$ rpki-client -vvf rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/D7120558A7ED11EA95BED565C4F9AE02.roa File: D7120558A7ED11EA95BED565C4F9AE02.roa (raw, json) Hash identifier: GbkT+2/o2FgR4aJwx3+CbUS2AfeQKyMpAF8clJ0JzvU= Subject key identifier: C8:E8:90:FB:73:C0:02:62:C9:37:15:01:F8:31:D0:B1:77:23:2D:AB Certificate issuer: /CN=A9161A58/serialNumber=B4669D30D210E4907CD2888BE74B89A6DD3CB6C8 Certificate serial: 0842 Authority key identifier: B4:66:9D:30:D2:10:E4:90:7C:D2:88:8B:E7:4B:89:A6:DD:3C:B6:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/D7120558A7ED11EA95BED565C4F9AE02.roa Signing time: Fri 29 Mar 2024 10:31:03 +0000 ROA not before: Fri 29 Mar 2024 10:31:03 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 135386 IP address blocks: 43.230.204.0/22 maxlen: 22 43.230.204.0/24 maxlen: 24 43.230.205.0/24 maxlen: 24 43.230.206.0/24 maxlen: 24 43.230.207.0/24 maxlen: 24 103.50.16.0/22 maxlen: 22 103.56.44.0/22 maxlen: 22 103.56.44.0/24 maxlen: 24 103.56.45.0/24 maxlen: 24 103.56.46.0/24 maxlen: 24 103.56.47.0/24 maxlen: 24 103.79.240.0/24 maxlen: 24 103.79.241.0/24 maxlen: 24 103.79.242.0/24 maxlen: 24 103.79.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.crl rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 21:44:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2114 (0x842) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161A58/serialNumber=B4669D30D210E4907CD2888BE74B89A6DD3CB6C8 Validity Not Before: Mar 29 10:31:03 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=66069867-4152 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:6b:b5:50:0d:46:9f:de:a8:cc:08:4f:dc:fa: 31:02:e5:34:85:25:27:e7:c9:07:40:9d:86:3a:7c: 23:cc:69:83:47:f9:6a:1c:87:28:6b:2c:83:cd:02: f3:1f:82:ae:9b:82:8a:19:0d:e2:4f:c1:cf:04:1e: 3c:94:9b:d1:4a:9d:96:c3:65:02:ee:7f:0c:49:3f: 51:7e:af:4a:62:3a:ac:92:cc:47:65:41:63:b9:6f: 0d:48:ce:97:b2:79:d8:7e:85:13:46:3a:6c:7a:47: 5e:94:8a:89:c9:69:6f:f1:25:18:86:1a:bb:a2:d9: bb:f3:64:bb:b1:69:72:a8:50:4b:b3:06:fe:e3:49: 64:64:cc:32:61:56:6c:97:73:4c:8a:d1:8c:63:03: b1:6f:9d:80:93:d3:ec:16:38:24:04:58:be:7a:33: ed:88:33:19:aa:64:02:8b:43:e5:54:2b:fa:59:d9: e2:de:16:53:a6:4d:39:af:7c:8b:b2:29:1f:df:6d: e4:ea:d3:28:5d:ff:21:0a:40:ec:c6:8b:48:fe:3b: 6c:26:5e:21:bd:37:81:2d:b2:74:9b:cc:50:3b:d3: bc:bd:0d:84:ce:57:e3:52:81:de:4b:be:c5:24:fa: d0:55:c9:32:71:f5:1b:c1:84:56:64:ca:aa:ca:16: d2:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:E8:90:FB:73:C0:02:62:C9:37:15:01:F8:31:D0:B1:77:23:2D:AB X509v3 Authority Key Identifier: keyid:B4:66:9D:30:D2:10:E4:90:7C:D2:88:8B:E7:4B:89:A6:DD:3C:B6:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/D7120558A7ED11EA95BED565C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.204.0/22 103.50.16.0/22 103.56.44.0/22 103.79.240.