$ rpki-client -vvf rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/84DF7DDE361211EBACEF8647C4F9AE02.roa File: 84DF7DDE361211EBACEF8647C4F9AE02.roa (raw, json) Hash identifier: Z4bXenf1ke8uJG5sblfsVQE/bEWaV4ViBo8erSy1zOY= Subject key identifier: DF:A9:81:B0:7B:C4:94:35:F2:E2:47:51:18:80:29:43:6E:06:6E:17 Certificate issuer: /CN=A9199231/serialNumber=ADA730063A4618C26D15543581953B0185FD9C85 Certificate serial: 05FB Authority key identifier: AD:A7:30:06:3A:46:18:C2:6D:15:54:35:81:95:3B:01:85:FD:9C:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/racwBjpGGMJtFVQ1gZU7AYX9nIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/84DF7DDE361211EBACEF8647C4F9AE02.roa Signing time: Wed 20 Sep 2023 19:57:43 +0000 ROA not before: Wed 20 Sep 2023 19:57:43 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 139338 IP address blocks: 103.141.123.0/24 maxlen: 24 103.141.132.0/24 maxlen: 24 2001:df0:fc80::/48 maxlen: 52 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/racwBjpGGMJtFVQ1gZU7AYX9nIU.crl rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/racwBjpGGMJtFVQ1gZU7AYX9nIU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/racwBjpGGMJtFVQ1gZU7AYX9nIU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1531 (0x5fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199231/serialNumber=ADA730063A4618C26D15543581953B0185FD9C85 Validity Not Before: Sep 20 19:57:43 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=650b4eb6-31c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a8:80:75:4a:3b:a3:3c:09:27:5f:49:52:d5: 73:ca:64:d2:5b:7e:cc:5a:21:b5:fa:e3:f3:4a:bf: 28:a6:6a:e0:b6:43:4b:7d:ba:a8:ca:10:21:7f:a5: b2:d0:e7:de:55:31:9c:6d:4a:04:75:15:aa:7b:05: c8:fd:b6:56:a9:44:2e:de:58:0f:81:16:dd:9e:7a: d1:45:4a:4c:e4:07:fa:7f:df:5c:65:f4:92:d0:ff: 6f:72:9c:3d:79:ad:b0:25:5e:4f:9b:34:41:d9:c9: ec:97:16:f6:a4:d5:f9:bd:c1:a1:6b:5c:4d:16:25: 7e:19:cc:18:d4:04:bf:71:8e:b8:0c:95:46:97:7e: 5a:21:40:bb:fd:62:09:fc:31:6a:e2:8e:53:c2:ec: 58:b4:38:48:2d:e6:98:bf:25:e7:5c:52:f3:6c:c9: 02:19:87:e9:d5:7e:6d:5e:0b:2b:76:d7:f7:9a:f6: 43:25:13:de:67:37:3e:2f:89:8c:27:f5:1b:07:34: 6b:6d:5f:d4:24:c0:0e:55:b0:fb:ca:8b:3c:1a:ac: 6f:45:18:aa:e7:33:41:21:ca:84:e8:94:da:21:55: 96:ee:d7:91:4d:a3:e0:23:a3:df:97:54:2f:47:43: 1c:20:e3:22:f7:cc:c3:52:8f:9d:0e:2c:dc:65:20: e2:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:A9:81:B0:7B:C4:94:35:F2:E2:47:51:18:80:29:43:6E:06:6E:17 X509v3 Authority Key Identifier: keyid:AD:A7:30:06:3A:46:18:C2:6D:15:54:35:81:95:3B:01:85:FD:9C:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/racwBjpGGMJtFVQ1gZU7AYX9nIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/racwBjpGGMJtFVQ1gZU7AYX9nIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/84DF7DDE361211EBACEF8647C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.123.0/24 