$ rpki-client -vvf rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/6CEF4F06697C11EEBAF2E544C4F9AE02.roa File: 6CEF4F06697C11EEBAF2E544C4F9AE02.roa (raw, json) Hash identifier: JUpSXxLsfHWkSdKzxyQF0tVby2aaFCv0Cq7AtExK9Qs= Subject key identifier: 00:ED:58:C3:CA:57:5B:65:19:7E:3F:F7:07:80:3B:E6:27:9D:04:24 Certificate issuer: /CN=A9196DE5/serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6 Certificate serial: 0849 Authority key identifier: D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/6CEF4F06697C11EEBAF2E544C4F9AE02.roa Signing time: Fri 13 Oct 2023 03:56:02 +0000 ROA not before: Fri 13 Oct 2023 03:56:02 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 151796 IP address blocks: 103.207.164.0/22 maxlen: 22 103.207.164.0/23 maxlen: 23 103.207.164.0/24 maxlen: 24 103.207.165.0/24 maxlen: 24 103.207.166.0/23 maxlen: 23 103.207.166.0/24 maxlen: 24 103.207.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 21:22:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2121 (0x849) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196DE5/serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6 Validity Not Before: Oct 13 03:56:02 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6528bfd2-3a22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:48:b5:b5:c9:ee:5b:a3:e9:72:64:a4:fb:4f: 06:14:e9:a6:aa:93:05:e6:73:23:e4:fd:82:6d:05: 54:44:5d:db:4d:17:18:d1:32:97:93:a2:e1:ee:3e: 48:8c:69:18:4d:f9:a3:e4:e3:5d:63:f3:af:59:a8: d7:ab:a0:99:04:01:18:81:50:91:d3:fa:2b:9b:71: a1:06:fd:3d:f3:93:25:b6:a0:4c:c5:1e:a7:64:38: 94:a2:0c:38:62:ba:d7:72:91:5a:74:e3:06:dd:04: 17:f7:ce:61:83:4c:bf:e0:47:b7:50:43:c9:4c:32: ed:9f:5a:78:68:4b:74:21:aa:e3:72:a4:84:57:bc: 00:1a:ae:65:09:4f:af:e2:54:8c:3f:51:cf:1b:9b: 1a:26:01:e4:01:bd:0f:9e:10:91:6e:7b:81:65:97: e6:87:b2:eb:9f:02:20:8a:8c:21:b8:a0:31:24:7e: bd:a9:d3:f1:4b:91:75:37:c2:e1:92:ee:30:bb:5f: 19:fe:72:35:2b:63:56:96:4c:26:34:5e:b7:88:5c: 7d:51:7d:83:fc:02:d9:fa:50:0c:d8:82:aa:b5:92: 70:c2:13:aa:63:71:9f:e6:22:fa:e5:91:d6:63:29: a0:a7:b0:6b:a4:68:8a:9d:52:de:dc:be:ff:8c:7f: 7e:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:ED:58:C3:CA:57:5B:65:19:7E:3F:F7:07:80:3B:E6:27:9D:04:24 X509v3 Authority Key Identifier: keyid:D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/6CEF4F06697C11EEBAF2E544C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.207.164.0/22 Signature Algorithm: sha256WithRSAEncryption 