$ rpki-client -vvf rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/096A1DB6D2BA11ED8E06CC13C4F9AE02.roa File: 096A1DB6D2BA11ED8E06CC13C4F9AE02.roa (raw, json) Hash identifier: Ui/QnP01hpvTt4Kwc9g4FJqYkxBDeQTtmQ9yVgJx8bM= Subject key identifier: 3D:6C:6F:98:D4:AC:5A:2F:75:24:75:75:67:BB:F4:1D:11:73:38:62 Certificate issuer: /CN=A9160D0A/serialNumber=AC6385ED563E1FD6A66B3E4B510DCC6930CD4B0C Certificate serial: AE Authority key identifier: AC:63:85:ED:56:3E:1F:D6:A6:6B:3E:4B:51:0D:CC:69:30:CD:4B:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGOF7VY-H9amaz5LUQ3MaTDNSww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/096A1DB6D2BA11ED8E06CC13C4F9AE02.roa Signing time: Fri 29 Dec 2023 05:26:18 +0000 ROA not before: Fri 29 Dec 2023 05:26:18 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 4755 IP address blocks: 103.120.104.0/24 maxlen: 24 103.120.105.0/24 maxlen: 24 103.120.106.0/24 maxlen: 24 103.120.107.0/24 maxlen: 24 175.100.160.0/24 maxlen: 24 175.100.161.0/24 maxlen: 24 175.100.162.0/24 maxlen: 24 175.100.163.0/24 maxlen: 24 2405:a100:10::/44 maxlen: 44 2405:a100:20::/44 maxlen: 44 2405:a100:30::/44 maxlen: 44 2405:a100:40::/44 maxlen: 44 2405:a100:50::/44 maxlen: 44 2405:a100:60::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.crl rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGOF7VY-H9amaz5LUQ3MaTDNSww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 06:15:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160D0A/serialNumber=AC6385ED563E1FD6A66B3E4B510DCC6930CD4B0C Validity Not Before: Dec 29 05:26:18 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658e5879-e13c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:f6:a3:44:1a:d5:17:ac:27:42:8e:35:d9:97: 98:92:7e:87:b1:7f:9c:4a:e7:9a:0c:70:35:69:73: 17:30:9a:71:23:14:7d:d7:30:6a:c4:d1:1c:9c:b9: b1:92:96:7f:fc:12:4b:3c:39:d5:e2:8b:ba:85:80: 88:a5:e8:73:6f:42:22:4d:ae:a6:b9:d1:b5:d9:ff: 5a:31:f7:cc:88:91:87:f9:0b:eb:98:e7:60:f0:a0: b2:7d:1c:79:09:c2:75:f0:82:9d:8f:c7:a6:95:0c: c6:a4:75:b4:3f:0c:ea:2d:f7:a3:73:3a:50:33:db: 7d:18:47:18:21:ee:e5:b6:b6:59:af:86:ba:3e:d3: ab:d4:a2:82:17:56:61:e5:48:8f:76:a5:0b:0e:15: aa:cd:14:6f:1e:16:06:8f:b2:52:61:c2:89:ef:4e: 5c:d6:63:d4:89:65:33:0d:0f:db:c9:6d:4a:03:b3: 1e:ec:3c:5f:f8:5a:e4:a3:73:8b:20:95:7f:82:42: 4b:a5:a0:54:2f:e0:60:7b:37:a9:f5:30:a8:84:dc: 1a:61:67:be:4e:41:a4:48:0f:82:59:da:2d:a9:41: d7:b4:69:3c:44:a1:b0:9d:a0:dc:c2:8c:08:05:44: 77:00:8f:f2:46:5f:15:e7:a6:19:48:2d:a8:28:63: 0d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:6C:6F:98:D4:AC:5A:2F:75:24:75:75:67:BB:F4:1D:11:73:38:62 X509v3 Authority Key Identifier: