$ rpki-client -vvf rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/8A4C662AEAB511ECBBDE3C50C4F9AE02.roa File: 8A4C662AEAB511ECBBDE3C50C4F9AE02.roa (raw, json) Hash identifier: h3saPAJhhEGRJVRkZU0IYum5xfP0CswzHKWpnOS5pMs= Subject key identifier: AD:60:D9:B3:BE:6B:02:D6:B8:71:41:49:55:15:33:BF:18:1D:41:F1 Certificate issuer: /CN=A914E9C1/serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Certificate serial: 02C3 Authority key identifier: 0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/8A4C662AEAB511ECBBDE3C50C4F9AE02.roa Signing time: Sun 17 Sep 2023 02:02:45 +0000 ROA not before: Sun 17 Sep 2023 02:02:45 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 137427 IP address blocks: 103.91.217.0/24 maxlen: 24 103.99.208.0/24 maxlen: 24 103.99.209.0/24 maxlen: 24 103.99.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 02:50:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 707 (0x2c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E9C1/serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Validity Not Before: Sep 17 02:02:45 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65065e45-afdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:ea:0b:d7:78:da:37:ee:1d:f1:94:6e:15:34: b9:cc:28:4f:1d:90:67:65:84:cd:bf:48:e2:f2:87: 97:09:81:2a:c8:47:24:d2:13:90:3e:ef:ed:7d:06: 09:14:1e:4b:97:67:19:aa:8b:af:98:24:63:93:eb: 73:1f:d0:33:f2:be:ce:6d:ee:49:b6:42:3b:5d:4a: 2f:4e:2f:79:53:48:6e:09:f7:2b:f1:93:c0:47:9f: a2:37:05:9f:24:1a:a0:83:fc:f2:d7:03:7b:1b:18: ea:70:a9:0a:69:0d:b0:31:94:11:63:10:d9:a5:08: 4a:74:11:c4:c8:9b:3c:d8:27:ac:fe:08:0e:58:c2: 39:ff:94:aa:e7:3b:eb:6c:93:20:fb:96:11:e8:cd: 24:7f:cf:1a:f1:8d:09:2e:33:7f:c3:fa:68:4d:62: 13:cf:8e:5c:cd:2a:b3:78:20:fe:54:65:b1:87:71: 65:25:90:e4:25:cc:8f:89:87:d0:0f:68:8f:b1:88: 0f:9c:f7:3d:79:8f:71:95:24:fc:8e:de:5d:16:7c: f0:ba:b3:47:0b:b7:f3:f7:91:8f:42:0d:b2:a1:38: 4e:22:3b:47:f3:18:7d:5c:db:b6:0f:79:0a:0f:99: 99:61:34:60:6f:ff:3e:11:62:91:bb:b2:26:04:df: b9:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:60:D9:B3:BE:6B:02:D6:B8:71:41:49:55:15:33:BF:18:1D:41:F1 X509v3 Authority Key Identifier: keyid:0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/8A4C662AEAB511ECBBDE3C50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.217.0/24 103.99.208.0-103.99.210.255 Signature Algorithm: sha256WithRSAEncryption 69:12:df:3d:82:be:1b:16:b2:63:4a:da:2c:71:01:2c:51:ec: b5:18:fc:85:bc:6a:8c:9a:4e:39:b2:59:f5:47:71:2b:63:11: c9:c4:3c:db:73:7b:79:6f:76:3f:f0:90:51:76:60:a4:b9:4a: 81:48:4b:d3:3f:2a:7b:bf:98:84:ec:fc:3d:12:d8:77:fc:54: 5f:e7:04:ba:78:bf:83:3b:16:8d:6c:34:e2:bc:32:3c:cd:27: ce:3f:91:7c:69:e4:cb:2b:a3:bb:3e:63:40:58:a4:d4:bc:d9: 73:bb:56:c4:36:12:93:65:75:5a:3d:d7:6c:4c:e0:87:42:c1: 57:9f:c8:2b:29:7d:27:aa:7c:7f:22:15:4f:2a:b6:3c:aa:09: 79:17:54:29:21:69:a7:b7:e9:43:42:37:e1:f3:4c:76:54:97: 10:2f:d2:f2:6e:f2:bd:78:ea:50:52:02:21:1a:1a:08:c4:25: d6:bc:8e:1d:b8:f1:b3:1d:e7:fc:4b:d0:bd:38:23:8d:10:b9: 6a:5a:0f:ac:01:d7:89:31:ad:7c:b9:07:30:94:93:bd:62:ee: a0:90:e1:29:e8:c1:f3:18:3e:d2:d1:b1:cf:94:16:fd:45:54: 5a:d1:87:88:39:9f:9e:30:5f:5a:2b:88:37:b6:c6:15:4b:2c: 28:15:b0:a0 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICAsMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5QzExMTAvBgNVBAUTKDBBMURFMThERkM5OEU0QUNCM0ZBMjMzMzY4MTA1QTcz RDFENDE5RjMwHhcNMjMwOTE3MDIwMjQ1WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTA2NWU0NS1hZmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8OoL13jaN+4d8ZRuFTS5zChPHZBnZYTNv0ji8oeXCYEqyEck0hOQPu/tfQYJ FB5Ll2cZqouvmCRjk+tzH9Az8r7Obe5JtkI7XUovTi95U0huCfcr8ZPAR5+iNwWf JBqgg/zy1wN7GxjqcKkKaQ2wMZQRYxDZpQhKdBHEyJs82Ces/ggOWMI5/5Sq5zvr bJMg+5YR6M0kf88a8Y0JLjN/w/poTWITz45czSqzeCD+VGWxh3FlJZDkJcyPiYfQ D2iPsYgPnPc9eY9xlST8jt5dFnzwurNHC7fz95GPQg2yoThOIjtH8xh9XNu2D3kK D5mZYTRgb/8+EWKRu7ImBN+5QwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFK1g2bO+ awLWuHFBSVUVM78YHUHxMB8GA1UdIwQYMBaAFAod4Y38mOSss/ojM2gQWnPR1Bnz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTlDMS9FRTcwMkY0NDdB QzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVLeXotaU16YUJCYWM5SFVH Zk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoM2hqZnlZNUt5ei1pTXphQkJhYzlIVUdmTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU5QzEvRUU3MDJGNDQ3QUM5MTFFQzlEQTU1QjQ2QzRGOUFFMDIvOEE0QzY2MkFF QUI1MTFFQ0JCREUzQzUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBABnW9kwDAMEBGdj0AMEAGdj0jANBgkqhkiG9w0BAQsFAAOC AQEAaRLfPYK+GxayY0raLHEBLFHstRj8hbxqjJpOObJZ9UdxK2MRycQ823N7eW92 P/CQUXZgpLlKgUhL0z8qe7+YhOz8PRLYd/xUX+cEuni/gzsWjWw04rwyPM0nzj+R fGnkyyujuz5jQFik1LzZc7tWxDYSk2V1Wj3XbEzgh0LBV5/IKyl9J6p8fyIVTyq2 PKoJeRdUKSFpp7fpQ0I34fNMdlSXEC/S8m7yvXjqUFICIRoaCMQl1ryOHbjxsx3n /EvQvTgjjRC5aloPrAHXiTGtfLkHMJSTvWLuoJDhKejB8xg+0tGxz5QW/UVUWtGH iDmfnjBfWiuIN7bGFUssKBWwoA== -----END CERTIFICATE-----Generated at Mon May 27 04:53:37 2024 by rpki-client on console-fra.rpki-client.org