$ rpki-client -vvf rpki.apnic.net/member_repository/A9199E9B/B07E4B26C5BD11E9B1913C1CC4F9AE02/7C2C8232C5BF11E9B616CF1FC4F9AE02.roa File: 7C2C8232C5BF11E9B616CF1FC4F9AE02.roa (raw, json) Hash identifier: OOcUaZPbkyW4779Q1AXKo2gixDB3AoDPgAdlfA9uGBc= Subject key identifier: F6:35:F8:0D:68:6A:BE:BD:E6:EB:96:AE:C1:01:87:55:B4:9C:79:17 Certificate issuer: /CN=A9199E9B/serialNumber=C16EEC077D338C423AAF1DEB797640671B7FC9BE Certificate serial: 0C6D Authority key identifier: C1:6E:EC:07:7D:33:8C:42:3A:AF:1D:EB:79:76:40:67:1B:7F:C9:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wW7sB30zjEI6rx3reXZAZxt_yb4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199E9B/B07E4B26C5BD11E9B1913C1CC4F9AE02/7C2C8232C5BF11E9B616CF1FC4F9AE02.roa Signing time: Wed 08 Nov 2023 18:46:47 +0000 ROA not before: Wed 08 Nov 2023 18:46:47 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 139595 IP address blocks: 103.142.39.0/24 maxlen: 24 103.171.14.0/24 maxlen: 24 2001:df7:3080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199E9B/B07E4B26C5BD11E9B1913C1CC4F9AE02/wW7sB30zjEI6rx3reXZAZxt_yb4.crl rsync://rpki.apnic.net/member_repository/A9199E9B/B07E4B26C5BD11E9B1913C1CC4F9AE02/wW7sB30zjEI6rx3reXZAZxt_yb4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wW7sB30zjEI6rx3reXZAZxt_yb4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3181 (0xc6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199E9B/serialNumber=C16EEC077D338C423AAF1DEB797640671B7FC9BE Validity Not Before: Nov 8 18:46:47 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=654bd797-0b6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b5:1c:2f:78:79:e5:28:59:ce:b8:a3:43:b4: 43:8d:49:91:33:74:87:ce:f9:eb:99:42:33:aa:3b: 0c:b0:36:de:93:65:d1:ca:86:51:78:61:1f:05:ff: c6:3e:05:c6:1c:76:0f:b7:ec:99:be:ea:0f:ce:d9: 3a:d3:d2:8a:e8:57:d3:a5:88:2e:74:ff:d9:a2:e4: 60:37:d5:ad:e0:21:30:09:ec:06:ed:4d:d0:00:d7: c7:8b:d2:e8:80:30:29:c7:3b:26:82:5f:97:89:2d: 8c:ac:11:52:c4:56:a5:5d:82:6b:56:ab:42:ae:11: 03:47:25:de:2d:b4:3c:7c:b8:e8:58:5b:e2:5a:20: 2c:93:9c:bc:8a:85:39:3f:6f:50:c2:cc:bc:a9:ec: cb:96:ff:fd:b0:2f:9b:9f:bb:d1:3b:00:aa:28:26: 75:f3:88:3e:c4:ce:70:4f:00:bd:7a:a0:ee:e5:a8: a4:cb:ca:85:99:f7:16:45:26:37:38:85:20:b6:cf: ee:66:a3:65:76:06:90:d2:3b:31:c7:36:14:f9:fe: 3c:4d:e9:e5:a9:70:06:8a:ca:1e:61:ad:c8:41:10: eb:7e:e7:98:2e:89:48:21:13:1c:0f:47:da:20:e0: 22:69:19:c3:31:61:e1:b7:c6:1a:e8:1f:c4:6c:af: a0:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:35:F8:0D:68:6A:BE:BD:E6:EB:96:AE:C1:01:87:55:B4:9C:79:17 X509v3 Authority Key Identifier: keyid:C1:6E:EC:07:7D:33:8C:42:3A:AF:1D:EB:79:76:40:67:1B:7F:C9:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199E9B/B07E4B26C5BD11E9B1913C1CC4F9AE02/wW7sB30zjEI6rx3reXZAZxt_yb4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wW7sB30zjEI6rx3reXZAZxt_yb4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199E9B/B07E4B26C5BD11E9B1913C1CC4F9AE02/7C2C8232C5BF11E9B616CF1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.39.0/24 