$ rpki-client -vvf rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/9839F630765111EDA744AE3AC4F9AE02.roa File: 9839F630765111EDA744AE3AC4F9AE02.roa (raw, json) Hash identifier: wVNJXIBMdOA17Qx14FaFmrSL3yk1+Qgxj7UVSyMJrHE= Subject key identifier: 73:A3:44:59:AE:C2:7D:96:BF:25:AE:55:78:D7:3E:DA:C9:04:70:C0 Certificate issuer: /CN=A9195AA2/serialNumber=73BFA37A072543E2FD751E4E050C3AD370010C59 Certificate serial: 0773 Authority key identifier: 73:BF:A3:7A:07:25:43:E2:FD:75:1E:4E:05:0C:3A:D3:70:01:0C:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c7-jegclQ-L9dR5OBQw603ABDFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/9839F630765111EDA744AE3AC4F9AE02.roa Signing time: Sun 27 Oct 2024 14:18:14 +0000 ROA not before: Sun 27 Oct 2024 14:18:14 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 139294 IP address blocks: 103.140.234.0/23 maxlen: 23 103.140.234.0/24 maxlen: 24 103.140.235.0/24 maxlen: 24 2001:df0:da80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/c7-jegclQ-L9dR5OBQw603ABDFk.crl rsync://rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/c7-jegclQ-L9dR5OBQw603ABDFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c7-jegclQ-L9dR5OBQw603ABDFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:29:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1907 (0x773) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195AA2/serialNumber=73BFA37A072543E2FD751E4E050C3AD370010C59 Validity Not Before: Oct 27 14:18:14 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=671e4ba6-b96a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a8:7d:00:2a:e5:d8:77:c3:61:6c:88:a7:9b: 6b:82:46:a0:9e:ad:d4:89:d1:7c:16:a2:32:0a:bb: 14:5b:41:2b:10:ba:19:7e:60:e6:83:d1:2f:f1:ad: af:5c:48:a1:1e:5e:da:98:f4:e1:43:12:4c:39:24: ce:6e:12:be:92:38:a0:78:89:98:c1:ff:11:43:60: c9:41:8b:40:b3:f0:93:dc:96:34:77:9f:71:8c:be: 66:cc:3b:7c:92:b9:e3:95:60:6c:60:c7:86:de:d2: 58:5b:98:ee:d6:eb:da:61:0e:04:de:91:66:d1:1b: ab:d2:05:e5:ac:29:f1:1e:49:1a:a8:d9:f7:24:cf: 29:da:80:3a:0a:f6:5b:87:28:e4:fa:35:b6:24:c4: 21:0a:f8:d9:3c:01:90:1f:74:37:a7:e0:c0:22:70: da:cf:b3:74:ef:37:9e:b1:da:fc:08:23:31:80:cc: 57:fb:73:89:82:06:27:6d:ff:c7:a5:81:33:bc:a7: 20:19:08:f3:95:af:17:2b:3c:b2:0b:f4:d0:a8:94: d1:72:c4:45:ab:46:2f:21:6a:24:ed:b9:9c:86:e6: 5c:13:bd:c2:96:e7:a7:eb:26:88:a7:70:32:cb:da: 9d:44:78:26:2e:4d:96:d6:f6:f2:c8:0f:99:6a:29: 45:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:A3:44:59:AE:C2:7D:96:BF:25:AE:55:78:D7:3E:DA:C9:04:70:C0 X509v3 Authority Key Identifier: keyid:73:BF:A3:7A:07:25:43:E2:FD:75:1E:4E:05:0C:3A:D3:70:01:0C:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/c7-jegclQ-L9dR5OBQw603ABDFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c7-jegclQ-L9dR5OBQw603ABDFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/9839F630765111EDA744AE3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.234.0/23 