$ rpki-client -vvf rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/E0AAFE389A2411EBA8913944C4F9AE02.roa File: E0AAFE389A2411EBA8913944C4F9AE02.roa (raw, json) Hash identifier: 1D7+OCtGjby5tViOYZaur4l4d2dDZ0m3lkkYo/LV9js= Subject key identifier: DE:1D:17:29:FA:E8:51:D6:9C:5C:9C:3A:51:C2:89:3D:07:16:FA:37 Certificate issuer: /CN=A912BE9D/serialNumber=BF6AD1ABC9D91619A09287FB6C64F4647B9FD31C Certificate serial: 0614 Authority key identifier: BF:6A:D1:AB:C9:D9:16:19:A0:92:87:FB:6C:64:F4:64:7B:9F:D3:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v2rRq8nZFhmgkof7bGT0ZHuf0xw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/E0AAFE389A2411EBA8913944C4F9AE02.roa Signing time: Sat 10 Aug 2024 23:31:05 +0000 ROA not before: Sat 10 Aug 2024 23:31:05 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 131317 IP address blocks: 103.8.44.0/24 maxlen: 24 103.8.45.0/24 maxlen: 24 103.8.46.0/24 maxlen: 24 2403:8600:ea88::/48 maxlen: 48 2403:8600:ea89::/48 maxlen: 48 2403:8600:ea8a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/v2rRq8nZFhmgkof7bGT0ZHuf0xw.crl rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/v2rRq8nZFhmgkof7bGT0ZHuf0xw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v2rRq8nZFhmgkof7bGT0ZHuf0xw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1556 (0x614) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BE9D/serialNumber=BF6AD1ABC9D91619A09287FB6C64F4647B9FD31C Validity Not Before: Aug 10 23:31:05 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66b7f839-2086 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:82:9c:d4:26:aa:13:35:60:fe:00:f0:19:46: 49:91:e6:06:2f:ec:04:5f:57:71:f9:c5:26:9b:d8: 9e:f5:93:47:80:77:fe:00:34:2d:7e:42:4e:03:96: 9e:f3:b7:1b:27:d4:39:5e:ea:21:85:7e:e3:69:bc: 6a:19:13:14:35:3b:cb:f8:e6:a9:2b:3b:16:9a:27: ee:3a:79:11:d7:08:10:02:60:05:f7:e0:4c:00:ee: ee:27:6b:0f:15:8d:3d:47:b9:ff:a4:b8:e2:f9:d6: a4:4e:99:ba:3c:13:a8:41:56:b9:bd:bd:15:b6:a8: 8e:67:4d:83:59:b4:2d:2d:79:70:e6:9e:e2:83:fb: f4:34:64:a8:09:c2:11:b3:9c:00:8c:98:71:6d:d3: e0:e4:46:f4:80:d2:d2:d6:48:d8:d6:43:fe:e6:41: 24:79:3d:a9:08:7c:23:ae:ad:57:79:26:98:e0:8a: 7d:e3:65:90:43:9c:db:05:a8:ee:79:3b:10:28:11: 15:84:a4:d8:0b:ed:7c:ba:bb:b4:54:fd:4a:79:90: 83:10:9b:f3:77:03:ef:f5:34:2d:52:b6:58:83:7d: 4f:f1:e2:cb:2a:58:c8:f4:e8:c5:b4:7a:7f:d5:a3: ce:29:09:ce:78:c9:2d:3c:e4:75:4d:43:87:bd:e0: 94:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:1D:17:29:FA:E8:51:D6:9C:5C:9C:3A:51:C2:89:3D:07:16:FA:37 X509v3 Authority Key Identifier: keyid:BF:6A:D1:AB:C9:D9:16:19:A0:92:87:FB:6C:64:F4:64:7B:9F:D3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/v2rRq8nZFhmgkof7bGT0ZHuf0xw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v2rRq8nZFhmgkof7bGT0ZHuf0xw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/E0AAFE389A2411EBA8913944C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.8.44.0-103.8.46.255 