$ rpki-client -vvf rpki.apnic.net/member_repository/A917AD0E/142820B20D5B11EBAD51CE36C4F9AE02/E8CFACAA324811EC84006646C4F9AE02.roa File: E8CFACAA324811EC84006646C4F9AE02.roa (raw, json) Hash identifier: 9unucrGT0rv0WFS3/h9kdxGKhb6RaiFSVdVM6lH6E8Q= Subject key identifier: 1E:4A:57:89:7F:5F:31:43:C8:4A:A0:B1:18:C6:DE:77:B7:07:05:5D Certificate issuer: /CN=A917AD0E/serialNumber=C9BB92FAC6A5532E423556751D0EA72891E6DE7A Certificate serial: 0658 Authority key identifier: C9:BB:92:FA:C6:A5:53:2E:42:35:56:75:1D:0E:A7:28:91:E6:DE:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ybuS-salUy5CNVZ1HQ6nKJHm3no.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AD0E/142820B20D5B11EBAD51CE36C4F9AE02/E8CFACAA324811EC84006646C4F9AE02.roa Signing time: Wed 16 Aug 2023 22:19:42 +0000 ROA not before: Wed 16 Aug 2023 22:19:42 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 137950 IP address blocks: 103.118.16.0/24 maxlen: 24 103.118.17.0/24 maxlen: 24 2001:df5:c100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AD0E/142820B20D5B11EBAD51CE36C4F9AE02/ybuS-salUy5CNVZ1HQ6nKJHm3no.crl rsync://rpki.apnic.net/member_repository/A917AD0E/142820B20D5B11EBAD51CE36C4F9AE02/ybuS-salUy5CNVZ1HQ6nKJHm3no.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ybuS-salUy5CNVZ1HQ6nKJHm3no.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 23:04:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1624 (0x658) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AD0E/serialNumber=C9BB92FAC6A5532E423556751D0EA72891E6DE7A Validity Not Before: Aug 16 22:19:42 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64dd4b7e-cafc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:fc:97:0d:77:6f:bc:8b:c9:40:09:c8:03:fc: ef:ea:e6:44:95:17:fa:77:51:70:65:7e:88:52:c0: 92:75:1a:b4:a4:39:b8:93:73:25:85:f6:db:cd:de: 46:85:4c:f2:db:03:7f:8c:a1:88:fb:43:a8:04:9d: 9c:c0:65:1f:f4:a6:2b:28:f3:17:ed:a4:67:9f:f5: e2:b2:87:7d:f9:6d:35:d3:f9:2e:e5:83:6e:da:45: ee:b6:ed:3d:fd:28:6f:98:ce:47:bc:ac:16:04:a3: 4e:28:b1:41:11:52:99:4c:6f:ae:f8:1d:3c:84:33: 07:45:1a:7e:17:91:31:93:0c:e8:5b:54:9c:b2:a0: ae:13:45:e2:16:fb:75:70:5c:c8:c0:30:e6:79:76: f4:dd:4b:e3:f4:bd:93:bb:c8:68:6b:48:9b:d6:71: d7:2a:76:72:5d:d9:4c:c0:f1:81:d0:01:2f:ab:1d: ff:09:1f:9e:3d:dc:23:0a:56:ee:c8:ca:53:0b:35: f2:25:91:7a:1f:c4:08:33:ec:6e:6d:c5:d8:e9:15: b0:64:4f:6e:59:8a:20:38:1c:31:25:3f:80:11:db: a2:0e:ea:03:03:54:ad:d5:77:7f:49:dc:9a:9f:d4: 33:3e:e0:31:0f:e9:ca:01:67:5c:95:e7:ae:a6:0a: ef:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:4A:57:89:7F:5F:31:43:C8:4A:A0:B1:18:C6:DE:77:B7:07:05:5D X509v3 Authority Key Identifier: keyid:C9:BB:92:FA:C6:A5:53:2E:42:35:56:75:1D:0E:A7:28:91:E6:DE:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AD0E/142820B20D5B11EBAD51CE36C4F9AE02/ybuS-salUy5CNVZ1HQ6nKJHm3no.