$ rpki-client -vvf rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/839EEF2C35F211ED97DF4D2EC4F9AE02.roa File: 839EEF2C35F211ED97DF4D2EC4F9AE02.roa (raw, json) Hash identifier: TV/+X6Ps0g1Kl/JcyWSrY5IH2B6KFPZbRaWohq9Ha3o= Subject key identifier: DF:DF:DF:68:EB:C0:7B:49:0B:5F:AF:25:03:B2:D3:F7:CF:0F:93:89 Certificate issuer: /CN=A915FD27/serialNumber=D452C67EF6874438AFA993A84AD0ABC18516921B Certificate serial: E3 Authority key identifier: D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/839EEF2C35F211ED97DF4D2EC4F9AE02.roa Signing time: Sun 15 Oct 2023 03:54:45 +0000 ROA not before: Sun 15 Oct 2023 03:54:45 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 150316 IP address blocks: 103.5.216.0/23 maxlen: 23 103.5.216.0/24 maxlen: 24 103.5.217.0/24 maxlen: 24 2400:aaa0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.crl rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FD27/serialNumber=D452C67EF6874438AFA993A84AD0ABC18516921B Validity Not Before: Oct 15 03:54:45 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=652b6285-dc67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8d:09:9b:46:c8:0e:d0:38:ee:c0:8e:d4:0e: ed:87:4b:b2:95:58:26:d3:d1:29:89:f3:8e:c9:42: 5d:de:65:b8:a6:9d:e0:cd:af:06:5d:8c:14:fd:77: 85:7e:a7:38:44:74:7f:17:cc:82:a9:6c:16:a5:45: c0:3c:8d:53:4e:1a:ca:a8:bd:07:9c:c4:c0:bc:1a: a8:78:89:f2:8f:1b:2d:43:e8:c0:12:d7:49:1b:93: 0c:85:c8:e8:f4:6a:05:a2:a2:df:c6:a2:bf:47:67: 61:4d:a4:82:71:d3:0a:61:14:49:66:3a:60:12:35: 90:3d:01:b1:82:46:70:b9:2a:9e:a2:fa:c9:6c:3f: 49:18:32:ac:36:99:f5:d8:20:c5:0b:5e:89:c8:3e: d8:d7:e1:70:54:fd:5e:25:b7:7e:ed:78:f4:2a:d7: f9:c8:db:b7:e7:a4:bd:f9:42:f8:1d:2d:a3:ae:cb: cd:7b:64:61:50:e5:e2:df:e4:c0:ec:1b:e5:70:e3: 91:65:2d:4b:30:f2:8e:69:3c:87:fe:7a:36:57:6d: 4a:bc:83:90:c3:2f:46:9c:e5:f4:b2:a2:b6:21:df: fe:78:a3:2c:29:18:aa:2e:9f:af:1b:9a:32:93:ab: 44:a9:83:5a:bc:6a:b3:76:d2:69:75:52:46:33:e5: ea:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:DF:DF:68:EB:C0:7B:49:0B:5F:AF:25:03:B2:D3:F7:CF:0F:93:89 X509v3 Authority Key Identifier: keyid:D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/839EEF2C35F211ED97DF4D2EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.216.0/23 IPv6: 2400:aaa0::/32 Signature Algorithm: sha256WithRSAEncryption 23:e3:e0:cc:2f:57:3f:d7:c7:dd:e9:b5:f0:3b:af:56:f4:6a: 8d:ee:ee:44:a2:6b:a4:76:e0:ed:e2:6d:87:33:a0:b4:6b:68: 