$ rpki-client -vvf rpki.apnic.net/member_repository/A914C7F8/E2510E1C129511EE84BAD746C4F9AE02/47862E7E129C11EEA43CFD46C4F9AE02.roa File: 47862E7E129C11EEA43CFD46C4F9AE02.roa (raw, json) Hash identifier: g05JL9xOTeHdqc+UxNa/yxJVrrgS5y7gcKyX+tleUWU= Subject key identifier: 3D:F1:96:A0:A4:A2:01:A0:00:BD:D1:71:8A:65:6C:F7:29:09:56:AC Certificate issuer: /CN=A914C7F8/serialNumber=E50963D70468727356B78B7FC4380974429B64E1 Certificate serial: 2E Authority key identifier: E5:09:63:D7:04:68:72:73:56:B7:8B:7F:C4:38:09:74:42:9B:64:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Qlj1wRocnNWt4t_xDgJdEKbZOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C7F8/E2510E1C129511EE84BAD746C4F9AE02/47862E7E129C11EEA43CFD46C4F9AE02.roa Signing time: Fri 08 Sep 2023 23:49:57 +0000 ROA not before: Fri 08 Sep 2023 23:49:57 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 151354 IP address blocks: 103.208.67.0/24 maxlen: 24 103.254.214.0/24 maxlen: 24 2001:df2:7ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C7F8/E2510E1C129511EE84BAD746C4F9AE02/5Qlj1wRocnNWt4t_xDgJdEKbZOE.crl rsync://rpki.apnic.net/member_repository/A914C7F8/E2510E1C129511EE84BAD746C4F9AE02/5Qlj1wRocnNWt4t_xDgJdEKbZOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Qlj1wRocnNWt4t_xDgJdEKbZOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 16 Jun 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C7F8/serialNumber=E50963D70468727356B78B7FC4380974429B64E1 Validity Not Before: Sep 8 23:49:57 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64fbb325-1307 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e7:a0:da:2b:fa:e7:f7:a4:99:35:da:e3:48: ff:ab:94:7d:a0:27:f4:60:61:0e:ec:4b:90:a2:1d: c3:0e:78:98:71:ad:8b:26:d5:2a:12:c2:e2:d7:ed: a7:d4:9e:c8:dc:09:26:f2:14:65:02:0c:12:ba:1a: 64:49:d3:03:bf:e1:86:7f:d3:5a:84:90:10:8c:6d: 78:52:07:97:7d:3c:6c:f5:af:6e:a7:04:10:94:60: 80:52:74:2a:e8:b0:89:92:ab:01:65:5d:e4:79:72: fe:0e:9c:a8:0d:d9:95:b5:12:4f:c4:a3:0a:b7:40: d8:52:ee:9b:f7:22:09:29:38:2f:91:7e:07:23:46: 15:e9:b2:5c:da:62:3c:c1:46:9e:a7:34:c0:93:cf: 9e:c2:93:f1:3b:5d:05:f9:40:d6:e2:a6:fa:18:a1: 17:dd:5d:45:64:cd:a5:ec:4d:34:f8:b1:3f:3b:d0: 7f:bf:e6:7a:c3:84:27:aa:d0:0b:13:aa:6c:bc:8e: c1:89:ae:28:fc:58:55:07:d3:ab:90:83:d9:59:e7: 76:ea:8e:36:20:06:90:92:4d:0d:c5:39:3f:a4:ff: 3b:67:d0:51:79:a8:3b:a3:f1:71:9b:d2:05:be:4c: d3:a6:68:24:90:57:e9:93:7c:de:db:ae:e6:70:65: 17:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:F1:96:A0:A4:A2:01:A0:00:BD:D1:71:8A:65:6C:F7:29:09:56:AC X509v3 Authority Key Identifier: keyid:E5:09:63:D7:04:68:72:73:56:B7:8B:7F:C4:38:09:74:42:9B:64:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C7F8/E2510E1C129511EE84BAD746C4F9AE02/5Qlj1wRocnNWt4t_xDgJdEKbZOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Qlj1wRocnNWt4t_xDgJdEKbZOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C7F8/E2510E1C129511EE84BAD746C4F9AE02/47862E7E129C11EEA43CFD46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.208.67.0/24 