$ rpki-client -vvf rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/8620180E00EE11EDBC60AA4FC4F9AE02.roa File: 8620180E00EE11EDBC60AA4FC4F9AE02.roa (raw, json) Hash identifier: 2cpATBWtgy3APIVBNOdyD0O7siFFkKRcwZjLZkyPE+4= Subject key identifier: 82:D0:3E:30:07:AF:C5:A1:9A:3C:FA:28:E9:9B:F7:E3:AF:79:1F:BE Certificate issuer: /CN=A917314A/serialNumber=272CAE5F21C8BF6B6B4915AF0004C7EFCFC7DB3D Certificate serial: 0154 Authority key identifier: 27:2C:AE:5F:21:C8:BF:6B:6B:49:15:AF:00:04:C7:EF:CF:C7:DB:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JyyuXyHIv2trSRWvAATH78_H2z0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/8620180E00EE11EDBC60AA4FC4F9AE02.roa Signing time: Mon 28 Aug 2023 09:09:03 +0000 ROA not before: Mon 28 Aug 2023 09:09:03 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 150111 IP address blocks: 103.23.95.0/24 maxlen: 24 103.190.199.0/24 maxlen: 24 2001:df0:f1c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/JyyuXyHIv2trSRWvAATH78_H2z0.crl rsync://rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/JyyuXyHIv2trSRWvAATH78_H2z0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JyyuXyHIv2trSRWvAATH78_H2z0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 340 (0x154) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917314A/serialNumber=272CAE5F21C8BF6B6B4915AF0004C7EFCFC7DB3D Validity Not Before: Aug 28 09:09:03 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ec642f-246a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:41:e8:33:3c:b6:91:88:ae:85:27:f3:29:0d: d7:f2:13:f1:e5:eb:93:ae:44:70:98:98:0e:04:ec: 11:38:df:10:3c:69:ad:1d:09:17:38:4c:58:ec:ad: a4:ca:2f:6d:2a:b7:79:35:59:db:ce:cb:77:5f:59: 12:64:31:24:b0:49:e7:83:4b:86:7e:92:f8:9b:af: 5b:11:d7:9f:b7:29:6c:fd:4b:5b:5c:6a:c5:d7:fa: a7:6f:ed:c5:ad:75:ea:fa:4f:b3:d3:ef:59:2a:76: 35:42:33:b9:30:11:3e:a1:88:1a:45:27:7f:cf:45: 7b:30:0b:33:2d:29:d7:19:12:c6:d6:b0:78:6a:52: c1:82:43:57:de:c8:09:97:8e:e6:c9:31:d2:63:01: 83:1e:28:12:2c:ea:7b:e2:88:b2:25:1f:64:4a:0f: bf:3f:52:af:41:dd:ad:22:3a:9c:37:eb:ff:9f:5d: 04:6a:d9:3b:a4:1b:1f:1d:6b:f3:af:c5:24:d6:49: 28:e2:59:b9:2e:b7:7f:ae:ac:b3:c9:cf:ea:04:a5: e0:98:ab:e5:d5:4e:af:56:76:56:6a:3c:2a:69:f0: b7:7e:ee:96:d1:35:b0:8f:81:db:71:42:fe:e7:1d: 1b:20:f8:06:26:cc:c3:65:51:21:f9:63:fa:67:dd: 9d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:D0:3E:30:07:AF:C5:A1:9A:3C:FA:28:E9:9B:F7:E3:AF:79:1F:BE X509v3 Authority Key Identifier: keyid:27:2C:AE:5F:21:C8:BF:6B:6B:49:15:AF:00:04:C7:EF:CF:C7:DB:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/JyyuXyHIv2trSRWvAATH78_H2z0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JyyuXyHIv2trSRWvAATH78_H2z0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/8620180E00EE11EDBC60AA4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.95.0/24 