$ rpki-client -vvf rpki.apnic.net/member_repository/A9188F45/FD996514B8AA11EE99D6C81BC4F9AE02/8A574D9AB8AB11EEA866EB27C4F9AE02.roa File: 8A574D9AB8AB11EEA866EB27C4F9AE02.roa (raw, json) Hash identifier: 0YwIpwZV+EamQ2q72vxnEy2ZKU8ZjP3fuxP6rNu/zT4= Subject key identifier: 7F:4F:2A:90:8B:80:CE:FB:6E:B8:84:42:FF:BC:94:10:67:40:EA:0E Certificate issuer: /CN=A9188F45/serialNumber=46EF04BF1198BE0E2A313AA7AD0AB0FC7E081C45 Certificate serial: 06 Authority key identifier: 46:EF:04:BF:11:98:BE:0E:2A:31:3A:A7:AD:0A:B0:FC:7E:08:1C:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ru8EvxGYvg4qMTqnrQqw_H4IHEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188F45/FD996514B8AA11EE99D6C81BC4F9AE02/8A574D9AB8AB11EEA866EB27C4F9AE02.roa Signing time: Sun 21 Jan 2024 22:40:13 +0000 ROA not before: Sun 21 Jan 2024 22:40:13 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 23735 IP address blocks: 103.233.60.0/22 maxlen: 22 103.233.60.0/24 maxlen: 24 103.233.61.0/24 maxlen: 24 103.233.62.0/24 maxlen: 24 103.233.63.0/24 maxlen: 24 116.206.172.0/22 maxlen: 22 116.206.172.0/24 maxlen: 24 116.206.173.0/24 maxlen: 24 116.206.174.0/24 maxlen: 24 116.206.175.0/24 maxlen: 24 202.49.164.0/24 maxlen: 24 202.49.165.0/24 maxlen: 24 202.49.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188F45/FD996514B8AA11EE99D6C81BC4F9AE02/Ru8EvxGYvg4qMTqnrQqw_H4IHEU.crl rsync://rpki.apnic.net/member_repository/A9188F45/FD996514B8AA11EE99D6C81BC4F9AE02/Ru8EvxGYvg4qMTqnrQqw_H4IHEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ru8EvxGYvg4qMTqnrQqw_H4IHEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 07:03:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188F45/serialNumber=46EF04BF1198BE0E2A313AA7AD0AB0FC7E081C45 Validity Not Before: Jan 21 22:40:13 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65ad9d4d-ddb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:0b:41:b3:45:e5:2f:65:08:5b:e4:b1:01:b6: 5f:09:54:f5:7f:bf:39:5a:a7:10:d8:63:53:a4:9f: 74:3a:d4:b4:dc:c5:88:08:57:1c:8f:52:1f:9e:27: 90:88:e8:37:60:d8:9a:af:30:a8:75:75:68:0c:8f: 15:8e:89:32:55:92:16:b0:e8:19:b7:01:e3:29:b7: cf:3f:59:bd:b1:f9:4f:8f:3d:5e:5e:e1:5a:b9:6c: 24:82:57:9d:58:68:45:a5:c8:29:83:1a:d3:3c:75: f8:aa:2b:60:a2:e3:6f:17:3c:da:6e:d8:f3:d4:ce: 2a:1c:cf:18:c1:12:bb:1f:54:db:8d:c6:02:c9:d7: 3a:b2:54:5a:91:52:22:4f:8d:87:54:ef:74:56:88: d9:b3:69:ae:28:b3:d8:1e:96:c0:76:12:e2:ac:d8: 8c:cb:d9:b9:32:4b:3f:85:02:f3:6f:07:e8:29:97: 4d:75:f4:08:6b:fe:74:19:af:96:cd:c8:4d:78:e0: 06:fc:bc:4a:96:5a:83:53:0e:af:09:22:7e:8b:7f: 50:e7:a3:1f:7b:c3:ef:45:a4:d1:cf:a5:f9:d3:63: ab:ff:59:44:aa:aa:90:c0:c8:66:12:a3:e0:f2:ac: f7:d7:98:e8:4f:cd:7c:d8:25:01:e6:c0:b0:ff:49: 6f:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:4F:2A:90:8B:80:CE:FB:6E:B8:84:42:FF:BC:94:10:67:40:EA:0E X509v3 Authority Key Identifier: keyid:46:EF:04:BF:11:98:BE:0E:2A:31:3A:A7:AD:0A:B0:FC:7E:08:1C:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188F45/FD996514B8AA11EE99D6C81BC4F9AE02/Ru8EvxGYvg4qMTqnrQqw_H4IHEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ru8EvxGYvg4qMTqnrQqw_H4IHEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188F45/FD996514B8AA11EE99D6C81BC4F9AE02/8A574D9AB8AB11EEA866EB27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.233.60.0/22 116.206.172.0/22 202.49.164.0/23 202.49.168.0/24 Signature Algorithm: sha256WithRSAEncryption 46:0d:9f:e5:5f:89:a3:fc:31:e8:dd:f5:b3:99:8e:d4:18:98: eb:0e:39:6b:ca:c2:b3:6f:aa:fe:a2:34:0d:5f:2d:78:58:e3: 47:ef:c4:94:af:d7:f5:76:65:34:5e:d6:76:b0:9e:72:cf:97: fc:dd:75:65:c5:1e:b9:0d:96:6a:a1:91:d6:d4:69:da:99:fd: 91:37:72:5d:aa:87:f6:78:ef:86:ba:e0:5e:17:7d:e7:46:ab: 72:a9:91:71:fd:9a:83:f4:94:7d:0b:5a:4a:92:9a:5d:5c:69: 25:74:c3:71:d1:6a:71:d6:d7:c0:f7:6e:6c:cd:83:66:d2:ac: 74:fc:13:a2:c4:55:88:68:13:ba:fe:ad:07:c4:4f:f4:5e:64: df:d5:4e:63:18:98:78:68:c9:97:17:46:68:2d:ae:af:7f:d9: 17:a0:fd:fa:55:c8:32:d2:cd:52:3a:d3:a5:6c:b2:0a:fc:7c: 4f:b7:54:0c:0f:21:3b:c8:f9:c3:6d:ac:fd:1b:48:0d:78:ea: 57:6e:16:a7:a2:d2:75:f2:34:06:12:be:4c:3c:88:62:0b:88: 6d:7a:07:a1:e3:24:18:69:73:d0:75:9e:16:58:68:f3:df:54: e1:6f:35:e7:92:d2:8b:1e:8c:41:23:6b:f9:fe:17:0f:dd:73: 5d:8b:8f:fd -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OEY0NTExMC8GA1UEBRMoNDZFRjA0QkYxMTk4QkUwRTJBMzEzQUE3QUQwQUIwRkM3 RTA4MUM0NTAeFw0yNDAxMjEyMjQwMTNaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YWQ5ZDRkLWRkYjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0C0GzReUvZQhb5LEBtl8JVPV/vzlapxDYY1Okn3Q61LTcxYgIVxyPUh+eJ5CI 6Ddg2JqvMKh1dWgMjxWOiTJVkhaw6Bm3AeMpt88/Wb2x+U+PPV5e4Vq5bCSCV51Y aEWlyCmDGtM8dfiqK2Ci428XPNpu2PPUzioczxjBErsfVNuNxgLJ1zqyVFqRUiJP jYdU73RWiNmzaa4os9gelsB2EuKs2IzL2bkySz+FAvNvB+gpl0119Ahr/nQZr5bN yE144Ab8vEqWWoNTDq8JIn6Lf1Dnox97w+9FpNHPpfnTY6v/WUSqqpDAyGYSo+Dy rPfXmOhPzXzYJQHmwLD/SW9vAgMBAAGjggKnMIICozAdBgNVHQ4EFgQUf08qkIuA zvtuuIRC/7yUEGdA6g4wHwYDVR0jBBgwFoAURu8EvxGYvg4qMTqnrQqw/H4IHEUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg4RjQ1L0ZEOTk2NTE0QjhB QTExRUU5OUQ2QzgxQkM0RjlBRTAyL1J1OEV2eEdZdmc0cU1UcW5yUXF3X0g0SUhF VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUnU4RXZ4R1l2ZzRxTVRxbnJRcXdfSDRJSEVVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OEY0NS9GRDk5NjUxNEI4QUExMUVFOTlENkM4MUJDNEY5QUUwMi84QTU3NEQ5QUI4 QUIxMUVFQTg2NkVCMjdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAxBggrBgEFBQcBBwEB/wQi MCAwHgQCAAEwGAMEAmfpPAMEAnTOrAMEAcoxpAMEAMoxqDANBgkqhkiG9w0BAQsF AAOCAQEARg2f5V+Jo/wx6N31s5mO1BiY6w45a8rCs2+q/qI0DV8teFjjR+/ElK/X 9XZlNF7WdrCecs+X/N11ZcUeuQ2WaqGR1tRp2pn9kTdyXaqH9njvhrrgXhd950ar cqmRcf2ag/SUfQtaSpKaXVxpJXTDcdFqcdbXwPdubM2DZtKsdPwTosRViGgTuv6t B8RP9F5k39VOYxiYeGjJlxdGaC2ur3/ZF6D9+lXIMtLNUjrTpWyyCvx8T7dUDA8h O8j5w22s/RtIDXjqV24Wp6LSdfI0BhK+TDyIYguIbXoHoeMkGGlz0HWeFlho899U 4W8155LSix6MQSNr+f4XD91zXYuP/Q== -----END CERTIFICATE-----Generated at Thu Jun 13 08:42:04 2024 by rpki-client on console-fra.rpki-client.org