$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/688029EE184B11EA85906435C4F9AE02.roa File: 688029EE184B11EA85906435C4F9AE02.roa (raw, json) Hash identifier: zdLeb+5OiAG+/qp+sStQnhcMtVRXHfOrUzFGOWoXTPI= Subject key identifier: A4:17:62:25:B4:50:A9:F2:29:1B:00:0F:09:38:56:DA:9B:62:54:23 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 334D Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/688029EE184B11EA85906435C4F9AE02.roa Signing time: Tue 30 Jan 2024 16:12:32 +0000 ROA not before: Tue 30 Jan 2024 16:12:32 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 133823 IP address blocks: 45.116.156.0/24 maxlen: 24 45.116.157.0/24 maxlen: 24 45.116.158.0/24 maxlen: 24 45.116.159.0/24 maxlen: 24 103.54.93.0/24 maxlen: 24 103.54.94.0/24 maxlen: 24 103.54.95.0/24 maxlen: 24 103.104.132.0/24 maxlen: 24 103.104.133.0/24 maxlen: 24 103.104.134.0/24 maxlen: 24 103.104.135.0/24 maxlen: 24 103.111.196.0/24 maxlen: 24 103.111.197.0/24 maxlen: 24 103.111.198.0/24 maxlen: 24 103.111.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 15:54:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13133 (0x334d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Jan 30 16:12:32 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65b91ff0-ff93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2f:d4:ed:74:2d:58:a3:d1:37:d4:6f:35:06: 4c:09:89:6f:d8:5d:c9:cb:6c:ba:80:0e:b9:dd:da: a3:c8:44:95:2a:ea:05:bf:b1:61:43:68:6a:1b:ee: 78:0d:a4:d1:91:b5:27:7c:7f:ed:60:0a:09:13:77: 88:f6:82:cb:07:db:90:89:29:15:65:6e:19:73:9d: 46:7e:be:14:9c:ff:31:6c:31:28:88:5d:cd:9c:87: 10:70:ef:6b:9d:25:5a:dd:09:6b:fb:2c:7b:86:5b: 9a:ff:ac:15:ab:ab:f3:8c:d0:05:24:e9:51:e4:66: 81:c8:07:14:1a:83:b9:cc:8e:c1:8d:c3:4f:22:37: c4:d2:3c:ec:c8:fe:7c:83:b1:67:8b:ba:6f:4d:63: 25:52:98:a7:7b:3d:5c:ec:dd:b5:a2:ec:7b:a2:9a: 43:2e:ec:88:6b:ff:d5:20:cf:c3:eb:fd:13:c8:da: 8a:94:fb:39:92:9b:63:c9:98:8f:78:9a:5c:63:f2: cb:35:af:2c:a6:17:c8:6d:ce:10:1e:6b:cd:bf:2e: 6f:a7:81:92:1d:fa:19:30:a4:c1:5a:6d:3d:cc:33: 4e:99:c4:14:05:9a:73:63:f8:eb:45:08:d8:ff:52: 38:a1:41:3d:f5:13:06:06:41:42:05:2f:eb:42:ee: ab:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:17:62:25:B4:50:A9:F2:29:1B:00:0F:09:38:56:DA:9B:62:54:23 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/688029EE184B11EA85906435C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.116.156.0/22 103.54.93.0-103.54.95.255 103.104.132.0/22 103.111.196.0/22 Signature Algorithm: sha256WithRSAEncryption 0c:7f:55:0f:1f:8d:cf:78:c1:94:b3:3e:fc:94:02:59:81:c8: 0c:e4:c7:76:8f:09:65:c6:24:24:c2:4e:0d:df:1e:c9:e2:75: 51:e2:f3:43:49:49:78:06:43:31:c0:11:08:23:d0:7d:a1:de: 9e:a0:d0:a6:26:1d:cb:56:96:a8:8d:0f:c5:f8:44:fb:2c:5a: b2:fb:d7:3c:75:3e:87:08:24:7c:e0:d5:42:eb:8d:bc:d7:78: 9f:7f:af:0e:c0:b9:15:93:be:57:51:ea:62:de:ce:67:04:55: e1:64:0e:78:94:70:d7:bf:88:b3:63:ef:88:07:07:8e:dd:70: 9e:a1:df:d1:f2:d5:1b:b7:ea:a9:a3:98:dc:e9:d0:6b:24:f3: 4a:92:0e:d7:66:bb:f6:94:84:dc:e7:4b:61:4f:68:b9:b4:11: b5:c5:c6:9f:a1:d8:b3:db:b4:2e:8d:18:d7:3a:fc:3e:7a:ce: ed:94:31:16:d7:07:d3:31:27:df:e6:1e:ac:dc:b0:7c:63:18: a9:90:0d:6d:60:76:89:75:ce:fb:e2:22:df:6c:8e:7c:6b:29: 3b:21:ef:55:6d:fa:e5:0b:19:61:02:81:55:9c:65:cd:47:10: c7:79:84:84:6d:eb:e0:0d:64:ec:e0:94:6e:4b:8e:1c:da:12: 5d:5c:45:5d -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICM00wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjQwMTMwMTYxMjMyWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5MWZmMC1mZjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuy/U7XQtWKPRN9RvNQZMCYlv2F3Jy2y6gA653dqjyESVKuoFv7FhQ2hqG+54 DaTRkbUnfH/tYAoJE3eI9oLLB9uQiSkVZW4Zc51Gfr4UnP8xbDEoiF3NnIcQcO9r nSVa3Qlr+yx7hlua/6wVq6vzjNAFJOlR5GaByAcUGoO5zI7BjcNPIjfE0jzsyP58 g7Fni7pvTWMlUpinez1c7N21oux7oppDLuyIa//VIM/D6/0TyNqKlPs5kptjyZiP eJpcY/LLNa8sphfIbc4QHmvNvy5vp4GSHfoZMKTBWm09zDNOmcQUBZpzY/jrRQjY /1I4oUE99RMGBkFCBS/rQu6r8wIDAQABo4ICrzCCAqswHQYDVR0OBBYEFKQXYiW0 UKnyKRsADwk4VtqbYlQjMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvNjg4MDI5RUUx ODRCMTFFQTg1OTA2NDM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBAItdJwwDAMEAGc2XQMEBWc2QAMEAmdohAMEAmdvxDANBgkq hkiG9w0BAQsFAAOCAQEADH9VDx+Nz3jBlLM+/JQCWYHIDOTHdo8JZcYkJMJODd8e yeJ1UeLzQ0lJeAZDMcARCCPQfaHenqDQpiYdy1aWqI0PxfhE+yxasvvXPHU+hwgk fODVQuuNvNd4n3+vDsC5FZO+V1HqYt7OZwRV4WQOeJRw17+Is2PviAcHjt1wnqHf 0fLVG7fqqaOY3OnQayTzSpIO12a79pSE3OdLYU9oubQRtcXGn6HYs9u0Lo0Y1zr8 PnrO7ZQxFtcH0zEn3+YerNywfGMYqZANbWB2iXXO++Ii32yOfGspOyHvVW365QsZ YQKBVZxlzUcQx3mEhG3r4A1k7OCUbkuOHNoSXVxFXQ== -----END CERTIFICATE-----Generated at Tue Apr 30 19:21:34 2024 by rpki-client on console-ams.rpki-client.org