$ rpki-client -vvf rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/BCB2FFCEBA7211EDB0F5AE53C4F9AE02.roa File: BCB2FFCEBA7211EDB0F5AE53C4F9AE02.roa (raw, json) Hash identifier: SXnWNfTC9vuEnxWX/nt/qOR6dl/eGcQ4vRTb1i6hIAk= Subject key identifier: A5:22:2B:11:9D:15:38:E7:8A:18:C6:08:EA:B2:7C:88:38:FC:70:B7 Certificate issuer: /CN=A914D2E1/serialNumber=3C651524B4F91A350D1ECFBBA66CABD1B48FB7C5 Certificate serial: C8 Authority key identifier: 3C:65:15:24:B4:F9:1A:35:0D:1E:CF:BB:A6:6C:AB:D1:B4:8F:B7:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGUVJLT5GjUNHs-7pmyr0bSPt8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/BCB2FFCEBA7211EDB0F5AE53C4F9AE02.roa Signing time: Fri 01 Mar 2024 05:57:51 +0000 ROA not before: Fri 01 Mar 2024 05:57:51 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 150788 IP address blocks: 103.203.240.0/24 maxlen: 24 103.206.98.0/24 maxlen: 24 2001:df2:10c0::/48 maxlen: 48 2400:e760:100::/48 maxlen: 48 2400:e760:200::/48 maxlen: 48 2400:e760:300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.crl rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGUVJLT5GjUNHs-7pmyr0bSPt8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 May 2024 04:40:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D2E1/serialNumber=3C651524B4F91A350D1ECFBBA66CABD1B48FB7C5 Validity Not Before: Mar 1 05:57:51 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65e16e5f-76fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:47:09:2d:89:c2:93:4e:cc:3d:d8:33:e4:b3: a6:fe:44:07:20:9c:e8:0c:77:a8:d9:d4:e4:2c:cc: 28:1b:17:84:51:d0:76:db:f6:f6:21:42:58:5e:46: 6a:41:9c:9f:47:e6:46:f6:54:51:fa:ee:c5:e0:28: e6:92:2e:cb:c0:99:f9:9d:1f:2c:50:c0:c7:db:59: 52:50:9f:d0:50:eb:93:91:f1:a7:f6:50:be:d5:5c: 12:3c:42:70:ba:ae:84:ee:cf:ca:3c:38:f4:e8:18: e8:e7:d3:13:fd:a7:3d:45:c1:b9:89:19:d3:ef:79: a3:57:95:f1:47:6c:b4:86:91:82:61:c6:1b:c7:69: 32:ec:c5:a1:74:ba:79:73:0d:57:19:f1:3e:86:d9: f8:81:e0:60:f3:de:b5:a8:ab:5f:51:48:5e:7e:84: f9:fe:c9:26:24:97:12:bf:b1:33:25:4d:92:73:b8: c3:fa:aa:da:cd:79:a4:4a:d9:18:07:fe:a0:76:83: dd:b9:65:1b:63:fc:72:42:00:95:c9:b4:b9:fd:34: 58:69:45:28:11:c2:44:ac:c0:b9:30:9f:13:46:bb: d7:e1:cb:2e:5b:bd:ce:49:3a:d2:19:eb:da:c7:d7: 14:ea:70:a9:26:a7:2f:72:9f:f7:83:93:d9:51:aa: 86:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:22:2B:11:9D:15:38:E7:8A:18:C6:08:EA:B2:7C:88:38:FC:70:B7 X509v3 Authority Key Identifier: keyid:3C:65:15:24:B4:F9:1A:35:0D:1E:CF:BB:A6:6C:AB:D1:B4:8F:B7:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGUVJLT5GjUNHs-7pmyr0bSPt8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/BCB2FFCEBA7211EDB0F5AE53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.203.240.0/24 