keyid:AC:63:85:ED:56:3E:1F:D6:A6:6B:3E:4B:51:0D:CC:69:30:CD:4B:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGOF7VY-H9amaz5LUQ3MaTDNSww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/096A1DB6D2BA11ED8E06CC13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.104.0/22 175.100.160.0/22 IPv6: 2405:a100:10::-2405:a100:6f:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 7e:04:ef:2f:30:81:62:b3:84:cf:11:45:e0:ab:7d:d6:da:4b: 27:2b:71:dc:9a:07:5c:a3:bc:6f:8c:f6:58:d3:06:6f:8b:24: ec:36:ca:45:27:03:2d:bd:82:46:40:27:40:11:65:e7:f8:0d: 93:ca:d2:b9:43:cf:39:15:3a:23:f8:36:ef:10:e0:d9:2f:f6: 7b:29:9d:24:dd:01:24:3c:17:54:e3:c5:8a:2a:14:ff:25:5f: e8:1f:0d:a6:e7:68:b4:72:e9:05:9e:ae:af:7c:0c:4f:63:55: 48:2c:3f:c4:1f:73:a1:9a:82:5f:b2:87:4e:a5:5d:54:93:77: e6:8e:2f:70:48:9f:ed:b8:10:c2:b8:e3:2b:cb:04:6d:3d:f1: 43:08:9b:57:c9:f3:a0:35:f5:61:db:08:33:88:15:2c:b4:c0: 7f:46:93:98:b2:f9:0e:42:03:53:2b:7e:b2:76:87:39:ce:73: a1:36:e6:10:0d:b3:00:9d:62:ee:94:22:d5:dd:b6:38:dd:64: 31:73:27:3e:ca:ae:56:02:ac:05:3c:9d:17:03:8a:a3:25:14: 0e:0d:b5:33:23:31:bc:be:00:22:43:a0:b2:38:fc:b8:27:8d: 80:1c:21:19:32:22:22:e9:71:93:bb:57:25:ea:0e:ce:9b:ef: cf:ec:59:a5 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBEMEExMTAvBgNVBAUTKEFDNjM4NUVENTYzRTFGRDZBNjZCM0U0QjUxMERDQzY5 MzBDRDRCMEMwHhcNMjMxMjI5MDUyNjE4WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThlNTg3OS1lMTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+fajRBrVF6wnQo412ZeYkn6HsX+cSueaDHA1aXMXMJpxIxR91zBqxNEcnLmx kpZ//BJLPDnV4ou6hYCIpehzb0IiTa6mudG12f9aMffMiJGH+QvrmOdg8KCyfRx5 CcJ18IKdj8emlQzGpHW0PwzqLfejczpQM9t9GEcYIe7ltrZZr4a6PtOr1KKCF1Zh 5UiPdqULDhWqzRRvHhYGj7JSYcKJ705c1mPUiWUzDQ/byW1KA7Me7Dxf+Frko3OL IJV/gkJLpaBUL+Bgezep9TCohNwaYWe+TkGkSA+CWdotqUHXtGk8RKGwnaDcwowI BUR3AI/yRl8V56YZSC2oKGMNaQIDAQABo4ICtzCCArMwHQYDVR0OBBYEFD1sb5jU rFovdSR1dWe79B0RczhiMB8GA1UdIwQYMBaAFKxjhe1WPh/Wpms+S1ENzGkwzUsM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEQwQS81NjRBMTM1RUQy MjIxMUVEOUEyMDZDNDZDNEY5QUUwMi9yR09GN1ZZLUg5YW1hejVMVVEzTWFURE5T d3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JHT0Y3VlktSDlhbWF6NUxVUTNNYVRETlN3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjBEMEEvNTY0QTEzNUVEMjIyMTFFRDlBMjA2QzQ2QzRGOUFFMDIvMDk2QTFEQjZE MkJBMTFFRDhFMDZDQzEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMBIEAgABMAwDBAJneGgDBAKvZKAwGgQCAAIwFDASAwcEJAWhAAAQAwcEJAWh AABgMA0GCSqGSIb3DQEBCwUAA4IBAQB+BO8vMIFis4TPEUXgq33W2ksnK3Hcmgdc o7xvjPZY0wZviyTsNspFJwMtvYJGQCdAEWXn+A2TytK5Q885FToj+DbvEODZL/Z7 KZ0k3QEkPBdU48WKKhT/JV/oHw2m52i0cukFnq6vfAxPY1VILD/EH3OhmoJfsodO pV1Uk3fmji9wSJ/tuBDCuOMrywRtPfFDCJtXyfOgNfVh2wgziBUstMB/RpOYsvkO QgNTK36ydoc5znOhNuYQDbMAnWLulCLV3bY43WQxcyc+yq5WAqwFPJ0XA4qjJRQO DbUzIzG8vgAiQ6CyOPy4J42AHCEZMiIi6XGTu1cl6g7Om+/P7Fml -----END CERTIFICATE-----Generated at Fri May 17 08:13:50 2024 by rpki-client on console-fra.rpki-client.org