$ rpki-client -vvf rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/9062BB863C3F11EE8DA7781AC4F9AE02.roa File: 9062BB863C3F11EE8DA7781AC4F9AE02.roa (raw, json) Hash identifier: Jz4wR5DDj/wTkjS36fKHeBrcXdk77eXCGSsg3VfLRzk= Subject key identifier: D6:94:27:4A:82:62:57:F0:F8:A3:8A:D0:F3:54:17:83:62:03:6B:A9 Certificate issuer: /CN=A9192BCF/serialNumber=5DA4AD7A0D19245515E5A2D84A0C674700A43FCD Certificate serial: 05 Authority key identifier: 5D:A4:AD:7A:0D:19:24:55:15:E5:A2:D8:4A:0C:67:47:00:A4:3F:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XaSteg0ZJFUV5aLYSgxnRwCkP80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/9062BB863C3F11EE8DA7781AC4F9AE02.roa Signing time: Wed 16 Aug 2023 14:20:02 +0000 ROA not before: Wed 16 Aug 2023 14:20:01 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 151667 IP address blocks: 103.253.102.0/23 maxlen: 24 2001:df2:d0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/XaSteg0ZJFUV5aLYSgxnRwCkP80.crl rsync://rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/XaSteg0ZJFUV5aLYSgxnRwCkP80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XaSteg0ZJFUV5aLYSgxnRwCkP80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192BCF/serialNumber=5DA4AD7A0D19245515E5A2D84A0C674700A43FCD Validity Not Before: Aug 16 14:20:01 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64dcdb11-0a5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:28:bb:84:11:20:37:f6:1c:3b:4d:42:85:e4: ee:32:87:3d:03:1e:04:fe:47:dd:1e:06:5b:16:00: a5:98:0a:6a:c4:17:8a:1f:bc:4a:d2:51:ec:ec:4f: d3:db:67:59:9d:ba:cc:77:5b:41:97:84:14:da:d5: 79:d4:b9:4a:f2:97:d2:e8:8c:e0:4f:5f:2f:e8:d7: a9:c0:35:1c:36:c3:b1:36:27:be:80:fe:cc:7c:59: f2:ff:0e:46:20:b8:f7:7f:42:1f:30:08:ee:dc:57: e3:3e:e1:5b:69:ad:5e:a8:34:cb:8f:f4:be:ec:8e: 9f:a2:70:47:a9:c7:9f:95:aa:f9:c8:93:33:67:30: f7:35:71:8f:11:6c:58:b8:ad:57:63:f1:60:23:4a: 8e:36:08:8a:72:32:f1:9b:3c:88:ed:8d:d0:60:b8: 1d:72:1a:54:f7:47:34:2f:a5:c4:89:4f:22:c2:42: 1f:2d:38:ba:f3:87:2a:ab:a7:ec:b6:ba:37:88:69: a4:38:89:9d:2b:b3:9d:4c:0e:ce:82:e3:a3:0c:88: aa:c7:18:7e:fb:78:a2:fc:5f:7a:46:ce:3e:fa:ff: b2:48:fd:2b:9f:d4:a9:83:d5:c9:c8:ab:4c:49:b8: dc:91:17:cf:14:0b:ca:b0:10:d0:2b:d6:4a:30:bd: 09:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:94:27:4A:82:62:57:F0:F8:A3:8A:D0:F3:54:17:83:62:03:6B:A9 X509v3 Authority Key Identifier: keyid:5D:A4:AD:7A:0D:19:24:55:15:E5:A2:D8:4A:0C:67:47:00:A4:3F:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/XaSteg0ZJFUV5aLYSgxnRwCkP80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XaSteg0ZJFUV5aLYSgxnRwCkP80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/9062BB863C3F11EE8DA7781AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.253.102.0/23 