$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/308758F8CB0911EE9260454CC4F9AE02.roa File: 308758F8CB0911EE9260454CC4F9AE02.roa (raw, json) Hash identifier: 6NxxjvnfyDL1YE5iFRpWg14g3lEf8MNWdtZlhLe7oZ0= Subject key identifier: 38:61:D3:11:F5:D4:41:17:5D:F9:DA:22:22:81:66:13:86:CD:84:20 Certificate issuer: /CN=A918E4B7/serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Certificate serial: 03FF Authority key identifier: 0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/308758F8CB0911EE9260454CC4F9AE02.roa Signing time: Wed 14 Feb 2024 07:18:02 +0000 ROA not before: Wed 14 Feb 2024 07:18:02 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 49544 IP address blocks: 103.125.216.0/24 maxlen: 24 103.125.219.0/24 maxlen: 24 2403:fa40:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1023 (0x3ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7/serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Validity Not Before: Feb 14 07:18:02 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65cc692a-810b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:14:b1:0c:4f:d3:eb:25:33:cb:53:47:86:9f: a2:68:35:90:ce:bb:74:f2:c6:68:3f:33:60:ad:5e: a5:2f:48:e2:49:da:b5:6f:c6:b1:55:29:74:30:c2: 04:e8:d3:1d:a9:1a:8a:12:8e:2e:07:db:77:a3:86: ee:2f:ef:2d:e7:95:d1:29:8d:fd:a2:33:39:f9:59: bd:9b:56:27:77:82:75:9d:55:ca:11:e0:ab:b2:1b: 70:9f:1b:de:0b:7c:25:df:64:05:90:43:e6:ca:4e: 33:ff:24:11:97:d1:3a:0b:d5:fb:b8:a4:ea:a9:a3: 51:c1:95:c5:1e:e9:88:92:6f:cb:3d:8a:c2:20:08: 5c:35:5f:cc:01:c3:6a:65:b5:58:11:d1:7c:07:39: 50:5b:27:50:6d:95:13:1f:5a:e2:1c:12:bc:5e:18: da:fb:fa:2f:e1:8a:56:e1:8a:fd:6f:bd:48:66:0c: aa:90:4d:7f:03:07:ad:8f:9f:5e:31:81:39:a4:bd: 73:dc:79:b7:76:83:2b:86:96:f8:3b:9e:8e:5f:6f: 30:86:60:74:f0:f0:20:c9:55:02:9f:fa:56:d4:aa: 19:ef:d7:a1:02:5c:b6:d8:bd:df:e8:55:49:68:d1: 72:54:d3:39:bb:f1:42:e9:00:ea:f1:84:e7:86:37: 52:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:61:D3:11:F5:D4:41:17:5D:F9:DA:22:22:81:66:13:86:CD:84:20 X509v3 Authority Key Identifier: keyid:0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/308758F8CB0911EE9260454CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.125.216.0/24 103.125.219.0/24 IPv6: 2403:fa40:1::/48 Signature Algorithm: sha256WithRSAEncryption 23:e0:86:ec:f3:10:64:bd:1b:f2:ac:c3:05:53:86:c7:df:ee: e2:d4:67:6a:af:e1:30:df:1f:8c:c4:cf:91:c9:83:19:16:87: ec:d7:57:51:2f:6a:27:84:bc:73:26:a9:98:77:5a:03:db:d9: 32:60:95:a4:b4:ac:2a:ad:a2:7e:af:c8:93:23:24:05:74:c6: 29:6d:8a:5d:c6:50:d9:d7:23:07:4f:45:1f:48:2d:bf:8a:3a: 66:ff:f2:55:77:42:d2:33:71:8c:48:10:f4:cb:6f:27:ea:fc: 3c:76:6c:2e:f6:45:57:20:1c:e1:0a:9e:67:89:a3:64:29:57: 10:45:85:a0:04:4b:1e:13:d8:80:9d:a4:1a:19:46:92:a2:5b: d6:b2:48:81:07:ad:1b:2a:66:89:33:ad:2a:36:3b:31:3f:72: b8:f7:06:87:1f:89:2f:a2:1f:68:c4:3c:fa:a0:f4:e3:5c:08: 51:8f:11:70:bd:bf:d9:e9:60:74:cf:65:08:3c:9b:fe:10:5e: 5f:15:51:d5:b9:92:bd:2f:74:48:70:01:b2:2b:52:df:d0:df: 82:1d:a2:86:c6:20:c9:d0:44:aa:3e:a6:12:91:28:1b:4c:0c: 96:2e:3b:a6:00:f9:05:38:8e:18:03:26:db:7a:70:d1:18:12: 3e:90:14:45 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICA/8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKDBBQjZERDI2NTE1QzUzRUNDNUIwNDYyQjRDNDc1RDVB N0U1QTU1MzcwHhcNMjQwMjE0MDcxODAyWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNjNjkyYS04MTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8hSxDE/T6yUzy1NHhp+iaDWQzrt08sZoPzNgrV6lL0jiSdq1b8axVSl0MMIE 6NMdqRqKEo4uB9t3o4buL+8t55XRKY39ojM5+Vm9m1Ynd4J1nVXKEeCrshtwnxve C3wl32QFkEPmyk4z/yQRl9E6C9X7uKTqqaNRwZXFHumIkm/LPYrCIAhcNV/MAcNq ZbVYEdF8BzlQWydQbZUTH1riHBK8Xhja+/ov4YpW4Yr9b71IZgyqkE1/Awetj59e MYE5pL1z3Hm3doMrhpb4O56OX28whmB08PAgyVUCn/pW1KoZ79ehAly22L3f6FVJ aNFyVNM5u/FC6QDq8YTnhjdSdwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFDhh0xH1 1EEXXfnaIiKBZhOGzYQgMB8GA1UdIwQYMBaAFAq23SZRXFPsxbBGK0xHXVp+WlU3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy9FQjMxMkYwMjFF QUExMUVDQjc1NkJGMzBDNEY5QUUwMi9DcmJkSmxGY1UtekZzRVlyVEVkZFduNWFW VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NyYmRKbEZjVS16RnNFWXJURWRkV241YVZUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU0QjcvRUIzMTJGMDIxRUFBMTFFQ0I3NTZCRjMwQzRGOUFFMDIvMzA4NzU4RjhD QjA5MTFFRTkyNjA0NTRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnfdgDBABnfdswDwQCAAIwCQMHACQD+kAAATANBgkqhkiG 9w0BAQsFAAOCAQEAI+CG7PMQZL0b8qzDBVOGx9/u4tRnaq/hMN8fjMTPkcmDGRaH 7NdXUS9qJ4S8cyapmHdaA9vZMmCVpLSsKq2ifq/IkyMkBXTGKW2KXcZQ2dcjB09F H0gtv4o6Zv/yVXdC0jNxjEgQ9MtvJ+r8PHZsLvZFVyAc4QqeZ4mjZClXEEWFoARL HhPYgJ2kGhlGkqJb1rJIgQetGypmiTOtKjY7MT9yuPcGhx+JL6IfaMQ8+qD041wI UY8RcL2/2elgdM9lCDyb/hBeXxVR1bmSvS90SHABsitS39Dfgh2ihsYgydBEqj6m EpEoG0wMli47pgD5BTiOGAMm23pw0RgSPpAURQ== -----END CERTIFICATE-----Generated at Sat May 11 03:57:09 2024 by rpki-client on console-fra.rpki-client.org