IPv6: 2403:8600:ea88::-2403:8600:ea8a:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 1a:f3:30:74:48:d1:65:f0:66:9c:19:08:4a:b1:98:47:0c:4f: 6f:26:f6:34:0a:23:36:f0:0c:63:6d:fc:fd:19:fd:f7:97:bb: 87:a9:35:5b:5d:6a:94:31:4a:71:28:5a:3b:5c:f4:d9:68:98: d5:64:e2:31:63:c9:9e:55:06:77:41:46:8c:44:91:8f:69:27: e5:a2:5b:83:41:29:c6:a1:a6:04:ad:8b:ce:61:cb:f9:cd:f8: c1:a9:03:c8:d9:8b:f9:93:30:25:46:a1:81:1a:fb:a4:b5:02: 4e:c5:d1:e2:3a:73:ab:0a:5a:8d:18:ff:ad:b4:1e:fa:51:ee: 7c:74:0f:8c:24:72:da:de:b7:66:88:c3:e1:87:b6:1e:25:02: 85:12:df:cd:57:b4:81:bf:8a:dd:59:93:be:5d:03:3a:da:cd: 7c:35:32:80:4a:63:ec:bf:86:25:a6:59:f5:aa:1d:ca:6c:33: 47:d4:30:e6:3c:0b:10:8a:30:64:b4:6e:eb:95:f3:f7:dc:fb: 0e:98:b4:0d:d2:43:2e:bb:d8:21:9d:b7:62:ec:30:60:d4:60: 33:04:34:73:bb:56:bb:dd:63:18:98:31:e6:48:16:e4:24:49: 5e:d2:93:17:18:ac:78:8f:89:f6:41:77:37:de:7a:1c:e4:51: 91:80:28:83 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgICBhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJFOUQxMTAvBgNVBAUTKEJGNkFEMUFCQzlEOTE2MTlBMDkyODdGQjZDNjRGNDY0 N0I5RkQzMUMwHhcNMjQwODEwMjMzMTA1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmI3ZjgzOS0yMDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYKc1CaqEzVg/gDwGUZJkeYGL+wEX1dx+cUmm9ie9ZNHgHf+ADQtfkJOA5ae 87cbJ9Q5XuohhX7jabxqGRMUNTvL+OapKzsWmifuOnkR1wgQAmAF9+BMAO7uJ2sP FY09R7n/pLji+dakTpm6PBOoQVa5vb0VtqiOZ02DWbQtLXlw5p7ig/v0NGSoCcIR s5wAjJhxbdPg5Eb0gNLS1kjY1kP+5kEkeT2pCHwjrq1XeSaY4Ip942WQQ5zbBaju eTsQKBEVhKTYC+18uru0VP1KeZCDEJvzdwPv9TQtUrZYg31P8eLLKljI9OjFtHp/ 1aPOKQnOeMktPOR1TUOHveCUQwIDAQABo4ICuTCCArUwHQYDVR0OBBYEFN4dFyn6 6FHWnFycOlHCiT0HFvo3MB8GA1UdIwQYMBaAFL9q0avJ2RYZoJKH+2xk9GR7n9Mc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkU5RC9EMzA1RTRFRTk5 MEUxMUVCODlCNzZENjhDNEY5QUUwMi92MnJScThuWkZobWdrb2Y3YkdUMFpIdWYw eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3YyclJxOG5aRmhtZ2tvZjdiR1QwWkh1ZjB4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkJFOUQvRDMwNUU0RUU5OTBFMTFFQjg5Qjc2RDY4QzRGOUFFMDIvRTBBQUZFMzg5 QTI0MTFFQkE4OTEzOTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQwYIKwYBBQUHAQcBAf8E NDAyMBQEAgABMA4wDAMEAmcILAMEAGcILjAaBAIAAjAUMBIDBwMkA4YA6ogDBwAk A4YA6oowDQYJKoZIhvcNAQELBQADggEBABrzMHRI0WXwZpwZCEqxmEcMT28m9jQK IzbwDGNt/P0Z/feXu4epNVtdapQxSnEoWjtc9NlomNVk4jFjyZ5VBndBRoxEkY9p J+WiW4NBKcahpgSti85hy/nN+MGpA8jZi/mTMCVGoYEa+6S1Ak7F0eI6c6sKWo0Y /620HvpR7nx0D4wkctret2aIw+GHth4lAoUS381XtIG/it1Zk75dAzrazXw1MoBK Y+y/hiWmWfWqHcpsM0fUMOY8CxCKMGS0buuV8/fc+w6YtA3SQy672CGdt2LsMGDU YDMENHO7VrvdYxiYMeZIFuQkSV7SkxcYrHiPifZBdzfeehzkUZGAKIM= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:23 2024 by rpki-client on console-fra.rpki-client.org