IPv6: 2001:df2:d0c0::/48 Signature Algorithm: sha256WithRSAEncryption 99:30:07:39:22:39:c1:e9:aa:c6:40:ef:53:40:90:60:ac:80: f3:0d:f5:8b:e6:7f:65:df:00:c8:93:2f:1d:42:16:a9:cd:e0: e5:f9:e2:1a:10:1a:2d:42:b0:6c:a2:45:41:7a:cd:db:95:11: d6:1c:20:f7:e6:4f:06:6c:3e:65:a8:79:93:96:b4:23:2b:d9: 73:0b:2e:15:0d:17:c7:fd:c7:bf:07:89:93:ca:4b:5d:bc:d2: ee:68:ee:7b:7a:b5:0c:ab:68:e5:2d:42:13:92:a5:ba:54:e1: cd:2b:80:53:6f:4f:61:36:94:a0:26:51:88:a9:c2:9e:bc:dc: d3:7f:ba:13:a2:aa:88:e8:c6:3c:41:7c:bb:3a:5c:11:c7:59: ad:f3:63:bb:d6:4c:f1:fd:13:d0:08:75:57:fc:b7:fd:5c:60: 12:a4:f4:bd:d2:3d:80:63:52:e2:f3:83:5f:7d:ca:22:db:20: d3:20:ec:c5:ea:5e:09:20:7b:61:96:cb:84:9c:7f:67:54:2e: 19:fa:7d:ea:8c:9a:69:43:18:26:4a:1b:2c:35:c1:8f:3b:e5: 8d:1d:40:7f:bd:21:0d:87:a5:cf:da:cf:a5:3e:09:7b:02:08: 32:76:4c:0d:49:bd:b2:84:98:5f:91:b6:be:06:9f:3a:65:57: 6a:f3:9f:1c -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MkJDRjExMC8GA1UEBRMoNURBNEFEN0EwRDE5MjQ1NTE1RTVBMkQ4NEEwQzY3NDcw MEE0M0ZDRDAeFw0yMzA4MTYxNDIwMDFaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZGNkYjExLTBhNWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwKLuEESA39hw7TUKF5O4yhz0DHgT+R90eBlsWAKWYCmrEF4ofvErSUezsT9Pb Z1mdusx3W0GXhBTa1XnUuUryl9LojOBPXy/o16nANRw2w7E2J76A/sx8WfL/DkYg uPd/Qh8wCO7cV+M+4VtprV6oNMuP9L7sjp+icEepx5+VqvnIkzNnMPc1cY8RbFi4 rVdj8WAjSo42CIpyMvGbPIjtjdBguB1yGlT3RzQvpcSJTyLCQh8tOLrzhyqrp+y2 ujeIaaQ4iZ0rs51MDs6C46MMiKrHGH77eKL8X3pGzj76/7JI/Suf1KmD1cnIq0xJ uNyRF88UC8qwENAr1kowvQkLAgMBAAGjggKmMIICojAdBgNVHQ4EFgQU1pQnSoJi V/D4o4rQ81QXg2IDa6kwHwYDVR0jBBgwFoAUXaSteg0ZJFUV5aLYSgxnRwCkP80w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkyQkNGLzMwNTJDQ0E2M0I0 RDExRUU5RTFCMDc3MkM0RjlBRTAyL1hhU3RlZzBaSkZVVjVhTFlTZ3huUndDa1A4 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWGFTdGVnMFpKRlVWNWFMWVNneG5Sd0NrUDgwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MkJDRi8zMDUyQ0NBNjNCNEQxMUVFOUUxQjA3NzJDNEY5QUUwMi85MDYyQkI4NjND M0YxMUVFOERBNzc4MUFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWf9ZjAPBAIAAjAJAwcAIAEN8tDAMA0GCSqGSIb3DQEBCwUA A4IBAQCZMAc5IjnB6arGQO9TQJBgrIDzDfWL5n9l3wDIky8dQhapzeDl+eIaEBot QrBsokVBes3blRHWHCD35k8GbD5lqHmTlrQjK9lzCy4VDRfH/ce/B4mTyktdvNLu aO57erUMq2jlLUITkqW6VOHNK4BTb09hNpSgJlGIqcKevNzTf7oToqqI6MY8QXy7 OlwRx1mt82O71kzx/RPQCHVX/Lf9XGASpPS90j2AY1Li84Nffcoi2yDTIOzF6l4J IHthlsuEnH9nVC4Z+n3qjJppQxgmShssNcGPO+WNHUB/vSENh6XP2s+lPgl7Aggy dkwNSb2yhJhfkba+Bp86ZVdq858c -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:34 2024 by rpki-client on console-fra.rpki-client.org