$ rpki-client -vvf rpki.apnic.net/member_repository/A9186CDF/4481F0A811DE11EBB9F9F777C4F9AE02/F409CCBAAF7611EE85B8CF2DC4F9AE02.roa File: F409CCBAAF7611EE85B8CF2DC4F9AE02.roa (raw, json) Hash identifier: iMCCO68A+xFPuTceoqybbjqBZn+lCWKxuzNQ0n+JIxA= Subject key identifier: 80:6E:E2:EA:B7:76:E2:32:ED:F4:F4:9D:3C:BD:47:7B:DB:21:60:7C Certificate issuer: /CN=A9186CDF/serialNumber=A5322E98206815276DC12617961938FFC6C8848A Certificate serial: 068E Authority key identifier: A5:32:2E:98:20:68:15:27:6D:C1:26:17:96:19:38:FF:C6:C8:84:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pTIumCBoFSdtwSYXlhk4_8bIhIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186CDF/4481F0A811DE11EBB9F9F777C4F9AE02/F409CCBAAF7611EE85B8CF2DC4F9AE02.roa Signing time: Wed 10 Jan 2024 05:13:13 +0000 ROA not before: Wed 10 Jan 2024 05:13:13 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 24062 IP address blocks: 103.157.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186CDF/4481F0A811DE11EBB9F9F777C4F9AE02/pTIumCBoFSdtwSYXlhk4_8bIhIo.crl rsync://rpki.apnic.net/member_repository/A9186CDF/4481F0A811DE11EBB9F9F777C4F9AE02/pTIumCBoFSdtwSYXlhk4_8bIhIo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pTIumCBoFSdtwSYXlhk4_8bIhIo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 21:17:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1678 (0x68e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186CDF/serialNumber=A5322E98206815276DC12617961938FFC6C8848A Validity Not Before: Jan 10 05:13:13 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=659e2769-08f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:2f:ab:9c:2a:0f:52:3a:e1:bc:3e:14:68:f9: c5:06:99:06:4f:38:70:7f:a4:8e:71:90:72:86:a0: 14:51:86:24:76:21:ee:6f:7e:a5:e8:81:84:d5:ae: 17:e9:e9:4b:e0:05:bb:0a:05:c7:8c:99:fb:b0:b8: fe:50:c9:92:29:58:44:64:7d:8a:02:85:30:23:2c: a9:ff:8b:9d:fd:e8:d6:80:d8:b8:e6:70:7a:36:d3: 71:5b:e5:c8:6d:75:a4:a0:eb:bb:59:40:67:1d:e0: 2b:1b:f0:b3:f6:14:6e:65:1a:e3:34:d8:7d:2b:a2: 1a:05:39:fd:3f:10:76:25:40:ae:82:92:b5:e3:dd: 27:f7:be:41:ca:4a:93:64:a8:3c:46:3f:60:32:57: 3e:9e:ea:37:99:cf:6b:e8:51:f4:36:cc:2d:c1:84: 46:af:df:b7:5b:aa:e1:48:17:18:45:32:51:80:02: 05:a8:10:6b:09:c9:bd:58:86:6a:69:d9:02:5f:f8: 15:10:35:8e:d4:3b:06:25:de:1f:48:37:83:43:8a: 6c:2b:3e:1a:36:aa:76:55:e0:cf:c8:41:4b:86:c1: 2c:23:db:41:8b:f8:83:2b:ab:8a:62:47:66:33:19: 1f:11:8d:97:6c:69:8b:47:a7:aa:cb:18:a8:9d:10: 5b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:6E:E2:EA:B7:76:E2:32:ED:F4:F4:9D:3C:BD:47:7B:DB:21:60:7C X509v3 Authority Key Identifier: keyid:A5:32:2E:98:20:68:15:27:6D:C1:26:17:96:19:38:FF:C6:C8:84:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186CDF/4481F0A811DE11EBB9F9F777C4F9AE02/pTIumCBoFSdtwSYXlhk4_8bIhIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pTIumCBoFSdtwSYXlhk4_8bIhIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186CDF/4481F0A811DE11EBB9F9F777C4F9AE02/F409CCBAAF7611EE85B8CF2DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.157.136.0/23 Signature Algorithm: sha256WithRSAEncryption 42:b2:d7:de:f7:41:b2:23:dc:f9:3a:2b:cf:70:26:e0:6c:ed: 77:91:4a:31:2c:80:20:64:6a:b3:92:93:c3:73:6f:30:00:f3: ce:f4:b0:26:66:22:e0:5e:1e:54:f3:1f:35:7b:2c:32:e2:66: 76:90:79:4a:ea:78:fe:74:09:36:d5:8b:37:c3:e9:b9:22:7b: 7e:3c:6b:f0:1c:63:40:fa:e4:68:1c:30:e5:41:80:ee:0d:35: fe:ba:34:53:19:fa:a8:22:e4:3e:f9:5b:45:ea:55:43:65:99: b2:4d:bd:eb:21:ab:ee:ee:f2:75:47:4b:93:b0:3b:4e:4c:28: f4:a8:b1:91:d8:c4:01:ee:aa:56:49:fc:68:33:ac:17:54:e2: 37:5c:91:0e:1f:1f:08:36:07:89:68:94:69:43:cc:6c:34:7e: 3d:7b:f6:7b:15:65:31:de:53:ab:b7:6d:71:1e:4a:88:79:59: b7:36:8f:80:8a:e5:4a:01:aa:b2:30:a8:0b:5f:e1:31:11:b1: 2d:78:78:72:85:60:84:4a:28:5e:19:93:00:38:70:b0:5b:78: b3:82:1e:6a:2d:86:91:dc:ca:dd:1b:5a:d5:14:b3:bb:f0:f1: 62:86:ea:e7:b0:1e:ee:fd:ee:e0:0a:19:bd:65:60:e9:48:bc: 3c:36:ce:8a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZDREYxMTAvBgNVBAUTKEE1MzIyRTk4MjA2ODE1Mjc2REMxMjYxNzk2MTkzOEZG QzZDODg0OEEwHhcNMjQwMTEwMDUxMzEzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTllMjc2OS0wOGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxi+rnCoPUjrhvD4UaPnFBpkGTzhwf6SOcZByhqAUUYYkdiHub36l6IGE1a4X 6elL4AW7CgXHjJn7sLj+UMmSKVhEZH2KAoUwIyyp/4ud/ejWgNi45nB6NtNxW+XI bXWkoOu7WUBnHeArG/Cz9hRuZRrjNNh9K6IaBTn9PxB2JUCugpK1490n975BykqT ZKg8Rj9gMlc+nuo3mc9r6FH0NswtwYRGr9+3W6rhSBcYRTJRgAIFqBBrCcm9WIZq adkCX/gVEDWO1DsGJd4fSDeDQ4psKz4aNqp2VeDPyEFLhsEsI9tBi/iDK6uKYkdm MxkfEY2XbGmLR6eqyxionRBbCQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIBu4uq3 duIy7fT0nTy9R3vbIWB8MB8GA1UdIwQYMBaAFKUyLpggaBUnbcEmF5YZOP/GyISK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkNERi80NDgxRjBBODEx REUxMUVCQjlGOUY3NzdDNEY5QUUwMi9wVEl1bUNCb0ZTZHR3U1lYbGhrNF84Yklo SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BUSXVtQ0JvRlNkdHdTWVhsaGs0XzhiSWhJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODZDREYvNDQ4MUYwQTgxMURFMTFFQkI5RjlGNzc3QzRGOUFFMDIvRjQwOUNDQkFB Rjc2MTFFRTg1QjhDRjJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnnYgwDQYJKoZIhvcNAQELBQADggEBAEKy1973QbIj3Pk6 K89wJuBs7XeRSjEsgCBkarOSk8NzbzAA8870sCZmIuBeHlTzHzV7LDLiZnaQeUrq eP50CTbVizfD6bkie348a/AcY0D65GgcMOVBgO4NNf66NFMZ+qgi5D75W0XqVUNl mbJNveshq+7u8nVHS5OwO05MKPSosZHYxAHuqlZJ/GgzrBdU4jdckQ4fHwg2B4lo lGlDzGw0fj179nsVZTHeU6u3bXEeSoh5Wbc2j4CK5UoBqrIwqAtf4TERsS14eHKF YIRKKF4ZkwA4cLBbeLOCHmothpHcyt0bWtUUs7vw8WKG6uewHu797uAKGb1lYOlI vDw2zoo= -----END CERTIFICATE-----Generated at Sun May 26 23:57:04 2024 by rpki-client on console-fra.rpki-client.org