$ rpki-client -vvf rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/8E54F1C6D47711EEBC3E5019C4F9AE02.roa File: 8E54F1C6D47711EEBC3E5019C4F9AE02.roa (raw, json) Hash identifier: 63Cg8UWmGVPjQtQwAhVDY7/yUPc1L0LYA1nO69mjsoE= Subject key identifier: DD:A1:49:B8:09:EB:04:96:13:75:A6:7E:8B:FA:68:98:AC:69:59:04 Certificate issuer: /CN=A914E5F6/serialNumber=AFF85F7EF3DA5887438DD2061F2E9EE0B2DD0A7F Certificate serial: D5 Authority key identifier: AF:F8:5F:7E:F3:DA:58:87:43:8D:D2:06:1F:2E:9E:E0:B2:DD:0A:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_hffvPaWIdDjdIGHy6e4LLdCn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/8E54F1C6D47711EEBC3E5019C4F9AE02.roa Signing time: Wed 01 May 2024 06:40:23 +0000 ROA not before: Wed 01 May 2024 06:40:23 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 134371 IP address blocks: 103.243.238.0/24 maxlen: 24 203.31.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/r_hffvPaWIdDjdIGHy6e4LLdCn8.crl rsync://rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/r_hffvPaWIdDjdIGHy6e4LLdCn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_hffvPaWIdDjdIGHy6e4LLdCn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E5F6/serialNumber=AFF85F7EF3DA5887438DD2061F2E9EE0B2DD0A7F Validity Not Before: May 1 06:40:23 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6631e3d7-5639 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a5:54:f6:1d:83:c4:00:83:2e:fe:ec:8f:04: d5:b0:7d:7a:fe:d3:23:89:5d:9d:b1:d7:15:0a:a8: c3:df:b3:0d:78:63:6b:69:0b:3a:d9:56:ad:75:fc: 10:15:6b:08:59:e5:1a:57:2e:14:9c:40:24:1b:b6: 9c:5c:5d:de:47:1e:19:65:ba:72:36:2f:34:dc:2f: 0f:2e:01:9d:b7:97:a9:de:49:e6:6d:ea:8e:18:28: bf:81:f0:4a:87:c8:aa:3f:7c:8a:8b:28:39:10:9b: 0f:4b:12:34:dd:7f:2c:dc:0b:d2:d8:8b:11:f3:11: b1:f7:b0:56:64:aa:55:bc:d6:e3:2f:f0:f9:05:a1: bb:57:90:52:51:8c:4e:97:e3:a8:e8:a7:c1:b3:a7: 4c:ce:ff:09:8f:8e:9a:e2:8d:7f:cc:d7:bc:9a:c7: 73:6e:a9:9a:4c:e8:c7:b3:0a:e4:eb:b5:64:ff:14: b1:53:43:6a:bb:12:34:7b:c8:af:b8:65:21:b3:28: 48:ef:07:1f:f9:f9:f1:23:3d:e3:db:36:1c:ac:1e: b4:20:48:b8:26:3c:75:c0:7a:8a:a2:e9:bf:91:d0: 5a:0c:8a:56:6a:ff:4a:92:b4:69:1b:2d:1d:55:e8: 46:5c:5c:db:af:04:8b:48:04:b6:33:a1:b6:2e:bf: 4e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:A1:49:B8:09:EB:04:96:13:75:A6:7E:8B:FA:68:98:AC:69:59:04 X509v3 Authority Key Identifier: keyid:AF:F8:5F:7E:F3:DA:58:87:43:8D:D2:06:1F:2E:9E:E0:B2:DD:0A:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/r_hffvPaWIdDjdIGHy6e4LLdCn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_hffvPaWIdDjdIGHy6e4LLdCn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/8E54F1C6D47711EEBC3E5019C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.243.238.0/24 203.31.169.