103.206.98.0/24 IPv6: 2001:df2:10c0::/48 2400:e760:100::/48 2400:e760:200::/48 2400:e760:300::/48 Signature Algorithm: sha256WithRSAEncryption 33:46:d3:b2:ce:69:35:6d:f9:87:ea:c9:75:e4:5a:0b:3d:52: 47:49:14:35:cb:d7:4d:2b:3a:a2:19:63:c0:04:88:df:b4:2f: 4c:81:61:c8:3d:36:6e:e8:7f:0d:3b:a9:4d:c0:d0:52:a8:15: 54:53:4b:64:5c:6c:43:a7:97:f6:4c:80:f6:d5:be:31:21:70: 78:a1:07:6f:af:02:5f:28:a7:12:c7:79:05:89:15:0b:53:f3: 11:07:e5:5d:d4:25:eb:f9:d2:14:10:8f:f8:70:50:13:42:37: ca:5d:eb:ad:f0:62:5b:17:f6:ca:c2:b3:e7:3a:c3:39:c5:aa: de:da:b6:51:74:6e:a2:a6:2f:4c:70:24:c2:a6:d6:45:46:dc: 38:a0:6d:85:82:cf:50:60:61:39:73:41:0f:22:c3:07:37:21: 3c:dc:ab:b1:36:75:c5:45:e4:b5:53:af:82:e5:11:62:a4:4e: 55:6b:d3:4f:1f:7f:9c:c4:c0:f5:8c:7a:e8:2f:f0:d2:9d:37: fe:d0:a5:c4:22:a8:42:64:4f:8f:2d:90:43:e8:18:5f:0a:7d: 93:61:0d:3c:6f:65:6e:e6:f6:b5:a4:2d:4b:fe:ef:59:65:e8: 47:29:b7:11:b1:f9:51:43:3d:25:ba:ad:83:52:2e:80:f7:6e: 84:09:cc:86 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyRTExMTAvBgNVBAUTKDNDNjUxNTI0QjRGOTFBMzUwRDFFQ0ZCQkE2NkNBQkQx QjQ4RkI3QzUwHhcNMjQwMzAxMDU1NzUxWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWUxNmU1Zi03NmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskcJLYnCk07MPdgz5LOm/kQHIJzoDHeo2dTkLMwoGxeEUdB22/b2IUJYXkZq QZyfR+ZG9lRR+u7F4Cjmki7LwJn5nR8sUMDH21lSUJ/QUOuTkfGn9lC+1VwSPEJw uq6E7s/KPDj06Bjo59MT/ac9RcG5iRnT73mjV5XxR2y0hpGCYcYbx2ky7MWhdLp5 cw1XGfE+htn4geBg8961qKtfUUhefoT5/skmJJcSv7EzJU2Sc7jD+qrazXmkStkY B/6gdoPduWUbY/xyQgCVybS5/TRYaUUoEcJErMC5MJ8TRrvX4csuW73OSTrSGeva x9cU6nCpJqcvcp/3g5PZUaqGNQIDAQABo4ICxzCCAsMwHQYDVR0OBBYEFKUiKxGd FTjnihjGCOqyfIg4/HC3MB8GA1UdIwQYMBaAFDxlFSS0+Ro1DR7Pu6Zsq9G0j7fF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDJFMS9EQTg2QjYxNkJB NkUxMUVEQjlDRUE0M0FDNEY5QUUwMi9QR1VWSkxUNUdqVU5Icy03cG15cjBiU1B0 OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BHVVZKTFQ1R2pVTkhzLTdwbXlyMGJTUHQ4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEQyRTEvREE4NkI2MTZCQTZFMTFFREI5Q0VBNDNBQzRGOUFFMDIvQkNCMkZGQ0VC QTcyMTFFREIwRjVBRTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUQYIKwYBBQUHAQcBAf8E QjBAMBIEAgABMAwDBABny/ADBABnzmIwKgQCAAIwJAMHACABDfIQwAMHACQA52AB AAMHACQA52ACAAMHACQA52ADADANBgkqhkiG9w0BAQsFAAOCAQEAM0bTss5pNW35 h+rJdeRaCz1SR0kUNcvXTSs6ohljwASI37QvTIFhyD02buh/DTupTcDQUqgVVFNL ZFxsQ6eX9kyA9tW+MSFweKEHb68CXyinEsd5BYkVC1PzEQflXdQl6/nSFBCP+HBQ E0I3yl3rrfBiWxf2ysKz5zrDOcWq3tq2UXRuoqYvTHAkwqbWRUbcOKBthYLPUGBh OXNBDyLDBzchPNyrsTZ1xUXktVOvguURYqROVWvTTx9/nMTA9Yx66C/w0p03/tCl xCKoQmRPjy2QQ+gYXwp9k2ENPG9lbub2taQtS/7vWWXoRym3EbH5UUM9Jbqtg1Iu gPduhAnMhg== -----END CERTIFICATE-----Generated at Thu May 23 06:18:13 2024 by rpki-client on console-fra.rpki-client.org