09:ca:73:bf:de:cb:bd:d5:3c:70:e2:44:3c:b0:49:65:63:7c: 86:3d:2d:2d:aa:d8:e4:55:ca:fd:c2:8c:9e:3a:ea:53:3a:5e: a3:87:1a:c7:a3:03:41:c2:67:f2:77:0c:55:d3:f2:f1:84:33: 24:38:46:80:83:01:1f:3a:94:b9:42:09:3d:33:60:af:36:7c: c5:29:b4:d3:0d:d0:c0:67:ff:e9:e2:cf:67:16:a4:0c:81:20: 59:cb:c5:18:56:5d:87:29:74:a3:db:3c:19:f1:8b:e6:3f:5a: 5b:9a:56:6b:1a:46:f0:36:77:5b:c4:77:a2:f2:ee:ac:8e:de: cd:f2:c5:9f:41:0b:b8:a2:a0:bb:87:8e:bb:6e:f4:ca:58:14: df:6b:73:42:40:42:6d:f6:69:7c:38:79:c9:3a:b6:c3:80:49: 9f:b2:bd:03:7e:e5:f5:5b:38:8e:84:a8:e0:ff:04:7f:48:11: 23:b0:76:a8:71:de:0b:87:62:98:ed:7b:35:60:30:0b:c9:cd: 97:c9:ca:d4:7d:66:8c:5e:8f:bb:0a:fb:95:69:d6:63:ed:d1: 22:e7:8a:87:4c:6c:ba:e6:a0:54:95:7c:d5:d9:21:3a:a0:13: c1:56:0b:bc:0d:34:0a:55:fd:74:da:a9:6c:1d:17:75:1e:dd: 7c:d1:d1:5b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZERTUxMTAvBgNVBAUTKEQ4MzkyQjBEOTE1QjlBQzFGNEQyM0JGOTg0MTk3MTQw NkZCNjFBQzYwHhcNMjMxMDEzMDM1NjAyWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTI4YmZkMi0zYTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmEi1tcnuW6PpcmSk+08GFOmmqpMF5nMj5P2CbQVURF3bTRcY0TKXk6Lh7j5I jGkYTfmj5ONdY/OvWajXq6CZBAEYgVCR0/orm3GhBv0985MltqBMxR6nZDiUogw4 YrrXcpFadOMG3QQX985hg0y/4Ee3UEPJTDLtn1p4aEt0IarjcqSEV7wAGq5lCU+v 4lSMP1HPG5saJgHkAb0PnhCRbnuBZZfmh7LrnwIgiowhuKAxJH69qdPxS5F1N8Lh ku4wu18Z/nI1K2NWlkwmNF63iFx9UX2D/ALZ+lAM2IKqtZJwwhOqY3Gf5iL65ZHW Yymgp7BrpGiKnVLe3L7/jH9+GQIDAQABo4IClTCCApEwHQYDVR0OBBYEFADtWMPK V1tlGX4/9weAO+YnnQQkMB8GA1UdIwQYMBaAFNg5Kw2RW5rB9NI7+YQZcUBvthrG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkRFNS83MkM1QTlDQzk0 MzAxMUVBQkQ3NUY5ODNDNEY5QUUwMi8yRGtyRFpGYm1zSDAwanY1aEJseFFHLTJH c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJEa3JEWkZibXNIMDBqdjVoQmx4UUctMkdzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTZERTUvNzJDNUE5Q0M5NDMwMTFFQUJENzVGOTgzQzRGOUFFMDIvNkNFRjRGMDY2 OTdDMTFFRUJBRjJFNTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnz6QwDQYJKoZIhvcNAQELBQADggEBAAnKc7/ey73VPHDi RDywSWVjfIY9LS2q2ORVyv3CjJ466lM6XqOHGsejA0HCZ/J3DFXT8vGEMyQ4RoCD AR86lLlCCT0zYK82fMUptNMN0MBn/+niz2cWpAyBIFnLxRhWXYcpdKPbPBnxi+Y/ WluaVmsaRvA2d1vEd6Ly7qyO3s3yxZ9BC7iioLuHjrtu9MpYFN9rc0JAQm32aXw4 eck6tsOASZ+yvQN+5fVbOI6EqOD/BH9IESOwdqhx3guHYpjtezVgMAvJzZfJytR9 Zoxej7sK+5Vp1mPt0SLniodMbLrmoFSVfNXZITqgE8FWC7wNNApV/XTaqWwdF3Ue 3XzR0Vs= -----END CERTIFICATE-----Generated at Mon May 20 22:11:08 2024 by rpki-client on console-ams.rpki-client.org