$ rpki-client -vvf rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/B6EB7E8ED14511EC89527642C4F9AE02.roa File: B6EB7E8ED14511EC89527642C4F9AE02.roa (raw, json) Hash identifier: cSKaNOP2pjKd327QhRYBF8AGbzqiuaYZiL9Zg1h+Iok= Subject key identifier: 12:90:70:AA:33:CB:E6:F0:FE:1E:96:0C:BA:BD:43:95:18:69:B8:07 Certificate issuer: /CN=A9199DF5/serialNumber=A570F370D54ED02454C57F83EEC3E4F44A7A8B76 Certificate serial: 01AE Authority key identifier: A5:70:F3:70:D5:4E:D0:24:54:C5:7F:83:EE:C3:E4:F4:4A:7A:8B:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/B6EB7E8ED14511EC89527642C4F9AE02.roa Signing time: Thu 29 Jun 2023 02:50:02 +0000 ROA not before: Thu 29 Jun 2023 02:50:02 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 149825 IP address blocks: 103.187.28.0/23 maxlen: 23 103.187.28.0/24 maxlen: 24 103.187.29.0/24 maxlen: 24 2001:df0:b740::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.crl rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 430 (0x1ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199DF5/serialNumber=A570F370D54ED02454C57F83EEC3E4F44A7A8B76 Validity Not Before: Jun 29 02:50:02 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=649cf159-d36c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3a:f1:82:62:2a:80:b4:37:35:d0:f1:85:ec: b4:10:36:ef:f1:73:76:4a:d2:b8:2e:85:d0:74:1d: 30:6a:65:59:41:a2:4f:60:a4:ec:03:1e:ad:d9:49: 86:42:12:ee:6a:32:aa:d1:65:a8:66:4f:34:74:95: 07:6c:34:bb:13:20:93:6f:81:e7:6c:1f:28:f6:35: df:36:e0:90:8c:57:40:0c:53:07:a5:e4:a1:fb:0f: e2:20:95:23:d8:f4:0f:5d:b9:a3:a4:5d:01:bf:a9: 41:84:d7:14:ac:b1:da:bf:49:98:74:e0:ce:ca:f9: 29:86:42:3f:08:ca:76:ea:a6:38:29:87:a0:00:3f: 9e:7e:48:9f:6b:7f:a3:2a:d2:07:3b:f0:3f:1b:8e: be:65:e5:b1:ef:5c:dc:bc:0b:54:5e:e7:7e:1d:ec: 19:ff:4d:b0:a2:8d:a2:63:db:40:f6:2e:3b:d1:b8: 60:16:c6:f5:5c:09:2a:6b:9f:0a:a7:17:91:28:a8: 62:c2:9c:4b:7a:6d:0b:65:61:63:49:b8:5a:15:8e: 30:a6:34:3b:23:a5:3d:ff:dc:41:87:14:98:30:43: c4:08:b8:f5:b2:3a:c0:56:f5:f4:6f:00:48:49:87: 32:c5:5a:e2:a4:dd:ca:2d:70:34:b1:96:97:59:82: 54:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:90:70:AA:33:CB:E6:F0:FE:1E:96:0C:BA:BD:43:95:18:69:B8:07 X509v3 Authority Key Identifier: keyid:A5:70:F3:70:D5:4E:D0:24:54:C5:7F:83:EE:C3:E4:F4:4A:7A:8B:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/B6EB7E8ED14511EC89527642C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.28.0/23 IPv6: 2001:df0:b740::/48 Signature Algorithm: sha256WithRSAEncryption 