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:2b:bd:8f:78:60:78:f3:c5:55:e6:ac:99:c4:cc:a8:2f:9d: fd:b3:77:a8:9c:84:8b:15:12:83:d1:3d:4c:18:7c:56:f7:83: 68:f3:d0:72:19:38:8c:63:dd:78:54:1c:c4:ea:59:30:f1:ab: 01:55:43:66:c4:eb:17:15:e9:bc:da:16:b8:a7:2e:df:92:5d: 6a:39:53:85:c3:b7:30:fb:e7:b0:c6:d1:60:6a:30:e4:9f:69: f6:b0:33:25:11:2c:6f:bc:6b:29:4f:1b:4e:a5:43:77:2a:06: be:c7:f8:cd:f9:e4:ff:2b:9a:42:1c:ee:13:16:89:3f:7e:86: 31:49:17:be:d9:a5:e5:46:f6:dc:64:7c:2e:9f:a5:3e:7c:81: b0:83:72:40:35:28:c4:c4:f9:c9:2a:00:22:d5:37:2e:b5:ce: 73:c4:0b:4b:db:ff:c9:42:99:25:23:6d:0d:44:19:06:09:c9: 08:f4:81:cb:8a:d5:9e:31:da:ed:40:2c:71:84:70:75:17:fe: ca:fc:2b:0c:11:fc:fd:58:b7:5a:3b:9e:47:d5:50:d7:04:e4: f7:1b:c3:a3:43:13:ed:7c:60:0b:c7:68:6d:96:d4:9e:94:b6: fd:1c:4a:aa:ce:94:b8:04:ac:74:d4:9c:79:7e:c3:e1:23:ec: 24:f2:de:ed -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFBNTgxMTAvBgNVBAUTKEI0NjY5RDMwRDIxMEU0OTA3Q0QyODg4QkU3NEI4OUE2 REQzQ0I2QzgwHhcNMjQwMzI5MTAzMTAzWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjA2OTg2Ny00MTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqGu1UA1Gn96ozAhP3PoxAuU0hSUn58kHQJ2GOnwjzGmDR/lqHIcoayyDzQLz H4Kum4KKGQ3iT8HPBB48lJvRSp2Ww2UC7n8MST9Rfq9KYjqsksxHZUFjuW8NSM6X snnYfoUTRjpsekdelIqJyWlv8SUYhhq7otm782S7sWlyqFBLswb+40lkZMwyYVZs l3NMitGMYwOxb52Ak9PsFjgkBFi+ejPtiDMZqmQCi0PlVCv6Wdni3hZTpk05r3yL sikf323k6tMoXf8hCkDsxotI/jtsJl4hvTeBLbJ0m8xQO9O8vQ2EzlfjUoHeS77F JPrQVckycfUbwYRWZMqqyhbSAwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFMjokPtz wAJiyTcVAfgx0LF3Iy2rMB8GA1UdIwQYMBaAFLRmnTDSEOSQfNKIi+dLiabdPLbI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUE1OC9CMzg5MzA0RUE3 RUMxMUVBODA0ODU4NjRDNEY5QUUwMi90R2FkTU5JUTVKQjgwb2lMNTB1SnB0MDh0 c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RHYWRNTklRNUpCODBvaUw1MHVKcHQwOHRzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjFBNTgvQjM4OTMwNEVBN0VDMTFFQTgwNDg1ODY0QzRGOUFFMDIvRDcxMjA1NThB N0VEMTFFQTk1QkVENTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAIr5swDBAJnMhADBAJnOCwDBAJnT/AwDQYJKoZIhvcNAQEL BQADggEBAH8rvY94YHjzxVXmrJnEzKgvnf2zd6ichIsVEoPRPUwYfFb3g2jz0HIZ OIxj3XhUHMTqWTDxqwFVQ2bE6xcV6bzaFrinLt+SXWo5U4XDtzD757DG0WBqMOSf afawMyURLG+8aylPG06lQ3cqBr7H+M355P8rmkIc7hMWiT9+hjFJF77ZpeVG9txk fC6fpT58gbCDckA1KMTE+ckqACLVNy61znPEC0vb/8lCmSUjbQ1EGQYJyQj0gcuK 1Z4x2u1ALHGEcHUX/sr8KwwR/P1Yt1o7nkfVUNcE5Pcbw6NDE+18YAvHaG2W1J6U tv0cSqrOlLgErHTUnHl+w+Ej7CTy3u0= -----END CERTIFICATE-----Generated at Thu Apr 18 22:44:37 2024 by rpki-client on console-fra.rpki-client.org