$ rpki-client -vvf rpki.apnic.net/member_repository/A9180484/6925BD8ED2C111E9A925CD29C4F9AE02/D2588FA2D2C111E9B5D20B2AC4F9AE02.roa File: D2588FA2D2C111E9B5D20B2AC4F9AE02.roa (raw, json) Hash identifier: IB7muuWgoIPrUeluGMD/Apedgd2Et9x+hEkfcig0yHw= Subject key identifier: 58:04:4C:C1:C9:A0:E1:4B:A6:E0:9E:CF:A0:F4:63:FD:55:3E:69:5B Certificate issuer: /CN=A9180484/serialNumber=435BDF930304194A0869ADEE87A0B556C588F6F4 Certificate serial: 0C14 Authority key identifier: 43:5B:DF:93:03:04:19:4A:08:69:AD:EE:87:A0:B5:56:C5:88:F6:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q1vfkwMEGUoIaa3uh6C1VsWI9vQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180484/6925BD8ED2C111E9A925CD29C4F9AE02/D2588FA2D2C111E9B5D20B2AC4F9AE02.roa Signing time: Mon 02 Oct 2023 18:36:23 +0000 ROA not before: Mon 02 Oct 2023 18:36:23 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 138204 IP address blocks: 103.122.45.0/24 maxlen: 24 103.141.232.0/24 maxlen: 24 2001:df6:8b00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180484/6925BD8ED2C111E9A925CD29C4F9AE02/Q1vfkwMEGUoIaa3uh6C1VsWI9vQ.crl rsync://rpki.apnic.net/member_repository/A9180484/6925BD8ED2C111E9A925CD29C4F9AE02/Q1vfkwMEGUoIaa3uh6C1VsWI9vQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q1vfkwMEGUoIaa3uh6C1VsWI9vQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 18:59:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3092 (0xc14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180484/serialNumber=435BDF930304194A0869ADEE87A0B556C588F6F4 Validity Not Before: Oct 2 18:36:23 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=651b0da7-c62d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:cd:5a:47:e0:a0:87:4a:b0:ad:dd:b6:b0:8b: 88:57:ca:61:9d:f8:f7:17:f0:79:3d:0d:69:51:db: da:9d:70:e3:76:bb:5e:41:c1:df:4c:3b:24:d7:f7: 9f:fd:62:ee:ff:e1:2c:50:c5:f0:89:bb:07:95:4e: c0:e1:0d:e5:f5:7e:71:14:16:23:67:8b:e9:70:93: 80:26:a3:96:87:d2:3a:ff:56:95:b8:48:94:04:76: 75:d0:95:7b:1e:62:55:3c:2c:18:62:20:57:4d:de: 64:28:aa:de:63:3f:0b:9f:1f:86:77:fe:28:29:91: d0:14:a8:a5:36:8d:a4:32:c6:37:d6:e3:fb:4e:bb: df:9d:9e:ce:be:f1:ae:af:1b:02:bf:df:14:3e:37: e2:f7:d3:ae:fb:7a:ff:89:83:72:90:7e:dc:ec:2d: db:f3:d7:cf:0c:a8:39:72:70:bc:4f:48:a3:d7:10: 7f:53:34:05:fa:ad:52:a0:c7:21:5b:0d:90:c8:b5: de:16:73:b9:55:f4:36:7b:e5:66:d8:db:b1:90:d9: 07:4c:b2:f4:b5:a5:73:5c:81:6d:b0:65:04:21:87: cc:f5:33:3a:17:e7:7b:6b:a8:b3:36:3c:55:df:81: d4:55:f1:f7:fd:dc:9e:aa:d4:1f:3a:33:ca:ea:01: 9c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:04:4C:C1:C9:A0:E1:4B:A6:E0:9E:CF:A0:F4:63:FD:55:3E:69:5B X509v3 Authority Key Identifier: