$ rpki-client -vvf rpki.apnic.net/member_repository/A914524B/B51022D6F88F11EE976C1E2AC4F9AE02/A16739B2F89011EE9EB9D42BC4F9AE02.roa File: A16739B2F89011EE9EB9D42BC4F9AE02.roa (raw, json) Hash identifier: s3mR2k/e5SkeaCyoP8EX/9btVYTmyjC/lOlCzYCWi+I= Subject key identifier: 76:02:27:3E:37:60:14:47:AA:42:52:9E:7F:B8:6A:7F:8C:E0:6B:42 Certificate issuer: /CN=A914524B/serialNumber=42792CF43DFDB486AD7A07B123CB2A61A33E23E3 Certificate serial: 08 Authority key identifier: 42:79:2C:F4:3D:FD:B4:86:AD:7A:07:B1:23:CB:2A:61:A3:3E:23:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qnks9D39tIategexI8sqYaM-I-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914524B/B51022D6F88F11EE976C1E2AC4F9AE02/A16739B2F89011EE9EB9D42BC4F9AE02.roa Signing time: Fri 12 Apr 2024 05:52:46 +0000 ROA not before: Fri 12 Apr 2024 05:52:46 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 140956 IP address blocks: 103.153.194.0/23 maxlen: 23 103.153.194.0/24 maxlen: 24 2001:df4:5780::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914524B/B51022D6F88F11EE976C1E2AC4F9AE02/Qnks9D39tIategexI8sqYaM-I-M.crl rsync://rpki.apnic.net/member_repository/A914524B/B51022D6F88F11EE976C1E2AC4F9AE02/Qnks9D39tIategexI8sqYaM-I-M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qnks9D39tIategexI8sqYaM-I-M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914524B/serialNumber=42792CF43DFDB486AD7A07B123CB2A61A33E23E3 Validity Not Before: Apr 12 05:52:46 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6618cc2e-0989 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:c3:ae:b6:0b:40:9d:6d:47:7a:f3:38:ec:61: 35:f2:06:ee:91:3d:f7:3d:b5:23:4e:66:86:90:a5: 00:4e:55:ca:b0:4c:0a:b0:f5:9b:54:f3:96:f2:1f: 2e:10:f0:8c:df:b4:a3:c8:de:02:89:69:02:dc:e6: 31:e5:b8:b8:45:d8:ef:b3:e6:20:68:16:01:d8:bb: 93:42:c0:c4:59:e2:19:7a:87:98:6e:dc:e3:a1:d4: a4:26:26:27:de:f7:8d:d9:d5:67:41:5f:39:cf:ab: fe:b6:67:12:b9:d6:59:1a:37:f2:c7:a5:06:bc:98: e6:dc:e9:6c:c2:03:a2:19:21:1a:d4:45:16:e6:25: 7e:b4:d4:dc:c5:7e:80:34:26:6e:c9:1b:54:b1:b7: e0:0b:db:64:2f:51:ee:64:b6:5e:ef:16:bf:96:f3: 65:b8:33:4b:81:41:11:95:be:5c:04:89:db:a3:d2: b4:8d:3c:74:c9:a4:89:aa:0b:03:28:52:33:17:df: 78:b8:72:c4:bf:47:d6:b9:e7:aa:68:4f:c3:da:d3: 20:d7:0f:6c:e7:6e:cd:b7:3d:5c:06:78:f6:3d:01: c0:f8:c3:21:0d:be:b2:10:c3:9e:97:74:90:2a:a6: 0a:ab:5a:71:13:84:8e:4c:7d:fc:72:4e:37:8b:61: ee:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:02:27:3E:37:60:14:47:AA:42:52:9E:7F:B8:6A:7F:8C:E0:6B:42 X509v3 Authority Key Identifier: keyid:42:79:2C:F4:3D:FD:B4:86:AD:7A:07:B1:23:CB:2A:61:A3:3E:23:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914524B/B51022D6F88F11EE976C1E2AC4F9AE02/Qnks9D39tIategexI8sqYaM-I-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qnks9D39tIategexI8sqYaM-I-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914524B/B51022D6F88F11EE976C1E2AC4F9AE02/A16739B2F89011EE9EB9D42BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.194.0/23 