$ rpki-client -vvf rpki.apnic.net/member_repository/A918E80E/00E92504B1CC11EAA6A3CD7CC4F9AE02/15C562A2B1CD11EA9A31DA7DC4F9AE02.roa File: 15C562A2B1CD11EA9A31DA7DC4F9AE02.roa (raw, json) Hash identifier: uzwGZx0lOKgMiII26y/rxgrO7suGbXUTp9/KngrkqPU= Subject key identifier: E0:0E:DC:F7:76:D2:07:F3:14:70:30:23:49:FE:71:A9:61:AD:A7:C4 Certificate issuer: /CN=A918E80E/serialNumber=5BBD66E86334E99817E2C6D5BCEB7DAD020FCA8A Certificate serial: 07FE Authority key identifier: 5B:BD:66:E8:63:34:E9:98:17:E2:C6:D5:BC:EB:7D:AD:02:0F:CA:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W71m6GM06ZgX4sbVvOt9rQIPyoo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E80E/00E92504B1CC11EAA6A3CD7CC4F9AE02/15C562A2B1CD11EA9A31DA7DC4F9AE02.roa Signing time: Sat 30 Mar 2024 22:00:57 +0000 ROA not before: Sat 30 Mar 2024 22:00:57 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 55707 IP address blocks: 103.5.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E80E/00E92504B1CC11EAA6A3CD7CC4F9AE02/W71m6GM06ZgX4sbVvOt9rQIPyoo.crl rsync://rpki.apnic.net/member_repository/A918E80E/00E92504B1CC11EAA6A3CD7CC4F9AE02/W71m6GM06ZgX4sbVvOt9rQIPyoo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W71m6GM06ZgX4sbVvOt9rQIPyoo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Oct 2024 20:37:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2046 (0x7fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E80E/serialNumber=5BBD66E86334E99817E2C6D5BCEB7DAD020FCA8A Validity Not Before: Mar 30 22:00:57 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66088b99-0818 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:fa:a1:4b:e7:ab:ae:06:fb:f6:e5:f4:d4:80: fc:30:3d:fe:3e:48:64:49:45:67:cd:46:ac:e1:81: 59:a1:e4:69:3e:c6:25:4d:60:a8:4c:15:1c:2f:fe: 33:be:ea:da:30:b5:0d:8f:29:7e:69:02:75:ce:ab: 0e:a2:04:0e:87:82:94:d8:4a:1b:b0:5e:48:b6:8b: 39:b9:54:2e:a1:95:20:87:28:ce:67:59:49:fe:0a: d6:4f:17:cb:ff:69:9f:d8:41:fa:35:1c:1f:37:68: 02:a9:64:bc:7b:79:f0:4c:64:c0:e7:22:1e:ad:9f: 5b:5d:ca:0c:28:1d:f3:64:3b:df:15:88:60:ce:49: 69:5e:dc:9e:a5:4f:91:fa:71:92:9d:93:6d:1a:3d: ef:37:6b:a4:19:06:98:6a:e4:d3:10:6d:0d:d0:12: f3:81:ac:65:24:88:e7:bf:1b:b9:94:2a:33:10:e5: e7:63:ad:d3:eb:92:64:25:40:4d:e2:48:92:43:c1: 1d:3f:3f:fe:c0:3c:b7:1a:44:bd:3a:18:a7:e3:77: ae:f1:05:f6:98:81:5c:ce:4b:65:50:2a:3f:52:57: ae:18:c4:38:58:2c:16:53:b8:e6:e4:50:48:8a:5f: 8c:2e:6a:ec:5a:a8:9a:78:67:34:ef:a8:35:69:24: 98:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:0E:DC:F7:76:D2:07:F3:14:70:30:23:49:FE:71:A9:61:AD:A7:C4 X509v3 Authority Key Identifier: keyid:5B:BD:66:E8:63:34:E9:98:17:E2:C6:D5:BC:EB:7D:AD:02:0F:CA:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E80E/00E92504B1CC11EAA6A3CD7CC4F9AE02/W71m6GM06ZgX4sbVvOt9rQIPyoo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W71m6GM06ZgX4sbVvOt9rQIPyoo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E80E/00E92504B1CC11EAA6A3CD7CC4F9AE02/15C562A2B1CD11EA9A31DA7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.88.0/24 Signature Algorithm: sha256WithRSAEncryption 60:e1:e4:71:6b:8d:93:a3:3a:ff:ed:0f:6f:28:bb:67:9a:1f: 43:34:89:52:46:d4:0f:00:50:18:44:59:be:29:fb:1f:52:74: 4f:bd:84:f5:7f:f7:20:fd:bf:95:35:a7:87:19:59:84:74:14: 9b:0d:37:5c:e7:79:31:bb:81:e9:9b:05:c2:b1:e5:39:6d:e5: 2a:65:3d:0a:ad:04:cf:c2:ba:03:67:e2:2c:80:4b:67:86:e2: 95:3b:7b:55:1d:79:cb:09:a2:fc:d3:98:ed:9f:60:2e:92:ab: 19:e9:83:a5:15:44:24:25:e4:9d:e7:fa:4f:f8:12:44:55:2b: de:df:aa:4c:73:20:90:5b:39:69:d6:8b:7a:08:7e:97:9b:4a: fa:77:c0:ef:af:c0:6f:1d:86:dc:4e:7b:db:6e:99:c0:5c:d7: 56:23:b7:11:51:90:f8:b6:8c:ea:47:da:18:36:0e:cd:29:95: 8d:da:6b:73:12:60:2d:2e:49:41:9e:95:02:30:bc:b9:f5:f5: 9f:c1:66:ac:cf:ed:39:6c:fd:81:6f:05:cc:82:22:fb:97:9d: 36:5f:35:f5:26:13:43:5c:d6:0b:63:ca:30:83:0b:ff:7d:d5: 2b:37:76:2c:f7:03:bb:ef:88:46:f6:7f:37:9d:f6:ee:6c:9c: 17:7e:da:a2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4MEUxMTAvBgNVBAUTKDVCQkQ2NkU4NjMzNEU5OTgxN0UyQzZENUJDRUI3REFE MDIwRkNBOEEwHhcNMjQwMzMwMjIwMDU3WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjA4OGI5OS0wODE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfqhS+errgb79uX01ID8MD3+PkhkSUVnzUas4YFZoeRpPsYlTWCoTBUcL/4z vuraMLUNjyl+aQJ1zqsOogQOh4KU2EobsF5Itos5uVQuoZUghyjOZ1lJ/grWTxfL /2mf2EH6NRwfN2gCqWS8e3nwTGTA5yIerZ9bXcoMKB3zZDvfFYhgzklpXtyepU+R +nGSnZNtGj3vN2ukGQaYauTTEG0N0BLzgaxlJIjnvxu5lCozEOXnY63T65JkJUBN 4kiSQ8EdPz/+wDy3GkS9Ohin43eu8QX2mIFczktlUCo/UleuGMQ4WCwWU7jm5FBI il+MLmrsWqiaeGc076g1aSSYsQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOAO3Pd2 0gfzFHAwI0n+calhrafEMB8GA1UdIwQYMBaAFFu9ZuhjNOmYF+LG1bzrfa0CD8qK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTgwRS8wMEU5MjUwNEIx Q0MxMUVBQTZBM0NEN0NDNEY5QUUwMi9XNzFtNkdNMDZaZ1g0c2JWdk90OXJRSVB5 b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1c3MW02R00wNlpnWDRzYlZ2T3Q5clFJUHlvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU4MEUvMDBFOTI1MDRCMUNDMTFFQUE2QTNDRDdDQzRGOUFFMDIvMTVDNTYyQTJC MUNEMTFFQTlBMzFEQTdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnBVgwDQYJKoZIhvcNAQELBQADggEBAGDh5HFrjZOjOv/t D28ou2eaH0M0iVJG1A8AUBhEWb4p+x9SdE+9hPV/9yD9v5U1p4cZWYR0FJsNN1zn eTG7gembBcKx5Tlt5SplPQqtBM/CugNn4iyAS2eG4pU7e1UdecsJovzTmO2fYC6S qxnpg6UVRCQl5J3n+k/4EkRVK97fqkxzIJBbOWnWi3oIfpebSvp3wO+vwG8dhtxO e9tumcBc11YjtxFRkPi2jOpH2hg2Ds0plY3aa3MSYC0uSUGelQIwvLn19Z/BZqzP 7Tls/YFvBcyCIvuXnTZfNfUmE0Nc1gtjyjCDC/991Ss3diz3A7vviEb2fzed9u5s nBd+2qI= -----END CERTIFICATE-----Generated at Thu Sep 26 23:06:23 2024 by rpki-client on console-ams.rpki-client.org