$ rpki-client -vvf rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/5D35DEC8B13411EDB6BEF584C4F9AE02.roa File: 5D35DEC8B13411EDB6BEF584C4F9AE02.roa (raw, json) Hash identifier: Qh9Evt44K52q8IGRlGhsv9jAT7uZAcr8cL3AUfSoMAA= Subject key identifier: 86:7D:30:74:2D:32:F9:2B:9C:B3:44:01:1B:70:0E:08:13:97:4E:0D Certificate issuer: /CN=A914E1A8/serialNumber=8BECC3638070A6B79F6DCE22A0E65BB21E0D7729 Certificate serial: 78 Authority key identifier: 8B:EC:C3:63:80:70:A6:B7:9F:6D:CE:22:A0:E6:5B:B2:1E:0D:77:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-zDY4Bwprefbc4ioOZbsh4Ndyk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/5D35DEC8B13411EDB6BEF584C4F9AE02.roa Signing time: Mon 09 Oct 2023 04:35:53 +0000 ROA not before: Mon 09 Oct 2023 04:35:53 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 18187 IP address blocks: 103.73.68.0/22 maxlen: 22 122.49.208.0/20 maxlen: 20 203.82.32.0/20 maxlen: 20 216.250.100.0/22 maxlen: 22 2401:8e80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.crl rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-zDY4Bwprefbc4ioOZbsh4Ndyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 05:33:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E1A8/serialNumber=8BECC3638070A6B79F6DCE22A0E65BB21E0D7729 Validity Not Before: Oct 9 04:35:53 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65238329-7907 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:fc:f7:33:9b:ab:ec:9d:da:52:7d:9f:0a:35: 8b:7d:2f:de:4a:c0:d1:02:d1:90:e2:ba:c3:66:67: 04:fc:41:11:cb:b9:7d:75:40:d1:52:4c:22:b8:01: 07:5a:50:ad:04:52:c3:ce:90:b7:a1:fa:77:70:4c: 1d:52:f8:fa:03:86:10:70:8d:b8:e2:fb:32:4a:41: d0:41:9e:d1:33:ed:8a:67:cd:5d:88:af:ec:f5:1a: 00:fb:d9:73:a5:c2:b4:31:d7:49:d2:69:3c:dc:f3: 02:cf:9f:54:4a:11:93:af:6c:1e:2e:30:83:b9:43: 57:47:15:f7:8a:de:68:57:7e:61:28:9b:57:b8:e5: 95:95:7a:40:ed:9e:f9:4a:3d:60:e9:48:92:35:a2: 7e:f4:e8:4a:5d:72:ab:22:2f:74:e6:da:f3:c0:96: 3a:db:94:70:9c:43:a1:23:a7:02:83:f6:8f:9e:ea: 38:86:e4:00:cb:2f:47:dd:e5:ba:79:b8:fc:ff:17: 71:bb:d0:af:7f:7d:90:bb:91:b6:b5:bb:96:d7:4f: 01:96:12:55:a3:dc:f6:c0:0c:dc:c8:b7:8e:8a:34: cd:5b:4d:4f:0a:22:be:14:94:a1:6c:4f:b4:0b:e5: 83:b9:74:84:a3:3b:4c:0b:b6:0e:2a:1d:e0:9b:ec: 8a:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:7D:30:74:2D:32:F9:2B:9C:B3:44:01:1B:70:0E:08:13:97:4E:0D X509v3 Authority Key Identifier: keyid:8B:EC:C3:63:80:70:A6:B7:9F:6D:CE:22:A0:E6:5B:B2:1E:0D:77:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-zDY4Bwprefbc4ioOZbsh4Ndyk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/5D35DEC8B13411EDB6BEF584C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.68.0/22 