$ rpki-client -vvf rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/7FAEDE3A03B411EBBB548A5EC4F9AE02.roa File: 7FAEDE3A03B411EBBB548A5EC4F9AE02.roa (raw, json) Hash identifier: TtjAATul/BwWbDMljn8pHb/aUdIUJNUI4C0odUASJ6U= Subject key identifier: CF:26:48:39:3A:00:66:0E:EB:0F:71:8C:2C:22:32:55:4F:F6:A6:46 Certificate issuer: /CN=A9173060/serialNumber=7FDF6218FA015D0A0074A8442451806A28F9DDF5 Certificate serial: 062D Authority key identifier: 7F:DF:62:18:FA:01:5D:0A:00:74:A8:44:24:51:80:6A:28:F9:DD:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f99iGPoBXQoAdKhEJFGAaij53fU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/7FAEDE3A03B411EBBB548A5EC4F9AE02.roa Signing time: Sun 21 May 2023 00:16:20 +0000 ROA not before: Sun 21 May 2023 00:16:20 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 9288 IP address blocks: 103.90.212.0/22 maxlen: 22 103.90.212.0/24 maxlen: 24 103.90.213.0/24 maxlen: 24 103.90.214.0/24 maxlen: 24 103.90.215.0/24 maxlen: 24 123.253.0.0/22 maxlen: 22 123.253.0.0/24 maxlen: 24 123.253.1.0/24 maxlen: 24 123.253.2.0/24 maxlen: 24 123.253.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/f99iGPoBXQoAdKhEJFGAaij53fU.crl rsync://rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/f99iGPoBXQoAdKhEJFGAaij53fU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f99iGPoBXQoAdKhEJFGAaij53fU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 22:55:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1581 (0x62d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173060/serialNumber=7FDF6218FA015D0A0074A8442451806A28F9DDF5 Validity Not Before: May 21 00:16:20 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=646962d2-40b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:72:2c:9e:ca:e9:09:e4:41:93:80:32:54:b1: 59:f0:7f:ed:11:e4:ab:91:ed:53:39:a0:77:32:f1: d7:2d:f4:e5:9a:cc:14:e0:e4:7c:d6:54:85:15:b9: f3:56:93:77:d1:b1:94:ca:02:03:2f:4d:46:b0:83: 78:91:4d:6f:1b:1a:60:f8:3c:c8:86:52:ad:bd:8c: b0:7c:d2:3f:45:80:ae:47:09:6c:e4:17:74:f9:8c: 8b:7d:25:71:00:f2:f9:32:cc:17:a7:98:c5:27:fc: 1a:4a:91:22:f7:a9:1f:45:f3:94:c4:f7:cd:9b:dc: a7:e8:72:9b:0d:fd:e0:f4:67:27:ae:36:ad:52:11: 95:97:0b:03:6f:99:ce:d1:2d:87:6b:f0:80:88:2a: 3f:cf:c4:a2:2e:6a:a2:cb:04:3b:93:8e:bf:6c:f7: 37:7d:59:58:38:9f:34:cf:3e:f4:43:a0:5f:c9:60: 94:e4:8f:8c:62:25:70:05:41:3d:76:c6:d1:be:88: 2a:4a:92:2d:8e:06:38:2e:54:e0:b3:7d:a6:2c:b7: cf:6d:a0:ac:e8:55:32:ca:54:83:26:71:ef:3e:31: 8a:e5:85:44:b5:a7:cd:7e:3b:05:20:d0:87:0a:b0: 32:50:a7:71:6b:bd:76:60:0d:e1:44:8b:71:4a:fe: 1c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:26:48:39:3A:00:66:0E:EB:0F:71:8C:2C:22:32:55:4F:F6:A6:46 X509v3 Authority Key Identifier: keyid:7F:DF:62:18:FA:01:5D:0A:00:74:A8:44:24:51:80:6A:28:F9:DD:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/f99iGPoBXQoAdKhEJFGAaij53fU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f99iGPoBXQoAdKhEJFGAaij53fU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/7FAEDE3A03B411EBBB548A5EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.90.212.0/22 123.253.0.0/22 Signature Algorithm: sha256WithRSAEncryption 20:6d:98:c6:80:27:d6:fc:34:15:40:c1:63:e8:f0:2c:aa:e9: 3c:f2:d6:75:6f:55:50:14:09:71:02:06:5d:52:74:db:fd:3d: 28:00:d3:f3:c5:96:99:da:da:6d:2f:d9:56:31:d3:01:77:4f: 6d:ea:73:d5:7b:94:b1:52:24:d6:c6:f8:02:8a:6d:83:11:b1: 2d:0e:00:d9:4e:02:af:0f:3b:f3:aa:5f:35:9a:3a:da:95:66: 67:ee:6f:16:9f:d4:ff:82:8a:49:ac:52:f2:6f:f3:ed:16:01: 5d:f8:fa:63:e3:21:4f:0a:75:df:c5:12:cf:23:e9:cb:cf:58: 5b:06:f5:b2:dd:7d:4b:bd:e4:38:a7:61:ec:39:c8:d7:02:53: 08:1a:8b:9b:ed:1b:b1:ad:4d:e0:b9:b8:cd:60:c8:ee:e9:60: ba:ad:82:b3:37:d2:71:a3:84:59:95:d6:78:a5:ee:7d:f5:6a: 0e:00:0d:42:0d:74:39:cf:db:9b:9a:75:c9:79:df:6e:3b:bf: 84:2e:e7:95:8e:bb:0f:9e:7b:e0:40:8a:d2:0f:1d:3d:01:8c: 34:cd:5c:d6:4d:09:8c:a0:5c:88:9f:33:e3:33:f0:4d:88:26: 4d:bc:0a:65:33:ba:5c:89:29:05:09:e5:43:b9:10:b7:4b:be: a0:c6:5e:0b -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMwNjAxMTAvBgNVBAUTKDdGREY2MjE4RkEwMTVEMEEwMDc0QTg0NDI0NTE4MDZB MjhGOURERjUwHhcNMjMwNTIxMDAxNjIwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDY5NjJkMi00MGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn3IsnsrpCeRBk4AyVLFZ8H/tEeSrke1TOaB3MvHXLfTlmswU4OR81lSFFbnz VpN30bGUygIDL01GsIN4kU1vGxpg+DzIhlKtvYywfNI/RYCuRwls5Bd0+YyLfSVx APL5MswXp5jFJ/waSpEi96kfRfOUxPfNm9yn6HKbDf3g9GcnrjatUhGVlwsDb5nO 0S2Ha/CAiCo/z8SiLmqiywQ7k46/bPc3fVlYOJ80zz70Q6BfyWCU5I+MYiVwBUE9 dsbRvogqSpItjgY4LlTgs32mLLfPbaCs6FUyylSDJnHvPjGK5YVEtafNfjsFINCH CrAyUKdxa712YA3hRItxSv4ccwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFM8mSDk6 AGYO6w9xjCwiMlVP9qZGMB8GA1UdIwQYMBaAFH/fYhj6AV0KAHSoRCRRgGoo+d31 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzA2MC9BNzI1ODZCMDAz QjExMUVCODQzQTc3NTZDNEY5QUUwMi9mOTlpR1BvQlhRb0FkS2hFSkZHQWFpajUz ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Y5OWlHUG9CWFFvQWRLaEVKRkdBYWlqNTNmVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzMwNjAvQTcyNTg2QjAwM0IxMTFFQjg0M0E3NzU2QzRGOUFFMDIvN0ZBRURFM0Ew M0I0MTFFQkJCNTQ4QTVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnWtQDBAJ7/QAwDQYJKoZIhvcNAQELBQADggEBACBtmMaA J9b8NBVAwWPo8Cyq6Tzy1nVvVVAUCXECBl1SdNv9PSgA0/PFlpna2m0v2VYx0wF3 T23qc9V7lLFSJNbG+AKKbYMRsS0OANlOAq8PO/OqXzWaOtqVZmfubxaf1P+Cikms UvJv8+0WAV34+mPjIU8Kdd/FEs8j6cvPWFsG9bLdfUu95DinYew5yNcCUwgai5vt G7GtTeC5uM1gyO7pYLqtgrM30nGjhFmV1nil7n31ag4ADUINdDnP25uadcl53247 v4Qu55WOuw+ee+BAitIPHT0BjDTNXNZNCYygXIifM+Mz8E2IJk28CmUzulyJKQUJ 5UO5ELdLvqDGXgs= -----END CERTIFICATE-----Generated at Tue May 7 01:58:21 2024 by rpki-client on console-fra.rpki-client.org