$ rpki-client -vvf rpki.apnic.net/member_repository/A9186392/19FD4CC2D90211ED87844959C4F9AE02/3CF4087AD90611ED890F5D5FC4F9AE02.roa File: 3CF4087AD90611ED890F5D5FC4F9AE02.roa (raw, json) Hash identifier: yeL7eGMEJM19msdRI3sJCkkpbPwYnrnjdX3IFK28TkY= Subject key identifier: FC:9B:D0:54:D2:AD:84:30:B4:57:55:52:E4:26:DE:CF:CC:5A:BC:A0 Certificate issuer: /CN=A9186392/serialNumber=6D694327A78B0F5E7C2D0C746377481DEDDDA002 Certificate serial: C6 Authority key identifier: 6D:69:43:27:A7:8B:0F:5E:7C:2D:0C:74:63:77:48:1D:ED:DD:A0:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bWlDJ6eLD158LQx0Y3dIHe3doAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186392/19FD4CC2D90211ED87844959C4F9AE02/3CF4087AD90611ED890F5D5FC4F9AE02.roa Signing time: Tue 09 Apr 2024 06:08:47 +0000 ROA not before: Tue 09 Apr 2024 06:08:46 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 151184 IP address blocks: 103.131.58.0/23 maxlen: 23 103.131.58.0/24 maxlen: 24 103.131.59.0/24 maxlen: 24 2001:df2:4140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186392/19FD4CC2D90211ED87844959C4F9AE02/bWlDJ6eLD158LQx0Y3dIHe3doAI.crl rsync://rpki.apnic.net/member_repository/A9186392/19FD4CC2D90211ED87844959C4F9AE02/bWlDJ6eLD158LQx0Y3dIHe3doAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bWlDJ6eLD158LQx0Y3dIHe3doAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186392/serialNumber=6D694327A78B0F5E7C2D0C746377481DEDDDA002 Validity Not Before: Apr 9 06:08:46 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6614db6e-f81d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f5:c8:c8:53:89:af:28:19:d5:38:ea:19:9a: a6:4b:47:8a:c7:fb:ed:12:48:b9:f3:d1:f9:3c:c4: 94:82:aa:7a:fc:94:49:48:2a:06:e7:3a:e7:4c:06: 6b:a6:e9:4a:27:d0:57:21:19:e8:05:ef:83:06:fb: bc:50:f3:6c:6b:f6:9c:35:6e:35:da:20:fc:19:c0: 0a:ab:83:ac:59:41:dc:e7:f8:e7:62:0e:a7:ac:ef: b0:d9:12:9b:11:68:c5:af:76:80:1e:0b:64:d6:79: fc:b3:8c:30:5d:08:4b:c3:bc:92:e6:7c:78:ba:2c: 8a:13:3a:14:02:81:14:46:27:1c:d9:9c:eb:1b:81: 13:18:d6:d7:bc:26:93:72:6c:0c:a6:59:cf:cc:dc: 37:6b:39:d9:16:4a:c8:43:d9:e3:f8:c1:cf:db:10: 45:4c:dc:77:fc:58:0e:bb:06:37:42:f4:9a:9c:42: 13:14:cf:92:fc:e4:72:c7:25:9f:8f:25:fd:4c:ef: db:8d:df:cb:46:27:48:c8:61:f3:b6:12:5d:36:42: f2:9b:e2:0f:51:af:3b:ba:ba:aa:f7:0d:cf:cf:b8: 45:a9:a8:a4:f6:8e:ac:e6:96:3f:99:d7:63:79:33: 42:40:08:51:09:8d:c1:58:be:52:ef:08:80:59:08: 0c:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:9B:D0:54:D2:AD:84:30:B4:57:55:52:E4:26:DE:CF:CC:5A:BC:A0 X509v3 Authority Key Identifier: keyid:6D:69:43:27:A7:8B:0F:5E:7C:2D:0C:74:63:77:48:1D:ED:DD:A0:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186392/19FD4CC2D90211ED87844959C4F9AE02/bWlDJ6eLD158LQx0Y3dIHe3doAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bWlDJ6eLD158LQx0Y3dIHe3doAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186392/19FD4CC2D90211ED87844959C4F9AE02/3CF4087AD90611ED890F5D5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.131.58.0/23 