$ rpki-client -vvf rpki.apnic.net/member_repository/A9161EA6/1ADE2E26B63011E8982ABC53C4F9AE02/FF3B3F84B63311E8BAD5A95EC4F9AE02.roa File: FF3B3F84B63311E8BAD5A95EC4F9AE02.roa (raw, json) Hash identifier: uFyvztQzxevciuQ6NLXE4AsYEtpQjXVKdG3AXeRRVx8= Subject key identifier: 57:24:F8:E4:EC:BC:21:35:EA:06:EB:AF:FA:D3:97:DD:50:DF:D2:E3 Certificate issuer: /CN=A9161EA6/serialNumber=C73EBF4F15FA26292BF5ADB88A86577EC3A71CDE Certificate serial: 1228 Authority key identifier: C7:3E:BF:4F:15:FA:26:29:2B:F5:AD:B8:8A:86:57:7E:C3:A7:1C:DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xz6_TxX6Jikr9a24ioZXfsOnHN4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161EA6/1ADE2E26B63011E8982ABC53C4F9AE02/FF3B3F84B63311E8BAD5A95EC4F9AE02.roa Signing time: Mon 22 Apr 2024 17:55:43 +0000 ROA not before: Mon 22 Apr 2024 17:55:43 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 137905 IP address blocks: 103.114.146.0/23 maxlen: 23 103.114.146.0/24 maxlen: 24 103.114.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161EA6/1ADE2E26B63011E8982ABC53C4F9AE02/xz6_TxX6Jikr9a24ioZXfsOnHN4.crl rsync://rpki.apnic.net/member_repository/A9161EA6/1ADE2E26B63011E8982ABC53C4F9AE02/xz6_TxX6Jikr9a24ioZXfsOnHN4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xz6_TxX6Jikr9a24ioZXfsOnHN4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4648 (0x1228) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161EA6/serialNumber=C73EBF4F15FA26292BF5ADB88A86577EC3A71CDE Validity Not Before: Apr 22 17:55:43 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6626a49f-cd1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b1:f3:56:9c:4c:dc:12:81:c1:59:9b:f5:62: 52:17:c8:9d:b3:88:43:80:b6:e3:25:50:78:45:2e: d8:5c:68:fd:19:71:fe:8a:3c:0e:86:7c:5a:c4:ba: cc:0b:79:2c:0b:b9:aa:21:1b:45:c9:8a:21:a1:00: 58:14:ca:c3:67:f1:2d:a1:9e:0a:f2:da:a5:f1:7f: d8:4f:37:86:c6:cb:90:33:c2:84:35:69:77:28:4a: 6f:85:08:45:22:46:0f:4d:54:ad:9a:81:3a:b6:84: 57:dc:ae:ac:15:70:df:35:1c:4d:16:08:d3:de:87: 98:bc:01:d0:13:8f:21:86:ce:d2:78:95:e7:9c:e6: 33:60:61:00:91:ef:3c:6f:1e:34:12:de:e5:a9:ca: c1:ff:7d:a7:02:82:9c:19:e9:f1:67:d8:2b:96:91: d3:18:c3:70:b3:e3:91:63:5f:85:56:7c:ae:dc:62: 8c:47:d5:34:e1:bb:5a:74:02:25:cb:2f:c9:90:8d: 24:1c:d4:20:94:5a:49:94:a4:7a:b2:15:a0:1d:63: 96:5b:2c:59:e7:95:ab:d4:fc:f9:7c:03:f4:20:e3: 15:fb:81:34:ea:ef:c7:2d:50:a8:48:0a:97:8d:c0: 87:83:10:1f:37:9c:f3:d8:5c:49:3e:a4:ca:74:e4: a9:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:24:F8:E4:EC:BC:21:35:EA:06:EB:AF:FA:D3:97:DD:50:DF:D2:E3 X509v3 Authority Key Identifier: keyid:C7:3E:BF:4F:15:FA:26:29:2B:F5:AD:B8:8A:86:57:7E:C3:A7:1C:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161EA6/1ADE2E26B63011E8982ABC53C4F9AE02/xz6_TxX6Jikr9a24ioZXfsOnHN4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xz6_TxX6Jikr9a24ioZXfsOnHN4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161EA6/1ADE2E26B63011E8982ABC53C4F9AE02/FF3B3F84B63311E8BAD5A95EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.146.0/23 Signature Algorithm: sha256WithRSAEncryption 24:0a:2e:e0:35:81:25:42:3b:74:48:61:e2:00:8b:05:31:87: 91:c5:5d:af:f1:95:e9:57:7d:31:84:2a:69:7d:cc:a9:70:74: 27:41:e3:f3:fa:b5:06:82:24:4a:0a:a8:8c:78:d5:6a:be:6c: 03:0f:97:48:aa:73:47:5a:4d:5f:5a:aa:a5:1a:18:59:46:01: fa:cf:3a:33:9e:a1:a6:39:00:e8:cf:80:da:05:27:97:f6:27: 50:06:5b:00:4d:23:65:e7:f5:c1:a1:e9:03:ba:14:3c:f4:78: a1:1c:e4:87:fe:6b:a3:5d:38:a0:57:57:51:43:d8:5c:95:f1: e0:92:9b:07:99:68:44:20:ad:6b:44:c0:8d:22:8a:5d:92:a1: f5:9c:44:1c:db:e2:16:db:ed:20:a3:d7:74:a0:a7:4d:f5:aa: d2:ad:71:81:64:a1:d6:c8:57:8a:13:f7:c7:11:a9:76:46:ba: 7d:f0:0e:8e:55:ee:b7:64:69:95:a4:76:4e:a2:d2:4b:d2:99: 1a:7a:e8:cf:b8:c0:f6:cb:6c:0b:25:d4:bf:d9:00:76:3b:09: 25:ee:19:d7:43:7c:a1:93:37:b9:66:65:a1:69:a4:3a:c0:2c: 96:a5:4a:ba:0f:e3:62:e4:f1:c7:b0:a2:20:07:ff:81:a4:4f: e6:75:02:f3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFFQTYxMTAvBgNVBAUTKEM3M0VCRjRGMTVGQTI2MjkyQkY1QURCODhBODY1NzdF QzNBNzFDREUwHhcNMjQwNDIyMTc1NTQzWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjI2YTQ5Zi1jZDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLHzVpxM3BKBwVmb9WJSF8ids4hDgLbjJVB4RS7YXGj9GXH+ijwOhnxaxLrM C3ksC7mqIRtFyYohoQBYFMrDZ/EtoZ4K8tql8X/YTzeGxsuQM8KENWl3KEpvhQhF IkYPTVStmoE6toRX3K6sFXDfNRxNFgjT3oeYvAHQE48hhs7SeJXnnOYzYGEAke88 bx40Et7lqcrB/32nAoKcGenxZ9grlpHTGMNws+ORY1+FVnyu3GKMR9U04btadAIl yy/JkI0kHNQglFpJlKR6shWgHWOWWyxZ55Wr1Pz5fAP0IOMV+4E06u/HLVCoSAqX jcCHgxAfN5zz2FxJPqTKdOSpDQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFck+OTs vCE16gbrr/rTl91Q39LjMB8GA1UdIwQYMBaAFMc+v08V+iYpK/WtuIqGV37Dpxze MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUVBNi8xQURFMkUyNkI2 MzAxMUU4OTgyQUJDNTNDNEY5QUUwMi94ejZfVHhYNkppa3I5YTI0aW9aWGZzT25I TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h6Nl9UeFg2SmlrcjlhMjRpb1pYZnNPbkhONC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjFFQTYvMUFERTJFMjZCNjMwMTFFODk4MkFCQzUzQzRGOUFFMDIvRkYzQjNGODRC NjMzMTFFOEJBRDVBOTVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFncpIwDQYJKoZIhvcNAQELBQADggEBACQKLuA1gSVCO3RI YeIAiwUxh5HFXa/xlelXfTGEKml9zKlwdCdB4/P6tQaCJEoKqIx41Wq+bAMPl0iq c0daTV9aqqUaGFlGAfrPOjOeoaY5AOjPgNoFJ5f2J1AGWwBNI2Xn9cGh6QO6FDz0 eKEc5If+a6NdOKBXV1FD2FyV8eCSmweZaEQgrWtEwI0iil2SofWcRBzb4hbb7SCj 13Sgp031qtKtcYFkodbIV4oT98cRqXZGun3wDo5V7rdkaZWkdk6i0kvSmRp66M+4 wPbLbAsl1L/ZAHY7CSXuGddDfKGTN7lmZaFppDrALJalSroP42Lk8cewoiAH/4Gk T+Z1AvM= -----END CERTIFICATE-----Generated at Wed May 8 21:03:57 2024 by rpki-client on console-fra.rpki-client.org