$ rpki-client -vvf rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/D94D78866E4911EE8988954AC4F9AE02.roa File: D94D78866E4911EE8988954AC4F9AE02.roa (raw, json) Hash identifier: j2q9q5UQtgIaZYDaxiTpFFtnOsxW/vGcYVBPEPpAfOA= Subject key identifier: FF:2E:AA:BF:14:5E:24:1D:D2:B2:FC:67:5E:2C:2F:FC:83:54:4C:C9 Certificate issuer: /CN=A9198847/serialNumber=A6EF06B689581821C78C88291BBDF5C512A33F41 Certificate serial: 0C81 Authority key identifier: A6:EF:06:B6:89:58:18:21:C7:8C:88:29:1B:BD:F5:C5:12:A3:3F:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pu8GtolYGCHHjIgpG731xRKjP0E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/D94D78866E4911EE8988954AC4F9AE02.roa Signing time: Thu 14 Mar 2024 19:07:11 +0000 ROA not before: Thu 14 Mar 2024 19:07:11 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 151080 IP address blocks: 43.246.200.0/24 maxlen: 24 43.246.201.0/24 maxlen: 24 43.246.202.0/24 maxlen: 24 103.109.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/pu8GtolYGCHHjIgpG731xRKjP0E.crl rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/pu8GtolYGCHHjIgpG731xRKjP0E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pu8GtolYGCHHjIgpG731xRKjP0E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 19:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3201 (0xc81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198847/serialNumber=A6EF06B689581821C78C88291BBDF5C512A33F41 Validity Not Before: Mar 14 19:07:11 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65f34adf-9a69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:58:3b:78:5b:94:26:f5:66:1d:1c:b8:9d:3a: a3:0d:f8:5a:01:b0:10:80:5a:62:33:94:c2:29:9f: 7c:72:88:6c:6e:2c:31:14:b7:ab:7a:2a:3d:3d:16: 39:34:f8:b0:3f:5d:02:c0:d9:94:f2:7e:bb:f4:08: 42:b5:5a:1d:ec:21:ae:a0:f7:3a:45:53:35:2a:91: 44:0d:65:eb:c8:a4:ef:56:05:91:75:39:cb:d3:ae: bf:fa:79:c9:28:48:58:ba:c1:76:3d:b5:1d:c4:73: 43:1b:3d:6f:44:4a:14:66:ee:a8:10:bd:96:0e:f9: 61:fa:87:d5:d8:9a:62:f2:8f:15:3a:1d:a1:18:94: 8a:e1:98:7c:d3:82:04:a4:3b:61:16:be:2b:9c:1f: 49:27:ab:12:23:09:f8:fa:65:af:96:0e:97:b2:f4: d2:6e:36:85:64:f1:95:32:67:55:6c:f7:67:4c:fe: 14:4b:15:7a:da:41:48:61:89:52:4b:f3:28:63:34: 71:d5:47:6e:bc:6d:c9:ce:e3:ca:a9:ba:17:71:92: a7:e2:e4:db:af:e4:5e:a5:b4:bd:e6:23:7c:84:01: d9:d0:5f:90:b4:c0:ff:16:36:69:ef:de:55:86:59: f1:01:df:76:f8:ec:9e:d4:fd:ad:0c:0d:6f:9e:5e: 97:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:2E:AA:BF:14:5E:24:1D:D2:B2:FC:67:5E:2C:2F:FC:83:54:4C:C9 X509v3 Authority Key Identifier: keyid:A6:EF:06:B6:89:58:18:21:C7:8C:88:29:1B:BD:F5:C5:12:A3:3F:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/pu8GtolYGCHHjIgpG731xRKjP0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pu8GtolYGCHHjIgpG731xRKjP0E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/D94D78866E4911EE8988954AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.246.200.0-43.246.202.255 103.109.57.