$ rpki-client -vvf rpki.apnic.net/member_repository/A913F8FC/F739A4F8BD1511EE800F482CC4F9AE02/8EE39CBEBD1B11EE9256E851C4F9AE02.roa File: 8EE39CBEBD1B11EE9256E851C4F9AE02.roa (raw, json) Hash identifier: jRdYoSLqX1McavAvcMe6uOX0PZVOdCEP8k8+NHeutBg= Subject key identifier: DC:10:65:78:CB:A8:31:08:B6:1A:5C:04:31:82:A9:D5:07:F3:15:D7 Certificate issuer: /CN=A913F8FC/serialNumber=6ADAFBA2996830C51D681C3212D04B5C724C131D Certificate serial: 4C Authority key identifier: 6A:DA:FB:A2:99:68:30:C5:1D:68:1C:32:12:D0:4B:5C:72:4C:13:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/atr7oploMMUdaBwyEtBLXHJMEx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F8FC/F739A4F8BD1511EE800F482CC4F9AE02/8EE39CBEBD1B11EE9256E851C4F9AE02.roa Signing time: Fri 31 May 2024 09:20:43 +0000 ROA not before: Fri 31 May 2024 09:20:43 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 38207 IP address blocks: 103.5.188.0/22 maxlen: 24 110.172.16.0/21 maxlen: 24 203.188.224.0/21 maxlen: 24 219.90.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F8FC/F739A4F8BD1511EE800F482CC4F9AE02/atr7oploMMUdaBwyEtBLXHJMEx0.crl rsync://rpki.apnic.net/member_repository/A913F8FC/F739A4F8BD1511EE800F482CC4F9AE02/atr7oploMMUdaBwyEtBLXHJMEx0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/atr7oploMMUdaBwyEtBLXHJMEx0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F8FC/serialNumber=6ADAFBA2996830C51D681C3212D04B5C724C131D Validity Not Before: May 31 09:20:43 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6659966b-c1b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:82:4e:c1:73:1c:07:2b:b8:5e:c9:7d:70:fa: 50:a7:cb:dd:b7:b6:aa:2b:f9:27:d7:d6:f5:64:3d: a1:05:39:d3:47:77:6d:32:b7:ac:45:9c:3d:32:2a: 22:f6:a9:48:46:67:8b:64:c3:12:86:8d:fd:3d:8f: 18:c0:38:1d:4c:be:88:30:f2:de:19:b6:88:ad:cf: fc:fb:11:df:e6:f0:c0:28:84:d1:71:44:75:24:ed: 4c:30:19:61:8b:6b:30:5a:5e:49:30:c5:92:d9:49: 2c:8c:11:e3:0d:ef:3f:80:d5:e6:86:49:99:d3:ee: 73:92:b4:42:b1:4a:6d:67:21:9e:e7:0b:38:0d:22: 89:6f:a9:be:e9:8a:aa:ad:15:3b:25:87:4b:b1:c7: 64:a4:fa:2c:ff:7b:76:0a:34:59:02:65:79:b2:6b: 0b:e1:3a:f0:47:da:04:cf:53:4e:33:77:15:77:36: 7e:10:b0:90:a4:bc:db:41:cf:dc:6a:6e:a9:fd:56: 8f:db:2f:47:65:58:39:64:c8:96:2f:92:e1:7d:11: 01:57:84:b0:57:71:8a:2d:c1:de:0a:9e:04:1b:d4: 9a:66:ec:6c:cd:7b:39:31:12:61:bd:ae:6e:bd:92: b2:97:6c:31:34:c4:06:47:6c:d7:4c:aa:2f:1d:76: 41:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:10:65:78:CB:A8:31:08:B6:1A:5C:04:31:82:A9:D5:07:F3:15:D7 X509v3 Authority Key Identifier: keyid:6A:DA:FB:A2:99:68:30:C5:1D:68:1C:32:12:D0:4B:5C:72:4C:13:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F8FC/F739A4F8BD1511EE800F482CC4F9AE02/atr7oploMMUdaBwyEtBLXHJMEx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/atr7oploMMUdaBwyEtBLXHJMEx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F8FC/F739A4F8BD1511EE800F482CC4F9AE02/8EE39CBEBD1B11EE9256E851C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.188.0/22 