$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/5B096332BFDF11EC89ECF37BC4F9AE02.roa File: 5B096332BFDF11EC89ECF37BC4F9AE02.roa (raw, json) Hash identifier: seasjD9mrkxvMtSwLJkMgG+iOd+sJnw7Qi8FHN49FB4= Subject key identifier: 8A:D4:C8:04:23:06:C5:A8:09:84:2C:01:F8:97:A2:B6:81:BA:6D:AD Certificate issuer: /CN=A917E1FE/serialNumber=EDEB96F04C8D3EDCCBEEBA40C4242922A8136B53 Certificate serial: 054B Authority key identifier: ED:EB:96:F0:4C:8D:3E:DC:CB:EE:BA:40:C4:24:29:22:A8:13:6B:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7euW8EyNPtzL7rpAxCQpIqgTa1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/5B096332BFDF11EC89ECF37BC4F9AE02.roa Signing time: Wed 31 May 2023 01:28:47 +0000 ROA not before: Wed 31 May 2023 01:28:47 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 133082 IP address blocks: 103.255.80.0/22 maxlen: 22 103.255.80.0/24 maxlen: 24 103.255.81.0/24 maxlen: 24 103.255.82.0/24 maxlen: 24 103.255.83.0/24 maxlen: 24 2400:8180::/32 maxlen: 32 2400:8180:1::/48 maxlen: 56 2400:8180:2::/48 maxlen: 56 2400:8180:3::/48 maxlen: 56 2400:8180:4::/48 maxlen: 56 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/7euW8EyNPtzL7rpAxCQpIqgTa1M.crl rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/7euW8EyNPtzL7rpAxCQpIqgTa1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7euW8EyNPtzL7rpAxCQpIqgTa1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 00:07:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1355 (0x54b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E1FE/serialNumber=EDEB96F04C8D3EDCCBEEBA40C4242922A8136B53 Validity Not Before: May 31 01:28:47 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6476a2cf-4eea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ed:9a:c1:d8:1f:3f:f2:b0:28:e2:ff:e9:d1: 6e:39:71:dc:72:99:58:b3:af:dd:f0:db:89:b6:e9: d3:a7:dc:5f:83:37:c3:ac:5c:6e:fd:6c:f5:ab:7d: 13:72:8e:ff:36:c9:3f:9e:af:6d:3b:89:1c:51:ae: be:9f:bc:1b:80:3d:aa:29:00:59:b8:65:5d:3e:1f: 55:72:da:71:90:19:e3:7b:9e:71:cd:9c:6d:60:08: e2:af:da:b7:4e:e4:b7:3b:92:7e:d6:3d:ef:61:6b: cc:70:68:98:78:a6:51:13:51:d2:74:5a:08:b4:6d: 85:f2:53:35:bd:a8:f7:5d:1a:5e:0b:96:f1:bd:4b: 3e:29:bf:fe:25:0f:75:28:7c:4a:35:e2:85:52:1d: 23:71:9c:aa:d8:08:80:74:7c:0f:33:74:34:bb:7f: 25:1c:cf:72:c0:a7:60:90:05:d7:ab:f9:8c:4b:5a: c3:ac:69:5c:84:64:5c:fb:32:5f:1d:5e:97:03:07: b1:6d:cc:ec:96:75:09:ec:de:79:b6:89:b2:88:e6: fb:4c:f5:9b:44:2f:10:e3:96:f4:0e:ab:ca:32:87: 6c:75:5b:9b:67:7b:b1:b5:c6:d0:32:2b:02:a0:8a: e7:9a:65:0b:5d:1f:3d:7e:92:46:28:58:b0:56:f9: cd:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:D4:C8:04:23:06:C5:A8:09:84:2C:01:F8:97:A2:B6:81:BA:6D:AD X509v3 Authority Key Identifier: keyid:ED:EB:96:F0:4C:8D:3E:DC:CB:EE:BA:40:C4:24:29:22:A8:13:6B:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/7euW8EyNPtzL7rpAxCQpIqgTa1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7euW8EyNPtzL7rpAxCQpIqgTa1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/5B096332BFDF11EC89ECF37BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.80.0/22 IPv6: 2400:8180::/32 Signature Algorithm: sha256WithRSAEncryption 93:e1:18:5d:77:83:7a:6b:63:8d:a8:e5:b2:3b:c6:d5:0b:9b: 27:72:7c:e1:75:5b:19:a7:0d:a4:a7:db:f1:fb:12:46:9a:c3: d6:4f:d4:95:2b:4b:97:37:fa:26:0a:82:4c:26:80:44:7a:1d: 4d:a6:80:15:aa:9a:0c:03:93:a4:dd:ee:42:3c:b2:9a:54:cb: 08:7b:66:b6:32:4f:d9:6c:7b:9c:f6:88:9f:44:fe:be:d2:49: ce:78:62:18:f2:ac:d6:84:4a:0a:99:14:cc:7d:54:fc:65:42: 33:a3:c8:57:9e:52:ee:ae:3d:ad:f8:57:54:73:80:ba:8d:f8: da:aa:22:72:83:0b:57:50:2e:30:c1:9f:0a:20:c6:08:6e:39: 9d:bd:a7:8c:3c:db:37:71:4a:1e:c0:fb:63:ad:be:a7:b9:6d: 24:38:57:45:1a:59:a4:47:12:36:f8:8c:a4:ff:b3:6c:1f:d9: f1:1a:fa:39:3d:d8:da:e6:62:a1:bc:a2:fc:31:54:87:83:6b: 01:ce:f8:c3:66:ac:be:c9:68:ce:02:70:ff:69:58:29:79:1d: 66:da:a6:75:2d:f7:57:52:56:ee:04:3e:ea:dd:fc:ed:a5:6e: d5:69:12:a3:54:f1:dc:a7:a0:0e:f7:e3:b0:0b:a0:94:bc:4a: 26:92:9c:cf -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UxRkUxMTAvBgNVBAUTKEVERUI5NkYwNEM4RDNFRENDQkVFQkE0MEM0MjQyOTIy QTgxMzZCNTMwHhcNMjMwNTMxMDEyODQ3WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDc2YTJjZi00ZWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+2awdgfP/KwKOL/6dFuOXHccplYs6/d8NuJtunTp9xfgzfDrFxu/Wz1q30T co7/Nsk/nq9tO4kcUa6+n7wbgD2qKQBZuGVdPh9VctpxkBnje55xzZxtYAjir9q3 TuS3O5J+1j3vYWvMcGiYeKZRE1HSdFoItG2F8lM1vaj3XRpeC5bxvUs+Kb/+JQ91 KHxKNeKFUh0jcZyq2AiAdHwPM3Q0u38lHM9ywKdgkAXXq/mMS1rDrGlchGRc+zJf HV6XAwexbczslnUJ7N55tomyiOb7TPWbRC8Q45b0DqvKModsdVubZ3uxtcbQMisC oIrnmmULXR89fpJGKFiwVvnNywIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIrUyAQj BsWoCYQsAfiXoraBum2tMB8GA1UdIwQYMBaAFO3rlvBMjT7cy+66QMQkKSKoE2tT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTFGRS8zODYyMzVGMDZG ODgxMUVCQTg2QkY2NEFDNEY5QUUwMi83ZXVXOEV5TlB0ekw3cnBBeENRcElxZ1Rh MU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdldVc4RXlOUHR6TDdycEF4Q1FwSXFnVGExTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UxRkUvMzg2MjM1RjA2Rjg4MTFFQkE4NkJGNjRBQzRGOUFFMDIvNUIwOTYzMzJC RkRGMTFFQzg5RUNGMzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJn/1AwDQQCAAIwBwMFACQAgYAwDQYJKoZIhvcNAQELBQAD ggEBAJPhGF13g3prY42o5bI7xtULmydyfOF1WxmnDaSn2/H7Ekaaw9ZP1JUrS5c3 +iYKgkwmgER6HU2mgBWqmgwDk6Td7kI8sppUywh7ZrYyT9lse5z2iJ9E/r7SSc54 YhjyrNaESgqZFMx9VPxlQjOjyFeeUu6uPa34V1RzgLqN+NqqInKDC1dQLjDBnwog xghuOZ29p4w82zdxSh7A+2Otvqe5bSQ4V0UaWaRHEjb4jKT/s2wf2fEa+jk92Nrm YqG8ovwxVIeDawHO+MNmrL7JaM4CcP9pWCl5HWbapnUt91dSVu4EPurd/O2lbtVp EqNU8dynoA7347ALoJS8SiaSnM8= -----END CERTIFICATE-----Generated at Tue May 21 01:47:01 2024 by rpki-client on console-fra.rpki-client.org