$ rpki-client -vvf rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/5694D344791B11EEA64C016BC4F9AE02.roa File: 5694D344791B11EEA64C016BC4F9AE02.roa (raw, json) Hash identifier: ldqul+qAxqsBC6fKklS2tZ7mlukVmXd+N/vvwcM9Q8g= Subject key identifier: 28:75:A9:2C:98:0D:82:B8:E8:98:19:92:3C:46:AB:51:C1:49:6E:AD Certificate issuer: /CN=A915E678/serialNumber=008F5D06F0FEFC40FD830B26CD7660A383110C91 Certificate serial: 0E Authority key identifier: 00:8F:5D:06:F0:FE:FC:40:FD:83:0B:26:CD:76:60:A3:83:11:0C:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI9dBvD-_ED9gwsmzXZgo4MRDJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/5694D344791B11EEA64C016BC4F9AE02.roa Signing time: Mon 06 Nov 2023 02:46:52 +0000 ROA not before: Mon 06 Nov 2023 02:46:52 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 133050 IP address blocks: 103.247.184.0/24 maxlen: 24 103.247.185.0/24 maxlen: 24 103.247.186.0/24 maxlen: 24 103.247.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.crl rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI9dBvD-_ED9gwsmzXZgo4MRDJE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:55:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E678/serialNumber=008F5D06F0FEFC40FD830B26CD7660A383110C91 Validity Not Before: Nov 6 02:46:52 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6548539c-e570 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2c:8f:3b:d1:17:f8:89:f3:f6:a8:30:c4:13: ef:ba:4a:d6:30:49:e7:47:5a:4f:50:00:22:c8:97: 68:72:3f:3e:78:49:49:4f:92:77:4a:03:85:d0:5e: 7e:a0:d2:9b:06:df:11:30:c5:2b:d2:8f:ea:a4:22: 52:66:35:f2:9b:bd:f5:f1:b4:b4:e5:f8:03:7c:1c: d7:25:00:cc:ef:23:f9:53:8a:0d:37:45:8d:1d:0d: 28:b1:38:e4:24:16:14:b4:5d:9d:1a:2d:4b:30:e8: 4d:5e:d2:9f:68:02:e2:ee:7b:79:9d:df:ef:5c:44: 5a:d5:66:9c:32:32:85:66:e1:01:e0:e5:5a:ea:56: fb:61:3b:aa:84:3e:b9:d6:c4:7e:75:b4:17:0f:87: 17:53:b3:cb:6d:9e:a8:ec:0a:b1:4e:52:45:1e:04: 32:4e:82:73:2b:5b:c7:16:b6:76:11:a7:66:95:f9: 21:14:dc:eb:89:ec:ed:46:a2:7d:68:de:f0:74:64: 36:34:0c:23:c1:dc:b5:6b:ce:28:ea:48:cc:9a:18: ad:ca:da:1c:87:bf:cb:e1:87:c1:6a:05:ce:7d:94: 93:1c:df:02:e2:f4:97:20:4f:82:84:4e:bd:1c:c9: 03:0c:c5:2f:70:da:c3:44:fc:5c:ba:ff:f1:01:eb: 2d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:75:A9:2C:98:0D:82:B8:E8:98:19:92:3C:46:AB:51:C1:49:6E:AD X509v3 Authority Key Identifier: keyid:00:8F:5D:06:F0:FE:FC:40:FD:83:0B:26:CD:76:60:A3:83:11:0C:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI9dBvD-_ED9gwsmzXZgo4MRDJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/5694D344791B11EEA64C016BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.247.184.0/22 