$ rpki-client -vvf rpki.apnic.net/member_repository/A9184F65/AC63ADC6252411EF82A95B74C4F9AE02/6923942E252711EF948A5E18C4F9AE02.roa File: 6923942E252711EF948A5E18C4F9AE02.roa (raw, json) Hash identifier: Ig8+Vj7msP69DeMaHArdqVKnxDzk4tSne1MZpXRqLK0= Subject key identifier: FE:1D:44:D0:0E:EE:FE:AB:B6:5B:BF:F4:05:86:CD:DF:2D:7C:D0:DC Certificate issuer: /CN=A9184F65/serialNumber=DAD5E0D73D054A697B22839AF1FA4ACD94F50A1A Certificate serial: 0C Authority key identifier: DA:D5:E0:D7:3D:05:4A:69:7B:22:83:9A:F1:FA:4A:CD:94:F5:0A:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2tXg1z0FSml7IoOa8fpKzZT1Cho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9184F65/AC63ADC6252411EF82A95B74C4F9AE02/6923942E252711EF948A5E18C4F9AE02.roa Signing time: Sat 08 Jun 2024 00:32:40 +0000 ROA not before: Sat 08 Jun 2024 00:32:40 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 45152 IP address blocks: 103.210.148.0/22 maxlen: 22 103.210.148.0/24 maxlen: 24 103.210.149.0/24 maxlen: 24 103.210.150.0/24 maxlen: 24 103.210.151.0/24 maxlen: 24 119.252.184.0/22 maxlen: 22 119.252.184.0/24 maxlen: 24 119.252.185.0/24 maxlen: 24 119.252.186.0/24 maxlen: 24 119.252.187.0/24 maxlen: 24 119.252.188.0/24 maxlen: 24 139.5.52.0/22 maxlen: 22 139.5.52.0/24 maxlen: 24 139.5.53.0/24 maxlen: 24 139.5.54.0/24 maxlen: 24 139.5.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9184F65/AC63ADC6252411EF82A95B74C4F9AE02/2tXg1z0FSml7IoOa8fpKzZT1Cho.crl rsync://rpki.apnic.net/member_repository/A9184F65/AC63ADC6252411EF82A95B74C4F9AE02/2tXg1z0FSml7IoOa8fpKzZT1Cho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2tXg1z0FSml7IoOa8fpKzZT1Cho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9184F65/serialNumber=DAD5E0D73D054A697B22839AF1FA4ACD94F50A1A Validity Not Before: Jun 8 00:32:40 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=6663a6a7-4c53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:4e:fb:c2:58:db:8a:a2:6f:c3:34:7f:c9:d6: 11:32:de:10:44:92:e5:f2:93:99:16:e3:5d:7a:6f: 86:8a:ad:4e:ce:69:da:2b:9d:69:65:c3:f2:d7:f3: 5b:65:d5:2e:06:f3:90:8b:f1:6b:ea:aa:73:96:be: 86:af:ff:6c:57:20:dd:fe:26:02:cb:a8:57:d9:cf: 13:64:23:58:f3:7f:ea:41:b6:ca:74:1a:9b:a9:13: 68:cb:90:6c:73:76:ac:01:0c:df:23:40:43:e1:ac: d8:bf:c2:21:c8:bf:a2:44:42:52:05:0b:e7:62:e0: d4:c3:b5:14:29:c9:1f:60:36:6c:50:88:44:de:b6: 2f:3d:4d:a5:5e:9b:99:7f:ae:5f:e7:47:bb:5c:27: 2a:59:7d:ee:c4:ef:cb:38:4e:cd:0d:74:e7:6d:f9: ab:bc:32:de:4f:7b:c6:cd:a6:40:5f:1a:0e:cd:32: 93:e4:7e:3d:3f:68:a8:e7:6e:d7:2a:f1:9b:4b:95: 33:0f:0f:b1:79:82:43:9c:76:19:5c:32:28:82:6f: ef:8c:50:25:4d:80:d1:c5:dc:8f:77:d9:25:f3:42: cb:7a:d0:36:3c:dc:d6:19:8d:94:fc:e0:74:05:57: 54:e1:ea:b5:e4:ac:8e:f5:4a:93:22:8d:2d:f5:96: 4d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:1D:44:D0:0E:EE:FE:AB:B6:5B:BF:F4:05:86:CD:DF:2D:7C:D0:DC X509v3 Authority Key Identifier: keyid:DA:D5:E0:D7:3D:05:4A:69:7B:22:83:9A:F1:FA:4A:CD:94:F5:0A:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9184F65/AC63ADC6252411EF82A95B74C4F9AE02/2tXg1z0FSml7IoOa8fpKzZT1Cho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2tXg1z0FSml7IoOa8fpKzZT1Cho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9184F65/AC63ADC6252411EF82A95B74C4F9AE02/6923942E252711EF948A5E18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.210.148.0/22 119.252.184.0-119.252.188.255 139.5.52.0/22 Signature Algorithm: sha256WithRSAEncryption 6b:7e:15:6c:b6:bb:e7:8d:b6:56:ca:54:db:8e:3b:db:74:67: 58:6f:8b:b9:3b:98:5f:ae:f0:a9:28:2b:90:04:1f:67:8c:23: 0d:fd:3c:2d:db:c8:bc:16:22:92:a4:09:77:60:94:4b:e6:3a: f7:6c:54:33:c2:83:34:24:3f:2f:c0:c4:e2:65:bc:ba:52:9d: f6:61:fb:4b:82:5b:48:98:f8:ae:c6:e8:8c:8f:27:80:1a:4c: 4c:ec:cc:5e:57:a2:aa:bb:cd:10:a7:0c:24:b9:a5:87:07:67: 89:2e:33:04:1c:41:2b:63:21:04:c0:1b:26:c8:19:de:63:7f: 1d:a8:92:c1:af:0f:11:30:bd:ac:6c:0e:7d:11:a8:bc:27:66: e7:dc:cc:fc:50:f3:1b:14:78:ae:b5:6c:f2:ad:7e:25:7c:ed: e7:d4:36:75:53:f3:60:fd:07:4a:82:f7:1a:45:ea:e1:fd:d5: b0:0e:64:25:1d:b9:e1:5d:0f:10:2a:e6:92:9b:ef:db:6d:b9: be:c7:84:77:8d:a8:0e:4f:5c:84:d2:04:d1:5b:2f:fe:d8:75: 3f:80:06:c5:b1:37:df:07:0b:d1:d5:b1:93:11:d8:ef:f2:f0: a3:ba:49:9d:3e:c8:84:75:a6:1f:16:8d:fd:d9:04:1f:68:33: 67:c7:be:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NEY2NTExMC8GA1UEBRMoREFENUUwRDczRDA1NEE2OTdCMjI4MzlBRjFGQTRBQ0Q5 NEY1MEExQTAeFw0yNDA2MDgwMDMyNDBaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NjNhNmE3LTRjNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZTvvCWNuKom/DNH/J1hEy3hBEkuXyk5kW4116b4aKrU7OadornWllw/LX81tl 1S4G85CL8WvqqnOWvoav/2xXIN3+JgLLqFfZzxNkI1jzf+pBtsp0GpupE2jLkGxz dqwBDN8jQEPhrNi/wiHIv6JEQlIFC+di4NTDtRQpyR9gNmxQiETeti89TaVem5l/ rl/nR7tcJypZfe7E78s4Ts0NdOdt+au8Mt5Pe8bNpkBfGg7NMpPkfj0/aKjnbtcq 8ZtLlTMPD7F5gkOcdhlcMiiCb++MUCVNgNHF3I932SXzQst60DY83NYZjZT84HQF V1Th6rXkrI71SpMijS31lk1PAgMBAAGjggKpMIICpTAdBgNVHQ4EFgQU/h1E0A7u /qu2W7/0BYbN3y180NwwHwYDVR0jBBgwFoAU2tXg1z0FSml7IoOa8fpKzZT1Chow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg0RjY1L0FDNjNBREM2MjUy NDExRUY4MkE5NUI3NEM0RjlBRTAyLzJ0WGcxejBGU21sN0lvT2E4ZnBLelpUMUNo by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMnRYZzF6MEZTbWw3SW9PYThmcEt6WlQxQ2hvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NEY2NS9BQzYzQURDNjI1MjQxMUVGODJBOTVCNzRDNEY5QUUwMi82OTIzOTQyRTI1 MjcxMUVGOTQ4QTVFMThDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAzBggrBgEFBQcBBwEB/wQk MCIwIAQCAAEwGgMEAmfSlDAMAwQDd/y4AwQAd/y8AwQCiwU0MA0GCSqGSIb3DQEB CwUAA4IBAQBrfhVstrvnjbZWylTbjjvbdGdYb4u5O5hfrvCpKCuQBB9njCMN/Twt 28i8FiKSpAl3YJRL5jr3bFQzwoM0JD8vwMTiZby6Up32YftLgltImPiuxuiMjyeA GkxM7MxeV6Kqu80QpwwkuaWHB2eJLjMEHEErYyEEwBsmyBneY38dqJLBrw8RML2s bA59Eai8J2bn3Mz8UPMbFHiutWzyrX4lfO3n1DZ1U/Ng/QdKgvcaRerh/dWwDmQl HbnhXQ8QKuaSm+/bbbm+x4R3jagOT1yE0gTRWy/+2HU/gAbFsTffBwvR1bGTEdjv 8vCjukmdPsiEdaYfFo392QQfaDNnx76m -----END CERTIFICATE-----Generated at Tue Sep 17 08:11:56 2024 by rpki-client on console-ams.rpki-client.org