3SVp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU5NTAvQ0JGMDZGMzA4RERDMTFFQ0ExNDAwQzY5QzRGOUFFMDIvNjE5OUI1NjY4 REUwMTFFQ0I5RjlDMDZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnSeQwDQYJKoZIhvcNAQELBQADggEBABfLrmZc+WbJarHz Zs0g9cnwuadDWTEJ6eQQX61HpJHLEhyQH12iRk/cCr9roi2bgu1QDDfPkHfg3qN+ Y6h1JsKaXtUFK1MGECqP8QvyvCzRFX8ZRcFm9EyS0V6VXKplBfD6UobhpaVcISjt R5TLtN0j5X3KHleVT821h0m10ed4gGTvjAV3nLCg6vMSJm2o9qasgb+7Fwb/cekH oYZL+SHwFSs6AWjMJI6IPW3XAkt9JEEiRjabGr8quuNmP8L6A9aERiAP6YZCSpwZ 0/g5H77eCFq7sXjf+cZf0YhhOhGCqcWAQ+ECfpPLlugkXzQz3couwo+HCyykUxnZ WIEx3qs= -----END CERTIFICATE-----Generated at Sun May 19 03:48:51 2024 by rpki-client on console-fra.rpki-client.org