$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/7D281FE0CAF911E9912CF92FC4F9AE02.roa File: 7D281FE0CAF911E9912CF92FC4F9AE02.roa (raw, json) Hash identifier: 4b54gcghzBXaW3gbJYwCDfbwnenoHDLTazmHq46yHHE= Subject key identifier: F7:95:CE:E0:2B:DC:47:FA:D5:A2:85:B9:3D:E2:7F:D0:E2:80:9A:AA Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 3355 Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/7D281FE0CAF911E9912CF92FC4F9AE02.roa Signing time: Tue 30 Jan 2024 16:12:39 +0000 ROA not before: Tue 30 Jan 2024 16:12:39 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 136841 IP address blocks: 103.100.27.0/24 maxlen: 24 103.100.172.0/24 maxlen: 24 103.100.173.0/24 maxlen: 24 103.100.174.0/24 maxlen: 24 103.100.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13141 (0x3355) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Jan 30 16:12:39 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65b91ff7-5709 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:2c:fb:20:be:74:4d:4a:84:0e:61:48:49:61: 6d:e7:91:43:02:35:44:94:a6:1c:69:3c:b2:5a:b7: aa:ed:42:85:e4:3a:43:8a:41:35:db:ae:3d:c8:ee: 48:25:15:5a:11:43:6f:20:9b:e1:9b:d3:d4:67:c3: 74:67:ae:67:ec:8a:e5:d4:63:f1:de:7a:cc:5e:07: af:ac:06:1c:dc:9f:35:a9:4f:56:e3:06:5c:57:f4: 6b:9f:2f:4c:76:e5:b4:42:b6:43:db:0f:13:dc:2f: e3:0c:8d:25:72:58:b1:f5:5b:b8:7c:bd:d2:c7:cd: d2:21:7b:7e:51:3b:9f:bf:f4:f6:be:99:1e:0e:9e: 4e:be:67:dd:61:b1:13:4d:b2:43:dc:9b:8c:33:ee: 32:c2:16:a2:7a:71:25:e8:56:18:44:b9:b3:1e:f3: b7:05:cd:c7:cd:b2:70:83:67:6e:79:3a:69:fd:09: f7:64:7f:b2:fa:8b:b1:7f:d3:c7:43:e2:c9:d9:6b: 92:0f:29:21:81:e4:fb:d1:fc:16:0e:64:d1:4e:95: b9:d0:eb:51:10:04:28:70:ea:30:e5:9c:f1:8e:88: 8d:b0:fa:fa:e1:d9:df:a1:5f:27:db:46:85:38:21: 48:a4:04:6e:5a:23:00:28:53:22:70:78:05:b1:b8: 4a:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:95:CE:E0:2B:DC:47:FA:D5:A2:85:B9:3D:E2:7F:D0:E2:80:9A:AA X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/7D281FE0CAF911E9912CF92FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.100.27.0/24 103.100.172.0/22 Signature Algorithm: sha256WithRSAEncryption b1:f3:2e:b4:83:12:bc:6d:f9:ca:51:ce:af:93:cf:d7:75:e9: 5d:7e:27:cc:5a:c1:fb:3d:f1:f9:20:e8:7d:2f:31:5a:13:6a: 0d:da:57:46:fd:76:67:37:e1:f7:f7:8a:bd:84:ad:e7:42:a1: 2c:16:ca:0a:1b:1f:f7:45:1f:be:e3:fb:a0:6e:14:0e:bd:cb: 7e:90:4c:1f:2d:d5:b4:d9:18:ca:44:0a:a2:60:85:36:f7:63: ff:89:d0:f1:25:49:de:13:63:be:fd:fd:2a:c8:4f:22:26:58: 49:45:f0:56:85:e4:db:e3:1d:9c:b2:6b:aa:4f:57:80:58:63: 9c:07:f8:d6:8c:09:80:2c:ef:55:29:54:91:5f:94:36:14:13: f0:21:d3:bf:81:c4:fb:89:29:09:9c:ad:e7:a6:b1:2f:25:d7: b4:67:b8:ef:99:9c:79:35:68:01:c8:da:fa:8a:8a:1e:54:c6: c0:41:10:25:2a:e4:e0:34:83:8b:38:1c:89:38:10:9e:76:85: d4:f5:36:27:c7:f0:18:1a:17:46:5d:f5:6b:7f:6e:b4:3f:76: 15:75:04:73:5e:0d:33:b2:d1:c3:36:66:32:d8:08:c3:7c:c6: 1f:a8:70:5d:42:10:77:95:c4:da:92:72:02:d2:c8:24:e0:fc: e9:7d:e1:99 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICM1UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjQwMTMwMTYxMjM5WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5MWZmNy01NzA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Sz7IL50TUqEDmFISWFt55FDAjVElKYcaTyyWreq7UKF5DpDikE12649yO5I JRVaEUNvIJvhm9PUZ8N0Z65n7Irl1GPx3nrMXgevrAYc3J81qU9W4wZcV/Rrny9M duW0QrZD2w8T3C/jDI0lclix9Vu4fL3Sx83SIXt+UTufv/T2vpkeDp5OvmfdYbET TbJD3JuMM+4ywhaienEl6FYYRLmzHvO3Bc3HzbJwg2dueTpp/Qn3ZH+y+ouxf9PH Q+LJ2WuSDykhgeT70fwWDmTRTpW50OtREAQocOow5ZzxjoiNsPr64dnfoV8n20aF OCFIpARuWiMAKFMicHgFsbhKcwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPeVzuAr 3Ef61aKFuT3if9DigJqqMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvN0QyODFGRTBD QUY5MTFFOTkxMkNGOTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnZBsDBAJnZKwwDQYJKoZIhvcNAQELBQADggEBALHzLrSD Erxt+cpRzq+Tz9d16V1+J8xawfs98fkg6H0vMVoTag3aV0b9dmc34ff3ir2EredC oSwWygobH/dFH77j+6BuFA69y36QTB8t1bTZGMpECqJghTb3Y/+J0PElSd4TY779 /SrITyImWElF8FaF5NvjHZyya6pPV4BYY5wH+NaMCYAs71UpVJFflDYUE/Ah07+B xPuJKQmcreemsS8l17RnuO+ZnHk1aAHI2vqKih5UxsBBECUq5OA0g4s4HIk4EJ52 hdT1NifH8BgaF0Zd9Wt/brQ/dhV1BHNeDTOy0cM2ZjLYCMN8xh+ocF1CEHeVxNqS cgLSyCTg/Ol94Zk= -----END CERTIFICATE-----Generated at Sat May 4 16:33:56 2024 by rpki-client on console-fra.rpki-client.org