$ rpki-client -vvf rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/DFBF502035C111ED8FD8923EC4F9AE02.roa File: DFBF502035C111ED8FD8923EC4F9AE02.roa (raw, json) Hash identifier: augMxpUY8ubD0crgJhz8bbs3yVWk1zA6WP2kZq3tWEM= Subject key identifier: 6C:78:59:97:83:8D:B4:74:7B:1E:0B:E2:7E:1B:3D:C4:7B:7A:DD:FC Certificate issuer: /CN=A919631C/serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Certificate serial: 0D74 Authority key identifier: F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/DFBF502035C111ED8FD8923EC4F9AE02.roa Signing time: Tue 12 Sep 2023 18:15:54 +0000 ROA not before: Tue 12 Sep 2023 18:15:54 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 134715 IP address blocks: 103.197.176.0/22 maxlen: 23 220.158.236.0/22 maxlen: 24 2403:580::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 18:29:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3444 (0xd74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919631C/serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Validity Not Before: Sep 12 18:15:54 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6500aada-7a62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ce:35:56:c1:96:bc:0b:f1:2f:c1:6c:a4:11: ee:63:1f:b1:06:6d:b1:a5:f1:e2:76:c3:3d:ef:a3: b9:6e:0f:98:b1:d5:ae:4e:cd:ba:21:b3:6d:73:f2: 04:67:0b:40:ef:36:c5:23:45:36:13:14:f5:da:05: a9:c6:21:97:c5:1c:3c:da:ec:db:f7:e3:bc:18:de: 0e:8a:e8:bb:eb:76:da:3b:6e:14:ee:05:54:f3:f1: 73:c5:ec:03:97:c1:6e:41:15:2c:94:a8:e8:9e:bb: bf:28:b4:4c:fe:42:28:05:4f:77:65:ec:4f:0d:ca: 35:dc:87:c7:8e:89:a5:a4:90:48:cc:b4:4a:b7:be: 64:a2:ff:6c:cf:be:66:f2:bf:08:f7:5c:2b:66:14: 60:3c:8a:48:aa:b5:1b:a1:a7:5b:05:e5:e6:65:a8: 6c:40:5b:57:9e:96:42:5b:db:8e:d8:78:f9:26:5f: 2f:d7:e8:8e:62:3e:20:9f:2e:85:92:1d:91:d6:13: 5c:98:59:1c:65:84:f5:69:ba:21:98:26:26:c7:19: d0:58:81:9b:de:af:87:15:fb:3a:8a:9b:f2:5c:e9: aa:49:2b:d4:14:53:b6:fa:d9:c3:55:58:6c:dd:f5: be:47:cc:ea:ad:fe:22:94:c0:6a:b1:09:89:90:8f: 4f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:78:59:97:83:8D:B4:74:7B:1E:0B:E2:7E:1B:3D:C4:7B:7A:DD:FC X509v3 Authority Key Identifier: keyid:F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/DFBF502035C111ED8FD8923EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.197.176.0/22 220.158.236.0/22 IPv6: 2403:580::/32 Signature Algorithm: sha256WithRSAEncryption 26:aa:9d:b9:06:06:93:bb:87:52:8e:eb:96:aa:30:0a:13:dd: f5:71:c4:b7:7f:eb:44:f9:36:41:e3:9f:6c:00:06:12:2e:fb: 50:8c:d9:4a:6b:38:d9:56:70:b1:5d:c2:e2:c3:02:36:26:c3: d4:bf:81:e0:20:7b:9d:4c:59:3b:8a:83:69:b7:b9:c8:9e:b9: 5b:0c:f8:56:73:13:0a:21:b8:57:e0:19:eb:0c:fd:e6:88:76: 0b:40:6b:92:c0:fd:28:31:2a:93:f7:d1:6d:a1:b8:3b:22:b9: d8:bf:7b:e7:13:58:0d:e5:4c:e9:6b:ec:0f:34:0e:cf:13:bb: c2:c5:14:73:82:14:85:3a:38:28:5b:8b:55:a7:e3:66:d0:9e: 1c:da:a4:3e:be:40:3a:f5:7d:14:cf:f0:2d:2e:03:ee:fd:be: c9:db:60:9f:03:90:cc:28:3f:f6:f2:97:f5:c1:8d:76:96:df: cb:0a:a9:88:fd:4e:76:01:15:8f:d5:11:34:fe:8b:aa:4c:6f: a1:7d:d8:3b:ff:b9:a1:19:95:9c:e6:23:ee:19:c8:be:fc:e1: ec:fc:8b:ef:7a:93:e6:56:78:2d:6f:52:29:ee:05:26:eb:f2: 67:fc:eb:03:d8:bb:27:7c:bc:f7:77:19:87:8f:f1:66:d4:77: 8e:46:9b:8b -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYzMUMxMTAvBgNVBAUTKEY3MkU3RDVFMUJCNDU0MkFCN0ZGNzc3MzY1ODgzQzE2 MDEwMzRERTkwHhcNMjMwOTEyMTgxNTU0WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTAwYWFkYS03YTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxM41VsGWvAvxL8FspBHuYx+xBm2xpfHidsM976O5bg+YsdWuTs26IbNtc/IE ZwtA7zbFI0U2ExT12gWpxiGXxRw82uzb9+O8GN4Oiui763baO24U7gVU8/FzxewD l8FuQRUslKjonru/KLRM/kIoBU93ZexPDco13IfHjomlpJBIzLRKt75kov9sz75m 8r8I91wrZhRgPIpIqrUboadbBeXmZahsQFtXnpZCW9uO2Hj5Jl8v1+iOYj4gny6F kh2R1hNcmFkcZYT1abohmCYmxxnQWIGb3q+HFfs6ipvyXOmqSSvUFFO2+tnDVVhs 3fW+R8zqrf4ilMBqsQmJkI9PUQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFGx4WZeD jbR0ex4L4n4bPcR7et38MB8GA1UdIwQYMBaAFPcufV4btFQqt/93c2WIPBYBA03p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjMxQy9BOUMzMTcwNDhD MjMxMUU5OUY4NDVENzJDNEY5QUUwMi85eTU5WGh1MFZDcTNfM2R6WllnOEZnRURU ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzl5NTlYaHUwVkNxM18zZHpaWWc4RmdFRFRlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTYzMUMvQTlDMzE3MDQ4QzIzMTFFOTlGODQ1RDcyQzRGOUFFMDIvREZCRjUwMjAz NUMxMTFFRDhGRDg5MjNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnxbADBALcnuwwDQQCAAIwBwMFACQDBYAwDQYJKoZIhvcN AQELBQADggEBACaqnbkGBpO7h1KO65aqMAoT3fVxxLd/60T5NkHjn2wABhIu+1CM 2UprONlWcLFdwuLDAjYmw9S/geAge51MWTuKg2m3ucieuVsM+FZzEwohuFfgGesM /eaIdgtAa5LA/SgxKpP30W2huDsiudi/e+cTWA3lTOlr7A80Ds8Tu8LFFHOCFIU6 OChbi1Wn42bQnhzapD6+QDr1fRTP8C0uA+79vsnbYJ8DkMwoP/byl/XBjXaW38sK qYj9TnYBFY/VETT+i6pMb6F92Dv/uaEZlZzmI+4ZyL784ez8i+96k+ZWeC1vUinu BSbr8mf86wPYuyd8vPd3GYeP8WbUd45Gm4s= -----END CERTIFICATE-----Generated at Wed May 22 20:09:01 2024 by rpki-client on console-ams.rpki-client.org