$ rpki-client -vvf rpki.apnic.net/member_repository/A916A6BA/169687969BC311EDA6542324C4F9AE02/E8C858F29CA911EDAA491C41C4F9AE02.roa File: E8C858F29CA911EDAA491C41C4F9AE02.roa (raw, json) Hash identifier: QHwYnCyYfvJatT715L+F2i/uGN2F0rnr5Y6JgS/3oH0= Subject key identifier: B2:FE:F4:78:B2:4C:47:66:2B:8E:E6:0C:88:E8:A3:D9:5B:BA:61:A3 Certificate issuer: /CN=A916A6BA/serialNumber=3ED80FEB3B021A05241ABE70D1A510A867AD71FD Certificate serial: CE Authority key identifier: 3E:D8:0F:EB:3B:02:1A:05:24:1A:BE:70:D1:A5:10:A8:67:AD:71:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PtgP6zsCGgUkGr5w0aUQqGetcf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A6BA/169687969BC311EDA6542324C4F9AE02/E8C858F29CA911EDAA491C41C4F9AE02.roa Signing time: Mon 29 Jan 2024 05:17:35 +0000 ROA not before: Mon 29 Jan 2024 05:17:35 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 24312 IP address blocks: 103.73.218.0/24 maxlen: 24 103.73.219.0/24 maxlen: 24 2400:d8e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A6BA/169687969BC311EDA6542324C4F9AE02/PtgP6zsCGgUkGr5w0aUQqGetcf0.crl rsync://rpki.apnic.net/member_repository/A916A6BA/169687969BC311EDA6542324C4F9AE02/PtgP6zsCGgUkGr5w0aUQqGetcf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PtgP6zsCGgUkGr5w0aUQqGetcf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:26:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A6BA/serialNumber=3ED80FEB3B021A05241ABE70D1A510A867AD71FD Validity Not Before: Jan 29 05:17:35 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65b734ef-d506 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fa:44:f0:42:88:aa:b3:cf:5a:02:d2:02:02: a4:5d:a8:0a:48:6a:45:3a:04:6b:3a:99:c1:51:cd: 75:ec:3c:6c:c8:65:65:c7:eb:d3:c1:e4:64:1f:95: 58:14:af:36:ee:24:ff:3d:03:b2:23:dc:b5:45:ca: fd:13:27:59:02:f2:ed:c0:a4:f9:54:ec:21:93:97: 90:1a:92:80:c2:c4:e1:fe:ca:97:41:2b:0a:43:9b: 96:ed:6b:93:61:bf:65:ef:e5:32:f6:4b:9a:71:2b: 9d:f9:34:6a:74:d3:02:ba:9c:d9:80:c0:ec:0a:bd: dc:65:80:5e:73:47:05:f7:c2:50:19:68:22:8b:22: 79:0c:3a:8a:50:dd:02:ff:c7:24:27:19:80:4e:ba: 6b:31:4d:bf:5b:b9:76:12:83:50:9d:ed:c1:84:5f: e1:f6:f3:74:94:42:7e:01:9d:bc:3c:10:f4:f3:7c: 98:04:92:e2:a5:e6:6a:9f:e0:57:46:fd:db:f1:b0: e2:05:48:10:ba:83:af:b2:ce:6a:21:56:79:e0:d4: 5d:ce:bd:aa:4a:05:bb:d0:f6:37:7f:aa:b2:1d:92: 26:90:81:9c:b9:60:b6:53:8d:90:08:d0:49:a8:04: b9:2c:bd:5b:d9:2c:ea:6d:b2:56:45:34:e1:b2:2f: 75:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:FE:F4:78:B2:4C:47:66:2B:8E:E6:0C:88:E8:A3:D9:5B:BA:61:A3 X509v3 Authority Key Identifier: keyid:3E:D8:0F:EB:3B:02:1A:05:24:1A:BE:70:D1:A5:10:A8:67:AD:71:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A6BA/169687969BC311EDA6542324C4F9AE02/PtgP6zsCGgUkGr5w0aUQqGetcf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PtgP6zsCGgUkGr5w0aUQqGetcf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A6BA/169687969BC311EDA6542324C4F9AE02/E8C858F29CA911EDAA491C41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.218.0/23 IPv6: 2400:d8e0::/48 Signature Algorithm: sha256WithRSAEncryption a2:ba:43:8d:92:d7:ac:e1:ea:c9:4f:dd:55:a7:eb:d8:88:3a: e4:18:63:a7:8c:dd:9c:32:1b:e1:96:86:d3:3c:4c:be:00:c9: 00:3f:fc:da:08:d8:22:f1:c3:4c:46:d6:02:1c:97:0b:dd:de: 70:db:68:0d:f1:74:ef:06:28:4f:2d:84:bb:51:21:b2:ac:d7: 85:75:9c:64:20:27:53:55:1a:d8:40:df:29:96:8f:33:98:f8: ed:79:bf:28:00:4b:f2:94:ff:17:60:b8:1f:a2:65:07:97:68: 52:33:a4:4b:84:b1:a7:ab:a2:3a:20:56:71:93:84:8b:d2:b8: c7:77:8d:97:ef:b0:9e:6b:22:8c:78:e6:58:2f:e6:73:30:0a: aa:b4:5f:5c:f1:63:b7:65:ea:2a:0f:68:16:de:8f:25:8f:1a: 47:8c:b5:2f:4d:e1:03:3e:b0:56:94:02:0a:f8:50:cc:90:20: 14:c9:54:37:d4:43:19:19:14:c3:dc:b7:45:2a:0a:67:0a:6a: b5:51:71:07:2d:a2:68:05:85:d1:ef:f3:b1:cf:0b:dc:f4:c3: 4d:f2:d3:45:32:de:3c:0c:d2:90:dc:27:a7:d5:c8:3f:24:72: df:28:c3:e7:01:20:7e:b8:a9:80:f0:9a:b2:ac:ca:52:5d:e9: ed:6f:0e:39 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE2QkExMTAvBgNVBAUTKDNFRDgwRkVCM0IwMjFBMDUyNDFBQkU3MEQxQTUxMEE4 NjdBRDcxRkQwHhcNMjQwMTI5MDUxNzM1WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI3MzRlZi1kNTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfpE8EKIqrPPWgLSAgKkXagKSGpFOgRrOpnBUc117DxsyGVlx+vTweRkH5VY FK827iT/PQOyI9y1Rcr9EydZAvLtwKT5VOwhk5eQGpKAwsTh/sqXQSsKQ5uW7WuT Yb9l7+Uy9kuacSud+TRqdNMCupzZgMDsCr3cZYBec0cF98JQGWgiiyJ5DDqKUN0C /8ckJxmATrprMU2/W7l2EoNQne3BhF/h9vN0lEJ+AZ28PBD083yYBJLipeZqn+BX Rv3b8bDiBUgQuoOvss5qIVZ54NRdzr2qSgW70PY3f6qyHZImkIGcuWC2U42QCNBJ qAS5LL1b2SzqbbJWRTThsi91jQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLL+9Hiy TEdmK47mDIjoo9lbumGjMB8GA1UdIwQYMBaAFD7YD+s7AhoFJBq+cNGlEKhnrXH9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTZCQS8xNjk2ODc5NjlC QzMxMUVEQTY1NDIzMjRDNEY5QUUwMi9QdGdQNnpzQ0dnVWtHcjV3MGFVUXFHZXRj ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B0Z1A2enNDR2dVa0dyNXcwYVVRcUdldGNmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkE2QkEvMTY5Njg3OTY5QkMzMTFFREE2NTQyMzI0QzRGOUFFMDIvRThDODU4RjI5 Q0E5MTFFREFBNDkxQzQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnSdowDwQCAAIwCQMHACQA2OAAADANBgkqhkiG9w0BAQsF AAOCAQEAorpDjZLXrOHqyU/dVafr2Ig65Bhjp4zdnDIb4ZaG0zxMvgDJAD/82gjY IvHDTEbWAhyXC93ecNtoDfF07wYoTy2Eu1EhsqzXhXWcZCAnU1Ua2EDfKZaPM5j4 7Xm/KABL8pT/F2C4H6JlB5doUjOkS4Sxp6uiOiBWcZOEi9K4x3eNl++wnmsijHjm WC/mczAKqrRfXPFjt2XqKg9oFt6PJY8aR4y1L03hAz6wVpQCCvhQzJAgFMlUN9RD GRkUw9y3RSoKZwpqtVFxBy2iaAWF0e/zsc8L3PTDTfLTRTLePAzSkNwnp9XIPyRy 3yjD5wEgfripgPCasqzKUl3p7W8OOQ== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:50 2024 by rpki-client on console-fra.rpki-client.org