$ rpki-client -vvf rpki.apnic.net/member_repository/A917C1DC/B2D1DE20594F11EB88F7A73EC4F9AE02/8500C442CD0111EEAD315363C4F9AE02.roa File: 8500C442CD0111EEAD315363C4F9AE02.roa (raw, json) Hash identifier: XdYvKVx4rhI9ZKbSrWRFI/JrvDhvSU9FFwHFl8cBQkw= Subject key identifier: F7:E4:4B:39:E0:BC:C3:F2:58:14:39:22:C4:C3:7F:8B:3A:19:44:FA Certificate issuer: /CN=A917C1DC/serialNumber=A8D576D4AFBB64045BB0295641B99427D7F878F2 Certificate serial: 0662 Authority key identifier: A8:D5:76:D4:AF:BB:64:04:5B:B0:29:56:41:B9:94:27:D7:F8:78:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qNV21K-7ZARbsClWQbmUJ9f4ePI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C1DC/B2D1DE20594F11EB88F7A73EC4F9AE02/8500C442CD0111EEAD315363C4F9AE02.roa Signing time: Tue 09 Apr 2024 00:02:32 +0000 ROA not before: Tue 09 Apr 2024 00:02:32 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 45382 IP address blocks: 103.110.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C1DC/B2D1DE20594F11EB88F7A73EC4F9AE02/qNV21K-7ZARbsClWQbmUJ9f4ePI.crl rsync://rpki.apnic.net/member_repository/A917C1DC/B2D1DE20594F11EB88F7A73EC4F9AE02/qNV21K-7ZARbsClWQbmUJ9f4ePI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qNV21K-7ZARbsClWQbmUJ9f4ePI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 00:39:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1634 (0x662) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C1DC/serialNumber=A8D576D4AFBB64045BB0295641B99427D7F878F2 Validity Not Before: Apr 9 00:02:32 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66148597-8507 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e3:77:36:20:4f:1d:d0:70:73:44:81:03:f7: 6c:e2:b7:77:1d:3d:5c:79:07:63:4f:65:68:22:6e: 5c:1b:5d:b3:2e:f4:ac:ab:69:f8:bb:33:83:4e:56: b2:0c:20:24:a6:28:99:4e:f1:05:65:d9:6b:68:12: a3:2c:3a:a7:fb:1d:01:ca:8b:b6:76:84:ce:8f:8f: f7:84:e3:0c:47:d8:d7:dd:76:b2:dd:10:d2:0e:0a: 50:5d:5a:4a:4e:81:75:e6:8d:4f:01:ae:fe:ae:d9: 75:b5:92:17:22:8f:4e:ea:a7:a0:c0:1c:b3:09:4f: 3b:68:59:cd:c4:9f:c7:8c:12:03:11:ce:86:eb:56: 69:6d:bc:69:22:02:a9:ca:6a:3c:49:a3:90:14:a9: de:ea:1d:62:64:fc:81:13:17:60:b2:7c:a1:b3:95: 39:43:8e:74:b5:8f:56:55:39:a4:b1:77:82:2b:86: 55:c9:b3:82:b2:72:d5:b8:e8:9a:55:48:e5:7a:6e: c5:bd:6c:7d:21:79:85:67:22:97:0e:85:11:48:38: 12:75:bf:c8:df:1f:9d:b9:83:ee:73:21:a6:25:28: 55:2b:6d:02:71:f9:5f:7c:7a:1c:ad:16:92:95:a2: a3:b9:e3:37:b7:a7:2b:5b:38:0d:8b:3e:57:b7:4c: 8c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:E4:4B:39:E0:BC:C3:F2:58:14:39:22:C4:C3:7F:8B:3A:19:44:FA X509v3 Authority Key Identifier: keyid:A8:D5:76:D4:AF:BB:64:04:5B:B0:29:56:41:B9:94:27:D7:F8:78:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C1DC/B2D1DE20594F11EB88F7A73EC4F9AE02/qNV21K-7ZARbsClWQbmUJ9f4ePI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qNV21K-7ZARbsClWQbmUJ9f4ePI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C1DC/B2D1DE20594F11EB88F7A73EC4F9AE02/8500C442CD0111EEAD315363C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.110.107.0/24 Signature Algorithm: sha256WithRSAEncryption bc:48:ff:3c:5c:7d:1f:3e:ab:f5:5b:b7:86:c9:65:3d:eb:0b: 11:53:87:f3:77:7e:8f:cd:16:18:e5:2b:93:64:fe:4b:9d:17: a7:cf:9e:d6:73:1f:2a:0f:05:7f:bd:5b:f9:cd:55:04:c0:ba: 35:a1:3a:d3:f0:3e:4c:64:61:69:4a:51:8b:dd:d8:2e:14:c0: b3:f7:13:cb:f7:b8:fd:16:7e:69:d6:c5:84:4d:fb:a9:ec:56: b7:d0:4c:ee:48:84:5b:32:f6:07:51:37:cc:ad:f0:72:77:c9: 4b:29:80:f2:d0:9d:8b:68:7a:ca:10:ca:3b:af:97:ac:9b:69: dc:39:1d:e9:83:58:ed:c5:c9:f7:2a:85:63:b8:7d:0b:ec:ef: 3e:cf:11:fa:1e:5e:ec:e9:42:74:04:55:21:d4:a3:f3:55:c2: 51:43:4a:80:db:d4:bf:2d:70:e3:7f:94:75:ae:08:00:4f:0d: 01:d4:ed:4c:fa:f5:0f:f5:86:b6:9c:7f:19:3c:e4:9b:bb:45: 1d:d1:78:b3:72:bb:66:5a:04:c1:c9:6f:1b:bb:76:81:a3:2c: b2:fd:aa:26:64:e6:d5:51:62:13:37:e6:c4:83:88:3a:76:ac: 83:ce:2a:13:d6:49:8c:04:bf:1a:1c:f1:17:c7:f0:d1:de:90: 7c:c7:37:91 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MxREMxMTAvBgNVBAUTKEE4RDU3NkQ0QUZCQjY0MDQ1QkIwMjk1NjQxQjk5NDI3 RDdGODc4RjIwHhcNMjQwNDA5MDAwMjMyWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjE0ODU5Ny04NTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvuN3NiBPHdBwc0SBA/ds4rd3HT1ceQdjT2VoIm5cG12zLvSsq2n4uzODTlay DCAkpiiZTvEFZdlraBKjLDqn+x0Byou2doTOj4/3hOMMR9jX3Xay3RDSDgpQXVpK ToF15o1PAa7+rtl1tZIXIo9O6qegwByzCU87aFnNxJ/HjBIDEc6G61ZpbbxpIgKp ymo8SaOQFKne6h1iZPyBExdgsnyhs5U5Q450tY9WVTmksXeCK4ZVybOCsnLVuOia VUjlem7FvWx9IXmFZyKXDoURSDgSdb/I3x+duYPucyGmJShVK20CcflffHocrRaS laKjueM3t6crWzgNiz5Xt0yMTQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPfkSzng vMPyWBQ5IsTDf4s6GUT6MB8GA1UdIwQYMBaAFKjVdtSvu2QEW7ApVkG5lCfX+Hjy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzFEQy9CMkQxREUyMDU5 NEYxMUVCODhGN0E3M0VDNEY5QUUwMi9xTlYyMUstN1pBUmJzQ2xXUWJtVUo5ZjRl UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FOVjIxSy03WkFSYnNDbFdRYm1VSjlmNGVQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0MxREMvQjJEMURFMjA1OTRGMTFFQjg4RjdBNzNFQzRGOUFFMDIvODUwMEM0NDJD RDAxMTFFRUFEMzE1MzYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnbmswDQYJKoZIhvcNAQELBQADggEBALxI/zxcfR8+q/Vb t4bJZT3rCxFTh/N3fo/NFhjlK5Nk/kudF6fPntZzHyoPBX+9W/nNVQTAujWhOtPw PkxkYWlKUYvd2C4UwLP3E8v3uP0WfmnWxYRN+6nsVrfQTO5IhFsy9gdRN8yt8HJ3 yUspgPLQnYtoesoQyjuvl6ybadw5HemDWO3FyfcqhWO4fQvs7z7PEfoeXuzpQnQE VSHUo/NVwlFDSoDb1L8tcON/lHWuCABPDQHU7Uz69Q/1hracfxk85Ju7RR3ReLNy u2ZaBMHJbxu7doGjLLL9qiZk5tVRYhM35sSDiDp2rIPOKhPWSYwEvxoc8RfH8NHe kHzHN5E= -----END CERTIFICATE-----Generated at Sat Jun 1 01:41:44 2024 by rpki-client on console-fra.rpki-client.org