$ rpki-client -vvf rpki.apnic.net/member_repository/A9194715/698B963A429511EDBDD97881C4F9AE02/A8A940C6429811EDBB392C35C4F9AE02.roa File: A8A940C6429811EDBB392C35C4F9AE02.roa (raw, json) Hash identifier: q88iDvfHyMdqbD5BXUq67Yr5e/Q1hxt8Ea09IqII9+s= Subject key identifier: 1A:52:0B:29:48:32:FE:98:CA:56:04:09:92:14:1A:A0:85:1F:51:1A Certificate issuer: /CN=A9194715/serialNumber=BCB16A8873B1BE1326EB5CDB90B186115DA74D67 Certificate serial: AC Authority key identifier: BC:B1:6A:88:73:B1:BE:13:26:EB:5C:DB:90:B1:86:11:5D:A7:4D:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLFqiHOxvhMm61zbkLGGEV2nTWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194715/698B963A429511EDBDD97881C4F9AE02/A8A940C6429811EDBB392C35C4F9AE02.roa Signing time: Fri 01 Sep 2023 03:53:55 +0000 ROA not before: Fri 01 Sep 2023 03:53:55 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 136797 IP address blocks: 103.96.110.0/24 maxlen: 24 103.141.226.0/24 maxlen: 24 2001:df1:d900::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194715/698B963A429511EDBDD97881C4F9AE02/vLFqiHOxvhMm61zbkLGGEV2nTWc.crl rsync://rpki.apnic.net/member_repository/A9194715/698B963A429511EDBDD97881C4F9AE02/vLFqiHOxvhMm61zbkLGGEV2nTWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLFqiHOxvhMm61zbkLGGEV2nTWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 04:12:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194715/serialNumber=BCB16A8873B1BE1326EB5CDB90B186115DA74D67 Validity Not Before: Sep 1 03:53:55 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f16053-4fd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f0:15:04:ed:1b:83:fc:f4:74:e8:ca:39:c6: 00:7d:18:7e:9f:70:9e:b2:d9:b0:5a:2c:9b:5f:f2: 68:39:ee:42:e0:ed:27:67:ab:2b:f8:08:29:64:91: 74:ca:16:52:62:8a:65:2d:a7:4f:8e:e9:40:69:b7: 71:29:41:98:44:9b:04:af:bf:ec:3d:1a:5f:3c:5b: bb:b6:f6:47:74:72:70:38:23:20:5b:79:a7:ae:69: 4c:0d:1e:60:76:b0:85:20:ce:f9:c1:22:dd:dd:c6: 15:6a:de:fa:cf:a3:34:b4:22:99:51:c6:8b:78:d2: 02:d2:60:86:29:31:48:d0:20:14:58:72:63:7c:c1: 2a:01:51:7b:68:3f:8f:6d:46:c2:aa:41:58:0d:48: da:cd:e1:e1:a3:1c:f2:09:0b:1f:f7:db:96:37:35: c1:f2:5a:9e:38:29:5d:2c:32:db:8b:3f:3a:6b:56: c3:12:94:5d:3e:79:94:7a:d6:f6:c6:7d:94:32:57: cc:18:ef:a8:f5:2b:85:43:ef:1b:d8:2a:68:3a:94: 77:b3:88:ac:0c:9e:a9:80:f4:a2:6f:f8:12:51:26: 6e:79:5b:90:13:8d:95:8f:00:56:7d:c1:24:6e:25: 9b:32:da:33:e9:90:f4:22:f3:af:84:fe:cc:5a:fe: 13:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:52:0B:29:48:32:FE:98:CA:56:04:09:92:14:1A:A0:85:1F:51:1A X509v3 Authority Key Identifier: keyid:BC:B1:6A:88:73:B1:BE:13:26:EB:5C:DB:90:B1:86:11:5D:A7:4D:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194715/698B963A429511EDBDD97881C4F9AE02/vLFqiHOxvhMm61zbkLGGEV2nTWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLFqiHOxvhMm61zbkLGGEV2nTWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194715/698B963A429511EDBDD97881C4F9AE02/A8A940C6429811EDBB392C35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.96.110.0/24 