46:c2:73:4c:d2:40:dc:f7:f7:ec:44:38:62:7c:5f:08:c6:5d: 0e:eb:e7:60:0b:7c:74:cc:9b:d8:bc:63:1d:aa:3e:45:99:7b: 2f:f6:53:18:ad:d7:bc:4d:4f:e8:7b:fc:e7:10:33:3d:92:62: 13:98:86:02:22:9e:ab:13:04:cc:47:81:15:ad:22:5c:5a:0e: c9:1b:6a:4b:1b:9b:e2:b8:0e:4e:99:32:1f:81:84:27:5d:d7: e0:33:d7:93:dd:4d:a8:10:09:a5:b7:3e:1a:6d:26:33:87:28: b2:e0:f9:1d:88:31:c1:13:9e:50:3e:ae:f8:18:20:69:d7:d1: 00:b2:f2:22:2d:5b:30:ef:38:cb:ee:34:50:92:d8:59:f6:e9: ab:ae:a2:42:e6:32:a6:df:ea:c7:8b:4d:c3:5d:e5:cb:f1:08: 2c:bf:94:1d:12:4a:0e:ef:04:05:00:8a:5e:d0:fe:33:17:f3: 00:23:e2:d6:a9:75:69:3b:27:6a:d6:69:b6:03:45:6e:24:ad: 69:f1:78:d8:ac:9c:98:7a:85:06:fd:e2:ab:96:bb:db:e4:9e: f0:63:09:11:b7:14:4f:4a:c0:fb:4b:b4:18:ac:46:a2:db:0a: 77:96:b6:9d:2e:55:4a:a3:d7:f9:a5:7b:59:c4:86:7d:99:21: 51:70:a1:6f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlERjUxMTAvBgNVBAUTKEE1NzBGMzcwRDU0RUQwMjQ1NEM1N0Y4M0VFQzNFNEY0 NEE3QThCNzYwHhcNMjMwNjI5MDI1MDAyWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDljZjE1OS1kMzZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsDrxgmIqgLQ3NdDxhey0EDbv8XN2StK4LoXQdB0wamVZQaJPYKTsAx6t2UmG QhLuajKq0WWoZk80dJUHbDS7EyCTb4HnbB8o9jXfNuCQjFdADFMHpeSh+w/iIJUj 2PQPXbmjpF0Bv6lBhNcUrLHav0mYdODOyvkphkI/CMp26qY4KYegAD+efkifa3+j KtIHO/A/G46+ZeWx71zcvAtUXud+HewZ/02woo2iY9tA9i470bhgFsb1XAkqa58K pxeRKKhiwpxLem0LZWFjSbhaFY4wpjQ7I6U9/9xBhxSYMEPECLj1sjrAVvX0bwBI SYcyxVripN3KLXA0sZaXWYJUAwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBKQcKoz y+bw/h6WDLq9Q5UYabgHMB8GA1UdIwQYMBaAFKVw83DVTtAkVMV/g+7D5PRKeot2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OURGNS9DMjQwQjc5NEQx NDExMUVDQTU1Mzg0M0FDNEY5QUUwMi9wWER6Y05WTzBDUlV4WC1EN3NQazlFcDZp M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BYRHpjTlZPMENSVXhYLUQ3c1BrOUVwNmkzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTlERjUvQzI0MEI3OTREMTQxMTFFQ0E1NTM4NDNBQzRGOUFFMDIvQjZFQjdFOEVE MTQ1MTFFQzg5NTI3NjQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnuxwwDwQCAAIwCQMHACABDfC3QDANBgkqhkiG9w0BAQsF AAOCAQEARsJzTNJA3Pf37EQ4YnxfCMZdDuvnYAt8dMyb2LxjHao+RZl7L/ZTGK3X vE1P6Hv85xAzPZJiE5iGAiKeqxMEzEeBFa0iXFoOyRtqSxub4rgOTpkyH4GEJ13X 4DPXk91NqBAJpbc+Gm0mM4cosuD5HYgxwROeUD6u+BggadfRALLyIi1bMO84y+40 UJLYWfbpq66iQuYypt/qx4tNw13ly/EILL+UHRJKDu8EBQCKXtD+MxfzACPi1ql1 aTsnatZptgNFbiStafF42KycmHqFBv3iq5a72+Se8GMJEbcUT0rA+0u0GKxGotsK d5a2nS5VSqPX+aV7WcSGfZkhUXChbw== -----END CERTIFICATE-----Generated at Fri May 17 04:44:32 2024 by rpki-client on console-ams.rpki-client.org