$ rpki-client -vvf rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/81368CD6594B11EE924DCC64C4F9AE02.roa File: 81368CD6594B11EE924DCC64C4F9AE02.roa (raw, json) Hash identifier: iXjwV45fwne/rI84HJKZlfBWV1ptmSntosF8B4rHHyw= Subject key identifier: 96:34:AF:B8:9D:A1:B6:75:77:95:0F:2A:E1:F2:E8:29:26:F7:F1:39 Certificate issuer: /CN=A9154AFB/serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Certificate serial: 164A Authority key identifier: D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/81368CD6594B11EE924DCC64C4F9AE02.roa Signing time: Tue 06 Feb 2024 17:34:50 +0000 ROA not before: Tue 06 Feb 2024 17:34:50 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 135003 IP address blocks: 103.86.132.0/22 maxlen: 24 203.6.208.0/22 maxlen: 24 2400:bf40:1::/48 maxlen: 48 2400:bf40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5706 (0x164a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154AFB/serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Validity Not Before: Feb 6 17:34:50 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65c26dba-5c1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:29:a6:ef:0a:1c:d6:af:fe:02:8a:57:4f:66: af:66:03:70:40:b3:4c:5c:8f:89:24:19:c9:64:45: 4a:db:59:fc:03:38:3b:4f:1e:0e:d5:c1:fa:e0:b0: c9:6c:de:ba:1b:e3:ad:57:7f:60:8a:91:ef:b9:a8: 51:42:4e:42:e0:e5:9b:7e:17:38:f1:12:34:9a:0e: 9a:b2:06:06:9a:61:b0:08:e9:a0:d7:fc:5e:cf:c2: 3d:ba:f6:be:6e:1a:25:95:18:d2:90:31:5d:31:f0: 77:21:2d:e0:7b:df:60:0b:04:89:04:c9:82:7a:c0: 30:ad:f3:f3:9f:66:f5:7b:cd:16:87:09:28:46:05: 98:1f:f6:65:54:6d:1f:24:0a:c7:c9:2d:71:d3:b9: 94:01:7a:e5:12:6b:b4:7f:5f:f6:ae:d4:ad:5b:ab: 22:70:ff:fc:7d:99:23:54:2e:12:86:19:fc:4f:39: a1:a9:30:2c:35:15:84:f1:f7:2b:fc:cc:a3:66:12: e3:e8:97:ca:23:03:8e:21:a0:e7:71:08:7c:7b:79: 67:43:ca:61:35:8a:de:57:d2:d1:50:37:74:f4:76: 46:c0:1d:5a:a7:60:8f:91:ce:de:98:fb:47:3f:47: eb:6c:44:79:06:2e:e7:7e:2a:67:d6:59:18:25:b4: 57:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:34:AF:B8:9D:A1:B6:75:77:95:0F:2A:E1:F2:E8:29:26:F7:F1:39 X509v3 Authority Key Identifier: keyid:D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/81368CD6594B11EE924DCC64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.86.132.0/22 203.6.208.0/22 IPv6: 2400:bf40:1::-2400:bf40:2:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 72:b4:ba:4d:39:f6:a8:57:84:f3:b8:17:65:ef:e0:9d:ac:83: 01:a2:75:bc:e4:f7:cb:3d:4c:e4:7f:15:44:4d:f5:2b:52:db: 7c:35:ad:9c:02:7e:4f:2a:5b:89:04:87:30:f1:4e:86:f0:81: 41:3e:31:41:50:f1:cf:8f:52:3e:09:f0:75:e7:cc:92:cc:9c: e8:82:43:e3:07:76:b6:f4:f5:ea:11:cb:b9:d3:97:29:98:e0: d3:5c:51:4a:f2:d6:8a:2c:53:c6:c6:68:06:aa:e0:54:dc:b2: be:f1:b3:46:a7:31:2a:7f:aa:c2:91:f6:00:98:7d:d8:a6:5e: 56:0f:ab:cb:78:1a:4c:4b:0e:97:8c:b8:e2:38:8a:bb:e8:1a: f9:8d:f7:ff:c2:10:50:69:60:20:22:1d:08:26:80:6a:f3:8b: 73:4e:3a:b0:3b:a6:ea:09:02:39:72:dd:04:e7:07:f1:3c:7c: 58:02:12:1e:29:98:d0:b0:50:97:97:6e:85:77:68:e5:0c:a6: 56:77:8a:71:e6:ce:bf:4e:5b:6d:2e:6e:54:d5:76:2d:d7:be: 81:58:c4:67:d3:41:a4:88:ac:84:c1:92:1b:62:15:76:48:bf: 4c:6c:bc:18:1c:b8:3b:32:7f:66:44:df:2f:36:2d:43:5c:ac: 6e:25:d0:5c -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICFkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRBRkIxMTAvBgNVBAUTKEQ0RTMxNzZDQjlGNDg5M0U3NEM0RTgwNUZBN0ZCNUQ5 MEE0QTdCMEEwHhcNMjQwMjA2MTczNDUwWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWMyNmRiYS01YzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsCmm7woc1q/+AopXT2avZgNwQLNMXI+JJBnJZEVK21n8Azg7Tx4O1cH64LDJ bN66G+OtV39gipHvuahRQk5C4OWbfhc48RI0mg6asgYGmmGwCOmg1/xez8I9uva+ bhollRjSkDFdMfB3IS3ge99gCwSJBMmCesAwrfPzn2b1e80WhwkoRgWYH/ZlVG0f JArHyS1x07mUAXrlEmu0f1/2rtStW6sicP/8fZkjVC4Shhn8TzmhqTAsNRWE8fcr /MyjZhLj6JfKIwOOIaDncQh8e3lnQ8phNYreV9LRUDd09HZGwB1ap2CPkc7emPtH P0frbER5Bi7nfipn1lkYJbRXKwIDAQABo4ICtzCCArMwHQYDVR0OBBYEFJY0r7id obZ1d5UPKuHy6Ckm9/E5MB8GA1UdIwQYMBaAFNTjF2y59Ik+dMToBfp/tdkKSnsK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEFGQi83OEEwNEU0Q0Uz MkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlUNTB4T2dGLW4tMTJRcEtl d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPTVhiTG4waVQ1MHhPZ0Ytbi0xMlFwS2V3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTRBRkIvNzhBMDRFNENFMzJGMTFFN0I2Q0VENDJGQzRGOUFFMDIvODEzNjhDRDY1 OTRCMTFFRTkyNERDQzY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMBIEAgABMAwDBAJnVoQDBALLBtAwGgQCAAIwFDASAwcAJAC/QAABAwcAJAC/ QAACMA0GCSqGSIb3DQEBCwUAA4IBAQBytLpNOfaoV4TzuBdl7+CdrIMBonW85PfL PUzkfxVETfUrUtt8Na2cAn5PKluJBIcw8U6G8IFBPjFBUPHPj1I+CfB158ySzJzo gkPjB3a29PXqEcu505cpmODTXFFK8taKLFPGxmgGquBU3LK+8bNGpzEqf6rCkfYA mH3Ypl5WD6vLeBpMSw6XjLjiOIq76Br5jff/whBQaWAgIh0IJoBq84tzTjqwO6bq CQI5ct0E5wfxPHxYAhIeKZjQsFCXl26Fd2jlDKZWd4px5s6/TlttLm5U1XYt176B WMRn00GkiKyEwZIbYhV2SL9MbLwYHLg7Mn9mRN8vNi1DXKxuJdBc -----END CERTIFICATE-----Generated at Sat May 18 18:21:36 2024 by rpki-client on console-ams.rpki-client.org