$ rpki-client -vvf rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/282282B60D3011ED8DC4D26BC4F9AE02.roa File: 282282B60D3011ED8DC4D26BC4F9AE02.roa (raw, json) Hash identifier: 4clEgqFiQcFhhVn8RtWoRMGuL2CUr/0AykbxtMSuzDU= Subject key identifier: FF:B9:A1:CC:4A:AF:82:5B:8F:A3:30:22:86:79:9C:1F:68:BF:56:86 Certificate issuer: /CN=A917AF37/serialNumber=2566566A84C5DCE76F3B7F3908DE7F32B8676707 Certificate serial: 0113 Authority key identifier: 25:66:56:6A:84:C5:DC:E7:6F:3B:7F:39:08:DE:7F:32:B8:67:67:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/282282B60D3011ED8DC4D26BC4F9AE02.roa Signing time: Sat 01 Jul 2023 03:32:23 +0000 ROA not before: Sat 01 Jul 2023 03:32:23 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 137890 IP address blocks: 103.116.156.0/24 maxlen: 24 2001:df5:5700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.crl rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 04:38:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 275 (0x113) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AF37/serialNumber=2566566A84C5DCE76F3B7F3908DE7F32B8676707 Validity Not Before: Jul 1 03:32:23 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=649f9e47-9d49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f1:c6:de:4a:19:a6:4a:06:03:24:c0:4c:84: fb:5b:e1:73:df:3e:9d:7d:dc:5d:dd:96:69:50:90: 7b:04:05:25:97:c4:6a:f5:70:00:93:37:e8:f3:03: 43:48:ab:56:c9:4c:62:48:0d:80:b7:78:ad:fa:22: fa:b4:a7:ac:b8:c1:5b:9d:13:31:af:7d:37:f8:4e: 34:12:2f:aa:78:24:00:21:c6:e4:51:d1:23:c9:e8: 19:17:03:28:1c:92:a2:27:76:df:68:88:32:94:f5: 76:3c:17:ca:a7:11:53:f7:e6:18:a9:f0:6d:bd:7e: 6b:f1:09:b3:c1:40:1d:eb:3a:d2:2e:5b:6e:39:6c: 79:29:c4:43:0a:5c:ed:53:3b:f6:56:82:a6:60:7b: 1c:ac:4c:98:bd:eb:b4:f4:d5:c5:33:27:b0:1a:5d: bc:17:11:00:62:3e:27:f4:3a:b9:14:d7:7d:4a:4d: d7:4f:c5:68:37:f6:06:99:48:e6:74:54:96:d8:6b: c7:7f:8b:52:ae:72:f4:70:2a:9c:3d:71:5f:09:d5: b9:38:a8:8a:65:2d:d3:25:48:cc:e9:4f:ca:95:34: 18:ee:84:1a:cd:27:d6:75:ca:5f:cf:0d:f4:6b:e0: df:62:64:7c:26:6c:2d:dd:17:88:a1:0e:7e:b6:89: fe:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:B9:A1:CC:4A:AF:82:5B:8F:A3:30:22:86:79:9C:1F:68:BF:56:86 X509v3 Authority Key Identifier: keyid:25:66:56:6A:84:C5:DC:E7:6F:3B:7F:39:08:DE:7F:32:B8:67:67:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/282282B60D3011ED8DC4D26BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.156.0/24 IPv6: 2001:df5:5700::/48 Signature Algorithm: sha256WithRSAEncryption 