103.171.14.0/24 IPv6: 2001:df7:3080::/48 Signature Algorithm: sha256WithRSAEncryption 60:be:ba:e0:66:d4:38:f4:60:a9:13:87:9e:e5:57:40:8b:b2: 92:f5:04:e4:1a:49:ee:81:7b:70:49:9b:db:f6:13:99:67:ca: 33:c0:a7:f0:fd:fd:fd:e5:0b:bb:81:81:b8:cc:ab:99:84:27: d1:25:00:97:01:90:f0:4b:eb:a1:d4:d6:9f:f2:bb:6d:0f:5c: 8a:4f:cf:53:10:31:af:7b:96:54:7d:bb:74:a9:36:96:c4:0e: 03:50:11:9b:57:7a:ca:b6:12:ed:77:e6:11:9a:fb:2d:e8:25: 6f:94:8c:11:92:8e:62:0c:43:62:68:9d:0a:51:44:78:89:ee: 8a:6d:31:60:9d:b6:2e:ab:b4:4d:21:cb:bd:c8:ca:99:50:2e: 4c:99:49:31:d4:7c:f0:89:54:06:35:5b:3b:09:26:f9:49:7e: c3:ce:0a:10:57:49:fe:3b:2d:3d:50:ad:1c:0d:ec:15:b9:99: 4b:11:70:7d:f7:f7:d9:1c:c9:f2:2e:b2:5e:b7:a3:94:18:e9: 29:ff:9e:9e:f1:c0:d8:68:f8:da:a4:e9:9c:94:bb:86:46:4f: 6f:b9:6a:a7:b1:6b:7d:07:eb:8a:6b:23:20:34:e9:90:13:e4: 73:92:7f:be:7d:7c:b1:32:b1:ba:49:24:29:27:76:b9:ff:7c: 12:0d:22:23 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICDG0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlFOUIxMTAvBgNVBAUTKEMxNkVFQzA3N0QzMzhDNDIzQUFGMURFQjc5NzY0MDY3 MUI3RkM5QkUwHhcNMjMxMTA4MTg0NjQ3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTRiZDc5Ny0wYjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsLUcL3h55ShZzrijQ7RDjUmRM3SHzvnrmUIzqjsMsDbek2XRyoZReGEfBf/G PgXGHHYPt+yZvuoPztk609KK6FfTpYgudP/ZouRgN9Wt4CEwCewG7U3QANfHi9Lo gDApxzsmgl+XiS2MrBFSxFalXYJrVqtCrhEDRyXeLbQ8fLjoWFviWiAsk5y8ioU5 P29Qwsy8qezLlv/9sC+bn7vROwCqKCZ184g+xM5wTwC9eqDu5aiky8qFmfcWRSY3 OIUgts/uZqNldgaQ0jsxxzYU+f48TenlqXAGisoeYa3IQRDrfueYLolIIRMcD0fa IOAiaRnDMWHht8Ya6B/EbK+gZQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFPY1+A1o ar695uuWrsEBh1W0nHkXMB8GA1UdIwQYMBaAFMFu7Ad9M4xCOq8d63l2QGcbf8m+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUU5Qi9CMDdFNEIyNkM1 QkQxMUU5QjE5MTNDMUNDNEY5QUUwMi93VzdzQjMwempFSTZyeDNyZVhaQVp4dF95 YjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dXN3NCMzB6akVJNnJ4M3JlWFpBWnh0X3liNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTlFOUIvQjA3RTRCMjZDNUJEMTFFOUIxOTEzQzFDQzRGOUFFMDIvN0MyQzgyMzJD NUJGMTFFOUI2MTZDRjFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnjicDBABnqw4wDwQCAAIwCQMHACABDfcwgDANBgkqhkiG 9w0BAQsFAAOCAQEAYL664GbUOPRgqROHnuVXQIuykvUE5BpJ7oF7cEmb2/YTmWfK M8Cn8P39/eULu4GBuMyrmYQn0SUAlwGQ8EvrodTWn/K7bQ9cik/PUxAxr3uWVH27 dKk2lsQOA1ARm1d6yrYS7XfmEZr7Leglb5SMEZKOYgxDYmidClFEeInuim0xYJ22 Lqu0TSHLvcjKmVAuTJlJMdR88IlUBjVbOwkm+Ul+w84KEFdJ/jstPVCtHA3sFbmZ SxFwfff32RzJ8i6yXrejlBjpKf+envHA2Gj42qTpnJS7hkZPb7lqp7FrfQfrimsj IDTpkBPkc5J/vn18sTKxukkkKSd2uf98Eg0iIw== -----END CERTIFICATE-----Generated at Sat May 18 19:21:04 2024 by rpki-client on console-fra.rpki-client.org