103.254.214.0/24 IPv6: 2001:df2:7ec0::/48 Signature Algorithm: sha256WithRSAEncryption 5b:86:5b:39:21:c3:0f:aa:6f:d2:c0:59:16:8f:1f:26:0e:fe: e8:3e:75:6c:a8:bb:ed:a8:94:dc:25:d6:a6:fd:a1:c2:f1:6c: d2:fd:25:5b:7f:50:cf:fe:f9:09:62:8b:ff:4b:96:46:47:02: 06:93:fd:5d:a8:95:95:e5:61:a5:59:5e:a1:bf:b7:31:3c:9c: 4d:13:1b:c0:32:84:27:7c:be:50:2c:70:c2:9c:ce:3e:5a:00: a3:2d:af:9b:f3:46:28:86:49:0f:94:15:d1:b6:32:1d:0e:ff: 10:c2:8a:24:b9:06:8f:6e:79:52:90:87:c0:31:fb:e8:1f:b1: d1:19:ae:33:68:97:e2:30:8d:7d:2f:87:ab:2f:41:a3:77:7a: 51:6c:00:6f:f6:64:b6:3c:32:75:56:b7:ac:bc:fd:54:4e:0d: 3d:d6:ff:e2:2b:96:93:bc:01:00:96:50:0c:54:b1:21:1f:ef: 87:7d:c9:03:2a:3a:78:4d:0a:77:aa:c9:a5:38:b7:0a:46:8f: 0d:3b:38:ae:59:25:a5:72:e7:a9:36:02:31:f8:8e:32:b5:29: 81:68:76:0b:37:b1:25:a4:c9:37:7e:61:73:b6:e2:32:fe:ae: 22:b6:44:fa:13:46:7f:58:1e:4b:0d:7e:50:b4:93:9a:40:03: e5:e3:b1:f8 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 QzdGODExMC8GA1UEBRMoRTUwOTYzRDcwNDY4NzI3MzU2Qjc4QjdGQzQzODA5NzQ0 MjlCNjRFMTAeFw0yMzA5MDgyMzQ5NTdaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZmJiMzI1LTEzMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDK56DaK/rn96SZNdrjSP+rlH2gJ/RgYQ7sS5CiHcMOeJhxrYsm1SoSwuLX7afU nsjcCSbyFGUCDBK6GmRJ0wO/4YZ/01qEkBCMbXhSB5d9PGz1r26nBBCUYIBSdCro sImSqwFlXeR5cv4OnKgN2ZW1Ek/Eowq3QNhS7pv3IgkpOC+RfgcjRhXpslzaYjzB Rp6nNMCTz57Ck/E7XQX5QNbipvoYoRfdXUVkzaXsTTT4sT870H+/5nrDhCeq0AsT qmy8jsGJrij8WFUH06uQg9lZ53bqjjYgBpCSTQ3FOT+k/ztn0FF5qDuj8XGb0gW+ TNOmaCSQV+mTfN7bruZwZRdFAgMBAAGjggKsMIICqDAdBgNVHQ4EFgQUPfGWoKSi AaAAvdFximVs9ykJVqwwHwYDVR0jBBgwFoAU5Qlj1wRocnNWt4t/xDgJdEKbZOEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRDN0Y4L0UyNTEwRTFDMTI5 NTExRUU4NEJBRDc0NkM0RjlBRTAyLzVRbGoxd1JvY25OV3Q0dF94RGdKZEVLYlpP RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNVFsajF3Um9jbk5XdDR0X3hEZ0pkRUtiWk9FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzdGOC9FMjUxMEUxQzEyOTUxMUVFODRCQUQ3NDZDNEY5QUUwMi80Nzg2MkU3RTEy OUMxMUVFQTQzQ0ZENDZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA2BggrBgEFBQcBBwEB/wQn MCUwEgQCAAEwDAMEAGfQQwMEAGf+1jAPBAIAAjAJAwcAIAEN8n7AMA0GCSqGSIb3 DQEBCwUAA4IBAQBbhls5IcMPqm/SwFkWjx8mDv7oPnVsqLvtqJTcJdam/aHC8WzS /SVbf1DP/vkJYov/S5ZGRwIGk/1dqJWV5WGlWV6hv7cxPJxNExvAMoQnfL5QLHDC nM4+WgCjLa+b80YohkkPlBXRtjIdDv8QwookuQaPbnlSkIfAMfvoH7HRGa4zaJfi MI19L4erL0Gjd3pRbABv9mS2PDJ1VresvP1UTg091v/iK5aTvAEAllAMVLEhH++H fckDKjp4TQp3qsmlOLcKRo8NOziuWSWlcuepNgIx+I4ytSmBaHYLN7ElpMk3fmFz tuIy/q4itkT6E0Z/WB5LDX5QtJOaQAPl47H4 -----END CERTIFICATE-----Generated at Sun Jun 9 07:42:20 2024 by rpki-client on console-fra.rpki-client.org