$ rpki-client -vvf rpki.apnic.net/member_repository/A91649F9/6C692AF414F911EC89435514C4F9AE02/9CC8124414FB11EC89900016C4F9AE02.roa File: 9CC8124414FB11EC89900016C4F9AE02.roa (raw, json) Hash identifier: L9ByBSMnmm41va02qVJXM+dBik+O13VTmuGx9vauK90= Subject key identifier: F4:5A:58:AD:8B:94:43:C7:49:43:62:2C:14:65:DD:97:CA:2D:C2:EB Certificate issuer: /CN=A91649F9/serialNumber=BDB12948F2E0789B15F02D5139BA06B2306A28E7 Certificate serial: 0382 Authority key identifier: BD:B1:29:48:F2:E0:78:9B:15:F0:2D:51:39:BA:06:B2:30:6A:28:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vbEpSPLgeJsV8C1ROboGsjBqKOc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91649F9/6C692AF414F911EC89435514C4F9AE02/9CC8124414FB11EC89900016C4F9AE02.roa Signing time: Fri 09 Jun 2023 03:40:27 +0000 ROA not before: Fri 09 Jun 2023 03:40:27 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 135293 IP address blocks: 103.139.198.0/24 maxlen: 24 103.139.199.0/24 maxlen: 24 137.83.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91649F9/6C692AF414F911EC89435514C4F9AE02/vbEpSPLgeJsV8C1ROboGsjBqKOc.crl rsync://rpki.apnic.net/member_repository/A91649F9/6C692AF414F911EC89435514C4F9AE02/vbEpSPLgeJsV8C1ROboGsjBqKOc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vbEpSPLgeJsV8C1ROboGsjBqKOc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 01:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 898 (0x382) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91649F9/serialNumber=BDB12948F2E0789B15F02D5139BA06B2306A28E7 Validity Not Before: Jun 9 03:40:27 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64829f2b-8110 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:16:24:df:43:0c:d2:ad:e8:cc:03:7f:97:86: b9:1c:e2:e7:ab:6c:8c:cc:a6:ce:14:36:66:c7:ef: f9:11:3f:33:dc:d5:6d:94:07:7a:c8:b5:3f:f8:13: f0:37:e4:ab:e0:40:da:47:f1:85:cc:a7:89:ae:e8: 3f:db:d5:5a:e9:bb:7c:7c:75:cc:ad:db:56:80:96: 3a:27:e3:f0:b9:c7:60:77:f0:bf:86:31:11:24:48: 4a:a1:fc:d3:f9:6f:ae:19:29:f0:71:42:12:c8:e9: 55:ea:eb:6d:46:2d:4f:d7:88:44:3d:21:c5:ae:52: a0:99:32:12:f6:16:18:4f:7c:77:f0:75:48:b9:3a: 1c:20:10:38:fc:9d:7e:c1:71:f3:4b:73:85:8d:b5: 87:99:0c:95:e5:c3:6b:19:1e:c6:ef:af:b3:30:3e: ab:ca:9f:02:7d:ed:2d:8c:0f:79:da:a8:d9:06:47: 7d:4e:8c:f6:fc:64:12:e2:f6:4f:54:dd:83:4e:02: 87:89:0b:44:34:68:7a:b7:54:ea:76:0c:d8:f2:44: 68:b0:e0:f0:84:c7:11:53:16:f9:69:05:de:d2:8f: b0:23:a1:e7:5f:6a:8a:58:43:e1:08:48:fa:4a:79: 7f:c6:85:8d:16:ca:bc:45:15:e7:f7:d6:67:48:3e: d4:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:5A:58:AD:8B:94:43:C7:49:43:62:2C:14:65:DD:97:CA:2D:C2:EB X509v3 Authority Key Identifier: keyid:BD:B1:29:48:F2:E0:78:9B:15:F0:2D:51:39:BA:06:B2:30:6A:28:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91649F9/6C692AF414F911EC89435514C4F9AE02/vbEpSPLgeJsV8C1ROboGsjBqKOc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vbEpSPLgeJsV8C1ROboGsjBqKOc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91649F9/6C692AF414F911EC89435514C4F9AE02/9CC8124414FB11EC89900016C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.198.0/23 137.83.0.0/24 Signature Algorithm: sha256WithRSAEncryption 04:67:74:8e:df:11:a8:8e:7e:74:01:d6:55:3d:a9:5f:4d:91: b7:43:8b:9e:68:7d:8b:45:b4:02:0e:7d:76:da:7a:b9:2c:17: 61:0f:13:57:46:63:81:f5:93:fd:36:2b:b4:fb:e8:9c:38:cd: 7a:c1:05:90:e9:5f:d7:12:55:e3:bc:68:e0:f9:49:99:10:7a: cb:ad:b3:57:c5:30:cd:92:bf:22:69:ad:94:a2:ec:4e:2b:ae: d3:65:a6:d5:82:e4:6f:6f:52:4a:59:f9:b8:69:bc:59:6c:b3: 98:4d:c8:5d:95:f6:5c:22:54:45:67:fb:30:dc:67:aa:d8:1c: 52:2f:78:54:80:9d:23:53:c5:cc:a4:fc:d8:e5:5c:51:54:24: 04:a0:35:fd:79:26:57:2a:7c:8d:f6:ef:99:6c:72:b2:42:86: d6:4f:05:51:5c:4a:a8:c8:15:68:78:1c:b2:75:a6:57:19:4f: b8:04:76:9c:80:3b:c2:0d:79:15:84:b9:d9:4a:58:71:24:75: d1:79:ad:17:27:90:82:f3:d1:5b:10:99:44:ab:00:59:68:45: f2:1a:b4:ba:96:bf:95:03:50:26:ad:f8:3b:f2:2b:70:66:7b: a6:ff:3c:d2:41:31:a7:a9:4e:cf:bd:f2:1f:c5:61:70:7f:d4: 43:5a:9f:73 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ5RjkxMTAvBgNVBAUTKEJEQjEyOTQ4RjJFMDc4OUIxNUYwMkQ1MTM5QkEwNkIy MzA2QTI4RTcwHhcNMjMwNjA5MDM0MDI3WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDgyOWYyYi04MTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhYk30MM0q3ozAN/l4a5HOLnq2yMzKbOFDZmx+/5ET8z3NVtlAd6yLU/+BPw N+Sr4EDaR/GFzKeJrug/29Va6bt8fHXMrdtWgJY6J+Pwucdgd/C/hjERJEhKofzT +W+uGSnwcUISyOlV6uttRi1P14hEPSHFrlKgmTIS9hYYT3x38HVIuTocIBA4/J1+ wXHzS3OFjbWHmQyV5cNrGR7G76+zMD6ryp8Cfe0tjA952qjZBkd9Toz2/GQS4vZP VN2DTgKHiQtENGh6t1TqdgzY8kRosODwhMcRUxb5aQXe0o+wI6HnX2qKWEPhCEj6 Snl/xoWNFsq8RRXn99ZnSD7UEQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPRaWK2L lEPHSUNiLBRl3ZfKLcLrMB8GA1UdIwQYMBaAFL2xKUjy4HibFfAtUTm6BrIwaijn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDlGOS82QzY5MkFGNDE0 RjkxMUVDODk0MzU1MTRDNEY5QUUwMi92YkVwU1BMZ2VKc1Y4QzFST2JvR3NqQnFL T2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZiRXBTUExnZUpzVjhDMVJPYm9Hc2pCcUtPYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjQ5RjkvNkM2OTJBRjQxNEY5MTFFQzg5NDM1NTE0QzRGOUFFMDIvOUNDODEyNDQx NEZCMTFFQzg5OTAwMDE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFni8YDBACJUwAwDQYJKoZIhvcNAQELBQADggEBAARndI7f EaiOfnQB1lU9qV9NkbdDi55ofYtFtAIOfXbaerksF2EPE1dGY4H1k/02K7T76Jw4 zXrBBZDpX9cSVeO8aOD5SZkQesuts1fFMM2SvyJprZSi7E4rrtNlptWC5G9vUkpZ +bhpvFlss5hNyF2V9lwiVEVn+zDcZ6rYHFIveFSAnSNTxcyk/NjlXFFUJASgNf15 JlcqfI3275lscrJChtZPBVFcSqjIFWh4HLJ1plcZT7gEdpyAO8INeRWEudlKWHEk ddF5rRcnkILz0VsQmUSrAFloRfIatLqWv5UDUCat+DvyK3Bme6b/PNJBMaepTs+9 8h/FYXB/1ENan3M= -----END CERTIFICATE-----Generated at Tue May 7 03:10:19 2024 by rpki-client on console-ams.rpki-client.org