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:a6:31:be:6e:48:62:76:7a:b7:92:f9:c2:e0:d3:53:70:30: e5:02:14:d0:3e:1a:ab:ae:c8:ef:5a:46:ef:ae:be:fa:20:5c: b9:0f:9c:83:65:eb:34:61:c8:d2:50:7c:12:11:77:58:f9:1c: 54:f8:56:fb:89:2a:29:31:1b:bd:30:a5:fe:58:ad:e5:38:35: b2:4a:3d:6b:5d:18:cc:97:be:6a:12:96:60:c7:97:84:df:a7: 7f:c6:82:a8:0a:72:be:f4:44:b6:9f:ec:de:36:05:ec:dc:c3: 86:2e:29:f2:f4:16:bb:95:fd:32:61:32:31:cf:87:bf:57:bb: e9:6d:c6:65:f2:dd:2d:f8:c7:1e:0f:2d:8a:de:36:1e:2a:81: a5:ba:f6:40:6b:8e:d5:fa:8d:7d:bb:96:28:ec:e7:80:75:bd: 49:f6:8a:f9:69:57:f1:7a:b4:cf:5c:ae:cd:55:76:df:16:29: af:8d:19:e2:58:63:0f:29:82:03:70:89:39:ec:44:90:20:a9: b6:bb:a3:06:1e:f9:60:bf:9b:fe:67:0d:08:78:14:d0:de:c9: 8e:99:07:1a:ac:14:ad:77:b3:cf:8a:c1:15:96:2f:3b:b0:8f: 60:50:a6:d8:84:3b:21:61:1d:51:a1:44:1b:40:13:3f:6e:17: 60:fc:ee:90 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICDIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg4NDcxMTAvBgNVBAUTKEE2RUYwNkI2ODk1ODE4MjFDNzhDODgyOTFCQkRGNUM1 MTJBMzNGNDEwHhcNMjQwMzE0MTkwNzExWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWYzNGFkZi05YTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Fg7eFuUJvVmHRy4nTqjDfhaAbAQgFpiM5TCKZ98cohsbiwxFLereio9PRY5 NPiwP10CwNmU8n679AhCtVod7CGuoPc6RVM1KpFEDWXryKTvVgWRdTnL066/+nnJ KEhYusF2PbUdxHNDGz1vREoUZu6oEL2WDvlh+ofV2Jpi8o8VOh2hGJSK4Zh804IE pDthFr4rnB9JJ6sSIwn4+mWvlg6XsvTSbjaFZPGVMmdVbPdnTP4USxV62kFIYYlS S/MoYzRx1UduvG3JzuPKqboXcZKn4uTbr+RepbS95iN8hAHZ0F+QtMD/FjZp795V hlnxAd92+Oye1P2tDA1vnl6XcwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFP8uqr8U XiQd0rL8Z14sL/yDVEzJMB8GA1UdIwQYMBaAFKbvBraJWBghx4yIKRu99cUSoz9B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODg0Ny9EREZCQjBCOEQ3 ODExMUU5QjQyM0FDNEJDNEY5QUUwMi9wdThHdG9sWUdDSEhqSWdwRzczMXhSS2pQ MEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3B1OEd0b2xZR0NISGpJZ3BHNzMxeFJLalAwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTg4NDcvRERGQkIwQjhENzgxMTFFOUI0MjNBQzRCQzRGOUFFMDIvRDk0RDc4ODY2 RTQ5MTFFRTg5ODg5NTRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAyv2yAMEACv2ygMEAGdtOTANBgkqhkiG9w0BAQsFAAOC AQEAXaYxvm5IYnZ6t5L5wuDTU3Aw5QIU0D4aq67I71pG766++iBcuQ+cg2XrNGHI 0lB8EhF3WPkcVPhW+4kqKTEbvTCl/lit5Tg1sko9a10YzJe+ahKWYMeXhN+nf8aC qApyvvREtp/s3jYF7NzDhi4p8vQWu5X9MmEyMc+Hv1e76W3GZfLdLfjHHg8tit42 HiqBpbr2QGuO1fqNfbuWKOzngHW9SfaK+WlX8Xq0z1yuzVV23xYpr40Z4lhjDymC A3CJOexEkCCptrujBh75YL+b/mcNCHgU0N7JjpkHGqwUrXezz4rBFZYvO7CPYFCm 2IQ7IWEdUaFEG0ATP24XYPzukA== -----END CERTIFICATE-----Generated at Thu May 16 20:25:49 2024 by rpki-client on console-ams.rpki-client.org