110.172.16.0/21 203.188.224.0/21 219.90.96.0/20 Signature Algorithm: sha256WithRSAEncryption 0b:78:df:8e:28:58:bd:14:bc:e4:12:12:a1:0a:37:6e:b8:a7: 55:f1:14:de:63:17:43:8d:41:53:5f:a0:51:94:ea:96:df:2f: 6f:fa:63:41:68:86:dd:31:40:aa:6b:4a:d4:00:d1:78:ab:43: b7:42:5f:e0:6f:7e:c3:58:e8:8e:d9:de:52:92:da:97:9a:c9: 3d:11:59:a9:64:c0:3a:60:07:7e:ba:90:0f:d3:fa:8b:04:eb: dc:5c:3d:1d:fa:d7:8d:34:7d:f6:32:4a:46:23:1f:22:3e:d1: 81:43:13:07:89:e6:65:b3:34:3f:5f:2d:5f:88:75:ca:18:83: c3:30:96:82:5c:49:b7:83:78:d9:31:8f:a3:1e:f3:b1:df:4a: 99:b5:39:7c:f7:d1:e6:87:00:c1:9f:36:81:e7:97:04:93:7d: 60:ae:39:ff:1d:42:09:be:7a:5d:48:ef:54:f6:58:c6:c8:99: 1b:45:9d:1a:57:4c:14:cf:01:a5:96:bd:87:3d:8b:4f:59:3f: 62:bf:68:3d:b1:cd:d1:35:06:90:6d:78:b4:82:c8:24:be:6c: 20:3d:24:8d:ba:ba:91:2d:ac:97:71:d7:3e:e9:75:98:62:2f: b8:77:01:93:65:ce:cc:70:0f:fb:2e:74:ef:9c:d6:21:79:a9: a3:f8:b1:4d -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RjhGQzExMC8GA1UEBRMoNkFEQUZCQTI5OTY4MzBDNTFENjgxQzMyMTJEMDRCNUM3 MjRDMTMxRDAeFw0yNDA1MzEwOTIwNDNaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NTk5NjZiLWMxYjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxgk7BcxwHK7heyX1w+lCny923tqor+SfX1vVkPaEFOdNHd20yt6xFnD0yKiL2 qUhGZ4tkwxKGjf09jxjAOB1Mvogw8t4Ztoitz/z7Ed/m8MAohNFxRHUk7UwwGWGL azBaXkkwxZLZSSyMEeMN7z+A1eaGSZnT7nOStEKxSm1nIZ7nCzgNIolvqb7piqqt FTslh0uxx2Sk+iz/e3YKNFkCZXmyawvhOvBH2gTPU04zdxV3Nn4QsJCkvNtBz9xq bqn9Vo/bL0dlWDlkyJYvkuF9EQFXhLBXcYotwd4KngQb1Jpm7GzNezkxEmG9rm69 krKXbDE0xAZHbNdMqi8ddkGbAgMBAAGjggKnMIICozAdBgNVHQ4EFgQU3BBleMuo MQi2GlwEMYKp1QfzFdcwHwYDVR0jBBgwFoAUatr7oploMMUdaBwyEtBLXHJMEx0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNGOEZDL0Y3MzlBNEY4QkQx NTExRUU4MDBGNDgyQ0M0RjlBRTAyL2F0cjdvcGxvTU1VZGFCd3lFdEJMWEhKTUV4 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYXRyN29wbG9NTVVkYUJ3eUV0QkxYSEpNRXgwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjhGQy9GNzM5QTRGOEJEMTUxMUVFODAwRjQ4MkNDNEY5QUUwMi84RUUzOUNCRUJE MUIxMUVFOTI1NkU4NTFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAxBggrBgEFBQcBBwEB/wQi MCAwHgQCAAEwGAMEAmcFvAMEA26sEAMEA8u84AMEBNtaYDANBgkqhkiG9w0BAQsF AAOCAQEAC3jfjihYvRS85BISoQo3brinVfEU3mMXQ41BU1+gUZTqlt8vb/pjQWiG 3TFAqmtK1ADReKtDt0Jf4G9+w1jojtneUpLal5rJPRFZqWTAOmAHfrqQD9P6iwTr 3Fw9HfrXjTR99jJKRiMfIj7RgUMTB4nmZbM0P18tX4h1yhiDwzCWglxJt4N42TGP ox7zsd9KmbU5fPfR5ocAwZ82geeXBJN9YK45/x1CCb56XUjvVPZYxsiZG0WdGldM FM8BpZa9hz2LT1k/Yr9oPbHN0TUGkG14tILIJL5sID0kjbq6kS2sl3HXPul1mGIv uHcBk2XOzHAP+y5075zWIXmpo/ixTQ== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:27 2024 by rpki-client on console-fra.rpki-client.org