$ rpki-client -vvf rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/ED7C5416CD3711EDB6A0F37BC4F9AE02.roa File: ED7C5416CD3711EDB6A0F37BC4F9AE02.roa (raw, json) Hash identifier: clgE415quuIDIYEZ2JznEcj145jtIIu48ujGK1RV7zU= Subject key identifier: 44:9F:22:BA:27:1F:7B:75:D1:15:4E:73:11:CD:93:59:60:CE:E3:98 Certificate issuer: /CN=A916A314/serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Certificate serial: 05A9 Authority key identifier: 21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/ED7C5416CD3711EDB6A0F37BC4F9AE02.roa Signing time: Wed 04 Oct 2023 23:00:49 +0000 ROA not before: Wed 04 Oct 2023 23:00:49 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 7545 IP address blocks: 103.99.101.0/24 maxlen: 24 103.242.49.0/24 maxlen: 24 2001:df3:d000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 00:44:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1449 (0x5a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A314/serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Validity Not Before: Oct 4 23:00:49 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651deea1-506c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e2:7b:66:fa:93:a1:d2:92:11:57:68:eb:c5: 2a:ea:4c:31:42:4a:fe:7e:54:50:fa:c6:ee:e2:e4: bb:fc:dd:e5:70:67:df:26:5f:44:af:38:2c:a6:3a: d8:8c:ee:25:eb:49:6d:56:d2:b5:4d:05:fa:2e:3d: d9:4e:33:6e:71:9b:3b:b9:51:53:13:c0:52:37:f8: a0:09:a9:11:e0:fc:5f:c9:5b:fd:d1:44:25:ba:0b: 38:28:45:39:a0:eb:74:9f:6e:fb:f3:ff:c2:df:17: eb:a0:1e:e5:1e:aa:c5:e8:12:3c:fa:d6:8e:3e:58: 62:e2:be:a7:a3:db:7b:01:81:1d:da:a2:48:17:1f: 31:9d:25:4c:47:33:5e:54:80:ca:86:19:01:6a:bb: 91:26:23:57:b0:7d:95:b3:5c:0c:cf:f9:ba:f3:b5: 06:0c:08:ea:52:f4:7d:21:51:5a:1f:60:77:a7:b9: 08:c8:63:4d:73:2c:8c:f2:ef:6f:e7:0e:ad:0b:72: 62:24:dc:68:25:13:65:f3:89:8c:21:47:e9:34:49: 64:81:6d:3d:bd:52:a2:14:e6:ce:27:b5:de:8e:18: f0:3a:a2:4a:fd:25:9f:eb:8f:90:82:a0:95:ac:ce: 37:1a:40:31:05:26:3b:45:dd:ab:7b:98:85:95:41: 8a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:9F:22:BA:27:1F:7B:75:D1:15:4E:73:11:CD:93:59:60:CE:E3:98 X509v3 Authority Key Identifier: keyid:21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/ED7C5416CD3711EDB6A0F37BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.101.0/24 103.242.49.0/24 IPv6: 2001:df3:d000::/48 Signature Algorithm: sha256WithRSAEncryption 96:0b:ea:fc:2c:e7:94:4b:51:f5:ee:64:20:1e:f8:b4:97:6a: 87:00:a1:0a:e1:08:ba:9d:8c:8e:12:58:ce:b0:5f:a3:a0:91: c8:4d:9b:5b:ae:0f:45:b3:ef:7a:6f:b1:a7:33:58:a0:37:3d: b9:7b:12:9f:ea:c1:2f:0c:02:e4:2a:bf:54:95:3e:dd:6e:2a: 06:0f:11:8e:fb:38:a0:d7:ee:80:85:05:8a:96:1e:5e:f4:62: c3:11:d3:17:74:ff:86:b6:99:58:af:b9:12:49:06:cd:09:05: ee:9b:88:c9:46:2d:49:4c:6a:69:21:98:55:81:0e:8d:c9:32: c9:22:11:44:67:ec:d6:35:f0:ec:cb:2c:6f:81:45:e5:08:63: 3d:61:08:e7:2c:03:e4:6b:d0:1d:55:44:75:81:81:6d:d9:ad: ee:ea:91:8e:e7:e4:34:ca:72:06:cc:29:50:ee:a3:54:3d:8c: 90:36:51:47:de:01:29:23:8c:8c:37:cd:1b:14:9f:db:2b:b5: cc:5a:1f:5c:c9:fe:cf:c3:6d:e1:b2:61:0f:34:35:9f:e8:2c: 99:59:13:65:ce:57:25:63:65:cf:af:67:d3:2d:ba:51:61:48: d1:24:76:f7:c8:34:5d:ec:64:55:0e:ad:12:f5:af:4e:cc:63: 87:60:91:be -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzMTQxMTAvBgNVBAUTKDIxNEE1RjIyQUE1MDFCMjE4QjBFNjAxNUQxRTBGQkEx QzhFNDNGMjQwHhcNMjMxMDA0MjMwMDQ5WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFkZWVhMS01MDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+J7ZvqTodKSEVdo68Uq6kwxQkr+flRQ+sbu4uS7/N3lcGffJl9ErzgspjrY jO4l60ltVtK1TQX6Lj3ZTjNucZs7uVFTE8BSN/igCakR4PxfyVv90UQlugs4KEU5 oOt0n2778//C3xfroB7lHqrF6BI8+taOPlhi4r6no9t7AYEd2qJIFx8xnSVMRzNe VIDKhhkBaruRJiNXsH2Vs1wMz/m687UGDAjqUvR9IVFaH2B3p7kIyGNNcyyM8u9v 5w6tC3JiJNxoJRNl84mMIUfpNElkgW09vVKiFObOJ7XejhjwOqJK/SWf64+QgqCV rM43GkAxBSY7Rd2re5iFlUGKEwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFESfIron H3t10RVOcxHNk1lgzuOYMB8GA1UdIwQYMBaAFCFKXyKqUBshiw5gFdHg+6HI5D8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTMxNC83MEQzQjM2QTU5 NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5R0xEbUFWMGVEN29jamtQ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lVcGZJcXBRR3lHTERtQVYwZUQ3b2Nqa1B5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkEzMTQvNzBEM0IzNkE1OTUyMTFFQkE2RDc4MDQ4QzRGOUFFMDIvRUQ3QzU0MTZD RDM3MTFFREI2QTBGMzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnY2UDBABn8jEwDwQCAAIwCQMHACABDfPQADANBgkqhkiG 9w0BAQsFAAOCAQEAlgvq/CznlEtR9e5kIB74tJdqhwChCuEIup2MjhJYzrBfo6CR yE2bW64PRbPvem+xpzNYoDc9uXsSn+rBLwwC5Cq/VJU+3W4qBg8Rjvs4oNfugIUF ipYeXvRiwxHTF3T/hraZWK+5EkkGzQkF7puIyUYtSUxqaSGYVYEOjckyySIRRGfs 1jXw7Mssb4FF5QhjPWEI5ywD5GvQHVVEdYGBbdmt7uqRjufkNMpyBswpUO6jVD2M kDZRR94BKSOMjDfNGxSf2yu1zFofXMn+z8Nt4bJhDzQ1n+gsmVkTZc5XJWNlz69n 0y26UWFI0SR298g0XexkVQ6tEvWvTsxjh2CRvg== -----END CERTIFICATE-----Generated at Sat Jun 1 02:01:15 2024 by rpki-client on console-ams.rpki-client.org