70:13:0b:ec:b2:d5:8b:4d:a2:a8:73:0a:2b:9a:95:01:99:53: 08:f4:a3:d1:83:84:44:32:f2:45:be:e6:32:8f:0a:8a:ab:ea: d4:6c:9f:80:8f:ce:53:48:7c:bb:f7:1c:6e:32:cd:77:0f:5a: c4:db:2f:21:6f:f2:7b:66:a4:e4:75:58:b9:0f:b9:d7:1c:54: 87:d5:a8:90:97:96:ce:54:3c:11:90:49:be:e1:af:b8:b5:91: 6d:22:aa:ca:39:ab:9a:a3:45:68:a2:d2:52:5b:ff:e0:37:a9: e3:b4:46:e0:6b:62:f4:ab:42:21:6e:9c:29:98:11:0a:6a:b9: de:9a:dc:25:ae:ba:61:05:85:e1:91:30:43:a9:8e:e6:e8:be: 33:e7:02:4e:56:a1:8f:ae:47:e5:3e:f2:10:af:19:53:4f:5b: 1b:d3:9a:28:61:fe:f8:d0:f1:56:aa:e9:89:73:ae:4b:ea:25: 2a:96:59:e3:62:9d:cc:4f:8d:d7:13:ac:8b:2e:7b:d9:28:d0: 6b:fa:f6:42:17:0f:81:4d:77:48:b5:8b:71:f0:97:38:f3:40: 2c:8c:78:b3 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZEMjcxMTAvBgNVBAUTKEQ0NTJDNjdFRjY4NzQ0MzhBRkE5OTNBODRBRDBBQkMx ODUxNjkyMUIwHhcNMjMxMDE1MDM1NDQ1WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTJiNjI4NS1kYzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxo0Jm0bIDtA47sCO1A7th0uylVgm09EpifOOyUJd3mW4pp3gza8GXYwU/XeF fqc4RHR/F8yCqWwWpUXAPI1TThrKqL0HnMTAvBqoeInyjxstQ+jAEtdJG5MMhcjo 9GoFoqLfxqK/R2dhTaSCcdMKYRRJZjpgEjWQPQGxgkZwuSqeovrJbD9JGDKsNpn1 2CDFC16JyD7Y1+FwVP1eJbd+7Xj0Ktf5yNu356S9+UL4HS2jrsvNe2RhUOXi3+TA 7BvlcOORZS1LMPKOaTyH/no2V21KvIOQwy9GnOX0sqK2Id/+eKMsKRiqLp+vG5oy k6tEqYNavGqzdtJpdVJGM+XqWwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFN/f32jr wHtJC1+vJQOy0/fPD5OJMB8GA1UdIwQYMBaAFNRSxn72h0Q4r6mTqErQq8GFFpIb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkQyNy9BODBEQjM4MjM1 RUYxMUVEODIzOUFGMkJDNEY5QUUwMi8xRkxHZnZhSFJEaXZxWk9vU3RDcndZVVdr aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFGTEdmdmFIUkRpdnFaT29TdENyd1lVV2tocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUZEMjcvQTgwREIzODIzNUVGMTFFRDgyMzlBRjJCQzRGOUFFMDIvODM5RUVGMkMz NUYyMTFFRDk3REY0RDJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnBdgwDQQCAAIwBwMFACQAqqAwDQYJKoZIhvcNAQELBQAD ggEBACPj4MwvVz/Xx93ptfA7r1b0ao3u7kSia6R24O3ibYczoLRraHATC+yy1YtN oqhzCiualQGZUwj0o9GDhEQy8kW+5jKPCoqr6tRsn4CPzlNIfLv3HG4yzXcPWsTb LyFv8ntmpOR1WLkPudccVIfVqJCXls5UPBGQSb7hr7i1kW0iqso5q5qjRWii0lJb /+A3qeO0RuBrYvSrQiFunCmYEQpqud6a3CWuumEFheGRMEOpjubovjPnAk5WoY+u R+U+8hCvGVNPWxvTmihh/vjQ8Vaq6YlzrkvqJSqWWeNincxPjdcTrIsue9ko0Gv6 9kIXD4FNd0i1i3HwlzjzQCyMeLM= -----END CERTIFICATE-----Generated at Sat Jun 1 07:09:19 2024 by rpki-client on console-fra.rpki-client.org