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:8e:65:6b:d1:cc:b8:e3:ad:d4:61:7d:a6:b8:6b:58:b4:f8: 56:e7:27:70:f0:bf:87:dc:b8:e4:75:f6:9a:67:fe:a5:07:a7: 11:8c:d8:b5:a7:f9:50:19:4b:08:00:ef:4f:cd:15:0f:90:16: 11:86:08:c9:47:a3:e4:30:4d:59:66:fb:81:a3:01:57:b2:9f: ba:44:1f:89:cf:2c:7b:e3:25:95:6a:8d:03:d8:4e:08:ae:15: 6a:a9:b9:25:f4:ce:c5:42:09:37:cc:3d:3e:cb:a7:7b:8b:e9: af:2a:cd:5e:4c:21:5d:74:05:be:ea:76:e7:0b:82:e1:c0:8a: cf:41:3b:88:07:e2:ae:87:13:92:cf:ed:3c:47:13:b4:8f:38: 8b:ff:0d:27:47:51:19:f1:c9:de:bd:fd:33:5a:78:c2:ec:62: f1:68:7b:69:bd:1b:cf:26:4e:12:14:5a:08:74:75:52:a3:b6: e9:55:bf:3e:3e:32:a0:1f:2e:e0:33:37:e4:40:e7:2c:f7:15: 33:2d:34:8b:e7:ae:0d:c7:96:48:fe:ab:5c:37:06:69:31:05: 84:53:4c:c3:8a:e5:68:e3:4d:e5:0f:1e:f7:80:ca:13:74:1c: e2:7b:45:f3:ff:65:dc:41:40:48:79:74:6b:ec:0f:70:8c:60: 28:e4:46:ef -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU1RjYxMTAvBgNVBAUTKEFGRjg1RjdFRjNEQTU4ODc0MzhERDIwNjFGMkU5RUUw QjJERDBBN0YwHhcNMjQwNTAxMDY0MDIzWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxZTNkNy01NjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6VU9h2DxACDLv7sjwTVsH16/tMjiV2dsdcVCqjD37MNeGNraQs62VatdfwQ FWsIWeUaVy4UnEAkG7acXF3eRx4ZZbpyNi803C8PLgGdt5ep3knmbeqOGCi/gfBK h8iqP3yKiyg5EJsPSxI03X8s3AvS2IsR8xGx97BWZKpVvNbjL/D5BaG7V5BSUYxO l+Oo6KfBs6dMzv8Jj46a4o1/zNe8msdzbqmaTOjHswrk67Vk/xSxU0NquxI0e8iv uGUhsyhI7wcf+fnxIz3j2zYcrB60IEi4Jjx1wHqKoum/kdBaDIpWav9KkrRpGy0d VehGXFzbrwSLSAS2M6G2Lr9O4wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFN2hSbgJ 6wSWE3Wmfov6aJisaVkEMB8GA1UdIwQYMBaAFK/4X37z2liHQ43SBh8unuCy3Qp/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTVGNi9CQ0E2NkI3RURB OEUxMUVEODM1QzM5MjVDNEY5QUUwMi9yX2hmZnZQYVdJZERqZElHSHk2ZTRMTGRD bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JfaGZmdlBhV0lkRGpkSUdIeTZlNExMZENuOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU1RjYvQkNBNjZCN0VEQThFMTFFRDgzNUMzOTI1QzRGOUFFMDIvOEU1NEYxQzZE NDc3MTFFRUJDM0U1MDE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABn8+4DBADLH6kwDQYJKoZIhvcNAQELBQADggEBAB6OZWvR zLjjrdRhfaa4a1i0+FbnJ3Dwv4fcuOR19ppn/qUHpxGM2LWn+VAZSwgA70/NFQ+Q FhGGCMlHo+QwTVlm+4GjAVeyn7pEH4nPLHvjJZVqjQPYTgiuFWqpuSX0zsVCCTfM PT7Lp3uL6a8qzV5MIV10Bb7qducLguHAis9BO4gH4q6HE5LP7TxHE7SPOIv/DSdH URnxyd69/TNaeMLsYvFoe2m9G88mThIUWgh0dVKjtulVvz4+MqAfLuAzN+RA5yz3 FTMtNIvnrg3Hlkj+q1w3BmkxBYRTTMOK5WjjTeUPHveAyhN0HOJ7RfP/ZdxBQEh5 dGvsD3CMYCjkRu8= -----END CERTIFICATE-----Generated at Sat May 11 08:03:38 2024 by rpki-client on console-fra.rpki-client.org