$ rpki-client -vvf rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/687D7178B85D11EBB2E17F26C4F9AE02.roa File: 687D7178B85D11EBB2E17F26C4F9AE02.roa (raw, json) Hash identifier: znVrzDU0BSkt2ZYFWZRzHnhuZQN/VFjT6FjpKFztMoE= Subject key identifier: D6:2F:3F:72:68:1D:1F:B4:83:7C:16:F2:56:E4:B8:77:19:77:3B:15 Certificate issuer: /CN=A9158028/serialNumber=809EFF1F7819B81751F177AB5AFED82BCC32A569 Certificate serial: 04E4 Authority key identifier: 80:9E:FF:1F:78:19:B8:17:51:F1:77:AB:5A:FE:D8:2B:CC:32:A5:69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/687D7178B85D11EBB2E17F26C4F9AE02.roa Signing time: Wed 11 Oct 2023 00:12:24 +0000 ROA not before: Wed 11 Oct 2023 00:12:24 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 132296 IP address blocks: 103.72.72.0/22 maxlen: 22 103.72.72.0/24 maxlen: 24 103.72.73.0/24 maxlen: 24 103.72.74.0/24 maxlen: 24 103.72.75.0/24 maxlen: 24 103.233.140.0/23 maxlen: 23 103.233.140.0/24 maxlen: 24 103.233.141.0/24 maxlen: 24 103.248.202.0/23 maxlen: 24 2406:b580::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.crl rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 00:53:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1252 (0x4e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158028/serialNumber=809EFF1F7819B81751F177AB5AFED82BCC32A569 Validity Not Before: Oct 11 00:12:24 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6525e868-229c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:58:37:38:d3:79:68:07:fb:a1:67:33:c4:29: 05:37:50:64:10:95:e9:ee:6d:4b:5b:35:7a:86:dd: 4c:bb:a8:d8:77:8d:c3:e7:e8:1b:26:d9:69:f7:a5: 94:97:25:11:26:75:23:9a:66:e4:79:07:9c:01:7c: bc:67:ab:5c:35:eb:93:9a:6c:72:10:4a:bb:39:e4: cc:af:1c:ce:12:5a:a6:36:78:eb:01:25:99:f4:fb: 34:14:55:78:7b:36:f9:d0:a1:ac:83:f6:3e:2a:01: 0a:d5:b7:17:96:db:11:55:47:33:48:4d:a1:d4:aa: d9:30:2e:34:82:1a:51:e4:2b:7b:6a:33:3d:60:ee: f7:fa:a6:a8:5c:51:53:7a:c6:81:ca:fd:d3:ea:71: b8:ce:62:a9:19:70:99:eb:c5:53:9c:18:2a:15:02: 57:7f:31:ed:2e:88:85:5d:6d:d3:07:b6:6a:7f:fe: d3:a6:be:65:a4:ad:ac:31:79:71:46:66:c2:9a:d5: 1c:fe:b2:49:9a:32:83:c4:af:6e:b0:9f:9c:a5:22: 51:0e:4c:13:7a:30:f4:58:7e:ea:e6:3e:03:2d:1b: dd:5b:86:cd:26:11:8d:66:b1:22:d6:4c:9e:ab:ab: 5f:36:20:e5:ea:57:83:02:fd:09:e9:12:99:82:49: b6:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:2F:3F:72:68:1D:1F:B4:83:7C:16:F2:56:E4:B8:77:19:77:3B:15 X509v3 Authority Key Identifier: keyid:80:9E:FF:1F:78:19:B8:17:51:F1:77:AB:5A:FE:D8:2B:CC:32:A5:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/687D7178B85D11EBB2E17F26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.72.72.0/22 103.233.140.0/23 