122.49.208.0/20 203.82.32.0/20 216.250.100.0/22 IPv6: 2401:8e80::/32 Signature Algorithm: sha256WithRSAEncryption dd:0e:6d:3e:1e:f3:6f:04:f7:a8:a7:80:82:16:e6:b5:48:5c: 12:d9:6e:c3:4a:19:89:f8:3b:72:20:e9:39:d3:72:91:ce:42: e1:9b:80:19:93:f5:07:9c:44:55:06:c9:d6:95:af:22:25:ce: e0:3f:99:a2:9c:80:74:dd:4f:d1:c9:a7:64:27:91:95:5e:a1: ea:1c:64:6e:e2:4c:67:96:07:89:e1:fe:e1:05:37:50:c4:34: e4:1a:03:8e:52:6a:f3:01:c6:59:6b:43:c6:88:4b:d7:87:08: 4c:df:f8:8a:12:fc:60:23:fa:bf:4c:bf:24:4d:9d:f6:0b:c7: 75:e0:e3:dc:1c:11:dd:ea:b8:fe:4a:bf:41:b5:cf:91:c3:95: 46:50:6a:50:dc:0f:eb:2a:cb:aa:18:e4:01:bd:15:4b:4e:c1: 6e:03:47:f6:84:71:e3:75:56:54:4b:1a:a3:1c:25:56:bc:74: 16:97:8b:2b:04:89:e7:7d:34:5c:75:ac:2e:f9:5f:12:1c:12: 65:13:f7:68:45:8a:48:9d:02:a0:a3:73:81:ba:b2:b3:0b:58: e9:71:04:00:a2:97:aa:de:ec:a4:36:6a:dc:a4:02:6e:2f:f8: 56:97:63:c7:6f:3c:3c:c9:2f:7f:aa:0e:71:63:8c:d1:46:24: e7:3b:b8:81 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RTFBODExMC8GA1UEBRMoOEJFQ0MzNjM4MDcwQTZCNzlGNkRDRTIyQTBFNjVCQjIx RTBENzcyOTAeFw0yMzEwMDkwNDM1NTNaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MjM4MzI5LTc5MDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDb/Pczm6vsndpSfZ8KNYt9L95KwNEC0ZDiusNmZwT8QRHLuX11QNFSTCK4AQda UK0EUsPOkLeh+ndwTB1S+PoDhhBwjbji+zJKQdBBntEz7YpnzV2Ir+z1GgD72XOl wrQx10nSaTzc8wLPn1RKEZOvbB4uMIO5Q1dHFfeK3mhXfmEom1e45ZWVekDtnvlK PWDpSJI1on706EpdcqsiL3Tm2vPAljrblHCcQ6EjpwKD9o+e6jiG5ADLL0fd5bp5 uPz/F3G70K9/fZC7kba1u5bXTwGWElWj3PbADNzIt46KNM1bTU8KIr4UlKFsT7QL 5YO5dISjO0wLtg4qHeCb7IqVAgMBAAGjggK2MIICsjAdBgNVHQ4EFgQUhn0wdC0y +Sucs0QBG3AOCBOXTg0wHwYDVR0jBBgwFoAUi+zDY4Bwprefbc4ioOZbsh4Ndykw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRFMUE4L0E0MEE3MjRBQjEz MDExRUQ4NDdENDk4MUM0RjlBRTAyL2ktekRZNEJ3cHJlZmJjNGlvT1pic2g0TmR5 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaS16RFk0QndwcmVmYmM0aW9PWmJzaDROZHlrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTFBOC9BNDBBNzI0QUIxMzAxMUVEODQ3RDQ5ODFDNEY5QUUwMi81RDM1REVDOEIx MzQxMUVEQjZCRUY1ODRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDBABggrBgEFBQcBBwEB/wQx MC8wHgQCAAEwGAMEAmdJRAMEBHox0AMEBMtSIAMEAtj6ZDANBAIAAjAHAwUAJAGO gDANBgkqhkiG9w0BAQsFAAOCAQEA3Q5tPh7zbwT3qKeAghbmtUhcEtluw0oZifg7 ciDpOdNykc5C4ZuAGZP1B5xEVQbJ1pWvIiXO4D+ZopyAdN1P0cmnZCeRlV6h6hxk buJMZ5YHieH+4QU3UMQ05BoDjlJq8wHGWWtDxohL14cITN/4ihL8YCP6v0y/JE2d 9gvHdeDj3BwR3eq4/kq/QbXPkcOVRlBqUNwP6yrLqhjkAb0VS07BbgNH9oRx43VW VEsaoxwlVrx0FpeLKwSJ5300XHWsLvlfEhwSZRP3aEWKSJ0CoKNzgbqyswtY6XEE AKKXqt7spDZq3KQCbi/4Vpdjx288PMkvf6oOcWOM0UYk5zu4gQ== -----END CERTIFICATE-----Generated at Tue May 21 06:39:21 2024 by rpki-client on console-fra.rpki-client.org