IPv6: 2001:df4:5780::/48 Signature Algorithm: sha256WithRSAEncryption cb:5e:b2:05:e1:c2:b4:40:08:e6:7c:9b:52:d9:78:bd:4a:47: 20:81:74:a5:b6:f7:e8:4c:54:5c:66:36:7f:ce:29:9a:a2:f9: f6:ca:db:7f:44:d5:4d:4e:8a:e1:17:14:43:d2:86:fe:60:ac: 28:1f:40:00:bc:2a:de:37:f6:19:0e:bd:b9:0a:40:53:b4:49: 57:67:28:54:d2:2e:06:82:65:61:3c:4d:5c:c6:78:53:9a:d6: d7:db:cd:aa:73:60:6d:0b:89:7c:0d:2e:ef:37:38:51:52:5a: 8a:e4:9b:7b:38:b6:4d:7b:bb:52:19:71:ec:c4:53:7a:d1:97: 22:5b:fb:60:87:da:db:74:51:fa:a0:fe:de:ce:34:28:94:0f: 62:e0:db:03:e8:59:67:6a:c9:60:ab:af:4a:68:12:e0:2b:7d: 3b:2f:17:52:7a:74:2e:14:4c:5b:ed:3a:e1:d6:36:84:79:9a: 44:92:42:3a:45:78:cd:4d:e7:f1:df:09:7c:fc:67:7e:ed:09: da:da:56:c2:35:ec:8b:b5:73:29:bb:10:b5:8a:f3:45:bb:35: b4:0f:09:1c:f0:60:8c:b9:bf:76:e8:f7:92:d0:a4:e4:67:f1: cf:2f:38:7a:bf:21:0e:08:5f:13:fd:4a:8b:f5:c9:c2:b5:44: 10:4b:dd:7a -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NTI0QjExMC8GA1UEBRMoNDI3OTJDRjQzREZEQjQ4NkFEN0EwN0IxMjNDQjJBNjFB MzNFMjNFMzAeFw0yNDA0MTIwNTUyNDZaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MThjYzJlLTA5ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDuw662C0CdbUd68zjsYTXyBu6RPfc9tSNOZoaQpQBOVcqwTAqw9ZtU85byHy4Q 8IzftKPI3gKJaQLc5jHluLhF2O+z5iBoFgHYu5NCwMRZ4hl6h5hu3OOh1KQmJife 943Z1WdBXznPq/62ZxK51lkaN/LHpQa8mObc6WzCA6IZIRrURRbmJX601NzFfoA0 Jm7JG1Sxt+AL22QvUe5ktl7vFr+W82W4M0uBQRGVvlwEiduj0rSNPHTJpImqCwMo UjMX33i4csS/R9a556poT8Pa0yDXD2znbs23PVwGePY9AcD4wyENvrIQw56XdJAq pgqrWnEThI5MffxyTjeLYe47AgMBAAGjggKmMIICojAdBgNVHQ4EFgQUdgInPjdg FEeqQlKef7hqf4zga0IwHwYDVR0jBBgwFoAUQnks9D39tIategexI8sqYaM+I+Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1MjRCL0I1MTAyMkQ2Rjg4 RjExRUU5NzZDMUUyQUM0RjlBRTAyL1Fua3M5RDM5dElhdGVnZXhJOHNxWWFNLUkt TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUW5rczlEMzl0SWF0ZWdleEk4c3FZYU0tSS1NLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTI0Qi9CNTEwMjJENkY4OEYxMUVFOTc2QzFFMkFDNEY5QUUwMi9BMTY3MzlCMkY4 OTAxMUVFOUVCOUQ0MkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWeZwjAPBAIAAjAJAwcAIAEN9FeAMA0GCSqGSIb3DQEBCwUA A4IBAQDLXrIF4cK0QAjmfJtS2Xi9SkcggXSltvfoTFRcZjZ/zimaovn2ytt/RNVN TorhFxRD0ob+YKwoH0AAvCreN/YZDr25CkBTtElXZyhU0i4GgmVhPE1cxnhTmtbX 282qc2BtC4l8DS7vNzhRUlqK5Jt7OLZNe7tSGXHsxFN60ZciW/tgh9rbdFH6oP7e zjQolA9i4NsD6Flnaslgq69KaBLgK307LxdSenQuFExb7Trh1jaEeZpEkkI6RXjN Tefx3wl8/Gd+7Qna2lbCNeyLtXMpuxC1ivNFuzW0Dwkc8GCMub926PeS0KTkZ/HP Lzh6vyEOCF8T/UqL9cnCtUQQS916 -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:27 2024 by rpki-client on console-fra.rpki-client.org