$ rpki-client -vvf rpki.apnic.net/member_repository/A9192EE9/324841F4E6FE11EA838EA148C4F9AE02/A29A7DF20E2011EB81D90E2EC4F9AE02.roa File: A29A7DF20E2011EB81D90E2EC4F9AE02.roa (raw, json) Hash identifier: b+h/ppjl5OqZ84YHWzvHgFGwffNA/fcx3GbK/0z0P+s= Subject key identifier: 7A:16:0E:68:A4:06:0F:F2:47:59:54:32:BA:73:CC:C1:54:C8:CC:D7 Certificate issuer: /CN=A9192EE9/serialNumber=2F7AEBDC70179D71694FC699D5F3E40E584AB369 Certificate serial: 0743 Authority key identifier: 2F:7A:EB:DC:70:17:9D:71:69:4F:C6:99:D5:F3:E4:0E:58:4A:B3:69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L3rr3HAXnXFpT8aZ1fPkDlhKs2k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192EE9/324841F4E6FE11EA838EA148C4F9AE02/A29A7DF20E2011EB81D90E2EC4F9AE02.roa Signing time: Fri 24 May 2024 23:02:27 +0000 ROA not before: Fri 24 May 2024 23:02:27 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 139195 IP address blocks: 103.139.156.0/24 maxlen: 24 103.139.157.0/24 maxlen: 24 103.139.158.0/24 maxlen: 24 103.139.159.0/24 maxlen: 24 2404:e740::/32 maxlen: 32 2404:e740::/48 maxlen: 48 2404:e740:1::/48 maxlen: 48 2404:e740:2::/48 maxlen: 48 2404:e740:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192EE9/324841F4E6FE11EA838EA148C4F9AE02/L3rr3HAXnXFpT8aZ1fPkDlhKs2k.crl rsync://rpki.apnic.net/member_repository/A9192EE9/324841F4E6FE11EA838EA148C4F9AE02/L3rr3HAXnXFpT8aZ1fPkDlhKs2k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L3rr3HAXnXFpT8aZ1fPkDlhKs2k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 22:41:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1859 (0x743) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192EE9/serialNumber=2F7AEBDC70179D71694FC699D5F3E40E584AB369 Validity Not Before: May 24 23:02:27 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66511c83-b086 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:61:98:ea:42:2e:9a:de:1c:71:75:d1:67:61: 44:25:e3:6b:17:5c:cf:96:bb:ab:38:21:3f:db:1a: 50:78:79:00:d1:ef:32:d9:91:62:7e:2c:37:53:f1: d5:3f:d2:4f:36:78:77:43:a6:dc:03:6e:e7:92:fa: 89:7a:81:0e:c4:5b:57:a0:c1:d1:f8:a9:bc:58:83: 3e:7d:b1:29:25:64:1d:e9:9d:04:d4:26:28:87:d3: 56:2e:3b:f9:5a:16:8a:b3:98:e8:27:31:1c:90:b5: 13:ec:23:e1:f1:4c:2e:5f:ce:d4:35:b8:d1:3c:b6: bb:7b:c5:d6:6b:c9:04:88:e4:0d:1f:63:1b:72:39: bb:0b:f1:d1:0d:12:d5:7b:c9:4d:48:36:73:e7:fb: b2:e9:2c:a2:2d:69:66:f1:14:cb:32:be:e4:f1:9b: b1:af:e1:c5:31:5a:d2:23:13:5c:e2:44:b3:15:f9: c7:24:41:6b:38:2d:db:fa:02:1b:23:52:d4:fd:85: 5d:83:ee:2c:9d:37:ee:32:20:ad:d4:94:1f:d9:f1: 4b:ca:5a:16:a2:b6:8f:87:d6:fc:79:57:6e:15:f4: 15:5a:87:1f:42:d5:a3:ed:ae:8c:13:73:08:9b:81: 41:cc:fd:ce:e1:44:54:af:7c:7a:25:63:d5:5c:91: fe:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:16:0E:68:A4:06:0F:F2:47:59:54:32:BA:73:CC:C1:54:C8:CC:D7 X509v3 Authority Key Identifier: