$ rpki-client -vvf rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/AD8187A41FF511ED8DD6D661C4F9AE02.roa File: AD8187A41FF511ED8DD6D661C4F9AE02.roa (raw, json) Hash identifier: 4f0d87mHdJ55WPEhB/LzJCM93K/2MRHd7H56GRmnhow= Subject key identifier: CB:96:1A:C7:5A:BE:BF:95:BE:3E:47:DB:14:D6:32:28:39:5E:99:6D Certificate issuer: /CN=A9194D56/serialNumber=7C5B7414E3CC804059BCA86CC5163A0743E41C85 Certificate serial: 2242 Authority key identifier: 7C:5B:74:14:E3:CC:80:40:59:BC:A8:6C:C5:16:3A:07:43:E4:1C:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fFt0FOPMgEBZvKhsxRY6B0PkHIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/AD8187A41FF511ED8DD6D661C4F9AE02.roa Signing time: Sat 28 Oct 2023 16:22:52 +0000 ROA not before: Sat 28 Oct 2023 16:22:52 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 24016 IP address blocks: 103.197.164.0/22 maxlen: 24 115.84.128.0/19 maxlen: 24 202.21.176.0/20 maxlen: 24 220.158.220.0/22 maxlen: 24 2401:8300::/32 maxlen: 40 2401:8300:f000::/48 maxlen: 48 2401:8300:f001::/48 maxlen: 48 2401:8300:f002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/fFt0FOPMgEBZvKhsxRY6B0PkHIU.crl rsync://rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/fFt0FOPMgEBZvKhsxRY6B0PkHIU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fFt0FOPMgEBZvKhsxRY6B0PkHIU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8770 (0x2242) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194D56/serialNumber=7C5B7414E3CC804059BCA86CC5163A0743E41C85 Validity Not Before: Oct 28 16:22:52 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=653d355c-d09c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:9e:8a:10:34:f9:e0:68:16:6c:88:e4:89:7d: ec:a2:8e:fc:44:e3:dc:41:16:49:8d:18:ce:81:68: ec:c2:13:01:7b:4f:70:3c:f8:87:e4:4e:e7:de:74: 01:38:7d:0a:81:01:0f:d8:3b:af:d3:ec:1f:83:d8: 17:f0:29:eb:2c:23:05:4c:a0:78:50:d5:28:93:a7: 66:51:38:34:57:70:42:f6:d5:72:06:c5:78:ce:24: 7e:ed:8f:47:29:08:d5:38:ff:50:71:32:9c:9f:c7: 50:97:7c:78:5f:5a:5f:50:79:8f:7e:f9:05:35:4b: 2d:5b:42:d4:af:ad:b7:9e:af:44:43:84:2a:ad:8d: 36:31:43:a5:25:37:21:9a:40:02:21:d3:98:c5:7b: 41:cf:c0:df:50:63:59:7a:b2:e3:b8:07:69:b5:ce: a2:11:1c:c7:d2:f6:88:f1:4f:98:c5:02:77:a7:91: 1d:af:a6:52:9f:1c:fc:a2:ab:57:f7:fb:02:9b:48: 0f:32:2c:37:fe:f1:76:44:a0:76:19:95:55:f1:af: be:d0:ec:e8:0b:63:7a:85:15:bd:2c:8c:97:32:d1: d7:f5:09:3d:14:21:bc:6f:f9:65:36:ff:9a:5e:aa: 0d:05:4e:5b:cd:d4:9b:65:bf:16:e7:ef:54:aa:2f: d0:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:96:1A:C7:5A:BE:BF:95:BE:3E:47:DB:14:D6:32:28:39:5E:99:6D X509v3 Authority Key Identifier: keyid:7C:5B:74:14:E3:CC:80:40:59:BC:A8:6C:C5:16:3A:07:43:E4:1C:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/fFt0FOPMgEBZvKhsxRY6B0PkHIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fFt0FOPMgEBZvKhsxRY6B0PkHIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/AD8187A41FF511ED8DD6D661C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.197.164.0/22 