$ rpki-client -vvf rpki.apnic.net/member_repository/A9183496/2341A5660F6C11EAA70F795AC4F9AE02/68A35F78831411EC90E07C19C4F9AE02.roa File: 68A35F78831411EC90E07C19C4F9AE02.roa (raw, json) Hash identifier: RX9XImzeHJvvGD5M13COi0aJ/cfhHPWbi3Gh+JPZeoM= Subject key identifier: 4D:13:0E:A0:10:98:73:B3:46:68:43:60:4C:5D:71:D4:65:19:A4:6B Certificate issuer: /CN=A9183496/serialNumber=2F7A1C1DD27EA78158CE21A94DBBFB9072FB1734 Certificate serial: 0ACB Authority key identifier: 2F:7A:1C:1D:D2:7E:A7:81:58:CE:21:A9:4D:BB:FB:90:72:FB:17:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L3ocHdJ-p4FYziGpTbv7kHL7FzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183496/2341A5660F6C11EAA70F795AC4F9AE02/68A35F78831411EC90E07C19C4F9AE02.roa Signing time: Mon 04 Sep 2023 19:26:39 +0000 ROA not before: Mon 04 Sep 2023 19:26:39 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 134383 IP address blocks: 103.121.140.0/22 maxlen: 22 2001:df6:4300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183496/2341A5660F6C11EAA70F795AC4F9AE02/L3ocHdJ-p4FYziGpTbv7kHL7FzQ.crl rsync://rpki.apnic.net/member_repository/A9183496/2341A5660F6C11EAA70F795AC4F9AE02/L3ocHdJ-p4FYziGpTbv7kHL7FzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L3ocHdJ-p4FYziGpTbv7kHL7FzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 19:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2763 (0xacb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183496/serialNumber=2F7A1C1DD27EA78158CE21A94DBBFB9072FB1734 Validity Not Before: Sep 4 19:26:39 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f62f6f-85a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:99:be:2c:87:6a:84:4d:dd:24:86:bf:ca:3b: 05:f2:40:4d:ce:4d:0f:a9:8c:f4:b9:85:d8:37:cf: ca:39:b6:7c:86:8d:ef:83:61:51:ad:a0:ca:58:2a: d1:7f:b4:1a:ba:03:5f:98:c9:c7:cb:bb:42:28:cc: 13:f8:e4:2e:ca:1d:31:66:b1:47:2e:dd:eb:c8:28: bb:21:86:31:75:4a:ec:be:d4:3f:44:6f:59:f6:ac: 9d:99:81:73:30:2d:b9:86:fa:7d:de:66:c1:84:1a: a6:70:1d:9c:85:50:02:bb:43:9d:08:fe:21:f6:44: e6:d8:f7:cf:f6:90:65:2b:b3:00:9e:2c:38:68:56: 01:43:cb:70:7f:d1:ea:04:ce:35:de:cd:00:12:71: c3:70:04:56:57:53:33:70:d5:da:cd:1a:f0:5c:ff: 55:61:2c:9a:05:ac:d6:3d:86:b9:e4:a2:db:40:22: 15:dd:8f:dc:83:48:3b:27:6a:74:99:d1:92:69:bd: 58:e9:76:ce:1e:20:fd:bc:a1:1f:18:83:76:16:a9: b7:18:08:b9:1b:16:3c:1c:c5:a7:6a:5b:2a:ab:cc: 0f:98:df:db:e9:96:9a:c1:66:b9:41:6e:b2:7e:ed: 4a:35:c2:2a:f0:2e:3d:56:b4:3b:65:d6:da:ff:8b: 53:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:13:0E:A0:10:98:73:B3:46:68:43:60:4C:5D:71:D4:65:19:A4:6B X509v3 Authority Key Identifier: keyid:2F:7A:1C:1D:D2:7E:A7:81:58:CE:21:A9:4D:BB:FB:90:72:FB:17:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183496/2341A5660F6C11EAA70F795AC4F9AE02/L3ocHdJ-p4FYziGpTbv7kHL7FzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L3ocHdJ-p4FYziGpTbv7kHL7FzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183496/2341A5660F6C11EAA70F795AC4F9AE02/68A35F78831411EC90E07C19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.140.0/22 