$ rpki-client -vvf rpki.apnic.net/member_repository/A918AA78/68D33490FD6411E6A1095483C4F9AE02/08F42A44E6B811EE9102CF4FC4F9AE02.roa File: 08F42A44E6B811EE9102CF4FC4F9AE02.roa (raw, json) Hash identifier: zxNdgqv1QHNaty7n1ROWzdg8fPJ0UxZ5T0LyWgY+EtM= Subject key identifier: 82:54:2F:24:15:F6:77:94:6F:09:A1:C2:A3:3A:84:0D:FF:98:8A:C3 Certificate issuer: /CN=A918AA78/serialNumber=09CFFE467F3B09C3D06F24919CFAC7E003E4BB75 Certificate serial: 1B1B Authority key identifier: 09:CF:FE:46:7F:3B:09:C3:D0:6F:24:91:9C:FA:C7:E0:03:E4:BB:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cc_-Rn87CcPQbySRnPrH4APku3U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AA78/68D33490FD6411E6A1095483C4F9AE02/08F42A44E6B811EE9102CF4FC4F9AE02.roa Signing time: Tue 30 Apr 2024 12:43:11 +0000 ROA not before: Tue 30 Apr 2024 12:43:11 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 7342 IP address blocks: 103.87.108.0/24 maxlen: 24 103.87.109.0/24 maxlen: 24 103.87.110.0/24 maxlen: 24 103.87.111.0/24 maxlen: 24 203.144.58.0/24 maxlen: 24 203.144.59.0/24 maxlen: 24 203.144.61.0/24 maxlen: 24 2402:79c0:3::/48 maxlen: 48 2402:79c0:100::/48 maxlen: 48 2402:79c0:101::/48 maxlen: 48 2402:79c0:102::/48 maxlen: 48 2402:79c0:103::/48 maxlen: 48 2402:79c0:104::/48 maxlen: 48 2402:79c0:105::/48 maxlen: 48 2402:79c0:106::/48 maxlen: 48 2402:79c0:107::/48 maxlen: 48 2402:79c0:108::/48 maxlen: 48 2402:79c0:109::/48 maxlen: 48 2402:79c0:10a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AA78/68D33490FD6411E6A1095483C4F9AE02/Cc_-Rn87CcPQbySRnPrH4APku3U.crl rsync://rpki.apnic.net/member_repository/A918AA78/68D33490FD6411E6A1095483C4F9AE02/Cc_-Rn87CcPQbySRnPrH4APku3U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cc_-Rn87CcPQbySRnPrH4APku3U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:49:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6939 (0x1b1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AA78/serialNumber=09CFFE467F3B09C3D06F24919CFAC7E003E4BB75 Validity Not Before: Apr 30 12:43:11 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=6630e75e-3fd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:7c:c0:95:25:fe:9d:00:83:04:24:94:19:c1: 4b:e3:25:42:91:ec:9f:af:eb:17:9b:b3:ea:ab:60: e7:55:92:e5:9d:e2:21:5d:10:fc:a6:20:84:41:17: 74:1a:b2:55:cc:0d:7d:3a:80:cd:a0:88:c6:b8:ed: 9c:d0:8c:8d:16:05:8c:84:06:e9:ff:e5:76:17:80: f0:a0:8e:32:cf:4c:80:f5:7d:63:7a:ef:e5:ed:80: 82:8b:cd:12:09:80:02:b4:eb:04:13:14:a2:6a:b0: e3:a1:b6:ee:e9:f2:86:0f:3c:9e:5a:01:80:ff:04: ea:e0:8b:50:ae:c0:fa:45:e0:c5:0a:ca:e8:c7:ad: d8:69:95:0a:4f:44:12:93:ce:c0:5e:2e:b6:e6:c6: 89:cc:46:4b:0c:e4:fc:2f:36:4f:4d:53:e2:48:23: ac:46:21:4a:82:2c:1e:b8:a0:ca:b1:ca:a8:3a:e1: aa:5d:60:19:fd:c3:49:c1:05:0e:4e:82:80:82:7c: 39:a2:68:6f:a8:c6:1f:51:4c:ec:ae:92:fa:84:b4: 04:27:6a:2d:62:e7:44:66:00:b6:02:be:5b:9c:ae: 26:98:83:97:fa:6d:c3:06:b2:47:34:8e:3f:18:2b: 93:d3:60:fc:5a:b1:57:32:e9:f0:ff:23:f1:fb:02: 10:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:54:2F:24:15:F6:77:94:6F:09:A1:C2:A3:3A:84:0D:FF:98:8A:C3 X509v3 Authority Key Identifier: keyid:09:CF:FE:46:7F:3B:09:C3:D0:6F:24:91:9C:FA:C7:E0:03:E4:BB:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AA78/68D33490FD6411E6A1095483C4F9AE02/Cc_-Rn87CcPQbySRnPrH4APku3U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cc_-Rn87CcPQbySRnPrH4APku3U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AA78/68D33490FD6411E6A1095483C4F9AE02/08F42A44E6B811EE9102CF4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.87.108.0/22 203.144.58.0/23 203.144.61.0/24 IPv6: 2402:79c0:3::/48 2402:79c0:100::-2402:79c0:10a:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption bd:62:b0:b3:0f:42:6f:d5:9a:af:4d:b5:1e:c3:d8:90:f2:09: de:8a:72:1e:82:6e:ba:33:06:6e:4f:e6:f8:a3:06:2b:70:59: af:26:4d:0d:de:bb:d9:0e:93:6c:0c:bd:3a:be:cf:3c:68:cd: f4:15:09:cf:04:ef:92:4f:66:e8:d1:b3:6c:3e:86:40:9a:89: 51:ea:dd:41:a2:1c:41:18:b4:05:53:eb:9a:37:33:a7:e9:6b: c1:5e:11:f2:b9:63:73:ea:b9:3a:89:fa:b3:bc:62:2c:8e:7e: bb:54:4a:07:44:7d:f0:5b:ab:d1:05:fb:c6:90:4d:32:8d:9c: fa:e6:06:1c:eb:2a:a3:ef:db:1a:e9:46:37:12:2e:8f:5d:f5: 9b:c6:55:4f:8f:0c:e2:d8:ee:da:ed:4a:a9:ce:bc:36:c1:31: d3:a1:62:69:df:e1:15:3d:9a:54:2c:11:6b:a9:30:d2:47:f5: c6:09:f0:18:cd:82:aa:13:0b:0b:00:89:ce:91:a1:81:8b:d9: b9:bf:36:70:fd:92:f7:c8:0b:82:52:89:29:8e:8c:8e:15:6c: 24:48:51:65:e1:5b:ae:18:4f:ae:88:10:ab:d1:4e:1c:5b:df: 9b:cf:fc:c4:3a:f5:b6:1f:bf:d8:28:43:8a:a6:82:ae:63:7f: bc:00:fa:ba -----BEGIN CERTIFICATE----- MIIFoTCCBImgAwIBAgICGxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFBNzgxMTAvBgNVBAUTKDA5Q0ZGRTQ2N0YzQjA5QzNEMDZGMjQ5MTlDRkFDN0Uw MDNFNEJCNzUwHhcNMjQwNDMwMTI0MzExWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMwZTc1ZS0zZmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3XzAlSX+nQCDBCSUGcFL4yVCkeyfr+sXm7Pqq2DnVZLlneIhXRD8piCEQRd0 GrJVzA19OoDNoIjGuO2c0IyNFgWMhAbp/+V2F4DwoI4yz0yA9X1jeu/l7YCCi80S CYACtOsEExSiarDjobbu6fKGDzyeWgGA/wTq4ItQrsD6ReDFCsrox63YaZUKT0QS k87AXi625saJzEZLDOT8LzZPTVPiSCOsRiFKgiweuKDKscqoOuGqXWAZ/cNJwQUO ToKAgnw5omhvqMYfUUzsrpL6hLQEJ2otYudEZgC2Ar5bnK4mmIOX+m3DBrJHNI4/ GCuT02D8WrFXMunw/yPx+wIQ0wIDAQABo4ICxTCCAsEwHQYDVR0OBBYEFIJULyQV 9neUbwmhwqM6hA3/mIrDMB8GA1UdIwQYMBaAFAnP/kZ/OwnD0G8kkZz6x+AD5Lt1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUE3OC82OEQzMzQ5MEZE NjQxMUU2QTEwOTU0ODNDNEY5QUUwMi9DY18tUm44N0NjUFFieVNSblBySDRBUGt1 M1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NjXy1Sbjg3Q2NQUWJ5U1JuUHJINEFQa3UzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEFBNzgvNjhEMzM0OTBGRDY0MTFFNkExMDk1NDgzQzRGOUFFMDIvMDhGNDJBNDRF NkI4MTFFRTkxMDJDRjRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTwYIKwYBBQUHAQcBAf8E QDA+MBgEAgABMBIDBAJnV2wDBAHLkDoDBADLkD0wIgQCAAIwHAMHACQCecAAAzAR AwYAJAJ5wAEDBwAkAnnAAQowDQYJKoZIhvcNAQELBQADggEBAL1isLMPQm/Vmq9N tR7D2JDyCd6Kch6CbrozBm5P5vijBitwWa8mTQ3eu9kOk2wMvTq+zzxozfQVCc8E 75JPZujRs2w+hkCaiVHq3UGiHEEYtAVT65o3M6fpa8FeEfK5Y3PquTqJ+rO8YiyO frtUSgdEffBbq9EF+8aQTTKNnPrmBhzrKqPv2xrpRjcSLo9d9ZvGVU+PDOLY7trt SqnOvDbBMdOhYmnf4RU9mlQsEWupMNJH9cYJ8BjNgqoTCwsAic6RoYGL2bm/NnD9 kvfIC4JSiSmOjI4VbCRIUWXhW64YT66IEKvRThxb35vP/MQ69bYfv9goQ4qmgq5j f7wA+ro= -----END CERTIFICATE-----Generated at Thu May 16 18:26:06 2024 by rpki-client on console-fra.rpki-client.org