$ rpki-client -vvf rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/002F950CFF6611EABE77DA4FC4F9AE02.roa File: 002F950CFF6611EABE77DA4FC4F9AE02.roa (raw, json) Hash identifier: Y8TTzgFVv4EHYS2BwVL/fZQ4/l7G06gpV04OPhl7vrM= Subject key identifier: 6F:86:2C:72:15:C8:9D:6D:6A:DE:CC:80:40:BD:30:A4:35:75:DB:1B Certificate issuer: /CN=A916CDDF/serialNumber=4FFA528C6E467ED458F535FC5C6DD9DBED0CE737 Certificate serial: 065A Authority key identifier: 4F:FA:52:8C:6E:46:7E:D4:58:F5:35:FC:5C:6D:D9:DB:ED:0C:E7:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_pSjG5GftRY9TX8XG3Z2-0M5zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/002F950CFF6611EABE77DA4FC4F9AE02.roa Signing time: Mon 26 Jun 2023 20:20:13 +0000 ROA not before: Mon 26 Jun 2023 20:20:13 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 135353 IP address blocks: 103.214.216.0/24 maxlen: 24 103.214.217.0/24 maxlen: 24 103.214.218.0/24 maxlen: 24 103.214.219.0/24 maxlen: 24 144.48.160.0/24 maxlen: 24 144.48.161.0/24 maxlen: 24 144.48.162.0/24 maxlen: 24 144.48.163.0/24 maxlen: 24 2404:ba40::/32 maxlen: 32 2404:ba40::/48 maxlen: 48 2404:ba40:1::/48 maxlen: 48 2404:ba40:2::/48 maxlen: 48 2404:ba40:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.crl rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_pSjG5GftRY9TX8XG3Z2-0M5zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 19:25:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1626 (0x65a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CDDF/serialNumber=4FFA528C6E467ED458F535FC5C6DD9DBED0CE737 Validity Not Before: Jun 26 20:20:13 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6499f2fc-e78a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:27:84:34:71:f6:23:bd:50:04:ba:fe:8c:7a: 90:1b:25:59:a9:e7:e9:34:a3:f1:41:67:a0:d9:a8: 63:81:2a:91:35:63:a7:ca:9c:21:bb:76:88:0a:49: 8c:86:a4:9f:f7:5c:ab:88:99:dc:f0:a7:80:fb:d4: 46:54:49:93:c2:f1:da:01:ad:29:53:00:dd:de:ff: 61:61:e5:13:75:57:68:b2:c9:f1:de:b5:f4:83:a3: 19:3e:aa:9d:09:e4:a4:90:05:9b:29:e6:58:61:2f: 27:8c:13:31:5c:18:b5:df:8a:87:4d:e1:56:74:a5: 8e:7d:cc:96:cd:0f:ef:56:88:28:64:a0:ee:9d:3c: 16:02:86:fc:ce:09:e1:54:72:e8:6a:c3:31:48:e4: 27:66:93:af:01:e1:e3:e3:c7:b4:1e:9b:80:e0:03: b7:6e:72:45:83:7b:9f:66:67:53:1c:7c:5b:e5:bc: 73:16:b2:9f:19:70:57:af:5d:8b:ff:7a:29:f8:98: 75:f1:35:31:a6:ce:a0:28:c3:2c:4f:a5:8e:23:a1: ba:e9:cc:a7:d2:ff:aa:4d:ec:79:2e:ca:a3:61:42: 5a:d1:c2:41:f9:f1:3c:38:45:03:60:96:15:ee:ac: 3a:d4:cf:f0:6d:9a:32:2d:a8:7e:33:a5:5f:21:05: a1:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:86:2C:72:15:C8:9D:6D:6A:DE:CC:80:40:BD:30:A4:35:75:DB:1B X509v3 Authority Key Identifier: keyid:4F:FA:52:8C:6E:46:7E:D4:58:F5:35:FC:5C:6D:D9:DB:ED:0C:E7:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_pSjG5GftRY9TX8XG3Z2-0M5zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/002F950CFF6611EABE77DA4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.214.216.0/22 144.48.160.0/22 IPv6: 2404:ba40::/32 Signature Algorithm: sha256WithRSAEncryption 02:0f:0f:c6:f4:5e:8b:69:39:da:56:90:d8:3c:77:2e:e3:61: 92:9d:d2:1b:ca:c0:d9:7d:1e:c6:ba:98:ac:c3:8b:db:f0:51: 32:18:e4:60:02:3a:8f:fc:43:82:9d:ba:f9:bf:e4:88:fb:ef: bc:0d:8e:01:bb:12:d8:9d:59:b0:37:33:09:b9:dc:f9:3a:22: cd:e7:ca:ab:a7:38:ca:a8:ce:70:50:18:63:5a:45:a4:41:b0: 5b:d1:a0:34:ba:aa:4b:0d:c7:8f:96:e6:44:e9:7d:bc:47:34: bb:3b:b6:6d:2f:49:51:fa:07:b0:9a:7e:62:61:74:64:01:ba: c1:5f:d1:33:68:8e:f9:54:4c:c8:21:9c:c6:99:50:43:e0:da: 14:93:80:8b:de:b5:06:7c:67:f1:d6:e0:ab:af:49:a7:49:1d: 73:ea:57:a8:89:a2:7a:e2:1a:41:36:98:68:6e:41:3a:16:c0: 93:02:cc:4f:dd:68:3d:c1:f9:63:f7:58:9c:54:f3:77:77:08: c8:0f:b2:a8:4b:4d:36:02:09:25:12:df:92:ff:32:c9:d4:0a: ea:cd:b3:7f:d3:9a:10:f0:d1:8e:89:20:f8:21:b5:35:dd:c8: ae:e2:0e:3f:ff:34:ad:0c:60:4b:d0:ff:ca:66:e3:74:de:65: e0:fc:b7:d0 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBlowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNEREYxMTAvBgNVBAUTKDRGRkE1MjhDNkU0NjdFRDQ1OEY1MzVGQzVDNkREOURC RUQwQ0U3MzcwHhcNMjMwNjI2MjAyMDEzWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDk5ZjJmYy1lNzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmyeENHH2I71QBLr+jHqQGyVZqefpNKPxQWeg2ahjgSqRNWOnypwhu3aICkmM hqSf91yriJnc8KeA+9RGVEmTwvHaAa0pUwDd3v9hYeUTdVdossnx3rX0g6MZPqqd CeSkkAWbKeZYYS8njBMxXBi134qHTeFWdKWOfcyWzQ/vVogoZKDunTwWAob8zgnh VHLoasMxSOQnZpOvAeHj48e0HpuA4AO3bnJFg3ufZmdTHHxb5bxzFrKfGXBXr12L /3op+Jh18TUxps6gKMMsT6WOI6G66cyn0v+qTex5LsqjYUJa0cJB+fE8OEUDYJYV 7qw61M/wbZoyLah+M6VfIQWhaQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFG+GLHIV yJ1tat7MgEC9MKQ1ddsbMB8GA1UdIwQYMBaAFE/6UoxuRn7UWPU1/Fxt2dvtDOc3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0RERi8yNjYwOEQ0NjEw NzIxMUVBQUMwNkIwNzlDNEY5QUUwMi9UX3BTakc1R2Z0Ulk5VFg4WEczWjItME01 emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RfcFNqRzVHZnRSWTlUWDhYRzNaMi0wTTV6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkNEREYvMjY2MDhENDYxMDcyMTFFQUFDMDZCMDc5QzRGOUFFMDIvMDAyRjk1MENG RjY2MTFFQUJFNzdEQTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJn1tgDBAKQMKAwDQQCAAIwBwMFACQEukAwDQYJKoZIhvcN AQELBQADggEBAAIPD8b0XotpOdpWkNg8dy7jYZKd0hvKwNl9Hsa6mKzDi9vwUTIY 5GACOo/8Q4Kduvm/5Ij777wNjgG7EtidWbA3Mwm53Pk6Is3nyqunOMqoznBQGGNa RaRBsFvRoDS6qksNx4+W5kTpfbxHNLs7tm0vSVH6B7CafmJhdGQBusFf0TNojvlU TMghnMaZUEPg2hSTgIvetQZ8Z/HW4KuvSadJHXPqV6iJonriGkE2mGhuQToWwJMC zE/daD3B+WP3WJxU83d3CMgPsqhLTTYCCSUS35L/MsnUCurNs3/TmhDw0Y6JIPgh tTXdyK7iDj//NK0MYEvQ/8pm43TeZeD8t9A= -----END CERTIFICATE-----Generated at Fri May 24 20:48:03 2024 by rpki-client on console-fra.rpki-client.org