keyid:2F:7A:EB:DC:70:17:9D:71:69:4F:C6:99:D5:F3:E4:0E:58:4A:B3:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192EE9/324841F4E6FE11EA838EA148C4F9AE02/L3rr3HAXnXFpT8aZ1fPkDlhKs2k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L3rr3HAXnXFpT8aZ1fPkDlhKs2k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192EE9/324841F4E6FE11EA838EA148C4F9AE02/A29A7DF20E2011EB81D90E2EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.156.0/22 IPv6: 2404:e740::/32 Signature Algorithm: sha256WithRSAEncryption b4:97:0e:25:7e:13:e5:aa:63:5e:5a:46:31:3b:61:50:56:68: ba:d0:54:b3:8f:f3:32:10:a7:2f:3a:b3:03:7f:1a:44:a0:64: 7f:a0:48:02:00:01:bb:0a:16:23:78:d4:84:39:75:90:70:a4: 4e:a6:f6:9b:aa:5d:f6:a2:5b:62:84:ac:c7:8e:1e:e3:73:a0: 0f:af:fb:04:fa:30:7f:f6:96:81:47:55:37:c4:ca:2f:20:e8: d1:0f:a8:71:0c:b3:58:eb:0d:1f:31:7e:3a:e9:52:11:1d:49: cb:f2:3f:e4:e2:ad:5c:e3:27:0a:17:97:06:18:5c:8c:cf:23: 9d:c7:f7:80:f4:65:34:ed:74:64:4f:b7:10:b5:c3:11:d4:76: 52:20:ef:e1:ab:4c:d2:08:8a:f9:0a:02:5f:42:c6:76:34:2d: 7d:0a:d1:4e:23:b3:d6:76:a2:40:83:f1:30:9d:6a:cc:e6:dd: 45:ae:ce:9e:4a:87:d9:46:d9:03:27:40:e6:af:93:74:85:97: a6:7e:f4:e8:26:af:10:b9:41:31:2b:cf:de:7f:a3:aa:fa:93: 2d:24:5e:d4:77:ac:ed:ff:a6:46:2f:38:3f:8c:7d:d4:dc:97: 0e:a5:db:71:28:57:34:50:d2:df:18:72:70:4c:be:cc:e1:89: f6:d0:be:71 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJFRTkxMTAvBgNVBAUTKDJGN0FFQkRDNzAxNzlENzE2OTRGQzY5OUQ1RjNFNDBF NTg0QUIzNjkwHhcNMjQwNTI0MjMwMjI3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUxMWM4My1iMDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2GY6kIumt4ccXXRZ2FEJeNrF1zPlrurOCE/2xpQeHkA0e8y2ZFifiw3U/HV P9JPNnh3Q6bcA27nkvqJeoEOxFtXoMHR+Km8WIM+fbEpJWQd6Z0E1CYoh9NWLjv5 WhaKs5joJzEckLUT7CPh8UwuX87UNbjRPLa7e8XWa8kEiOQNH2Mbcjm7C/HRDRLV e8lNSDZz5/uy6SyiLWlm8RTLMr7k8Zuxr+HFMVrSIxNc4kSzFfnHJEFrOC3b+gIb I1LU/YVdg+4snTfuMiCt1JQf2fFLyloWoraPh9b8eVduFfQVWocfQtWj7a6ME3MI m4FBzP3O4URUr3x6JWPVXJH+QQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFHoWDmik Bg/yR1lUMrpzzMFUyMzXMB8GA1UdIwQYMBaAFC9669xwF51xaU/GmdXz5A5YSrNp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkVFOS8zMjQ4NDFGNEU2 RkUxMUVBODM4RUExNDhDNEY5QUUwMi9MM3JyM0hBWG5YRnBUOGFaMWZQa0RsaEtz MmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wzcnIzSEFYblhGcFQ4YVoxZlBrRGxoS3Myay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTJFRTkvMzI0ODQxRjRFNkZFMTFFQTgzOEVBMTQ4QzRGOUFFMDIvQTI5QTdERjIw RTIwMTFFQjgxRDkwRTJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJni5wwDQQCAAIwBwMFACQE50AwDQYJKoZIhvcNAQELBQAD ggEBALSXDiV+E+WqY15aRjE7YVBWaLrQVLOP8zIQpy86swN/GkSgZH+gSAIAAbsK FiN41IQ5dZBwpE6m9puqXfaiW2KErMeOHuNzoA+v+wT6MH/2loFHVTfEyi8g6NEP qHEMs1jrDR8xfjrpUhEdScvyP+TirVzjJwoXlwYYXIzPI53H94D0ZTTtdGRPtxC1 wxHUdlIg7+GrTNIIivkKAl9CxnY0LX0K0U4js9Z2okCD8TCdaszm3UWuzp5Kh9lG 2QMnQOavk3SFl6Z+9OgmrxC5QTErz95/o6r6ky0kXtR3rO3/pkYvOD+MfdTclw6l 23EoVzRQ0t8YcnBMvszhifbQvnE= -----END CERTIFICATE-----Generated at Wed May 29 00:29:08 2024 by rpki-client on console-fra.rpki-client.org