$ rpki-client -vvf rpki.apnic.net/member_repository/A916B4A3/6D62C8C4A04211EB81BFFD1FC4F9AE02/3F82CC6E234E11EFAF9F0F60C4F9AE02.roa File: 3F82CC6E234E11EFAF9F0F60C4F9AE02.roa (raw, json) Hash identifier: HxAvO/qpU08YIp2gfpVVc3f7prPNabUktCiyoZD6ndY= Subject key identifier: 8F:F5:57:08:1F:9C:6B:B1:0E:CA:C0:2D:34:B5:9B:8F:FA:A3:BE:B6 Certificate issuer: /CN=A916B4A3/serialNumber=FE49C2CF7EF7BCFB44424583DF44A47332082C59 Certificate serial: 0570 Authority key identifier: FE:49:C2:CF:7E:F7:BC:FB:44:42:45:83:DF:44:A4:73:32:08:2C:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_knCz373vPtEQkWD30SkczIILFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B4A3/6D62C8C4A04211EB81BFFD1FC4F9AE02/3F82CC6E234E11EFAF9F0F60C4F9AE02.roa Signing time: Wed 05 Jun 2024 15:14:05 +0000 ROA not before: Wed 05 Jun 2024 15:14:05 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 18013 IP address blocks: 103.117.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B4A3/6D62C8C4A04211EB81BFFD1FC4F9AE02/_knCz373vPtEQkWD30SkczIILFk.crl rsync://rpki.apnic.net/member_repository/A916B4A3/6D62C8C4A04211EB81BFFD1FC4F9AE02/_knCz373vPtEQkWD30SkczIILFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_knCz373vPtEQkWD30SkczIILFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 02 Jul 2024 00:03:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1392 (0x570) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B4A3/serialNumber=FE49C2CF7EF7BCFB44424583DF44A47332082C59 Validity Not Before: Jun 5 15:14:05 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=666080bd-2f8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5e:4c:73:23:99:d5:6a:f9:99:fc:75:b5:9e: 15:2d:7e:25:e5:cd:25:3e:6f:2c:0e:eb:e3:ff:25: d2:dd:19:fb:90:73:31:a2:5e:c2:7c:e6:0e:91:be: d0:b7:84:14:fe:05:47:35:9a:0f:7c:da:d2:c1:21: 6c:60:52:18:d0:4b:a7:4a:f2:1e:1b:02:b5:be:6b: 9e:bb:e7:89:9b:6f:e3:66:e6:4c:0e:7e:5c:5d:12: bb:3a:53:1c:31:db:8a:a3:94:91:d4:42:22:bb:da: b7:f2:e9:3a:c7:1f:74:2c:67:e1:ac:76:00:86:af: 04:6f:3a:0f:00:ea:dd:2b:e5:d8:12:35:68:4e:40: c1:15:1c:29:a9:b4:49:02:02:c9:2d:fe:c1:7c:39: 8e:5a:a3:d1:33:f0:17:2a:4b:30:4c:d2:40:6a:0c: b9:eb:b3:c8:b9:98:87:2a:db:04:be:76:3a:f2:c3: 34:54:4b:a9:6e:ba:fa:20:14:fc:9a:74:19:99:42: 2e:77:77:bf:81:2e:07:cd:92:e5:82:7c:7e:c6:b6: ee:2e:b9:85:09:e3:2d:d0:ca:ea:47:ff:fd:b1:83: a1:d1:80:0d:17:3d:6a:e0:70:98:18:da:11:ca:96: 87:ec:11:8e:5e:79:31:9e:bd:90:fe:a1:0d:28:10: 43:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:F5:57:08:1F:9C:6B:B1:0E:CA:C0:2D:34:B5:9B:8F:FA:A3:BE:B6 X509v3 Authority Key Identifier: keyid:FE:49:C2:CF:7E:F7:BC:FB:44:42:45:83:DF:44:A4:73:32:08:2C:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B4A3/6D62C8C4A04211EB81BFFD1FC4F9AE02/_knCz373vPtEQkWD30SkczIILFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_knCz373vPtEQkWD30SkczIILFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B4A3/6D62C8C4A04211EB81BFFD1FC4F9AE02/3F82CC6E234E11EFAF9F0F60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.120.0/22 Signature Algorithm: sha256WithRSAEncryption 98:37:5b:27:2c:ee:ab:92:38:64:cd:94:6e:0b:b7:b3:ee:1b: 93:5f:73:77:0a:1e:b0:8b:6b:eb:cb:00:11:ff:fa:e1:2d:4e: ca:00:56:7b:61:fb:59:69:21:f8:df:3e:5e:1d:b4:2e:06:20: 11:96:f0:3f:72:8e:02:19:fe:11:f7:b3:fe:b0:99:58:90:82: 6b:1b:a1:46:84:35:c5:05:de:9e:5e:af:d2:e9:dd:27:2d:28: 60:83:48:ac:7f:98:39:f7:ed:96:10:96:f2:95:ca:61:00:5d: 52:c5:75:73:15:0d:9a:19:23:fe:88:04:a3:66:ab:e3:d1:e4: 76:b9:6c:6f:c2:ec:38:0a:7b:6e:c6:6e:94:7d:4e:35:9f:19: a0:7e:3d:08:f5:2a:d6:3b:bb:82:35:bd:b3:12:0d:e9:54:8c: 8d:a4:b9:10:ad:2e:18:c6:2f:d7:ac:94:d8:77:f5:9d:bf:29: 20:64:dc:56:15:e3:f0:0b:8a:5b:1c:14:2c:bf:0e:2e:6f:8c: cb:ca:76:b3:93:1e:d5:30:52:0b:b3:92:d0:e3:6a:f8:95:cc: f0:f8:7e:e7:13:6d:d0:3c:a0:cc:57:c8:63:1d:b9:e1:16:70: 93:12:e6:72:36:a4:6a:5a:97:cd:cc:59:a0:d1:05:0c:a0:7b: 1d:80:bc:12 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI0QTMxMTAvBgNVBAUTKEZFNDlDMkNGN0VGN0JDRkI0NDQyNDU4M0RGNDRBNDcz MzIwODJDNTkwHhcNMjQwNjA1MTUxNDA1WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjYwODBiZC0yZjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwF5McyOZ1Wr5mfx1tZ4VLX4l5c0lPm8sDuvj/yXS3Rn7kHMxol7CfOYOkb7Q t4QU/gVHNZoPfNrSwSFsYFIY0EunSvIeGwK1vmueu+eJm2/jZuZMDn5cXRK7OlMc MduKo5SR1EIiu9q38uk6xx90LGfhrHYAhq8EbzoPAOrdK+XYEjVoTkDBFRwpqbRJ AgLJLf7BfDmOWqPRM/AXKkswTNJAagy567PIuZiHKtsEvnY68sM0VEupbrr6IBT8 mnQZmUIud3e/gS4HzZLlgnx+xrbuLrmFCeMt0MrqR//9sYOh0YANFz1q4HCYGNoR ypaH7BGOXnkxnr2Q/qENKBBD8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFI/1Vwgf nGuxDsrALTS1m4/6o762MB8GA1UdIwQYMBaAFP5Jws9+97z7REJFg99EpHMyCCxZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjRBMy82RDYyQzhDNEEw NDIxMUVCODFCRkZEMUZDNEY5QUUwMi9fa25DejM3M3ZQdEVRa1dEMzBTa2N6SUlM RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19rbkN6MzczdlB0RVFrV0QzMFNrY3pJSUxGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkI0QTMvNkQ2MkM4QzRBMDQyMTFFQjgxQkZGRDFGQzRGOUFFMDIvM0Y4MkNDNkUy MzRFMTFFRkFGOUYwRjYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJndXgwDQYJKoZIhvcNAQELBQADggEBAJg3Wycs7quSOGTN lG4Lt7PuG5Nfc3cKHrCLa+vLABH/+uEtTsoAVnth+1lpIfjfPl4dtC4GIBGW8D9y jgIZ/hH3s/6wmViQgmsboUaENcUF3p5er9Lp3SctKGCDSKx/mDn37ZYQlvKVymEA XVLFdXMVDZoZI/6IBKNmq+PR5Ha5bG/C7DgKe27GbpR9TjWfGaB+PQj1KtY7u4I1 vbMSDelUjI2kuRCtLhjGL9eslNh39Z2/KSBk3FYV4/ALilscFCy/Di5vjMvKdrOT HtUwUguzktDjaviVzPD4fucTbdA8oMxXyGMdueEWcJMS5nI2pGpal83MWaDRBQyg ex2AvBI= -----END CERTIFICATE-----Generated at Tue Jun 25 02:53:04 2024 by rpki-client on console-fra.rpki-client.org