$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B41/A1EDCFFE679911EAB67B3484C4F9AE02/5042B970E25B11EA9E988045C4F9AE02.roa File: 5042B970E25B11EA9E988045C4F9AE02.roa (raw, json) Hash identifier: XtzjrR+pip8/tY4rQEjnF0E1CV/2YkwSnvFSx2p8M7o= Subject key identifier: FD:72:89:42:48:DF:9A:AF:CA:FB:D8:48:F2:2E:2C:D8:08:D9:8E:17 Certificate issuer: /CN=A9185B41/serialNumber=2521EDA46CD70B83972606D30D880D703495B8B3 Certificate serial: 06A5 Authority key identifier: 25:21:ED:A4:6C:D7:0B:83:97:26:06:D3:0D:88:0D:70:34:95:B8:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSHtpGzXC4OXJgbTDYgNcDSVuLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B41/A1EDCFFE679911EAB67B3484C4F9AE02/5042B970E25B11EA9E988045C4F9AE02.roa Signing time: Fri 14 Jul 2023 20:17:11 +0000 ROA not before: Fri 14 Jul 2023 20:17:11 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 137532 IP address blocks: 103.112.64.0/24 maxlen: 24 103.112.65.0/24 maxlen: 24 2405:e6c0::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B41/A1EDCFFE679911EAB67B3484C4F9AE02/JSHtpGzXC4OXJgbTDYgNcDSVuLM.crl rsync://rpki.apnic.net/member_repository/A9185B41/A1EDCFFE679911EAB67B3484C4F9AE02/JSHtpGzXC4OXJgbTDYgNcDSVuLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSHtpGzXC4OXJgbTDYgNcDSVuLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 21:03:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1701 (0x6a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B41/serialNumber=2521EDA46CD70B83972606D30D880D703495B8B3 Validity Not Before: Jul 14 20:17:11 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64b1ad47-6609 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:19:47:de:f7:6b:93:78:60:b3:18:a2:b2:79: 6f:39:7a:65:ed:ef:ac:16:bd:95:28:b6:f5:63:f8: a9:b4:09:0c:b0:f8:b9:3a:66:a5:07:c8:f7:17:04: d9:d6:33:54:d9:49:8e:ed:22:70:11:89:65:e6:df: 85:0f:22:f2:c0:86:4a:dd:51:62:51:d4:8e:cb:b1: 1e:3d:8c:00:2c:63:b8:52:68:f4:0b:c7:bb:73:7d: 09:f9:72:e9:9b:ff:ce:3b:6d:7b:a3:46:f0:0c:4b: 50:f9:90:30:4c:1c:82:8c:5e:72:6d:15:fe:99:dc: 2b:06:e7:b0:ba:2d:25:26:4d:e0:f6:d2:9f:1f:fb: 96:e5:20:dc:dc:21:de:1f:78:3d:84:d5:91:85:75: a5:1c:6b:c2:74:9a:97:e2:ce:b4:ee:b0:91:68:c1: fe:c6:9d:41:41:0d:b9:8d:cd:e3:31:4d:68:ab:11: 17:9b:05:1b:d8:3a:e8:72:1d:5b:05:f5:a5:34:1a: 44:4f:13:7e:c3:00:b9:9c:d6:e5:53:20:c7:a1:c0: b9:2d:ba:37:0a:e8:5c:70:18:ec:4d:3e:b4:0a:0c: f6:ec:51:b2:a8:e0:33:e0:a9:f3:0a:b0:66:cb:1f: 1e:00:17:62:c8:05:4f:77:22:5e:8a:39:99:36:40: e8:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:72:89:42:48:DF:9A:AF:CA:FB:D8:48:F2:2E:2C:D8:08:D9:8E:17 X509v3 Authority Key Identifier: keyid:25:21:ED:A4:6C:D7:0B:83:97:26:06:D3:0D:88:0D:70:34:95:B8:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B41/A1EDCFFE679911EAB67B3484C4F9AE02/JSHtpGzXC4OXJgbTDYgNcDSVuLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSHtpGzXC4OXJgbTDYgNcDSVuLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B41/A1EDCFFE679911EAB67B3484C4F9AE02/5042B970E25B11EA9E988045C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.112.64.0/23 IPv6: 2405:e6c0::/32 Signature Algorithm: sha256WithRSAEncryption 7f:b1:64:20:d9:40:ab:c9:6b:62:38:44:81:51:33:8f:a9:47: 85:e3:92:e1:51:12:a0:f3:73:a8:60:c5:d6:93:53:15:f7:f6: c9:78:70:7b:ef:b5:d7:96:92:5a:51:69:07:fb:6a:35:32:1b: f1:9c:ac:bd:04:3a:4a:53:6f:90:e1:0d:e1:c5:af:c0:fd:ab: 31:6b:20:90:60:20:1f:c2:c9:34:08:7f:76:09:72:f9:bd:3e: 5e:71:2b:21:ec:66:c2:a9:16:50:a4:0d:36:63:60:9a:92:2f: f4:6d:6f:1a:b5:b6:e9:31:80:dc:35:7a:0a:16:8d:b4:7a:18: 82:b5:20:90:da:c7:e9:35:f7:03:b5:17:1d:5f:d1:46:9b:04: d7:ae:d6:8d:19:30:2b:e5:17:8a:d4:e4:6d:16:71:25:54:8b: e8:bf:72:18:b5:ab:cc:37:c8:84:e3:0e:82:cc:9f:7c:99:0c: e1:d7:e0:07:bf:a8:c3:69:d2:ed:c9:ee:d0:3c:2a:68:90:0e: c7:40:c5:57:d6:c6:69:91:a3:b6:fd:51:66:59:b0:a4:6d:7b: d9:50:33:86:ed:39:89:d7:5a:a7:96:6a:6a:8c:71:a3:71:23: 33:d5:d0:4e:c4:d7:b8:d7:40:a7:31:5a:cd:6b:e1:3c:e7:9f: 0e:f3:a3:cc -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNDExMTAvBgNVBAUTKDI1MjFFREE0NkNENzBCODM5NzI2MDZEMzBEODgwRDcw MzQ5NUI4QjMwHhcNMjMwNzE0MjAxNzExWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGIxYWQ0Ny02NjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqhlH3vdrk3hgsxiisnlvOXpl7e+sFr2VKLb1Y/iptAkMsPi5OmalB8j3FwTZ 1jNU2UmO7SJwEYll5t+FDyLywIZK3VFiUdSOy7EePYwALGO4Umj0C8e7c30J+XLp m//OO217o0bwDEtQ+ZAwTByCjF5ybRX+mdwrBuewui0lJk3g9tKfH/uW5SDc3CHe H3g9hNWRhXWlHGvCdJqX4s607rCRaMH+xp1BQQ25jc3jMU1oqxEXmwUb2Droch1b BfWlNBpETxN+wwC5nNblUyDHocC5Lbo3CuhccBjsTT60Cgz27FGyqOAz4KnzCrBm yx8eABdiyAVPdyJeijmZNkDoAQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFP1yiUJI 35qvyvvYSPIuLNgI2Y4XMB8GA1UdIwQYMBaAFCUh7aRs1wuDlyYG0w2IDXA0lbiz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI0MS9BMUVEQ0ZGRTY3 OTkxMUVBQjY3QjM0ODRDNEY5QUUwMi9KU0h0cEd6WEM0T1hKZ2JURFlnTmNEU1Z1 TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pTSHRwR3pYQzRPWEpnYlREWWdOY0RTVnVMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODVCNDEvQTFFRENGRkU2Nzk5MTFFQUI2N0IzNDg0QzRGOUFFMDIvNTA0MkI5NzBF MjVCMTFFQTlFOTg4MDQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFncEAwDQQCAAIwBwMFACQF5sAwDQYJKoZIhvcNAQELBQAD ggEBAH+xZCDZQKvJa2I4RIFRM4+pR4XjkuFREqDzc6hgxdaTUxX39sl4cHvvtdeW klpRaQf7ajUyG/GcrL0EOkpTb5DhDeHFr8D9qzFrIJBgIB/CyTQIf3YJcvm9Pl5x KyHsZsKpFlCkDTZjYJqSL/Rtbxq1tukxgNw1egoWjbR6GIK1IJDax+k19wO1Fx1f 0UabBNeu1o0ZMCvlF4rU5G0WcSVUi+i/chi1q8w3yITjDoLMn3yZDOHX4Ae/qMNp 0u3J7tA8KmiQDsdAxVfWxmmRo7b9UWZZsKRte9lQM4btOYnXWqeWamqMcaNxIzPV 0E7E17jXQKcxWs1r4Tznnw7zo8w= -----END CERTIFICATE-----Generated at Mon May 6 23:05:44 2024 by rpki-client on console-fra.rpki-client.org