Signature Algorithm: sha256WithRSAEncryption 20:e4:b4:69:4a:04:c9:72:fe:f6:21:6d:cf:c7:f2:f0:4c:e9: dc:7e:af:92:14:7f:e8:9a:18:c1:69:ab:40:fb:0b:92:e1:09: 90:12:fd:50:41:21:f0:1b:16:4e:ce:6b:16:a0:5e:59:bb:76: d6:72:88:1f:c8:b9:48:eb:63:50:2a:55:01:d6:0a:07:66:91: da:54:3b:a6:f7:58:2e:88:25:1e:29:e0:24:a9:77:75:ec:ae: 20:49:21:81:7c:dc:fe:ca:ae:f3:4d:dc:1a:26:19:cc:77:0f: ee:60:0c:25:6c:0b:9b:72:23:8c:85:0f:34:b9:3e:74:0e:3d: 0a:57:81:c1:17:f6:b6:8b:46:cf:22:d0:cb:e0:9d:c9:fd:db: 85:45:81:8b:47:63:81:ef:c9:8c:59:c5:88:73:d9:b3:cb:7e: eb:09:32:bd:bd:ed:29:fd:29:0c:2a:85:07:8f:66:37:40:23: 0f:33:4e:ca:cf:c2:75:41:a1:22:33:b6:75:2f:c4:3a:c8:5d: e8:5b:0c:48:ae:6f:9e:7a:96:94:86:ab:f4:34:6e:7e:e8:43: 61:fa:46:58:ee:5d:0c:72:6f:f3:05:16:da:89:1e:eb:e8:26: ac:80:64:9f:bc:19:78:a7:79:f2:7d:cc:77:71:57:e1:22:b8: 4c:5f:69:a3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RTY3ODExMC8GA1UEBRMoMDA4RjVEMDZGMEZFRkM0MEZEODMwQjI2Q0Q3NjYwQTM4 MzExMEM5MTAeFw0yMzExMDYwMjQ2NTJaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NDg1MzljLWU1NzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0LI870Rf4ifP2qDDEE++6StYwSedHWk9QACLIl2hyPz54SUlPkndKA4XQXn6g 0psG3xEwxSvSj+qkIlJmNfKbvfXxtLTl+AN8HNclAMzvI/lTig03RY0dDSixOOQk FhS0XZ0aLUsw6E1e0p9oAuLue3md3+9cRFrVZpwyMoVm4QHg5VrqVvthO6qEPrnW xH51tBcPhxdTs8ttnqjsCrFOUkUeBDJOgnMrW8cWtnYRp2aV+SEU3OuJ7O1Gon1o 3vB0ZDY0DCPB3LVrzijqSMyaGK3K2hyHv8vhh8FqBc59lJMc3wLi9JcgT4KETr0c yQMMxS9w2sNE/Fy6//EB6y1vAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUKHWpLJgN grjomBmSPEarUcFJbq0wHwYDVR0jBBgwFoAUAI9dBvD+/ED9gwsmzXZgo4MRDJEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVFNjc4LzdBRUVEODYyNzkx QTExRUVBQ0ExQUQyQkM0RjlBRTAyL0FJOWRCdkQtX0VEOWd3c216WFpnbzRNUkRK RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQUk5ZEJ2RC1fRUQ5Z3dzbXpYWmdvNE1SREpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTY3OC83QUVFRDg2Mjc5MUExMUVFQUNBMUFEMkJDNEY5QUUwMi81Njk0RDM0NDc5 MUIxMUVFQTY0QzAxNkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmf3uDANBgkqhkiG9w0BAQsFAAOCAQEAIOS0aUoEyXL+9iFt z8fy8Ezp3H6vkhR/6JoYwWmrQPsLkuEJkBL9UEEh8BsWTs5rFqBeWbt21nKIH8i5 SOtjUCpVAdYKB2aR2lQ7pvdYLoglHingJKl3deyuIEkhgXzc/squ803cGiYZzHcP 7mAMJWwLm3IjjIUPNLk+dA49CleBwRf2totGzyLQy+Cdyf3bhUWBi0djge/JjFnF iHPZs8t+6wkyvb3tKf0pDCqFB49mN0AjDzNOys/CdUGhIjO2dS/EOshd6FsMSK5v nnqWlIar9DRufuhDYfpGWO5dDHJv8wUW2oke6+gmrIBkn7wZeKd58n3Md3FX4SK4 TF9pow== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:28 2024 by rpki-client on console-fra.rpki-client.org