$ rpki-client -vvf rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/0F206AEA776F11ED8E7B8775C4F9AE02.roa File: 0F206AEA776F11ED8E7B8775C4F9AE02.roa (raw, json) Hash identifier: bk1xqXUvZf0wUOSk8EdpBUeHGR10LjCW8LYP9q02xq0= Subject key identifier: A8:63:A6:38:11:2F:09:02:3D:B7:9E:13:79:24:10:C2:3F:9B:B8:EB Certificate issuer: /CN=A916A314/serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Certificate serial: 05A8 Authority key identifier: 21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/0F206AEA776F11ED8E7B8775C4F9AE02.roa Signing time: Wed 04 Oct 2023 23:00:49 +0000 ROA not before: Wed 04 Oct 2023 23:00:49 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 133044 IP address blocks: 103.99.101.0/24 maxlen: 24 103.242.49.0/24 maxlen: 24 2001:df3:d000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 00:44:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1448 (0x5a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A314/serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Validity Not Before: Oct 4 23:00:49 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651deea1-48da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:a2:e9:90:7a:c7:77:99:e9:44:f4:82:c6:31: 1a:e0:8f:a1:88:85:bc:c7:aa:d3:61:56:62:90:6a: dd:eb:52:01:40:8d:f8:02:43:ae:b8:34:1c:32:ce: 07:4c:cf:3e:a4:09:f0:81:e5:07:c6:9a:e5:a2:b9: cf:0c:ce:4b:57:04:d4:a4:ff:87:2b:30:ff:9c:c8: e5:0e:a7:d9:5b:5f:e1:36:d0:69:78:9d:c7:48:78: 50:de:15:1c:85:cc:39:4e:63:8b:cf:0c:ee:df:a4: 94:87:77:04:75:f8:3c:40:33:88:50:09:c3:a5:94: e3:47:73:95:3e:5c:f5:d9:dd:3b:83:42:85:58:8c: db:fd:15:25:8e:8d:cd:a7:f1:17:b0:c4:2d:0f:30: 55:ce:cf:c8:b4:22:cb:70:98:0b:ad:8d:bd:14:a6: a4:43:fb:70:66:ad:b0:62:e2:75:8d:0d:3d:44:0c: 37:ba:2b:1a:58:6b:a2:b7:42:45:66:72:2b:3b:92: 5f:fe:af:82:09:ed:f7:63:ad:15:39:2d:4d:75:8d: 0a:70:91:c1:fa:fc:b3:b5:4c:00:29:c8:8d:5f:00: 2f:71:3c:5f:2d:31:4d:1f:7e:10:b2:f2:b2:90:2c: c1:e5:7e:89:1b:1a:6d:e2:9e:6a:e3:80:7a:aa:76: ec:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:63:A6:38:11:2F:09:02:3D:B7:9E:13:79:24:10:C2:3F:9B:B8:EB X509v3 Authority Key Identifier: keyid:21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/0F206AEA776F11ED8E7B8775C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.101.0/24 103.242.49.0/24 IPv6: 2001:df3:d000::/48 Signature Algorithm: sha256WithRSAEncryption 95:8e:fa:e2:8f:8c:f5:5a:93:ea:e0:b1:1e:d0:a1:00:3e:46: d1:98:db:07:36:44:31:83:f6:5b:27:3e:68:47:e7:4c:15:45: a0:2b:42:ec:57:42:ac:5e:a4:67:1e:3a:87:f7:bb:b4:45:ef: d4:10:7b:14:c2:1e:f6:a6:56:f1:bd:07:ec:05:15:51:52:39: 69:76:74:da:fe:cb:c2:16:63:f2:28:8e:c2:d2:45:ed:b7:74: 8f:2c:04:77:f2:33:24:f4:9f:66:f4:be:5a:79:a7:13:bf:f0: d5:f3:e5:26:96:61:4a:1e:57:e6:61:60:9a:09:4a:93:95:01: b8:4a:97:ab:7a:83:23:ba:e4:de:2b:28:20:a6:99:54:19:21: 24:67:c7:6c:4c:6f:c1:c1:d7:7b:5a:3d:96:7e:1e:0d:51:7c: 90:80:c2:30:6a:5e:4a:5a:41:d2:44:51:14:c4:c9:b2:4c:76: d0:c3:a2:34:b7:64:62:16:96:4c:a9:88:e5:b1:11:44:d9:f0: 18:02:fe:b0:06:88:17:b3:a4:d6:f4:59:af:97:82:52:8e:b4: 38:9e:f9:dc:d6:7b:67:83:72:0a:f8:01:3a:9c:61:01:b2:68: b0:77:bf:7a:bf:b8:d7:ac:0b:ed:09:a1:dc:20:ac:86:15:97: 4c:b9:91:5b -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzMTQxMTAvBgNVBAUTKDIxNEE1RjIyQUE1MDFCMjE4QjBFNjAxNUQxRTBGQkEx QzhFNDNGMjQwHhcNMjMxMDA0MjMwMDQ5WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFkZWVhMS00OGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7qLpkHrHd5npRPSCxjEa4I+hiIW8x6rTYVZikGrd61IBQI34AkOuuDQcMs4H TM8+pAnwgeUHxprlornPDM5LVwTUpP+HKzD/nMjlDqfZW1/hNtBpeJ3HSHhQ3hUc hcw5TmOLzwzu36SUh3cEdfg8QDOIUAnDpZTjR3OVPlz12d07g0KFWIzb/RUljo3N p/EXsMQtDzBVzs/ItCLLcJgLrY29FKakQ/twZq2wYuJ1jQ09RAw3uisaWGuit0JF ZnIrO5Jf/q+CCe33Y60VOS1NdY0KcJHB+vyztUwAKciNXwAvcTxfLTFNH34QsvKy kCzB5X6JGxpt4p5q44B6qnbsiQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFKhjpjgR LwkCPbeeE3kkEMI/m7jrMB8GA1UdIwQYMBaAFCFKXyKqUBshiw5gFdHg+6HI5D8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTMxNC83MEQzQjM2QTU5 NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5R0xEbUFWMGVEN29jamtQ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lVcGZJcXBRR3lHTERtQVYwZUQ3b2Nqa1B5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkEzMTQvNzBEM0IzNkE1OTUyMTFFQkE2RDc4MDQ4QzRGOUFFMDIvMEYyMDZBRUE3 NzZGMTFFRDhFN0I4Nzc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnY2UDBABn8jEwDwQCAAIwCQMHACABDfPQADANBgkqhkiG 9w0BAQsFAAOCAQEAlY764o+M9VqT6uCxHtChAD5G0ZjbBzZEMYP2Wyc+aEfnTBVF oCtC7FdCrF6kZx46h/e7tEXv1BB7FMIe9qZW8b0H7AUVUVI5aXZ02v7LwhZj8iiO wtJF7bd0jywEd/IzJPSfZvS+WnmnE7/w1fPlJpZhSh5X5mFgmglKk5UBuEqXq3qD I7rk3isoIKaZVBkhJGfHbExvwcHXe1o9ln4eDVF8kIDCMGpeSlpB0kRRFMTJskx2 0MOiNLdkYhaWTKmI5bERRNnwGAL+sAaIF7Ok1vRZr5eCUo60OJ753NZ7Z4NyCvgB OpxhAbJosHe/er+416wL7Qmh3CCshhWXTLmRWw== -----END CERTIFICATE-----Generated at Sat Jun 1 02:01:15 2024 by rpki-client on console-ams.rpki-client.org