103.190.199.0/24 IPv6: 2001:df0:f1c0::/48 Signature Algorithm: sha256WithRSAEncryption 8b:96:4f:f5:39:a6:67:f3:1b:6a:82:7f:38:32:96:a2:c5:df: dd:e4:6f:61:93:8d:53:48:f0:a1:d4:15:36:a4:ad:07:34:b7: e9:31:66:8e:68:60:81:53:db:08:fe:9d:c0:03:e2:f8:86:8d: a2:de:ef:86:08:82:1f:27:1a:52:88:e2:6e:35:9e:51:a4:d0: db:54:c3:28:c4:fb:bb:b1:de:e9:4f:47:32:07:53:43:58:bb: 43:70:03:6d:f3:c6:df:d0:6e:80:9b:2e:6b:06:54:86:eb:ea: 31:3f:b4:45:8b:f9:9e:22:57:85:28:34:fb:cd:e1:b3:a3:d6: 3c:d5:4d:84:15:9c:3a:71:7b:47:5c:e0:67:ab:1c:1f:50:15: b9:3b:f6:c2:40:61:f0:22:9a:a2:8e:46:3c:88:90:56:cd:74: 9e:13:9b:f4:d4:bd:4f:fe:47:56:87:16:61:e0:3d:5a:da:13: 08:e4:bd:af:57:aa:92:f1:c4:3a:c2:b8:74:41:da:9c:39:a9: 2e:f5:b6:08:70:56:78:ce:b4:d5:dd:38:b2:cd:c7:ca:42:08: fb:98:b1:43:6f:6a:e8:ca:53:c0:1e:d2:27:e4:9c:27:c8:fd: ab:8e:85:6f:1f:c8:63:33:e5:11:39:b7:dc:52:fb:d7:20:98: 6f:12:de:ef -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMxNEExMTAvBgNVBAUTKDI3MkNBRTVGMjFDOEJGNkI2QjQ5MTVBRjAwMDRDN0VG Q0ZDN0RCM0QwHhcNMjMwODI4MDkwOTAzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVjNjQyZi0yNDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsEHoMzy2kYiuhSfzKQ3X8hPx5euTrkRwmJgOBOwRON8QPGmtHQkXOExY7K2k yi9tKrd5NVnbzst3X1kSZDEksEnng0uGfpL4m69bEdeftyls/UtbXGrF1/qnb+3F rXXq+k+z0+9ZKnY1QjO5MBE+oYgaRSd/z0V7MAszLSnXGRLG1rB4alLBgkNX3sgJ l47myTHSYwGDHigSLOp74oiyJR9kSg+/P1KvQd2tIjqcN+v/n10Eatk7pBsfHWvz r8Uk1kko4lm5Lrd/rqyzyc/qBKXgmKvl1U6vVnZWajwqafC3fu6W0TWwj4HbcUL+ 5x0bIPgGJszDZVEh+WP6Z92dzwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFILQPjAH r8Whmjz6KOmb9+OveR++MB8GA1UdIwQYMBaAFCcsrl8hyL9ra0kVrwAEx+/Px9s9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzE0QS81RUY4QTkxNjAw RUExMUVEOUMwQ0IzMzJDNEY5QUUwMi9KeXl1WHlISXYydHJTUld2QUFUSDc4X0gy ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p5eXVYeUhJdjJ0clNSV3ZBQVRINzhfSDJ6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzMxNEEvNUVGOEE5MTYwMEVBMTFFRDlDMENCMzMyQzRGOUFFMDIvODYyMDE4MEUw MEVFMTFFREJDNjBBQTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnF18DBABnvscwDwQCAAIwCQMHACABDfDxwDANBgkqhkiG 9w0BAQsFAAOCAQEAi5ZP9TmmZ/MbaoJ/ODKWosXf3eRvYZONU0jwodQVNqStBzS3 6TFmjmhggVPbCP6dwAPi+IaNot7vhgiCHycaUojibjWeUaTQ21TDKMT7u7He6U9H MgdTQ1i7Q3ADbfPG39BugJsuawZUhuvqMT+0RYv5niJXhSg0+83hs6PWPNVNhBWc OnF7R1zgZ6scH1AVuTv2wkBh8CKaoo5GPIiQVs10nhOb9NS9T/5HVocWYeA9WtoT COS9r1eqkvHEOsK4dEHanDmpLvW2CHBWeM601d04ss3HykII+5ixQ29q6MpTwB7S J+ScJ8j9q46Fbx/IYzPlETm33FL71yCYbxLe7w== -----END CERTIFICATE-----Generated at Sat May 11 05:27:32 2024 by rpki-client on console-fra.rpki-client.org