103.248.202.0/23 IPv6: 2406:b580::/32 Signature Algorithm: sha256WithRSAEncryption 46:84:d6:62:67:62:11:e9:dc:64:f0:29:05:5f:1e:92:25:89: 34:3c:ff:58:39:93:28:7d:b9:a3:e7:00:1a:f5:1c:dd:67:45: a5:d0:41:ab:15:48:67:1e:86:51:9a:92:e2:58:7d:9d:d1:c4: 46:5f:0e:15:69:41:75:3a:11:d7:6f:2e:8e:16:70:c2:cc:71: 15:8a:f7:70:6f:f8:89:44:fc:5c:25:c8:8c:e0:e8:6b:78:68: eb:3d:51:f9:46:cf:56:32:3b:af:a7:cb:ff:66:00:a2:20:8e: 97:79:37:91:db:45:c2:73:46:a4:27:6c:a8:87:84:fe:b0:83: 60:44:62:93:c0:c5:aa:73:25:f9:88:d3:42:8f:86:ca:a1:b8: f9:0b:68:69:62:a1:31:c8:a9:e8:01:a9:be:61:b4:6a:e7:47: b7:16:da:b6:98:5f:8f:d7:b7:7b:f4:e0:dd:32:ba:3d:ae:55: 2c:80:99:cd:62:36:83:b6:ff:47:1c:a6:07:05:39:e0:b9:35: 7e:32:42:fb:b7:83:4f:3e:6a:01:c7:61:69:6d:e2:e4:b4:e4: 67:e4:b8:13:c8:5f:0e:ba:d0:88:dc:20:01:05:7c:46:7d:38: 39:91:82:2f:70:9c:52:7c:8f:dd:05:e0:74:94:81:c7:44:04: 32:58:0a:53 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICBOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwMjgxMTAvBgNVBAUTKDgwOUVGRjFGNzgxOUI4MTc1MUYxNzdBQjVBRkVEODJC Q0MzMkE1NjkwHhcNMjMxMDExMDAxMjI0WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTI1ZTg2OC0yMjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxVg3ONN5aAf7oWczxCkFN1BkEJXp7m1LWzV6ht1Mu6jYd43D5+gbJtlp96WU lyURJnUjmmbkeQecAXy8Z6tcNeuTmmxyEEq7OeTMrxzOElqmNnjrASWZ9Ps0FFV4 ezb50KGsg/Y+KgEK1bcXltsRVUczSE2h1KrZMC40ghpR5Ct7ajM9YO73+qaoXFFT esaByv3T6nG4zmKpGXCZ68VTnBgqFQJXfzHtLoiFXW3TB7Zqf/7Tpr5lpK2sMXlx RmbCmtUc/rJJmjKDxK9usJ+cpSJRDkwTejD0WH7q5j4DLRvdW4bNJhGNZrEi1kye q6tfNiDl6leDAv0J6RKZgkm2TQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFNYvP3Jo HR+0g3wW8lbkuHcZdzsVMB8GA1UdIwQYMBaAFICe/x94GbgXUfF3q1r+2CvMMqVp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODAyOC84QTRBREVFNEEx MUYxMUVCOTMzOUQ1MEFDNEY5QUUwMi9nSjdfSDNnWnVCZFI4WGVyV3Y3WUs4d3lw V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dKN19IM2dadUJkUjhYZXJXdjdZSzh3eXBXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTgwMjgvOEE0QURFRTRBMTFGMTFFQjkzMzlENTBBQzRGOUFFMDIvNjg3RDcxNzhC ODVEMTFFQkIyRTE3RjI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJnSEgDBAFn6YwDBAFn+MowDQQCAAIwBwMFACQGtYAwDQYJ KoZIhvcNAQELBQADggEBAEaE1mJnYhHp3GTwKQVfHpIliTQ8/1g5kyh9uaPnABr1 HN1nRaXQQasVSGcehlGakuJYfZ3RxEZfDhVpQXU6EddvLo4WcMLMcRWK93Bv+IlE /FwlyIzg6Gt4aOs9UflGz1YyO6+ny/9mAKIgjpd5N5HbRcJzRqQnbKiHhP6wg2BE YpPAxapzJfmI00KPhsqhuPkLaGlioTHIqegBqb5htGrnR7cW2raYX4/Xt3v04N0y uj2uVSyAmc1iNoO2/0ccpgcFOeC5NX4yQvu3g08+agHHYWlt4uS05GfkuBPIXw66 0IjcIAEFfEZ9ODmRgi9wnFJ8j90F4HSUgcdEBDJYClM= -----END CERTIFICATE-----Generated at Tue May 21 01:50:45 2024 by rpki-client on console-ams.rpki-client.org