103.141.226.0/24 IPv6: 2001:df1:d900::/48 Signature Algorithm: sha256WithRSAEncryption 44:bc:eb:8f:d3:39:3d:0e:b6:9e:7d:57:0b:e6:97:4d:92:11: 8b:75:41:09:e7:ce:cd:c4:90:ad:83:62:19:e1:7d:62:10:8f: ef:73:a8:88:ad:5a:27:61:fb:94:13:37:88:2a:33:ff:0e:31: 94:52:2f:12:1a:d0:2c:af:42:eb:64:fc:2c:90:27:35:18:3d: 5d:a7:36:e2:2f:46:e5:c2:5e:35:1b:b6:48:2a:71:61:f2:4e: 61:3f:00:fd:33:10:a7:3a:b6:2a:fb:cc:a1:7d:cc:ee:08:5f: 73:1e:d6:34:76:cf:d5:b0:7c:2f:23:66:cd:52:4c:88:27:73: b4:02:89:73:9c:76:68:36:25:90:ee:2a:fe:b6:95:74:35:7a: 48:fe:75:d1:c4:69:00:4f:e5:c4:3c:4d:72:56:7f:90:51:0a: c5:4b:50:eb:fa:3c:3f:20:c9:f0:2d:c4:26:20:e0:72:52:34: 12:25:e1:63:e5:21:ce:7a:68:b7:fe:bf:f3:f7:eb:e9:cd:76: 50:e7:d5:23:8e:33:4b:c6:dd:3b:28:42:a7:c6:4d:7f:bb:8f: 5d:73:e8:10:74:8a:9c:76:21:41:db:3a:d2:94:cb:47:95:44: af:b5:04:be:35:23:29:95:50:bd:aa:f8:d0:d4:84:28:31:c7: d7:cb:ab:21 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ3MTUxMTAvBgNVBAUTKEJDQjE2QTg4NzNCMUJFMTMyNkVCNUNEQjkwQjE4NjEx NURBNzRENjcwHhcNMjMwOTAxMDM1MzU1WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYxNjA1My00ZmQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufAVBO0bg/z0dOjKOcYAfRh+n3CestmwWiybX/JoOe5C4O0nZ6sr+AgpZJF0 yhZSYoplLadPjulAabdxKUGYRJsEr7/sPRpfPFu7tvZHdHJwOCMgW3mnrmlMDR5g drCFIM75wSLd3cYVat76z6M0tCKZUcaLeNIC0mCGKTFI0CAUWHJjfMEqAVF7aD+P bUbCqkFYDUjazeHhoxzyCQsf99uWNzXB8lqeOCldLDLbiz86a1bDEpRdPnmUetb2 xn2UMlfMGO+o9SuFQ+8b2CpoOpR3s4isDJ6pgPSib/gSUSZueVuQE42VjwBWfcEk biWbMtoz6ZD0IvOvhP7MWv4TjwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFBpSCylI Mv6YylYECZIUGqCFH1EaMB8GA1UdIwQYMBaAFLyxaohzsb4TJutc25CxhhFdp01n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDcxNS82OThCOTYzQTQy OTUxMUVEQkREOTc4ODFDNEY5QUUwMi92TEZxaUhPeHZoTW02MXpia0xHR0VWMm5U V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZMRnFpSE94dmhNbTYxemJrTEdHRVYyblRXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTQ3MTUvNjk4Qjk2M0E0Mjk1MTFFREJERDk3ODgxQzRGOUFFMDIvQThBOTQwQzY0 Mjk4MTFFREJCMzkyQzM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnYG4DBABnjeIwDwQCAAIwCQMHACABDfHZADANBgkqhkiG 9w0BAQsFAAOCAQEARLzrj9M5PQ62nn1XC+aXTZIRi3VBCefOzcSQrYNiGeF9YhCP 73OoiK1aJ2H7lBM3iCoz/w4xlFIvEhrQLK9C62T8LJAnNRg9Xac24i9G5cJeNRu2 SCpxYfJOYT8A/TMQpzq2KvvMoX3M7ghfcx7WNHbP1bB8LyNmzVJMiCdztAKJc5x2 aDYlkO4q/raVdDV6SP510cRpAE/lxDxNclZ/kFEKxUtQ6/o8PyDJ8C3EJiDgclI0 EiXhY+Uhznpot/6/8/fr6c12UOfVI44zS8bdOyhCp8ZNf7uPXXPoEHSKnHYhQds6 0pTLR5VEr7UEvjUjKZVQvar40NSEKDHH18urIQ== -----END CERTIFICATE-----Generated at Tue May 21 05:25:19 2024 by rpki-client on console-fra.rpki-client.org