103.141.132.0/24 IPv6: 2001:df0:fc80::/48 Signature Algorithm: sha256WithRSAEncryption 42:d6:72:b5:d8:e6:29:24:62:d7:69:ad:3c:0b:e1:be:8b:a1: e3:ba:56:7a:2a:4f:b1:f6:b5:78:f6:98:b2:94:a4:16:18:d8: 07:3c:9f:be:52:6d:53:15:a7:eb:bc:3a:03:4a:27:a3:51:f5: 36:7a:3d:fd:99:fe:a9:fd:61:c0:2e:24:f3:76:84:8f:00:5b: a5:27:8d:49:77:97:16:6f:8a:90:49:5e:a3:08:dd:2a:68:7c: f7:5b:ee:06:e3:76:98:9d:c6:a8:72:51:47:b8:8f:76:77:60: 4d:11:b4:54:27:44:8e:07:e5:a8:0e:b8:67:eb:ed:91:46:d3: 7e:8d:50:5f:c4:17:21:73:53:e4:fb:dc:05:96:0a:ae:41:57: df:68:e0:d6:eb:8e:02:8b:71:55:dc:ca:c4:ec:fa:83:b1:d2: 84:92:84:d6:b5:6b:9d:cf:b1:11:96:22:a3:79:41:8e:f8:07: c3:df:16:dc:11:82:6d:3e:4b:5d:66:9f:21:04:77:bc:87:b3: 5e:f3:26:8b:19:b6:19:9c:66:a4:72:33:aa:be:dd:25:e7:44: 08:33:fe:a8:3b:cf:f5:89:bd:72:16:c9:61:5d:2c:fe:d9:8d: 21:0f:f4:a6:f7:65:bc:75:b6:1b:a2:c6:d7:a7:06:45:66:fd: 27:3b:89:aa -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkyMzExMTAvBgNVBAUTKEFEQTczMDA2M0E0NjE4QzI2RDE1NTQzNTgxOTUzQjAx ODVGRDlDODUwHhcNMjMwOTIwMTk1NzQzWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTBiNGViNi0zMWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxqiAdUo7ozwJJ19JUtVzymTSW37MWiG1+uPzSr8opmrgtkNLfbqoyhAhf6Wy 0OfeVTGcbUoEdRWqewXI/bZWqUQu3lgPgRbdnnrRRUpM5Af6f99cZfSS0P9vcpw9 ea2wJV5PmzRB2cnslxb2pNX5vcGha1xNFiV+GcwY1AS/cY64DJVGl35aIUC7/WIJ /DFq4o5TwuxYtDhILeaYvyXnXFLzbMkCGYfp1X5tXgsrdtf3mvZDJRPeZzc+L4mM J/UbBzRrbV/UJMAOVbD7yos8GqxvRRiq5zNBIcqE6JTaIVWW7teRTaPgI6Pfl1Qv R0McIOMi98zDUo+dDizcZSDivQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFN+pgbB7 xJQ18uJHURiAKUNuBm4XMB8GA1UdIwQYMBaAFK2nMAY6RhjCbRVUNYGVOwGF/ZyF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTIzMS8wOEZEQ0Q1MDND ODExMUVBODIwRDdGNDlDNEY5QUUwMi9yYWN3QmpwR0dNSnRGVlExZ1pVN0FZWDlu SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhY3dCanBHR01KdEZWUTFnWlU3QVlYOW5JVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkyMzEvMDhGRENENTAzQzgxMTFFQTgyMEQ3RjQ5QzRGOUFFMDIvODRERjdEREUz NjEyMTFFQkFDRUY4NjQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnjXsDBABnjYQwDwQCAAIwCQMHACABDfD8gDANBgkqhkiG 9w0BAQsFAAOCAQEAQtZytdjmKSRi12mtPAvhvouh47pWeipPsfa1ePaYspSkFhjY BzyfvlJtUxWn67w6A0ono1H1Nno9/Zn+qf1hwC4k83aEjwBbpSeNSXeXFm+KkEle owjdKmh891vuBuN2mJ3GqHJRR7iPdndgTRG0VCdEjgflqA64Z+vtkUbTfo1QX8QX IXNT5PvcBZYKrkFX32jg1uuOAotxVdzKxOz6g7HShJKE1rVrnc+xEZYio3lBjvgH w98W3BGCbT5LXWafIQR3vIezXvMmixm2GZxmpHIzqr7dJedECDP+qDvP9Ym9chbJ YV0s/tmNIQ/0pvdlvHW2G6LG16cGRWb9JzuJqg== -----END CERTIFICATE-----Generated at Sat May 18 21:31:30 2024 by rpki-client on console-ams.rpki-client.org