$ rpki-client -vvf rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/258F8662BBDF11ED8CE89144C4F9AE02.roa File: 258F8662BBDF11ED8CE89144C4F9AE02.roa (raw, json) Hash identifier: 3d0yhTisV6gk7gaFUK1Mlf4a3VLR1uTy7ao2iXqrA3k= Subject key identifier: FD:38:19:E6:9E:00:BE:72:98:8E:49:34:9C:1B:DC:13:4C:97:65:50 Certificate issuer: /CN=A916EF5E/serialNumber=42182F5F71A58984CE8859AE60A4CACA73FE8361 Certificate serial: 0E83 Authority key identifier: 42:18:2F:5F:71:A5:89:84:CE:88:59:AE:60:A4:CA:CA:73:FE:83:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/258F8662BBDF11ED8CE89144C4F9AE02.roa Signing time: Sat 16 Sep 2023 17:14:34 +0000 ROA not before: Sat 16 Sep 2023 17:14:34 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 54415 IP address blocks: 103.99.168.0/24 maxlen: 24 2401:b140::/48 maxlen: 48 2401:b140:1::/48 maxlen: 48 2401:b140:2::/48 maxlen: 48 2401:b140:3::/48 maxlen: 48 2401:b140:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.crl rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 17:24:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3715 (0xe83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EF5E/serialNumber=42182F5F71A58984CE8859AE60A4CACA73FE8361 Validity Not Before: Sep 16 17:14:34 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6505e27a-e4b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:87:96:65:26:d7:a3:68:4c:60:3b:26:50:8c: 7b:f0:55:9f:f6:33:9b:61:4d:fb:fb:47:b5:df:4d: 6a:23:14:68:25:53:df:0b:4c:89:63:93:5e:b3:0d: cf:18:7f:2f:f6:8c:58:87:33:a9:fa:25:95:30:c4: 97:6f:28:a5:d3:96:9a:57:f3:51:38:80:84:a6:ea: 62:88:e2:24:b9:81:f0:5f:24:18:68:d6:ae:b6:60: 30:bb:3e:ce:d5:cf:81:0d:0f:c1:18:ca:00:5e:b4: a0:c1:be:38:38:8c:fe:b6:73:cf:06:40:d2:41:d5: a4:1e:fb:1a:3b:f5:8b:73:1e:22:61:b4:32:2d:dc: 59:fb:10:ff:78:fe:0b:24:8e:07:8e:f2:0e:f1:19: 03:33:ff:c6:07:c5:1b:22:bd:00:84:f0:35:4c:7b: 9f:1e:eb:f8:4f:1e:32:90:06:79:58:4e:75:d6:a4: 5b:ea:75:ab:1f:e9:84:16:7c:96:bd:ca:b6:1d:db: 80:64:5f:80:0e:26:71:2b:fa:cb:5d:b8:c5:01:1f: 17:ce:b3:d4:2a:9e:d6:6d:07:4d:70:ab:36:15:29: 7b:cc:47:1e:e7:6b:40:8c:34:bf:d6:2b:f2:7e:94: 48:88:14:d1:07:84:c7:4b:cf:92:a2:dd:e6:a2:91: 2b:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:38:19:E6:9E:00:BE:72:98:8E:49:34:9C:1B:DC:13:4C:97:65:50 X509v3 Authority Key Identifier: keyid:42:18:2F:5F:71:A5:89:84:CE:88:59:AE:60:A4:CA:CA:73:FE:83:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/258F8662BBDF11ED8CE89144C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.168.0/24 IPv6: 2401:b140::-2401:b140:4:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption ad:9e:77:4f:51:dd:a7:d8:8b:8e:42:a4:d1:2d:d6:da:08:ce: 0e:2a:96:bc:33:99:f8:2d:5d:09:fb:cf:98:6a:1b:f3:66:93: 92:e7:76:f1:01:f4:6a:b1:a1:4d:7a:2d:9b:5b:09:26:85:7c: 0e:9d:f4:c8:95:c3:78:36:05:6e:30:fe:5d:ab:61:7a:32:b3: c5:92:a6:b1:18:ba:66:56:63:33:df:3a:04:f8:96:e5:81:93: 17:69:13:ba:78:8d:36:5e:1f:26:f5:28:ba:e8:2b:d1:c3:ca: a7:52:e3:55:6b:36:b1:45:e1:63:34:c9:9b:8c:b1:b2:e6:b7: 1f:15:8f:32:8e:9f:1c:2b:a9:c0:0c:8b:39:54:c1:b8:7a:f5: de:96:d2:7f:72:50:a5:2a:02:7a:00:6f:3d:30:fc:2c:71:7b: 85:8b:b8:5f:4e:24:c8:9a:b5:a5:1d:d9:39:51:72:d3:fc:20: 61:48:98:c8:24:ef:47:53:81:63:f5:ff:8f:c1:da:58:9e:b9: 47:25:f4:69:2f:13:eb:c1:44:67:19:b6:da:48:fd:93:5b:8e: f4:f1:30:f7:bf:4b:e1:22:0c:41:58:bb:8b:cc:28:7a:e1:ae: fd:56:88:b0:b8:5e:85:24:10:a0:d8:61:ba:16:a6:12:ac:6b: d8:ff:36:27 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICDoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVGNUUxMTAvBgNVBAUTKDQyMTgyRjVGNzFBNTg5ODRDRTg4NTlBRTYwQTRDQUNB NzNGRTgzNjEwHhcNMjMwOTE2MTcxNDM0WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTA1ZTI3YS1lNGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsIeWZSbXo2hMYDsmUIx78FWf9jObYU37+0e1301qIxRoJVPfC0yJY5Nesw3P GH8v9oxYhzOp+iWVMMSXbyil05aaV/NROICEpupiiOIkuYHwXyQYaNautmAwuz7O 1c+BDQ/BGMoAXrSgwb44OIz+tnPPBkDSQdWkHvsaO/WLcx4iYbQyLdxZ+xD/eP4L JI4HjvIO8RkDM//GB8UbIr0AhPA1THufHuv4Tx4ykAZ5WE511qRb6nWrH+mEFnyW vcq2HduAZF+ADiZxK/rLXbjFAR8XzrPUKp7WbQdNcKs2FSl7zEce52tAjDS/1ivy fpRIiBTRB4THS8+Sot3mopErtwIDAQABo4ICrzCCAqswHQYDVR0OBBYEFP04Geae AL5ymI5JNJwb3BNMl2VQMB8GA1UdIwQYMBaAFEIYL19xpYmEzohZrmCkyspz/oNh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUY1RS9GMzhEQ0Y4QTEw NkIxMUU4QjhDQTAyMEJDNEY5QUUwMi9RaGd2WDNHbGlZVE9pRm11WUtUS3luUC1n MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FoZ3ZYM0dsaVlUT2lGbXVZS1RLeW5QLWcyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkVGNUUvRjM4RENGOEExMDZCMTFFOEI4Q0EwMjBCQzRGOUFFMDIvMjU4Rjg2NjJC QkRGMTFFRDhDRTg5MTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBABnY6gwGAQCAAIwEjAQAwUGJAGxQAMHACQBsUAABDANBgkq hkiG9w0BAQsFAAOCAQEArZ53T1Hdp9iLjkKk0S3W2gjODiqWvDOZ+C1dCfvPmGob 82aTkud28QH0arGhTXotm1sJJoV8Dp30yJXDeDYFbjD+XathejKzxZKmsRi6ZlZj M986BPiW5YGTF2kTuniNNl4fJvUouugr0cPKp1LjVWs2sUXhYzTJm4yxsua3HxWP Mo6fHCupwAyLOVTBuHr13pbSf3JQpSoCegBvPTD8LHF7hYu4X04kyJq1pR3ZOVFy 0/wgYUiYyCTvR1OBY/X/j8HaWJ65RyX0aS8T68FEZxm22kj9k1uO9PEw979L4SIM QVi7i8woeuGu/VaIsLhehSQQoNhhuhamEqxr2P82Jw== -----END CERTIFICATE-----Generated at Thu May 16 20:25:47 2024 by rpki-client on console-ams.rpki-client.org