$ rpki-client -vvf rpki.apnic.net/member_repository/A9196E05/42955510CE5311EA8E8C924CC4F9AE02/B3C00B80CD6111ED9BB1B571C4F9AE02.roa File: B3C00B80CD6111ED9BB1B571C4F9AE02.roa (raw, json) Hash identifier: B7aQ93K6rT7EWxh2AhxNaBDsSqnU4adK5KUAihD37QQ= Subject key identifier: B9:6B:95:AE:B6:FE:49:03:27:7C:EF:53:F9:28:5D:78:17:22:87:20 Certificate issuer: /CN=A9196E05/serialNumber=7FFBDC3F779A8F9965305E7DEE51E6A6C535FFB8 Certificate serial: 0728 Authority key identifier: 7F:FB:DC:3F:77:9A:8F:99:65:30:5E:7D:EE:51:E6:A6:C5:35:FF:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_vcP3eaj5llMF597lHmpsU1_7g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196E05/42955510CE5311EA8E8C924CC4F9AE02/B3C00B80CD6111ED9BB1B571C4F9AE02.roa Signing time: Mon 30 Oct 2023 21:49:22 +0000 ROA not before: Mon 30 Oct 2023 21:49:22 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 132295 IP address blocks: 103.129.32.0/22 maxlen: 22 103.129.32.0/23 maxlen: 23 103.129.32.0/24 maxlen: 24 103.129.33.0/24 maxlen: 24 103.129.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196E05/42955510CE5311EA8E8C924CC4F9AE02/f_vcP3eaj5llMF597lHmpsU1_7g.crl rsync://rpki.apnic.net/member_repository/A9196E05/42955510CE5311EA8E8C924CC4F9AE02/f_vcP3eaj5llMF597lHmpsU1_7g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_vcP3eaj5llMF597lHmpsU1_7g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1832 (0x728) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196E05/serialNumber=7FFBDC3F779A8F9965305E7DEE51E6A6C535FFB8 Validity Not Before: Oct 30 21:49:22 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=654024e2-1bef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6a:c9:1d:56:aa:61:b8:27:38:6c:29:2e:96: 4a:12:fd:b5:af:65:77:e3:21:bd:00:79:a1:38:db: 27:27:30:c8:8c:45:cc:a0:76:e8:63:c6:8e:50:95: e4:e8:0c:51:1f:67:73:48:38:9a:8f:0f:25:b1:53: 41:dd:ca:aa:83:13:a1:71:16:52:4b:7c:49:fd:4a: 6a:94:98:70:53:01:de:7d:4b:87:36:5e:06:6a:36: 3d:78:69:dd:ff:d9:60:da:98:e2:59:d5:b7:52:c3: 3a:a9:41:b1:af:c5:99:ef:5a:74:0b:88:70:4c:bd: bd:70:88:90:1e:c1:41:1a:a9:ef:23:e5:78:72:43: f4:ac:37:13:5e:b8:55:e0:c3:20:00:fe:aa:47:58: 77:3b:bb:58:51:ad:d4:b8:3d:b8:db:a1:cc:96:9d: c2:52:7c:dd:81:7c:39:3d:27:07:6a:5c:9f:fb:94: 7e:74:a5:5b:ff:26:a7:47:14:3a:96:72:43:4d:8c: bf:a2:79:df:82:35:85:94:ee:8b:46:f3:34:d3:fc: 5c:22:54:28:ac:0e:ca:ac:87:ba:83:c1:29:c4:81: 78:81:67:5b:e4:96:66:8f:56:a4:d9:60:85:cb:08: fb:45:e9:01:90:a5:75:90:c5:9e:aa:62:a7:4c:f2: a2:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:6B:95:AE:B6:FE:49:03:27:7C:EF:53:F9:28:5D:78:17:22:87:20 X509v3 Authority Key Identifier: keyid:7F:FB:DC:3F:77:9A:8F:99:65:30:5E:7D:EE:51:E6:A6:C5:35:FF:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196E05/42955510CE5311EA8E8C924CC4F9AE02/f_vcP3eaj5llMF597lHmpsU1_7g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_vcP3eaj5llMF597lHmpsU1_7g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196E05/42955510CE5311EA8E8C924CC4F9AE02/B3C00B80CD6111ED9BB1B571C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.32.0/22 Signature Algorithm: sha256WithRSAEncryption 15:70:b8:b8:b9:02:d3:0f:62:60:eb:ee:94:b1:22:37:9e:28: 88:c6:2b:01:f7:4b:c3:09:b2:ae:2f:39:db:a4:84:31:fd:6c: 87:31:9b:45:84:4d:47:ee:4f:31:82:4e:4a:39:9c:53:66:67: bb:f3:24:aa:79:10:b7:1f:a7:53:64:63:c5:74:bf:37:2c:c9: d8:22:f2:70:1e:6c:60:75:27:46:b8:2e:32:c3:9f:36:7a:f4: f0:91:11:d3:47:50:da:8a:34:77:9a:1a:ae:35:31:3e:21:31: e7:ab:a7:df:6e:bd:5e:c5:3c:9d:ff:5c:f4:02:e1:6a:cb:cc: 95:a9:3e:b4:dd:53:d7:c2:89:cf:15:f3:ad:a6:15:37:6c:7e: f2:0d:41:9b:ed:dd:be:55:cb:db:65:13:5e:da:d1:37:40:8d: bf:1f:9d:c3:0e:04:9d:bf:78:6a:48:23:5e:1b:18:46:af:04: 22:59:df:5d:f3:0c:a9:63:6f:8e:70:f8:51:45:a7:53:c5:89: 59:94:5e:66:2a:bb:88:a9:e9:af:67:ca:50:44:92:4b:9f:33: ee:9a:83:c5:f5:50:f9:1b:0c:17:7f:95:c1:6f:1b:eb:6d:68: 3d:cb:fd:12:40:40:ef:ed:c0:f1:b3:4e:ca:e9:75:af:f6:cc: 67:cb:3b:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBygwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZFMDUxMTAvBgNVBAUTKDdGRkJEQzNGNzc5QThGOTk2NTMwNUU3REVFNTFFNkE2 QzUzNUZGQjgwHhcNMjMxMDMwMjE0OTIyWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQwMjRlMi0xYmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmrJHVaqYbgnOGwpLpZKEv21r2V34yG9AHmhONsnJzDIjEXMoHboY8aOUJXk 6AxRH2dzSDiajw8lsVNB3cqqgxOhcRZSS3xJ/UpqlJhwUwHefUuHNl4GajY9eGnd /9lg2pjiWdW3UsM6qUGxr8WZ71p0C4hwTL29cIiQHsFBGqnvI+V4ckP0rDcTXrhV 4MMgAP6qR1h3O7tYUa3UuD2426HMlp3CUnzdgXw5PScHalyf+5R+dKVb/yanRxQ6 lnJDTYy/onnfgjWFlO6LRvM00/xcIlQorA7KrIe6g8EpxIF4gWdb5JZmj1ak2WCF ywj7RekBkKV1kMWeqmKnTPKiTQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLlrla62 /kkDJ3zvU/koXXgXIocgMB8GA1UdIwQYMBaAFH/73D93mo+ZZTBefe5R5qbFNf+4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkUwNS80Mjk1NTUxMENF NTMxMUVBOEU4QzkyNENDNEY5QUUwMi9mX3ZjUDNlYWo1bGxNRjU5N2xIbXBzVTFf N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZfdmNQM2VhajVsbE1GNTk3bEhtcHNVMV83Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTZFMDUvNDI5NTU1MTBDRTUzMTFFQThFOEM5MjRDQzRGOUFFMDIvQjNDMDBCODBD RDYxMTFFRDlCQjFCNTcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJngSAwDQYJKoZIhvcNAQELBQADggEBABVwuLi5AtMPYmDr 7pSxIjeeKIjGKwH3S8MJsq4vOdukhDH9bIcxm0WETUfuTzGCTko5nFNmZ7vzJKp5 ELcfp1NkY8V0vzcsydgi8nAebGB1J0a4LjLDnzZ69PCREdNHUNqKNHeaGq41MT4h Meerp99uvV7FPJ3/XPQC4WrLzJWpPrTdU9fCic8V862mFTdsfvINQZvt3b5Vy9tl E17a0TdAjb8fncMOBJ2/eGpII14bGEavBCJZ313zDKljb45w+FFFp1PFiVmUXmYq u4ip6a9nylBEkkufM+6ag8X1UPkbDBd/lcFvG+ttaD3L/RJAQO/twPGzTsrpda/2 zGfLO4Y= -----END CERTIFICATE-----Generated at Thu May 16 22:58:18 2024 by rpki-client on console-fra.rpki-client.org