$ rpki-client -vvf rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/84F043C8E90D11EA80A27F31C4F9AE02.roa File: 84F043C8E90D11EA80A27F31C4F9AE02.roa (raw, json) Hash identifier: qI6KCrtodySkzeL/oitt77Tkl6xZ1ymDLyrPD1WZLAk= Subject key identifier: 57:DA:17:A8:8F:F5:05:4D:BF:B2:81:41:E4:BA:CA:EC:27:28:CE:9C Certificate issuer: /CN=A915EFDF/serialNumber=E8C21B03B65083B21BFA37526D12B341F249CC8B Certificate serial: 06B4 Authority key identifier: E8:C2:1B:03:B6:50:83:B2:1B:FA:37:52:6D:12:B3:41:F2:49:CC:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/84F043C8E90D11EA80A27F31C4F9AE02.roa Signing time: Sat 16 Sep 2023 21:59:06 +0000 ROA not before: Sat 16 Sep 2023 21:59:06 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 17483 IP address blocks: 103.72.100.0/24 maxlen: 24 103.72.101.0/24 maxlen: 24 103.72.102.0/24 maxlen: 24 103.72.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.crl rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1716 (0x6b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EFDF/serialNumber=E8C21B03B65083B21BFA37526D12B341F249CC8B Validity Not Before: Sep 16 21:59:06 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6506252a-4988 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:28:85:3c:8a:40:c8:1c:9f:51:f9:6a:73:b3: 07:17:0d:a5:54:61:54:54:31:92:c5:fd:5d:d3:b8: 7f:4a:2e:79:1c:c2:0d:ac:33:bb:04:a0:43:f5:19: 8b:a8:40:68:d4:57:c6:eb:74:45:77:ce:70:e6:81: e2:da:a9:e7:bc:3e:55:a5:f1:ce:81:e1:27:67:60: 0e:89:79:d6:ab:86:90:4a:12:05:75:4b:0c:f6:bb: ff:d8:66:71:9a:23:21:f1:50:69:3c:b9:27:cb:15: ce:d4:3d:b0:18:a2:85:64:8f:c8:1f:f1:1f:47:c5: f9:db:1c:ba:b5:71:ef:5a:92:9d:df:1f:8b:ee:60: e9:70:1f:3d:4a:d0:7d:10:61:54:8e:11:9d:71:66: 8f:5b:5a:95:70:f0:98:14:8b:4b:54:44:6e:4e:3f: ea:5b:51:cf:f2:5b:24:8a:41:59:20:4c:9e:0f:b6: da:d4:01:7b:12:e3:c7:86:2f:ee:27:e5:37:cd:7e: ce:7c:ad:62:3e:86:a8:5a:68:86:c0:98:b7:d1:68: 56:87:d4:b4:bc:a5:3a:e6:99:fa:a2:80:77:da:b3: bd:92:da:78:9b:21:c5:01:7b:6a:00:f0:a8:8d:e8: 4c:f5:b1:29:09:cd:1a:4a:cc:8d:9d:84:cb:2b:60: f3:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:DA:17:A8:8F:F5:05:4D:BF:B2:81:41:E4:BA:CA:EC:27:28:CE:9C X509v3 Authority Key Identifier: keyid:E8:C2:1B:03:B6:50:83:B2:1B:FA:37:52:6D:12:B3:41:F2:49:CC:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/84F043C8E90D11EA80A27F31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.72.100.0/22 Signature Algorithm: sha256WithRSAEncryption 02:74:9a:bc:50:6e:3b:26:32:44:be:fa:5a:f9:5a:35:14:71: 