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ybuS-salUy5CNVZ1HQ6nKJHm3no.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AD0E/142820B20D5B11EBAD51CE36C4F9AE02/E8CFACAA324811EC84006646C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.118.16.0/23 IPv6: 2001:df5:c100::/48 Signature Algorithm: sha256WithRSAEncryption 30:16:6d:26:6e:05:41:e8:82:67:87:23:c6:f1:e0:cd:4c:8c: e6:bc:6f:c9:57:35:59:3a:ef:d7:4b:ea:3a:09:e3:77:18:71: 97:60:bc:56:4c:1c:f6:2a:ee:08:73:67:3e:ba:3a:0f:8c:47: 09:ec:91:ae:07:46:cb:73:96:29:c8:15:15:c2:86:0c:f2:31: 10:31:60:34:3d:50:0d:3a:99:2a:d5:27:d4:ef:17:12:50:a9: cc:13:ff:10:40:9f:69:ba:e5:9a:6a:50:1c:ab:93:42:0e:6b: 41:da:6b:53:a2:8f:23:c3:90:14:77:8f:3a:d2:68:7f:89:a5: 14:18:bb:26:71:96:4b:b0:fb:0a:7f:29:46:d6:60:cc:bf:ea: 4e:19:4e:8c:1d:7f:35:64:b2:80:34:4b:dc:71:91:09:36:6b: 4e:4d:44:dc:d8:b4:aa:22:ea:2d:ac:5e:af:04:c0:31:cc:c3: 7f:04:46:8b:54:97:3a:30:5e:dc:09:7c:1c:fe:3b:59:23:2e: ee:fb:32:7c:49:a7:d5:62:7e:c3:8a:f6:d8:5f:67:d2:f8:c8: d4:1b:78:ae:b9:b6:99:b8:8f:4b:57:f1:7b:d6:9a:1b:7d:76: 51:26:73:69:aa:dc:fe:e3:30:90:b8:83:59:35:38:ee:3d:86: df:65:23:bd -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FEMEUxMTAvBgNVBAUTKEM5QkI5MkZBQzZBNTUzMkU0MjM1NTY3NTFEMEVBNzI4 OTFFNkRFN0EwHhcNMjMwODE2MjIxOTQyWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRkNGI3ZS1jYWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/yXDXdvvIvJQAnIA/zv6uZElRf6d1FwZX6IUsCSdRq0pDm4k3Mlhfbbzd5G hUzy2wN/jKGI+0OoBJ2cwGUf9KYrKPMX7aRnn/Xisod9+W010/ku5YNu2kXutu09 /ShvmM5HvKwWBKNOKLFBEVKZTG+u+B08hDMHRRp+F5ExkwzoW1ScsqCuE0XiFvt1 cFzIwDDmeXb03Uvj9L2Tu8hoa0ib1nHXKnZyXdlMwPGB0AEvqx3/CR+ePdwjClbu yMpTCzXyJZF6H8QIM+xubcXY6RWwZE9uWYogOBwxJT+AEduiDuoDA1St1Xd/Sdya n9QzPuAxD+nKAWdcleeupgrv8QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFB5KV4l/ XzFDyEqgsRjG3ne3BwVdMB8GA1UdIwQYMBaAFMm7kvrGpVMuQjVWdR0OpyiR5t56 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUQwRS8xNDI4MjBCMjBE NUIxMUVCQUQ1MUNFMzZDNEY5QUUwMi95YnVTLXNhbFV5NUNOVloxSFE2bktKSG0z bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lidVMtc2FsVXk1Q05WWjFIUTZuS0pIbTNuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0FEMEUvMTQyODIwQjIwRDVCMTFFQkFENTFDRTM2QzRGOUFFMDIvRThDRkFDQUEz MjQ4MTFFQzg0MDA2NjQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFndhAwDwQCAAIwCQMHACABDfXBADANBgkqhkiG9w0BAQsF AAOCAQEAMBZtJm4FQeiCZ4cjxvHgzUyM5rxvyVc1WTrv10vqOgnjdxhxl2C8Vkwc 9iruCHNnPro6D4xHCeyRrgdGy3OWKcgVFcKGDPIxEDFgND1QDTqZKtUn1O8XElCp zBP/EECfabrlmmpQHKuTQg5rQdprU6KPI8OQFHePOtJof4mlFBi7JnGWS7D7Cn8p RtZgzL/qThlOjB1/NWSygDRL3HGRCTZrTk1E3Ni0qiLqLaxerwTAMczDfwRGi1SX OjBe3Al8HP47WSMu7vsyfEmn1WJ+w4r22F9n0vjI1Bt4rrm2mbiPS1fxe9aaG312 USZzaarc/uMwkLiDWTU47j2G32UjvQ== -----END CERTIFICATE-----Generated at Tue May 7 01:58:22 2024 by rpki-client on console-fra.rpki-client.org