44:af:99:fb:f5:1c:6c:9a:5e:66:a1:cf:17:e0:87:86:c6:cd: db:df:3f:3e:b6:02:e0:bc:7f:ee:7f:5f:48:14:a9:a4:15:27: 63:87:ad:c8:1a:3a:00:ea:20:d6:f8:46:64:2c:a6:a7:2f:29: e6:ed:2c:a2:ba:70:5e:b7:36:dc:63:4d:b9:7c:80:23:9a:9f: de:37:81:2b:54:f2:3a:20:e5:e0:b4:49:e2:76:6f:ef:3f:94: 3b:3a:f0:dc:83:fb:2d:6f:9c:15:f6:cf:41:ce:3b:01:1c:ae: 07:8a:33:44:8d:f3:20:c3:4d:99:12:40:4b:25:1c:a0:e0:a2: d7:2b:72:f5:8e:ed:5d:11:de:42:91:27:9f:e6:9a:d6:8d:06: 8f:8d:a0:2b:63:49:d4:94:be:1e:6e:43:74:84:e0:80:9a:5e: f0:30:af:9a:75:04:d5:b0:59:f7:5c:48:7c:48:a6:03:72:69: e2:48:c5:e0:fc:e5:1c:8f:1e:4c:a4:91:79:ab:bb:f0:0d:34: bc:a4:9b:9f:2a:95:ad:be:6a:92:31:0d:5f:3d:ef:b1:a3:1d: 5f:ec:0f:d0:58:2c:1a:ff:9a:74:ce:96:e7:0f:54:86:f7:2a: 05:cc:ea:dd:54:24:61:3b:c6:ab:38:2a:82:ce:85:8b:27:e8: 62:14:29:e7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICARMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FGMzcxMTAvBgNVBAUTKDI1NjY1NjZBODRDNURDRTc2RjNCN0YzOTA4REU3RjMy Qjg2NzY3MDcwHhcNMjMwNzAxMDMzMjIzWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDlmOWU0Ny05ZDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfHG3koZpkoGAyTATIT7W+Fz3z6dfdxd3ZZpUJB7BAUll8Rq9XAAkzfo8wND SKtWyUxiSA2At3it+iL6tKesuMFbnRMxr303+E40Ei+qeCQAIcbkUdEjyegZFwMo HJKiJ3bfaIgylPV2PBfKpxFT9+YYqfBtvX5r8QmzwUAd6zrSLltuOWx5KcRDClzt Uzv2VoKmYHscrEyYveu09NXFMyewGl28FxEAYj4n9Dq5FNd9Sk3XT8VoN/YGmUjm dFSW2GvHf4tSrnL0cCqcPXFfCdW5OKiKZS3TJUjM6U/KlTQY7oQazSfWdcpfzw30 a+DfYmR8Jmwt3ReIoQ5+ton+PwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFP+5ocxK r4Jbj6MwIoZ5nB9ov1aGMB8GA1UdIwQYMBaAFCVmVmqExdznbzt/OQjefzK4Z2cH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUYzNy9DOENDNUFCNDBE MkQxMUVEQjJDOUJCNjlDNEY5QUUwMi9KV1pXYW9URjNPZHZPMzg1Q041X01yaG5a d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pXWldhb1RGM09kdk8zODVDTjVfTXJoblp3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0FGMzcvQzhDQzVBQjQwRDJEMTFFREIyQzlCQjY5QzRGOUFFMDIvMjgyMjgyQjYw RDMwMTFFRDhEQzREMjZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABndJwwDwQCAAIwCQMHACABDfVXADANBgkqhkiG9w0BAQsF AAOCAQEARK+Z+/UcbJpeZqHPF+CHhsbN298/PrYC4Lx/7n9fSBSppBUnY4etyBo6 AOog1vhGZCympy8p5u0sorpwXrc23GNNuXyAI5qf3jeBK1TyOiDl4LRJ4nZv7z+U Ozrw3IP7LW+cFfbPQc47ARyuB4ozRI3zIMNNmRJASyUcoOCi1yty9Y7tXRHeQpEn n+aa1o0Gj42gK2NJ1JS+Hm5DdITggJpe8DCvmnUE1bBZ91xIfEimA3Jp4kjF4Pzl HI8eTKSReau78A00vKSbnyqVrb5qkjENXz3vsaMdX+wP0FgsGv+adM6W5w9Uhvcq Bczq3VQkYTvGqzgqgs6FiyfoYhQp5w== -----END CERTIFICATE-----Generated at Fri May 17 06:18:07 2024 by rpki-client on console-fra.rpki-client.org