$ rpki-client -vvf rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/E0AAFE389A2411EBA8913944C4F9AE02.roa File: E0AAFE389A2411EBA8913944C4F9AE02.roa (raw, json) Hash identifier: L5HhGa/7Bohxoa/abrfTvc6lWXlIabMsvk31fKX6G9M= Subject key identifier: 9A:0D:B5:D0:83:8E:EC:E6:74:B8:AD:6C:66:33:F9:D6:13:DE:4D:50 Certificate issuer: /CN=A912BE9D/serialNumber=BF6AD1ABC9D91619A09287FB6C64F4647B9FD31C Certificate serial: 0532 Authority key identifier: BF:6A:D1:AB:C9:D9:16:19:A0:92:87:FB:6C:64:F4:64:7B:9F:D3:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v2rRq8nZFhmgkof7bGT0ZHuf0xw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/E0AAFE389A2411EBA8913944C4F9AE02.roa Signing time: Thu 03 Aug 2023 00:00:55 +0000 ROA not before: Thu 03 Aug 2023 00:00:55 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 131317 IP address blocks: 103.8.44.0/24 maxlen: 24 103.8.45.0/24 maxlen: 24 103.8.46.0/24 maxlen: 24 2403:8600:ea88::/48 maxlen: 48 2403:8600:ea89::/48 maxlen: 48 2403:8600:ea8a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/v2rRq8nZFhmgkof7bGT0ZHuf0xw.crl rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/v2rRq8nZFhmgkof7bGT0ZHuf0xw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v2rRq8nZFhmgkof7bGT0ZHuf0xw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1330 (0x532) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BE9D/serialNumber=BF6AD1ABC9D91619A09287FB6C64F4647B9FD31C Validity Not Before: Aug 3 00:00:55 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64caee37-7fd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:bb:fe:9f:91:8b:86:62:d7:a3:3e:1b:66:b8: 74:89:7f:28:b0:84:99:4b:cf:27:15:58:86:19:4e: 28:aa:37:1e:05:62:e2:93:1d:e0:fb:41:4b:e5:7a: 42:29:ab:b6:fb:70:08:57:ae:fb:2f:c5:fb:ec:25: a5:3d:40:54:da:f2:f4:1d:41:1a:12:ae:fe:f0:16: 20:0d:fe:b2:08:5c:11:cd:11:3d:fd:4a:4e:cd:31: 37:e1:52:e4:f4:b3:e1:e7:b2:cb:f1:28:fd:3e:05: 2b:ed:e3:cf:8b:75:f1:ba:91:26:70:3f:21:59:64: 87:1f:23:a6:2f:b8:00:91:ac:9f:9b:c8:aa:80:11: 04:18:a5:17:dc:cb:a5:b3:0f:f0:ad:41:4b:e1:82: 58:62:3a:d9:f8:d6:1d:a3:9f:b0:67:b2:6a:6b:3b: 62:80:fc:18:2e:3e:96:25:6f:59:06:52:b7:b5:b7: 12:d8:97:82:bc:28:be:66:4f:d2:7d:11:10:0a:13: 72:4a:85:83:88:76:f4:11:a1:15:00:d3:62:8f:e0: 17:ef:c9:d4:c2:26:f1:bd:05:e9:8e:23:21:8f:7b: c5:f1:7b:8f:47:4b:9b:d2:ea:e3:98:82:84:2a:7a: 39:1d:76:77:15:44:27:bf:f9:1d:2b:82:8d:8e:f7: b8:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:0D:B5:D0:83:8E:EC:E6:74:B8:AD:6C:66:33:F9:D6:13:DE:4D:50 X509v3 Authority Key Identifier: keyid:BF:6A:D1:AB:C9:D9:16:19:A0:92:87:FB:6C:64:F4:64:7B:9F:D3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/v2rRq8nZFhmgkof7bGT0ZHuf0xw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v2rRq8nZFhmgkof7bGT0ZHuf0xw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/E0AAFE389A2411EBA8913944C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.8.44.0-103.8.46.255 