$ rpki-client -vvf rpki.apnic.net/member_repository/A916600A/9EA2BB7E3CD011EEAE554E73C4F9AE02/FC73357271B811EEAEDED685C4F9AE02.roa File: FC73357271B811EEAEDED685C4F9AE02.roa (raw, json) Hash identifier: tde+vUJakIp3I6DilPG1SltVQgnZyzbbBDIV3qPw0lE= Subject key identifier: C5:8D:25:EB:3A:A8:52:9C:5F:B2:65:59:09:CF:69:AB:D4:99:A0:EA Certificate issuer: /CN=A916600A/serialNumber=38EC19DACA58C45D91C659D35FE4F26DD824ACE4 Certificate serial: 42 Authority key identifier: 38:EC:19:DA:CA:58:C4:5D:91:C6:59:D3:5F:E4:F2:6D:D8:24:AC:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOwZ2spYxF2RxlnTX-TybdgkrOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916600A/9EA2BB7E3CD011EEAE554E73C4F9AE02/FC73357271B811EEAEDED685C4F9AE02.roa Signing time: Thu 09 Nov 2023 17:57:52 +0000 ROA not before: Thu 09 Nov 2023 17:57:52 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 58955 IP address blocks: 103.216.158.0/23 maxlen: 23 103.216.158.0/24 maxlen: 24 103.216.159.0/24 maxlen: 24 2001:df2:d3c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916600A/9EA2BB7E3CD011EEAE554E73C4F9AE02/OOwZ2spYxF2RxlnTX-TybdgkrOQ.crl rsync://rpki.apnic.net/member_repository/A916600A/9EA2BB7E3CD011EEAE554E73C4F9AE02/OOwZ2spYxF2RxlnTX-TybdgkrOQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOwZ2spYxF2RxlnTX-TybdgkrOQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916600A/serialNumber=38EC19DACA58C45D91C659D35FE4F26DD824ACE4 Validity Not Before: Nov 9 17:57:52 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=654d1da0-4eab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b1:a4:55:cf:8e:48:b3:9c:09:66:44:76:92: 34:b3:a7:07:97:70:60:2f:15:74:e3:6a:f6:90:ae: f1:a3:f0:ac:b6:ab:0e:df:86:5e:68:a9:5c:1b:8b: 34:c9:a9:53:7f:84:35:53:e8:28:ea:0b:e8:9a:5e: 07:36:82:4f:45:96:cd:9f:12:66:31:4e:54:10:88: 29:8f:81:72:45:a9:4f:ca:59:ff:83:df:7c:e2:0e: 8b:fa:cb:fa:22:c2:e2:59:d7:78:de:ed:ac:04:63: 69:aa:7a:f9:e9:fb:0c:0d:93:31:2a:0b:46:2e:cd: 45:d3:e4:b5:d0:8c:4a:13:93:a9:e9:a9:8d:f3:5f: 73:8e:ac:d8:c1:fa:73:ac:5f:2b:c6:f3:58:ce:f9: b6:80:6c:3b:d2:55:b0:7c:7d:ca:f8:f6:df:87:04: 66:a4:20:85:87:09:2f:c0:73:4a:da:a7:5b:ae:50: 87:31:27:5c:2f:13:e8:84:26:16:80:45:49:6a:17: 07:9b:a0:ad:18:75:b0:f3:89:b0:39:4a:7c:31:0d: b6:16:58:9d:07:df:99:c5:e4:ee:7e:99:82:96:85: cc:ab:6e:61:ac:15:e7:dd:78:49:56:0d:74:c5:d5: 54:d6:54:0c:c0:52:37:b3:e0:af:65:97:ce:9f:8a: f3:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:8D:25:EB:3A:A8:52:9C:5F:B2:65:59:09:CF:69:AB:D4:99:A0:EA X509v3 Authority Key Identifier: keyid:38:EC:19:DA:CA:58:C4:5D:91:C6:59:D3:5F:E4:F2:6D:D8:24:AC:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916600A/9EA2BB7E3CD011EEAE554E73C4F9AE02/OOwZ2spYxF2RxlnTX-TybdgkrOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOwZ2spYxF2RxlnTX-TybdgkrOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916600A/9EA2BB7E3CD011EEAE554E73C4F9AE02/FC73357271B811EEAEDED685C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.216.158.0/23 