$ rpki-client -vvf rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/759C16DC577711EE96F5F775C4F9AE02.roa File: 759C16DC577711EE96F5F775C4F9AE02.roa (raw, json) Hash identifier: mxInePc0EsNB/w6RHuFLVmwbMb6GCPHoDumOqKPz2kA= Subject key identifier: 67:F1:CB:A6:E7:11:F5:02:A1:91:05:5F:DD:B2:E3:36:54:9F:F4:DD Certificate issuer: /CN=A9194677/serialNumber=2876825F77C24A167DC41215350F688792981A67 Certificate serial: 12 Authority key identifier: 28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/759C16DC577711EE96F5F775C4F9AE02.roa Signing time: Tue 17 Oct 2023 06:17:56 +0000 ROA not before: Tue 17 Oct 2023 06:17:56 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 133778 IP address blocks: 103.42.92.0/22 maxlen: 22 103.42.92.0/24 maxlen: 24 103.42.93.0/24 maxlen: 24 103.42.94.0/24 maxlen: 24 103.42.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194677/serialNumber=2876825F77C24A167DC41215350F688792981A67 Validity Not Before: Oct 17 06:17:56 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=652e2714-7f4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:be:fc:b1:25:05:a8:50:a5:cf:d7:9f:1f:d8: 66:8b:13:34:a6:19:60:14:76:94:a4:20:68:a8:99: 67:47:46:54:0d:8a:83:85:46:37:8f:e8:a3:ec:d6: d1:79:3f:3c:ab:09:13:39:95:1b:a5:97:57:70:ed: 66:6e:d6:8b:5f:4c:2b:f6:fb:f0:79:bf:ec:2d:f7: 67:ad:cc:f7:b0:9e:8c:1d:0b:39:a2:0b:d4:48:2f: bf:c7:32:0f:41:2e:dd:fe:48:12:ef:96:c1:eb:ed: 22:f1:1b:1d:1f:f0:87:9b:94:1d:de:b7:cd:ba:b2: 97:92:9b:47:6d:6b:cf:9a:ed:dc:40:2e:89:19:51: ee:8a:20:5f:fe:30:f8:d0:68:1d:0b:3b:7d:3c:6a: 2a:38:6b:cd:5a:23:10:7a:b1:59:18:71:18:dc:86: 39:ef:0e:ad:16:69:8b:a4:84:fc:76:ed:1e:c4:23: 47:da:5c:85:5a:08:31:7b:ed:98:26:05:8c:74:75: eb:75:94:6f:52:55:5b:7c:79:7f:ae:07:df:41:1f: 74:00:a9:65:be:62:66:73:ca:4d:81:c7:f6:fd:b7: 9b:66:aa:e7:33:94:61:2d:bb:22:04:ac:db:c2:62: e6:af:7d:62:da:6d:73:70:1a:b4:d7:74:e4:8a:a4: 3c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:F1:CB:A6:E7:11:F5:02:A1:91:05:5F:DD:B2:E3:36:54:9F:F4:DD X509v3 Authority Key Identifier: keyid:28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/759C16DC577711EE96F5F775C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.42.92.0/22 Signature Algorithm: sha256WithRSAEncryption 16:b0:81:cf:51:5d:47:72:8e:62:36:cf:cd:17:ef:ce:29:b7: cf:60:26:f9:cc:12:4c:49:65:b4:12:0a:8c:fe:1e:5a:13:92: e9:7f:7f:70:1e:9b:b2:ce:2d:a6:32:de:68:ae:2e:97:31:22: 43:51:e1:9d:58:5e:6e:20:e4:c6:fc:67:3d:a5:53:68:16:7a: c4:43:8e:5b:85:40:7b:1f:e2:b2:df:28:6d:e5:ba:cb:c7:f8: 78:fc:93:27:4d:2f:45:69:52:90:f1:4c:29:31:0f:64:1a:0e: 77:b1:44:a7:bd:19:2e:5c:56:89:62:68:42:9f:77:7f:31:c9: 18:4a:01:2e:b0:7a:e2:e0:27:f5:21:16:37:28:c9:f4:ec:b1: 84:d8:8d:89:b7:45:d2:68:7e:ba:0f:92:01:bd:16:16:b9:e3: 2f:fc:8a:e3:64:c3:85:41:cd:51:7a:77:21:4e:52:54:9b:de: 08:d0:9b:7f:81:c1:58:f6:28:ff:3c:c3:d5:31:78:4f:76:d9: 48:f7:dc:b9:13:f4:ae:00:ce:75:b0:35:62:7d:a8:17:5b:19: 56:91:b9:20:81:d6:8d:7e:e8:b3:80:a1:a0:bb:e3:33:b0:35: 63:64:a2:4f:7c:c1:19:8d:76:c9:5c:50:18:ea:6c:7b:af:3b: cf:79:31:6b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NDY3NzExMC8GA1UEBRMoMjg3NjgyNUY3N0MyNEExNjdEQzQxMjE1MzUwRjY4ODc5 Mjk4MUE2NzAeFw0yMzEwMTcwNjE3NTZaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MmUyNzE0LTdmNGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrvvyxJQWoUKXP158f2GaLEzSmGWAUdpSkIGiomWdHRlQNioOFRjeP6KPs1tF5 PzyrCRM5lRull1dw7WZu1otfTCv2+/B5v+wt92etzPewnowdCzmiC9RIL7/HMg9B Lt3+SBLvlsHr7SLxGx0f8IeblB3et826speSm0dta8+a7dxALokZUe6KIF/+MPjQ aB0LO308aio4a81aIxB6sVkYcRjchjnvDq0WaYukhPx27R7EI0faXIVaCDF77Zgm BYx0det1lG9SVVt8eX+uB99BH3QAqWW+YmZzyk2Bx/b9t5tmquczlGEtuyIErNvC YuavfWLabXNwGrTXdOSKpDwFAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUZ/HLpucR 9QKhkQVf3bLjNlSf9N0wHwYDVR0jBBgwFoAUKHaCX3fCShZ9xBIVNQ9oh5KYGmcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk0Njc3LzAyMjdGNzg2NTc3 NTExRUU5MkFDQTc1OUM0RjlBRTAyL0tIYUNYM2ZDU2haOXhCSVZOUTlvaDVLWUdt Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS0hhQ1gzZkNTaFo5eEJJVk5ROW9oNUtZR21jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDY3Ny8wMjI3Rjc4NjU3NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi83NTlDMTZEQzU3 NzcxMUVFOTZGNUY3NzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmcqXDANBgkqhkiG9w0BAQsFAAOCAQEAFrCBz1FdR3KOYjbP zRfvzim3z2Am+cwSTElltBIKjP4eWhOS6X9/cB6bss4tpjLeaK4ulzEiQ1HhnVhe biDkxvxnPaVTaBZ6xEOOW4VAex/ist8obeW6y8f4ePyTJ00vRWlSkPFMKTEPZBoO d7FEp70ZLlxWiWJoQp93fzHJGEoBLrB64uAn9SEWNyjJ9OyxhNiNibdF0mh+ug+S Ab0WFrnjL/yK42TDhUHNUXp3IU5SVJveCNCbf4HBWPYo/zzD1TF4T3bZSPfcuRP0 rgDOdbA1Yn2oF1sZVpG5IIHWjX7os4ChoLvjM7A1Y2SiT3zBGY12yVxQGOpse687 z3kxaw== -----END CERTIFICATE-----Generated at Fri Jun 7 09:41:02 2024 by rpki-client on console-ams.rpki-client.org