115.84.128.0/19 202.21.176.0/20 220.158.220.0/22 IPv6: 2401:8300::/32 Signature Algorithm: sha256WithRSAEncryption 86:93:27:b5:b7:45:77:43:22:6b:0e:89:16:bd:8c:09:ee:39: 69:ff:7b:3f:e6:28:89:ba:d9:73:46:6c:b0:68:a5:f8:2e:ef: 8d:69:55:54:1d:d8:53:54:5b:08:81:22:e8:81:e1:5c:e0:e6: f2:a4:41:ff:2c:b3:12:74:e0:bf:b4:ca:57:d0:09:6b:7f:4a: d8:05:b5:49:9a:95:7e:7a:13:ff:0f:5c:8d:40:d9:7e:df:9c: 2c:55:9b:83:6a:e3:73:70:81:0a:22:08:08:69:8a:a0:e4:05: e8:d8:1e:d8:aa:e5:56:36:bb:6d:55:14:20:72:41:d8:59:a7: 10:b6:7f:d2:95:ba:d8:7f:ea:73:61:8a:3b:c9:bf:7e:63:c3: 59:e5:f8:ab:c1:aa:1e:24:2f:f6:a8:3d:a4:4b:f9:0d:8b:67: b4:bd:f9:d1:fa:67:bb:db:8f:3e:3c:81:58:75:eb:a8:66:dc: 79:4d:fe:e5:c6:14:6f:0b:e5:02:1d:36:22:d1:a8:32:5f:58: 90:f1:f3:25:41:5a:24:9e:92:78:47:e1:a0:6f:c7:73:eb:ee: 4e:4a:98:05:f4:c2:01:42:72:9a:71:46:70:d2:06:39:fb:53: e0:db:65:68:c6:74:51:6d:80:59:75:7b:f0:da:15:af:6d:d9: d0:c1:be:90 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICIkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRENTYxMTAvBgNVBAUTKDdDNUI3NDE0RTNDQzgwNDA1OUJDQTg2Q0M1MTYzQTA3 NDNFNDFDODUwHhcNMjMxMDI4MTYyMjUyWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTNkMzU1Yy1kMDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmp6KEDT54GgWbIjkiX3soo78ROPcQRZJjRjOgWjswhMBe09wPPiH5E7n3nQB OH0KgQEP2Duv0+wfg9gX8CnrLCMFTKB4UNUok6dmUTg0V3BC9tVyBsV4ziR+7Y9H KQjVOP9QcTKcn8dQl3x4X1pfUHmPfvkFNUstW0LUr623nq9EQ4QqrY02MUOlJTch mkACIdOYxXtBz8DfUGNZerLjuAdptc6iERzH0vaI8U+YxQJ3p5Edr6ZSnxz8oqtX 9/sCm0gPMiw3/vF2RKB2GZVV8a++0OzoC2N6hRW9LIyXMtHX9Qk9FCG8b/llNv+a XqoNBU5bzdSbZb8W5+9Uqi/QpQIDAQABo4ICtjCCArIwHQYDVR0OBBYEFMuWGsda vr+Vvj5H2xTWMig5XpltMB8GA1UdIwQYMBaAFHxbdBTjzIBAWbyobMUWOgdD5ByF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEQ1Ni9FNUQ0MDdGRTg2 QjMxMUU1OThGMzdGMUFDNEY5QUUwMi9mRnQwRk9QTWdFQlp2S2hzeFJZNkIwUGtI SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZGdDBGT1BNZ0VCWnZLaHN4Ulk2QjBQa0hJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTRENTYvRTVENDA3RkU4NkIzMTFFNTk4RjM3RjFBQzRGOUFFMDIvQUQ4MTg3QTQx RkY1MTFFRDhERDZENjYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAJnxaQDBAVzVIADBATKFbADBALcntwwDQQCAAIwBwMFACQB gwAwDQYJKoZIhvcNAQELBQADggEBAIaTJ7W3RXdDImsOiRa9jAnuOWn/ez/mKIm6 2XNGbLBopfgu741pVVQd2FNUWwiBIuiB4Vzg5vKkQf8ssxJ04L+0ylfQCWt/StgF tUmalX56E/8PXI1A2X7fnCxVm4Nq43NwgQoiCAhpiqDkBejYHtiq5VY2u21VFCBy QdhZpxC2f9KVuth/6nNhijvJv35jw1nl+KvBqh4kL/aoPaRL+Q2LZ7S9+dH6Z7vb jz48gVh166hm3HlN/uXGFG8L5QIdNiLRqDJfWJDx8yVBWiSeknhH4aBvx3Pr7k5K mAX0wgFCcppxRnDSBjn7U+DbZWjGdFFtgFl1e/DaFa9t2dDBvpA= -----END CERTIFICATE-----Generated at Wed May 8 18:14:35 2024 by rpki-client on console-fra.rpki-client.org