IPv6: 2001:df6:4300::/48 Signature Algorithm: sha256WithRSAEncryption 83:e5:df:9d:ee:df:dd:ef:e2:40:c7:6d:08:1f:43:5d:86:86: 63:72:4f:89:54:4c:6a:51:fd:28:c9:fe:37:70:29:b3:3f:65: 6f:d2:f4:e1:dd:0b:35:b7:a8:0d:75:36:7d:50:83:80:29:89: f5:e6:60:af:34:87:f1:13:a9:f2:da:81:2e:2c:33:4c:a8:d8: 8e:aa:c9:6c:e4:dc:ae:59:3f:7e:3c:9c:f4:6b:e5:f6:e7:1a: 91:56:09:d4:3a:0d:78:db:83:68:5b:68:70:ba:9b:e2:44:ec: 91:09:e7:59:e3:ca:c8:05:f6:6f:6b:ba:25:e8:77:eb:7a:f1: 87:64:2c:40:25:4a:5e:25:da:5a:71:12:53:29:f6:10:65:0a: 04:ba:42:8e:d2:87:2f:47:51:e4:01:d3:81:d2:04:02:89:fc: d9:a9:2b:36:a3:0a:3d:f0:f3:5e:45:df:7b:84:6b:bd:90:a9: 1d:4f:dc:98:a7:47:94:2a:76:30:8c:c2:05:38:1b:7f:31:1c: cf:94:4e:08:1b:73:3a:16:b0:6d:94:04:b6:f2:d0:4f:e7:f9: 6d:7f:8a:34:86:51:3d:d0:ca:af:41:72:d9:37:cc:70:4a:95: 62:29:0f:a1:f3:37:d9:a0:c8:9d:10:f3:5b:b3:d2:d0:22:3c: 27:8b:23:99 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCsswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM0OTYxMTAvBgNVBAUTKDJGN0ExQzFERDI3RUE3ODE1OENFMjFBOTREQkJGQjkw NzJGQjE3MzQwHhcNMjMwOTA0MTkyNjM5WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY2MmY2Zi04NWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzZm+LIdqhE3dJIa/yjsF8kBNzk0PqYz0uYXYN8/KObZ8ho3vg2FRraDKWCrR f7QaugNfmMnHy7tCKMwT+OQuyh0xZrFHLt3ryCi7IYYxdUrsvtQ/RG9Z9qydmYFz MC25hvp93mbBhBqmcB2chVACu0OdCP4h9kTm2PfP9pBlK7MAniw4aFYBQ8twf9Hq BM413s0AEnHDcARWV1MzcNXazRrwXP9VYSyaBazWPYa55KLbQCIV3Y/cg0g7J2p0 mdGSab1Y6XbOHiD9vKEfGIN2Fqm3GAi5GxY8HMWnalsqq8wPmN/b6ZaawWa5QW6y fu1KNcIq8C49VrQ7Zdba/4tTiwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFE0TDqAQ mHOzRmhDYExdcdRlGaRrMB8GA1UdIwQYMBaAFC96HB3SfqeBWM4hqU27+5By+xc0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzQ5Ni8yMzQxQTU2NjBG NkMxMUVBQTcwRjc5NUFDNEY5QUUwMi9MM29jSGRKLXA0Rll6aUdwVGJ2N2tITDdG elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wzb2NIZEotcDRGWXppR3BUYnY3a0hMN0Z6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODM0OTYvMjM0MUE1NjYwRjZDMTFFQUE3MEY3OTVBQzRGOUFFMDIvNjhBMzVGNzg4 MzE0MTFFQzkwRTA3QzE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJneYwwDwQCAAIwCQMHACABDfZDADANBgkqhkiG9w0BAQsF AAOCAQEAg+Xfne7f3e/iQMdtCB9DXYaGY3JPiVRMalH9KMn+N3Apsz9lb9L04d0L NbeoDXU2fVCDgCmJ9eZgrzSH8ROp8tqBLiwzTKjYjqrJbOTcrlk/fjyc9Gvl9uca kVYJ1DoNeNuDaFtocLqb4kTskQnnWePKyAX2b2u6Jeh363rxh2QsQCVKXiXaWnES Uyn2EGUKBLpCjtKHL0dR5AHTgdIEAon82akrNqMKPfDzXkXfe4RrvZCpHU/cmKdH lCp2MIzCBTgbfzEcz5ROCBtzOhawbZQEtvLQT+f5bX+KNIZRPdDKr0Fy2TfMcEqV YikPofM32aDInRDzW7PS0CI8J4sjmQ== -----END CERTIFICATE-----Generated at Thu May 16 21:45:28 2024 by rpki-client on console-fra.rpki-client.org