IPv6: 2403:8600:ea88::-2403:8600:ea8a:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 07:1e:d7:d8:82:15:4e:ea:a1:be:84:9a:c9:09:9b:7d:a7:9f: a1:3e:eb:ef:6e:04:02:fb:1a:b8:bb:48:1d:fd:de:b5:1e:7c: d7:c8:e9:48:25:f3:8b:8d:35:03:9b:df:0b:69:4b:56:d5:d5: b1:13:79:eb:17:f1:30:5a:0e:3e:6e:9a:a8:45:26:1c:47:1d: a7:cc:de:e1:5d:c8:18:a7:3d:9b:20:dd:86:ba:b2:70:cd:18: 2f:73:dd:3f:fa:ef:d6:12:7b:9f:01:d7:b6:c1:8f:3e:69:e8: 37:21:c5:65:00:ab:e0:93:33:74:f6:04:c7:b6:b6:90:7b:11: 97:e5:69:be:6d:42:3c:37:79:83:48:25:0f:50:3f:a3:1e:2c: 2e:ea:bd:44:e7:5b:56:5a:86:1f:27:fa:35:00:a1:55:0c:35: 5e:b9:e8:06:7d:1a:7b:e4:b2:b7:2d:5f:bc:ee:0c:1c:19:32: 9c:f5:e9:5e:44:39:a9:36:c6:dc:a6:0b:9f:b9:c7:34:33:6a: 4c:e0:4a:4d:a6:6e:db:fc:51:07:ee:5b:2c:f6:53:44:e9:10: 31:5d:e9:80:92:d6:82:8a:36:39:94:36:91:ec:dd:90:50:59: 7d:17:d1:0e:18:67:b8:07:6c:59:07:b5:7f:47:4d:ee:76:44: 81:5f:02:f4 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgICBTIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJFOUQxMTAvBgNVBAUTKEJGNkFEMUFCQzlEOTE2MTlBMDkyODdGQjZDNjRGNDY0 N0I5RkQzMUMwHhcNMjMwODAzMDAwMDU1WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhZWUzNy03ZmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzbv+n5GLhmLXoz4bZrh0iX8osISZS88nFViGGU4oqjceBWLikx3g+0FL5XpC Kau2+3AIV677L8X77CWlPUBU2vL0HUEaEq7+8BYgDf6yCFwRzRE9/UpOzTE34VLk 9LPh57LL8Sj9PgUr7ePPi3XxupEmcD8hWWSHHyOmL7gAkayfm8iqgBEEGKUX3Mul sw/wrUFL4YJYYjrZ+NYdo5+wZ7JqaztigPwYLj6WJW9ZBlK3tbcS2JeCvCi+Zk/S fREQChNySoWDiHb0EaEVANNij+AX78nUwibxvQXpjiMhj3vF8XuPR0ub0urjmIKE Kno5HXZ3FUQnv/kdK4KNjve4TQIDAQABo4ICuTCCArUwHQYDVR0OBBYEFJoNtdCD juzmdLitbGYz+dYT3k1QMB8GA1UdIwQYMBaAFL9q0avJ2RYZoJKH+2xk9GR7n9Mc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkU5RC9EMzA1RTRFRTk5 MEUxMUVCODlCNzZENjhDNEY5QUUwMi92MnJScThuWkZobWdrb2Y3YkdUMFpIdWYw eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3YyclJxOG5aRmhtZ2tvZjdiR1QwWkh1ZjB4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkJFOUQvRDMwNUU0RUU5OTBFMTFFQjg5Qjc2RDY4QzRGOUFFMDIvRTBBQUZFMzg5 QTI0MTFFQkE4OTEzOTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQwYIKwYBBQUHAQcBAf8E NDAyMBQEAgABMA4wDAMEAmcILAMEAGcILjAaBAIAAjAUMBIDBwMkA4YA6ogDBwAk A4YA6oowDQYJKoZIhvcNAQELBQADggEBAAce19iCFU7qob6EmskJm32nn6E+6+9u BAL7Gri7SB393rUefNfI6Ugl84uNNQOb3wtpS1bV1bETeesX8TBaDj5umqhFJhxH HafM3uFdyBinPZsg3Ya6snDNGC9z3T/679YSe58B17bBjz5p6DchxWUAq+CTM3T2 BMe2tpB7EZflab5tQjw3eYNIJQ9QP6MeLC7qvUTnW1Zahh8n+jUAoVUMNV656AZ9 GnvksrctX7zuDBwZMpz16V5EOak2xtymC5+5xzQzakzgSk2mbtv8UQfuWyz2U0Tp EDFd6YCS1oKKNjmUNpHs3ZBQWX0X0Q4YZ7gHbFkHtX9HTe52RIFfAvQ= -----END CERTIFICATE-----Generated at Fri May 17 02:01:40 2024 by rpki-client on console-ams.rpki-client.org