$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED17F/A56D5F40FB4711EABEF47D3EC4F9AE02/8E7B872C2FED11ECB35A414FC4F9AE02.roa File: 8E7B872C2FED11ECB35A414FC4F9AE02.roa (raw, json) Hash identifier: 6G48QCBxnk47O0ZP40MqlHHprvi018zn6Ewz0OWI5eo= Subject key identifier: 3F:1B:75:55:95:98:15:36:DC:67:BA:C5:77:75:54:90:3F:F3:DF:D2 Certificate issuer: /CN=A91ED17F/serialNumber=17F4FB128756EBB0BAC59D4E0F4B7E087279760D Certificate serial: 06D8 Authority key identifier: 17:F4:FB:12:87:56:EB:B0:BA:C5:9D:4E:0F:4B:7E:08:72:79:76:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F_T7EodW67C6xZ1OD0t-CHJ5dg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED17F/A56D5F40FB4711EABEF47D3EC4F9AE02/8E7B872C2FED11ECB35A414FC4F9AE02.roa Signing time: Fri 16 Feb 2024 22:41:50 +0000 ROA not before: Fri 16 Feb 2024 22:41:50 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 58800 IP address blocks: 103.245.108.0/22 maxlen: 22 103.245.108.0/24 maxlen: 24 103.245.109.0/24 maxlen: 24 103.245.110.0/24 maxlen: 24 103.245.111.0/24 maxlen: 24 2406:b00::/32 maxlen: 32 2406:b00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED17F/A56D5F40FB4711EABEF47D3EC4F9AE02/F_T7EodW67C6xZ1OD0t-CHJ5dg0.crl rsync://rpki.apnic.net/member_repository/A91ED17F/A56D5F40FB4711EABEF47D3EC4F9AE02/F_T7EodW67C6xZ1OD0t-CHJ5dg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F_T7EodW67C6xZ1OD0t-CHJ5dg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 22:07:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1752 (0x6d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED17F/serialNumber=17F4FB128756EBB0BAC59D4E0F4B7E087279760D Validity Not Before: Feb 16 22:41:50 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65cfe4ad-c3be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:43:65:53:83:57:50:9c:dd:79:70:c3:e4:1b: b8:b1:6f:60:53:fe:d3:f6:7e:39:ee:7f:df:1a:6f: f0:c5:ca:a8:13:d6:36:33:64:ce:13:86:d5:61:9e: 24:d4:d8:21:92:20:8b:61:a9:db:69:19:5a:d4:be: a3:f3:6d:92:40:2d:02:4c:e3:c4:eb:48:95:84:7c: 7a:5d:22:8e:b5:c7:4b:db:46:96:db:00:74:93:01: 52:fb:92:35:a9:98:0f:81:b3:9c:dc:dd:3e:df:21: a2:b4:1a:e9:d2:7e:18:41:a5:51:5f:b0:1a:d5:ae: 69:1a:30:f6:09:e6:72:11:65:3b:97:58:62:55:d2: d7:8f:f0:f2:5e:ff:e8:e4:02:2a:c1:cd:c5:18:c3: a5:15:8e:84:c9:72:2f:7f:d0:b2:19:86:95:f0:61: 3a:a2:a3:5d:82:6b:be:af:c3:34:7d:a6:fd:f5:8e: 35:27:6a:cc:a5:a0:e3:21:82:47:22:f5:cd:02:9f: d8:c9:bd:9a:59:94:a9:a9:27:8d:c3:ca:2c:a8:a3: d4:67:68:5d:44:77:4b:5f:27:67:fd:ca:c2:fd:a2: 5a:3f:59:51:70:0d:00:16:7e:3a:01:b1:f2:a6:de: 86:b5:de:2d:f1:ef:38:64:81:7d:27:7b:b4:56:38: 8b:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:1B:75:55:95:98:15:36:DC:67:BA:C5:77:75:54:90:3F:F3:DF:D2 X509v3 Authority Key Identifier: keyid:17:F4:FB:12:87:56:EB:B0:BA:C5:9D:4E:0F:4B:7E:08:72:79:76:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED17F/A56D5F40FB4711EABEF47D3EC4F9AE02/F_T7EodW67C6xZ1OD0t-CHJ5dg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F_T7EodW67C6xZ1OD0t-CHJ5dg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED17F/A56D5F40FB4711EABEF47D3EC4F9AE02/8E7B872C2FED11ECB35A414FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.245.108.0/22 IPv6: 2406:b00::/32 Signature Algorithm: sha256WithRSAEncryption 6e:51:13:e7:9b:c6:e4:49:87:2a:43:ff:9a:b8:a4:e3:6a:2d: 00:44:38:8f:6a:1b:97:8e:e3:6a:b8:b4:f0:40:b7:c1:0d:91: 86:74:dd:85:3d:f5:4c:96:12:4f:f8:ab:51:62:83:ff:16:98: aa:5c:bc:59:71:a1:50:29:9d:0e:51:a7:c0:e4:8f:ac:3e:68: ef:e8:60:e9:1b:f1:ea:27:2c:44:4f:6f:de:1d:af:85:1b:ae: b5:bc:0b:2f:15:3c:87:41:fe:fb:f8:c1:f5:80:0b:a0:a4:08: a1:61:09:6a:96:da:38:af:d6:bc:38:22:f4:ee:9b:88:4a:f2: aa:da:c1:05:31:7e:d3:5a:23:7a:4e:30:01:66:7e:f9:2c:1c: e4:00:6f:22:8e:fd:8a:f9:f8:b9:c9:b8:74:02:c4:70:3a:ec: d9:9d:18:26:93:a9:11:0d:47:06:85:2a:bd:20:f7:72:dd:6c: 2d:bb:27:4f:84:3a:88:3e:a8:b8:84:71:f6:78:a4:7f:8b:b4: 80:2e:7f:85:fb:65:b5:99:86:a1:ab:19:42:0a:21:0f:6c:43: de:77:21:11:fd:9f:66:ca:f0:bf:c1:a5:8e:b6:52:29:92:a0: b4:38:76:19:bd:4d:59:f2:f4:e7:6f:00:e9:09:6f:c0:fa:c1: ed:a7:dc:82 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQxN0YxMTAvBgNVBAUTKDE3RjRGQjEyODc1NkVCQjBCQUM1OUQ0RTBGNEI3RTA4 NzI3OTc2MEQwHhcNMjQwMjE2MjI0MTUwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNmZTRhZC1jM2JlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA50NlU4NXUJzdeXDD5Bu4sW9gU/7T9n457n/fGm/wxcqoE9Y2M2TOE4bVYZ4k 1NghkiCLYanbaRla1L6j822SQC0CTOPE60iVhHx6XSKOtcdL20aW2wB0kwFS+5I1 qZgPgbOc3N0+3yGitBrp0n4YQaVRX7Aa1a5pGjD2CeZyEWU7l1hiVdLXj/DyXv/o 5AIqwc3FGMOlFY6EyXIvf9CyGYaV8GE6oqNdgmu+r8M0fab99Y41J2rMpaDjIYJH IvXNAp/Yyb2aWZSpqSeNw8osqKPUZ2hdRHdLXydn/crC/aJaP1lRcA0AFn46AbHy pt6Gtd4t8e84ZIF9J3u0VjiLQQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFD8bdVWV mBU23Ge6xXd1VJA/89/SMB8GA1UdIwQYMBaAFBf0+xKHVuuwusWdTg9LfghyeXYN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDE3Ri9BNTZENUY0MEZC NDcxMUVBQkVGNDdEM0VDNEY5QUUwMi9GX1Q3RW9kVzY3QzZ4WjFPRDB0LUNISjVk ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZfVDdFb2RXNjdDNnhaMU9EMHQtQ0hKNWRnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUQxN0YvQTU2RDVGNDBGQjQ3MTFFQUJFRjQ3RDNFQzRGOUFFMDIvOEU3Qjg3MkMy RkVEMTFFQ0IzNUE0MTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJn9WwwDQQCAAIwBwMFACQGCwAwDQYJKoZIhvcNAQELBQAD ggEBAG5RE+ebxuRJhypD/5q4pONqLQBEOI9qG5eO42q4tPBAt8ENkYZ03YU99UyW Ek/4q1Fig/8WmKpcvFlxoVApnQ5Rp8Dkj6w+aO/oYOkb8eonLERPb94dr4UbrrW8 Cy8VPIdB/vv4wfWAC6CkCKFhCWqW2jiv1rw4IvTum4hK8qrawQUxftNaI3pOMAFm fvksHOQAbyKO/Yr5+LnJuHQCxHA67NmdGCaTqRENRwaFKr0g93LdbC27J0+EOog+ qLiEcfZ4pH+LtIAuf4X7ZbWZhqGrGUIKIQ9sQ953IRH9n2bK8L/BpY62UimSoLQ4 dhm9TVny9OdvAOkJb8D6we2n3II= -----END CERTIFICATE-----Generated at Wed Jun 12 23:36:08 2024 by rpki-client on console-fra.rpki-client.org