IPv6: 2001:df0:da80::/48 Signature Algorithm: sha256WithRSAEncryption 57:d1:70:a0:63:42:22:4d:8d:4a:0e:e0:5f:7e:3d:cf:74:fc: 4c:f7:db:66:f7:89:17:08:29:e0:bb:2c:20:a5:f2:f5:50:79: ef:25:58:ac:3a:58:e8:b7:64:bd:17:8e:38:7c:7b:d7:25:84: 1a:13:ee:c8:57:e4:39:e6:b2:c8:76:61:67:81:21:51:a0:b1: 0b:01:74:ce:42:d7:3d:6d:a9:1f:2f:2f:31:d5:e5:39:61:a0: e8:46:e5:71:4a:92:41:0d:34:2a:9e:a1:70:39:dd:3f:a1:d6: 87:d4:c0:ec:58:37:9b:db:4f:ae:5e:ad:83:4b:97:ec:2f:83: e3:33:02:75:ba:1c:bd:cf:55:4f:2c:c2:b2:b2:41:5f:6a:d4: bd:57:00:b6:ce:bd:40:09:50:6c:7c:af:f3:6c:a2:e6:49:fc: de:8f:2e:a5:b6:38:88:09:3e:54:49:7a:87:fd:26:61:ea:96: 2a:ba:93:f7:13:cf:04:5b:bb:7e:f1:92:14:00:f6:73:3f:7e: c2:34:b1:db:59:2c:f2:64:5d:af:0a:92:4f:0b:3e:a1:af:cf: b0:e4:f5:ac:af:f9:e8:01:81:66:2f:a7:93:49:d8:ac:b8:40: 45:63:05:fe:c4:04:90:bd:0d:18:14:40:71:f8:a1:68:6b:fc: c9:24:d0:4e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICB3MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVBQTIxMTAvBgNVBAUTKDczQkZBMzdBMDcyNTQzRTJGRDc1MUU0RTA1MEMzQUQz NzAwMTBDNTkwHhcNMjQxMDI3MTQxODE0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFlNGJhNi1iOTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuah9ACrl2HfDYWyIp5trgkagnq3UidF8FqIyCrsUW0ErELoZfmDmg9Ev8a2v XEihHl7amPThQxJMOSTObhK+kjigeImYwf8RQ2DJQYtAs/CT3JY0d59xjL5mzDt8 krnjlWBsYMeG3tJYW5ju1uvaYQ4E3pFm0Rur0gXlrCnxHkkaqNn3JM8p2oA6CvZb hyjk+jW2JMQhCvjZPAGQH3Q3p+DAInDaz7N07zeesdr8CCMxgMxX+3OJggYnbf/H pYEzvKcgGQjzla8XKzyyC/TQqJTRcsRFq0YvIWok7bmchuZcE73Cluen6yaIp3Ay y9qdRHgmLk2W1vbyyA+ZailFhQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHOjRFmu wn2WvyWuVXjXPtrJBHDAMB8GA1UdIwQYMBaAFHO/o3oHJUPi/XUeTgUMOtNwAQxZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUFBMi8xRkUzNTdENDA2 QzUxMUVBODg4RUQ5MTlDNEY5QUUwMi9jNy1qZWdjbFEtTDlkUjVPQlF3NjAzQUJE RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2M3LWplZ2NsUS1MOWRSNU9CUXc2MDNBQkRGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTVBQTIvMUZFMzU3RDQwNkM1MTFFQTg4OEVEOTE5QzRGOUFFMDIvOTgzOUY2MzA3 NjUxMTFFREE3NDRBRTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnjOowDwQCAAIwCQMHACABDfDagDANBgkqhkiG9w0BAQsF AAOCAQEAV9FwoGNCIk2NSg7gX349z3T8TPfbZveJFwgp4LssIKXy9VB57yVYrDpY 6LdkvReOOHx71yWEGhPuyFfkOeayyHZhZ4EhUaCxCwF0zkLXPW2pHy8vMdXlOWGg 6EblcUqSQQ00Kp6hcDndP6HWh9TA7Fg3m9tPrl6tg0uX7C+D4zMCdbocvc9VTyzC srJBX2rUvVcAts69QAlQbHyv82yi5kn83o8upbY4iAk+VEl6h/0mYeqWKrqT9xPP BFu7fvGSFAD2cz9+wjSx21ks8mRdrwqSTws+oa/PsOT1rK/56AGBZi+nk0nYrLhA RWMF/sQEkL0NGBRAcfihaGv8ySTQTg== -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:08 2024 by rpki-client on console-ams.rpki-client.org