IPv6: 2001:df2:4140::/48 Signature Algorithm: sha256WithRSAEncryption 10:27:db:db:76:29:44:6f:87:da:23:79:a9:51:8a:4a:3e:23: 6c:b0:46:bd:c8:62:fd:9b:11:40:a5:62:50:b7:74:a6:f7:f4: d0:3b:b6:8d:f3:9f:94:6d:f0:aa:7f:0c:a4:b4:5f:76:85:b3: f0:1c:c1:13:1f:71:6b:c0:3f:f8:01:16:f9:2c:bf:53:68:c8: 1f:f9:17:85:5d:a2:63:bc:85:6c:d9:07:c0:12:cd:d0:32:37: aa:c5:db:c5:0a:52:54:dd:95:a2:dd:30:3a:a6:ed:c2:a3:7b: 83:98:c7:13:dc:bf:57:6e:c1:6e:72:d4:93:58:c6:f1:40:a5: aa:8b:5d:e0:3b:62:e9:dd:29:a0:a2:25:30:f2:a5:be:d5:62: f8:3b:90:6c:b0:f5:05:2e:ee:8d:6c:03:17:5a:29:49:63:15: 88:90:d2:79:4e:b8:d0:db:1d:fb:f1:33:52:3e:a7:46:5b:a1: b5:8e:97:2c:95:d3:e6:48:f6:dd:7a:3d:80:5b:39:87:b2:00: d9:30:71:f2:38:26:38:46:ae:73:2d:cb:6f:ce:51:45:87:e2: d1:58:56:de:63:75:76:68:57:36:d7:45:2f:95:4c:38:b1:5f: f8:64:6e:9b:b8:4f:7a:7c:fe:2d:09:0f:7d:82:24:c2:f0:b1: 4e:0e:ba:7c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYzOTIxMTAvBgNVBAUTKDZENjk0MzI3QTc4QjBGNUU3QzJEMEM3NDYzNzc0ODFE RUREREEwMDIwHhcNMjQwNDA5MDYwODQ2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjE0ZGI2ZS1mODFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqfXIyFOJrygZ1TjqGZqmS0eKx/vtEki589H5PMSUgqp6/JRJSCoG5zrnTAZr pulKJ9BXIRnoBe+DBvu8UPNsa/acNW412iD8GcAKq4OsWUHc5/jnYg6nrO+w2RKb EWjFr3aAHgtk1nn8s4wwXQhLw7yS5nx4uiyKEzoUAoEURicc2ZzrG4ETGNbXvCaT cmwMplnPzNw3aznZFkrIQ9nj+MHP2xBFTNx3/FgOuwY3QvSanEITFM+S/ORyxyWf jyX9TO/bjd/LRidIyGHzthJdNkLym+IPUa87urqq9w3Pz7hFqaik9o6s5pY/mddj eTNCQAhRCY3BWL5S7wiAWQgM4QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPyb0FTS rYQwtFdVUuQm3s/MWrygMB8GA1UdIwQYMBaAFG1pQyeniw9efC0MdGN3SB3t3aAC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjM5Mi8xOUZENENDMkQ5 MDIxMUVEODc4NDQ5NTlDNEY5QUUwMi9iV2xESjZlTEQxNThMUXgwWTNkSUhlM2Rv QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JXbERKNmVMRDE1OExReDBZM2RJSGUzZG9BSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYzOTIvMTlGRDRDQzJEOTAyMTFFRDg3ODQ0OTU5QzRGOUFFMDIvM0NGNDA4N0FE OTA2MTFFRDg5MEY1RDVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFngzowDwQCAAIwCQMHACABDfJBQDANBgkqhkiG9w0BAQsF AAOCAQEAECfb23YpRG+H2iN5qVGKSj4jbLBGvchi/ZsRQKViULd0pvf00Du2jfOf lG3wqn8MpLRfdoWz8BzBEx9xa8A/+AEW+Sy/U2jIH/kXhV2iY7yFbNkHwBLN0DI3 qsXbxQpSVN2Vot0wOqbtwqN7g5jHE9y/V27BbnLUk1jG8UClqotd4Dti6d0poKIl MPKlvtVi+DuQbLD1BS7ujWwDF1opSWMViJDSeU640Nsd+/EzUj6nRluhtY6XLJXT 5kj23Xo9gFs5h7IA2TBx8jgmOEaucy3Lb85RRYfi0VhW3mN1dmhXNtdFL5VMOLFf +GRum7hPenz+LQkPfYIkwvCxTg66fA== -----END CERTIFICATE-----Generated at Sun May 19 07:40:41 2024 by rpki-client on console-fra.rpki-client.org