$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/6C1DC926C3E111E9A0172583C4F9AE02.roa File: 6C1DC926C3E111E9A0172583C4F9AE02.roa (raw, json) Hash identifier: +Evajhv80IcxMgUZIS1n0nUXKAYQDwPSzKy9G1I/OFw= Subject key identifier: EC:7F:F9:C1:1D:A6:22:69:F7:62:8F:C9:91:4C:FB:D0:FE:B4:5C:F1 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 335A Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/6C1DC926C3E111E9A0172583C4F9AE02.roa Signing time: Tue 30 Jan 2024 16:12:44 +0000 ROA not before: Tue 30 Jan 2024 16:12:44 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 24211 IP address blocks: 103.49.220.0/22 maxlen: 22 103.49.220.0/23 maxlen: 23 103.49.222.0/23 maxlen: 23 203.190.240.0/21 maxlen: 21 203.190.244.0/23 maxlen: 23 203.190.246.0/23 maxlen: 23 2402:a000::/32 maxlen: 32 2402:a000::/48 maxlen: 48 2402:a000:fffe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 15:26:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13146 (0x335a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Jan 30 16:12:44 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65b91ffb-9f5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:17:4d:66:cf:92:97:23:83:c8:b8:03:39:46: 11:8f:d3:3c:50:f3:e1:06:54:3a:f1:c4:5b:33:a0: ae:88:20:66:91:bd:d1:76:78:b9:e6:b6:f6:6d:f3: d1:1c:e9:95:5f:b8:07:5b:66:95:01:05:ed:1e:03: 36:47:93:fd:9b:1f:0d:71:f0:30:12:61:e8:35:05: 67:d6:2a:97:c5:8e:96:25:33:3b:f1:66:72:4b:da: 7e:9d:85:29:1f:b7:be:ff:bf:01:f4:dd:c4:56:8f: 2c:c6:25:a8:9e:b0:5c:5a:97:b9:a1:ba:4f:e8:8c: 19:79:bd:d6:92:c8:76:c6:9b:53:56:0f:23:fe:20: d2:48:70:19:38:18:03:b8:39:bd:25:b5:c0:75:67: 08:9c:43:22:bf:bc:30:aa:06:30:bd:e9:17:f2:da: 56:99:fd:1b:eb:09:78:17:55:8f:38:20:29:e4:6a: 8f:2f:ca:27:d0:72:e8:64:6d:08:fa:7b:7b:02:f3: 60:5c:3b:0c:e3:d0:e6:7d:2d:94:ca:51:f2:f4:10: 93:c7:52:7f:4d:87:2f:68:61:01:df:55:0c:16:bb: b3:6d:98:76:60:c5:a9:1f:bc:53:d0:f0:b7:89:89: b2:46:93:9e:35:b6:76:5d:a3:4b:af:d6:e5:bb:cc: 5e:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:7F:F9:C1:1D:A6:22:69:F7:62:8F:C9:91:4C:FB:D0:FE:B4:5C:F1 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/6C1DC926C3E111E9A0172583C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.49.220.0/22 203.190.240.0/21 IPv6: 2402:a000::/32 Signature Algorithm: sha256WithRSAEncryption 2c:e7:93:f6:69:79:09:b0:5c:fa:00:bd:95:ab:a2:f9:67:6b: be:5c:8e:4d:9f:aa:43:49:9f:bf:11:78:13:3f:8c:71:55:69: c3:2f:8c:14:37:45:63:16:10:7e:2d:65:50:07:13:ef:fa:b0: b9:32:8f:a6:fd:3d:1a:84:e3:71:e7:ba:bc:7f:bd:97:7a:97: 2b:1b:a0:73:2d:6d:09:bc:65:a4:4d:a9:ec:eb:ff:80:eb:39: d6:5d:f3:8a:6c:6b:d1:1b:98:2d:92:00:37:df:39:97:70:5d: 2b:35:6a:d6:74:8f:89:1e:a2:d1:62:ef:19:8d:9e:30:c0:8f: 0f:2b:d9:3f:32:83:3c:c1:ef:8d:3c:d6:59:33:f5:bd:91:02: 2a:99:de:9d:7d:3a:98:90:d4:fe:23:77:c2:3a:b8:62:6b:ee: 56:08:6d:5a:4a:b6:bd:1c:98:4a:7d:ce:71:38:ac:bd:c1:29: 26:d9:67:d2:08:6a:02:f2:d1:c0:64:fa:50:c2:5d:42:50:45: c1:d8:8b:14:62:68:ff:4d:4c:41:f4:7e:df:60:e0:70:a4:23: 21:47:f7:93:a9:e4:c0:89:80:21:d0:2a:c2:57:e3:39:40:59: a8:c7:1a:d4:89:3e:99:50:8e:41:69:bb:df:bc:cf:06:4c:ad: e7:a8:ff:bb -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICM1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjQwMTMwMTYxMjQ0WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5MWZmYi05ZjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7BdNZs+SlyODyLgDOUYRj9M8UPPhBlQ68cRbM6CuiCBmkb3Rdni55rb2bfPR HOmVX7gHW2aVAQXtHgM2R5P9mx8NcfAwEmHoNQVn1iqXxY6WJTM78WZyS9p+nYUp H7e+/78B9N3EVo8sxiWonrBcWpe5obpP6IwZeb3Wksh2xptTVg8j/iDSSHAZOBgD uDm9JbXAdWcInEMiv7wwqgYwvekX8tpWmf0b6wl4F1WPOCAp5GqPL8on0HLoZG0I +nt7AvNgXDsM49DmfS2UylHy9BCTx1J/TYcvaGEB31UMFruzbZh2YMWpH7xT0PC3 iYmyRpOeNbZ2XaNLr9blu8xeJQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFOx/+cEd piJp92KPyZFM+9D+tFzxMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvNkMxREM5MjZD M0UxMTFFOUEwMTcyNTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnMdwDBAPLvvAwDQQCAAIwBwMFACQCoAAwDQYJKoZIhvcN AQELBQADggEBACznk/ZpeQmwXPoAvZWrovlna75cjk2fqkNJn78ReBM/jHFVacMv jBQ3RWMWEH4tZVAHE+/6sLkyj6b9PRqE43Hnurx/vZd6lysboHMtbQm8ZaRNqezr /4DrOdZd84psa9EbmC2SADffOZdwXSs1atZ0j4keotFi7xmNnjDAjw8r2T8ygzzB 74081lkz9b2RAiqZ3p19OpiQ1P4jd8I6uGJr7lYIbVpKtr0cmEp9znE4rL3BKSbZ Z9IIagLy0cBk+lDCXUJQRcHYixRiaP9NTEH0ft9g4HCkIyFH95Op5MCJgCHQKsJX 4zlAWajHGtSJPplQjkFpu9+8zwZMreeo/7s= -----END CERTIFICATE-----Generated at Sun Apr 28 16:49:10 2024 by rpki-client on console-ams.rpki-client.org