IPv6: 2001:df2:d3c0::/48 Signature Algorithm: sha256WithRSAEncryption 43:63:1c:50:2c:b0:f9:9b:39:d0:fc:4f:ff:5d:e3:dd:a4:40: bf:c4:d3:ce:8e:b4:86:ab:6b:fc:13:94:71:5c:09:ec:bc:d2: 8d:c5:93:ed:de:7b:f6:6b:41:e7:8b:eb:99:f1:8c:de:e9:d8: 38:13:8e:85:91:62:fb:ce:29:0f:78:ec:9a:79:ae:58:e6:f0: 90:d6:f9:8f:d3:52:da:e4:de:8c:38:90:7c:c9:fd:0e:a9:c5: f7:98:87:40:26:17:fa:22:e8:59:0b:df:9f:d8:1a:2f:a6:96: 22:9c:e7:92:ad:af:08:f7:56:ca:65:0e:f3:af:8d:45:89:b8: 26:a0:87:b4:bb:6c:c5:95:50:00:4f:a2:48:bd:eb:34:d5:8b: 23:4c:6b:f3:90:08:cd:dc:f6:c6:2c:28:7f:f7:2c:9d:ae:ae: a1:9d:d6:52:2f:61:b1:c6:8d:d9:35:ee:fe:31:aa:7f:58:d4: 01:eb:42:80:0e:e9:6f:64:77:b7:34:23:27:29:93:07:00:ef: c7:c2:37:1f:10:b2:53:29:ac:18:97:79:31:f3:f5:f7:2c:84: 41:8f:d9:90:12:e1:92:52:ec:ff:d3:4a:b0:72:5a:e0:06:a0: 67:01:7a:46:32:83:aa:9b:12:0e:cd:cd:ea:5b:88:5c:af:68: 94:0b:02:cc -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NjAwQTExMC8GA1UEBRMoMzhFQzE5REFDQTU4QzQ1RDkxQzY1OUQzNUZFNEYyNkRE ODI0QUNFNDAeFw0yMzExMDkxNzU3NTJaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NGQxZGEwLTRlYWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMsaRVz45Is5wJZkR2kjSzpweXcGAvFXTjavaQrvGj8Ky2qw7fhl5oqVwbizTJ qVN/hDVT6CjqC+iaXgc2gk9Fls2fEmYxTlQQiCmPgXJFqU/KWf+D33ziDov6y/oi wuJZ13je7awEY2mqevnp+wwNkzEqC0YuzUXT5LXQjEoTk6npqY3zX3OOrNjB+nOs XyvG81jO+baAbDvSVbB8fcr49t+HBGakIIWHCS/Ac0rap1uuUIcxJ1wvE+iEJhaA RUlqFweboK0YdbDzibA5SnwxDbYWWJ0H35nF5O5+mYKWhcyrbmGsFefdeElWDXTF 1VTWVAzAUjez4K9ll86fivN9AgMBAAGjggKmMIICojAdBgNVHQ4EFgQUxY0l6zqo UpxfsmVZCc9pq9SZoOowHwYDVR0jBBgwFoAUOOwZ2spYxF2RxlnTX+TybdgkrOQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY2MDBBLzlFQTJCQjdFM0NE MDExRUVBRTU1NEU3M0M0RjlBRTAyL09Pd1oyc3BZeEYyUnhsblRYLVR5YmRna3JP US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT093WjJzcFl4RjJSeGxuVFgtVHliZGdrck9RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NjAwQS85RUEyQkI3RTNDRDAxMUVFQUU1NTRFNzNDNEY5QUUwMi9GQzczMzU3Mjcx QjgxMUVFQUVERUQ2ODVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWfYnjAPBAIAAjAJAwcAIAEN8tPAMA0GCSqGSIb3DQEBCwUA A4IBAQBDYxxQLLD5mznQ/E//XePdpEC/xNPOjrSGq2v8E5RxXAnsvNKNxZPt3nv2 a0Hni+uZ8Yze6dg4E46FkWL7zikPeOyaea5Y5vCQ1vmP01La5N6MOJB8yf0OqcX3 mIdAJhf6IuhZC9+f2BovppYinOeSra8I91bKZQ7zr41FibgmoIe0u2zFlVAAT6JI ves01YsjTGvzkAjN3PbGLCh/9yydrq6hndZSL2Gxxo3ZNe7+Map/WNQB60KADulv ZHe3NCMnKZMHAO/HwjcfELJTKawYl3kx8/X3LIRBj9mQEuGSUuz/00qwclrgBqBn AXpGMoOqmxIOzc3qW4hcr2iUCwLM -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:32 2024 by rpki-client on console-fra.rpki-client.org