keyid:43:5B:DF:93:03:04:19:4A:08:69:AD:EE:87:A0:B5:56:C5:88:F6:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180484/6925BD8ED2C111E9A925CD29C4F9AE02/Q1vfkwMEGUoIaa3uh6C1VsWI9vQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q1vfkwMEGUoIaa3uh6C1VsWI9vQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180484/6925BD8ED2C111E9A925CD29C4F9AE02/D2588FA2D2C111E9B5D20B2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.122.45.0/24 103.141.232.0/24 IPv6: 2001:df6:8b00::/48 Signature Algorithm: sha256WithRSAEncryption b4:bf:a3:08:b6:56:a5:c6:62:bc:f8:9b:46:df:a7:e9:70:8b: bb:0a:0e:04:1a:da:64:e8:07:95:99:04:80:11:15:88:5a:31: 83:4f:47:49:60:c1:d0:ad:49:74:dd:14:74:2a:67:ed:9e:6b: dc:32:6d:09:94:2e:4e:1d:41:0b:be:22:62:d1:99:74:9d:17: bc:22:25:a2:ec:89:42:b7:8d:4c:bf:fa:f8:cb:7a:13:88:02: 5a:0e:06:8c:4c:66:a0:6f:ee:63:33:83:ff:6f:dd:cd:b5:db: 0d:3e:d6:42:6c:a6:c5:dd:44:1d:72:e9:2f:2b:e3:ab:f3:4d: 07:8a:37:2e:03:a2:45:1a:03:67:a8:2e:f0:5b:f7:78:77:41: 0e:fc:65:e2:be:71:aa:d1:05:ce:18:63:44:a9:d4:02:ab:1e: 9f:7c:f0:5a:c4:2e:85:6b:b3:67:81:e3:db:ca:ca:82:39:91: 79:be:2b:7f:22:29:28:c2:50:b2:3c:61:94:db:e6:5e:b2:db: 3f:0a:64:81:57:fd:56:50:c4:cc:d2:dc:cd:6c:fc:16:ae:98: 79:f6:0c:1d:b8:1d:ce:9d:51:19:c2:65:ee:b0:e0:b1:86:d3: 74:25:75:93:41:17:00:e9:22:bb:56:bb:34:b0:29:2f:c4:78: fc:b0:b0:af -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICDBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA0ODQxMTAvBgNVBAUTKDQzNUJERjkzMDMwNDE5NEEwODY5QURFRTg3QTBCNTU2 QzU4OEY2RjQwHhcNMjMxMDAyMTgzNjIzWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFiMGRhNy1jNjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8M1aR+Cgh0qwrd22sIuIV8phnfj3F/B5PQ1pUdvanXDjdrteQcHfTDsk1/ef /WLu/+EsUMXwibsHlU7A4Q3l9X5xFBYjZ4vpcJOAJqOWh9I6/1aVuEiUBHZ10JV7 HmJVPCwYYiBXTd5kKKreYz8Lnx+Gd/4oKZHQFKilNo2kMsY31uP7TrvfnZ7OvvGu rxsCv98UPjfi99Ou+3r/iYNykH7c7C3b89fPDKg5cnC8T0ij1xB/UzQF+q1SoMch Ww2QyLXeFnO5VfQ2e+Vm2NuxkNkHTLL0taVzXIFtsGUEIYfM9TM6F+d7a6izNjxV 34HUVfH3/dyeqtQfOjPK6gGcWQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFFgETMHJ oOFLpuCez6D0Y/1VPmlbMB8GA1UdIwQYMBaAFENb35MDBBlKCGmt7oegtVbFiPb0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDQ4NC82OTI1QkQ4RUQy QzExMUU5QTkyNUNEMjlDNEY5QUUwMi9RMXZma3dNRUdVb0lhYTN1aDZDMVZzV0k5 dlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ExdmZrd01FR1VvSWFhM3VoNkMxVnNXSTl2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODA0ODQvNjkyNUJEOEVEMkMxMTFFOUE5MjVDRDI5QzRGOUFFMDIvRDI1ODhGQTJE MkMxMTFFOUI1RDIwQjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnei0DBABnjegwDwQCAAIwCQMHACABDfaLADANBgkqhkiG 9w0BAQsFAAOCAQEAtL+jCLZWpcZivPibRt+n6XCLuwoOBBraZOgHlZkEgBEViFox g09HSWDB0K1JdN0UdCpn7Z5r3DJtCZQuTh1BC74iYtGZdJ0XvCIlouyJQreNTL/6 +Mt6E4gCWg4GjExmoG/uYzOD/2/dzbXbDT7WQmymxd1EHXLpLyvjq/NNB4o3LgOi RRoDZ6gu8Fv3eHdBDvxl4r5xqtEFzhhjRKnUAqsen3zwWsQuhWuzZ4Hj28rKgjmR eb4rfyIpKMJQsjxhlNvmXrLbPwpkgVf9VlDEzNLczWz8Fq6YefYMHbgdzp1RGcJl 7rDgsYbTdCV1k0EXAOkiu1a7NLApL8R4/LCwrw== -----END CERTIFICATE-----Generated at Thu May 16 20:25:47 2024 by rpki-client on console-ams.rpki-client.org