51:34:26:df:75:df:ad:a1:3d:e3:5b:a0:ac:a8:63:69:d7:a5: f6:13:37:fc:43:d5:5e:b3:7c:3d:83:30:d3:6a:b9:b1:49:68: a1:dd:d1:fb:79:79:77:db:1c:4d:a3:f3:35:b6:3a:39:55:87: 04:96:aa:aa:24:42:45:4f:9e:1e:48:b3:09:38:31:1b:9a:74: e1:4f:65:92:04:fa:69:0f:e3:02:18:c5:61:46:db:5b:ca:4e: e9:4b:80:52:cc:02:4b:fe:8e:79:63:12:6d:d2:a0:76:50:58: 18:dc:57:93:a3:2e:3a:76:ee:40:93:f9:a9:09:17:66:8f:dd: 5f:b5:47:64:47:c8:d9:49:f7:f8:0c:ea:aa:f2:96:81:94:54: 85:da:67:bc:25:61:40:57:84:14:7a:2d:2e:91:f3:57:2b:f3: 12:c3:dc:c2:6f:99:b8:53:77:52:ec:8a:69:85:61:3a:3f:15: c0:a8:1f:ac:79:74:ae:de:31:34:e0:6c:ff:05:40:4e:c8:80: 19:59:e7:d8:c7:51:9f:4e:4c:b4:42:1f:dd:b5:45:b6:94:3a: fa:99:71:ff:2a:a2:de:fe:0f:92:8b:3a:50:da:fa:b9:8c:31: 37:a9:fb:00 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBrQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVGREYxMTAvBgNVBAUTKEU4QzIxQjAzQjY1MDgzQjIxQkZBMzc1MjZEMTJCMzQx RjI0OUNDOEIwHhcNMjMwOTE2MjE1OTA2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTA2MjUyYS00OTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyiFPIpAyByfUflqc7MHFw2lVGFUVDGSxf1d07h/Si55HMINrDO7BKBD9RmL qEBo1FfG63RFd85w5oHi2qnnvD5VpfHOgeEnZ2AOiXnWq4aQShIFdUsM9rv/2GZx miMh8VBpPLknyxXO1D2wGKKFZI/IH/EfR8X52xy6tXHvWpKd3x+L7mDpcB89StB9 EGFUjhGdcWaPW1qVcPCYFItLVERuTj/qW1HP8lskikFZIEyeD7ba1AF7EuPHhi/u J+U3zX7OfK1iPoaoWmiGwJi30WhWh9S0vKU65pn6ooB32rO9ktp4myHFAXtqAPCo jehM9bEpCc0aSsyNnYTLK2DzjwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFfaF6iP 9QVNv7KBQeS6yuwnKM6cMB8GA1UdIwQYMBaAFOjCGwO2UIOyG/o3Um0Ss0HyScyL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUZERi8wQkREN0VBMkU5 MEMxMUVBOTY1QzJBMkZDNEY5QUUwMi82TUliQTdaUWc3SWItamRTYlJLelFmSkp6 SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZNSWJBN1pRZzdJYi1qZFNiUkt6UWZKSnpJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUVGREYvMEJERDdFQTJFOTBDMTFFQTk2NUMyQTJGQzRGOUFFMDIvODRGMDQzQzhF OTBEMTFFQTgwQTI3RjMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnSGQwDQYJKoZIhvcNAQELBQADggEBAAJ0mrxQbjsmMkS+ +lr5WjUUcVE0Jt91362hPeNboKyoY2nXpfYTN/xD1V6zfD2DMNNqubFJaKHd0ft5 eXfbHE2j8zW2OjlVhwSWqqokQkVPnh5Iswk4MRuadOFPZZIE+mkP4wIYxWFG21vK TulLgFLMAkv+jnljEm3SoHZQWBjcV5OjLjp27kCT+akJF2aP3V+1R2RHyNlJ9/gM 6qryloGUVIXaZ7wlYUBXhBR6LS6R81cr8xLD3MJvmbhTd1LsimmFYTo/FcCoH6x5 dK7eMTTgbP8FQE7IgBlZ59jHUZ9OTLRCH921RbaUOvqZcf8qot7+D5KLOlDa+rmM MTep+wA= -----END CERTIFICATE-----Generated at Thu May 16 23:48:41 2024 by rpki-client on console-fra.rpki-client.org