$ rpki-client -vvf rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/C6EDD52EF4C011EAA7B25986C4F9AE02.roa File: C6EDD52EF4C011EAA7B25986C4F9AE02.roa (raw, json) Hash identifier: CY5sPYormfa7IAN+rpGFY7m/W100xCQGTv7ufR4jFyA= Subject key identifier: EB:EE:FD:52:DC:55:DC:AD:28:56:14:40:D6:51:76:05:49:5C:34:88 Certificate issuer: /CN=A9195DE5/serialNumber=B85BED99BF740ABAD5A399C9DF5FE9962A6DE8F1 Certificate serial: 06FB Authority key identifier: B8:5B:ED:99:BF:74:0A:BA:D5:A3:99:C9:DF:5F:E9:96:2A:6D:E8:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uFvtmb90CrrVo5nJ31_plipt6PE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/C6EDD52EF4C011EAA7B25986C4F9AE02.roa Signing time: Tue 12 Mar 2024 22:51:13 +0000 ROA not before: Tue 12 Mar 2024 22:51:12 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 132883 IP address blocks: 103.87.8.0/24 maxlen: 24 103.87.9.0/24 maxlen: 24 103.87.10.0/24 maxlen: 24 103.87.11.0/24 maxlen: 24 116.204.208.0/24 maxlen: 24 116.204.209.0/24 maxlen: 24 116.204.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/uFvtmb90CrrVo5nJ31_plipt6PE.crl rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/uFvtmb90CrrVo5nJ31_plipt6PE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uFvtmb90CrrVo5nJ31_plipt6PE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 22:43:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1787 (0x6fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195DE5/serialNumber=B85BED99BF740ABAD5A399C9DF5FE9962A6DE8F1 Validity Not Before: Mar 12 22:51:12 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65f0dc60-15b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d4:62:72:b7:b8:3b:88:71:7f:97:35:9e:bf: 54:cd:e3:7d:f7:c1:61:3d:61:15:82:f9:1a:e5:c4: ba:3c:7a:00:f3:c1:e8:f5:3c:e8:1f:03:75:23:62: c1:7d:da:4b:91:52:2a:3d:12:e4:30:17:01:8a:8c: a3:ca:6d:1d:1e:09:75:97:ce:52:c0:23:cb:88:ee: 10:06:fa:0a:fa:e5:fd:5b:20:3f:0a:6f:6f:59:4c: fb:5d:40:54:55:26:06:9a:38:e6:8e:1a:ae:35:b3: 86:48:4e:6f:9a:c9:e4:60:cc:55:40:7e:75:ea:b1: ec:2f:40:16:51:d4:0e:72:2f:34:a7:f5:0b:9c:72: 3b:5d:b5:e0:23:f2:c0:59:4c:51:83:a7:d0:e1:78: 15:13:53:7b:c4:a9:41:e7:96:75:4d:fe:4c:a0:88: 65:f3:50:a9:9e:2d:2c:79:92:de:8f:88:b7:0a:84: 4d:3a:d0:f9:fc:da:8d:4e:7d:fb:ce:f2:45:50:28: 4f:a1:4c:8e:27:ae:c3:fb:bd:ae:17:97:9a:df:fb: 2d:c3:8e:39:c9:a0:61:25:d9:36:d8:e7:47:c3:72: c8:98:b7:82:f8:af:bc:a9:90:78:3e:b8:68:99:1e: 74:50:f5:40:a0:d1:19:9c:36:63:bf:0a:42:46:aa: 26:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:EE:FD:52:DC:55:DC:AD:28:56:14:40:D6:51:76:05:49:5C:34:88 X509v3 Authority Key Identifier: keyid:B8:5B:ED:99:BF:74:0A:BA:D5:A3:99:C9:DF:5F:E9:96:2A:6D:E8:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/uFvtmb90CrrVo5nJ31_plipt6PE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uFvtmb90CrrVo5nJ31_plipt6PE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/C6EDD52EF4C011EAA7B25986C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.87.8.0/22 116.204.208.0-116.204.210.255 Signature Algorithm: sha256WithRSAEncryption 18:81:0b:5e:c4:05:df:6f:db:60:11:c6:26:7f:c6:bf:a4:8a: 63:1a:55:84:4c:79:e7:28:16:7d:ec:38:9c:69:5f:57:79:bd: de:e2:a0:d4:e8:67:f5:08:2b:77:1c:21:57:ad:74:93:68:e6: 88:3a:2b:2d:f5:68:79:36:8a:ad:75:11:e1:fa:b9:87:e3:f3: 92:6a:c7:fa:ad:b9:55:04:c8:29:a6:9d:5e:b3:05:77:fd:1d: 62:fc:35:74:89:84:2c:f4:a7:b7:76:26:99:04:35:7c:51:e7: f5:74:43:f8:84:72:8e:36:96:2d:cc:bc:d0:78:57:9d:d1:f9: a0:69:95:3b:a4:73:88:ac:8c:b7:8b:e1:97:0a:93:3d:e8:c5: 63:cb:b0:e9:4d:dc:69:d0:39:7c:d6:d7:21:79:5c:5f:c4:94: 7e:cb:1e:13:37:36:a9:5d:94:af:31:ce:9b:6d:cd:c5:39:8e: 34:01:c5:dc:eb:12:e1:30:2e:8c:ef:df:f8:2f:e2:08:c1:ef: 10:4f:4e:2d:eb:75:f5:dc:b6:55:d0:bd:79:bf:d9:bf:09:29: 8e:41:60:5f:e5:5d:80:83:40:ee:db:de:0c:3a:ba:1b:3b:7a: 26:df:1c:82:ba:bd:11:c1:f2:fc:e7:d9:5d:5e:03:81:3d:c0: 06:57:72:08 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBvswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVERTUxMTAvBgNVBAUTKEI4NUJFRDk5QkY3NDBBQkFENUEzOTlDOURGNUZFOTk2 MkE2REU4RjEwHhcNMjQwMzEyMjI1MTEyWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWYwZGM2MC0xNWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxtRicre4O4hxf5c1nr9UzeN998FhPWEVgvka5cS6PHoA88Ho9TzoHwN1I2LB fdpLkVIqPRLkMBcBioyjym0dHgl1l85SwCPLiO4QBvoK+uX9WyA/Cm9vWUz7XUBU VSYGmjjmjhquNbOGSE5vmsnkYMxVQH516rHsL0AWUdQOci80p/ULnHI7XbXgI/LA WUxRg6fQ4XgVE1N7xKlB55Z1Tf5MoIhl81Cpni0seZLej4i3CoRNOtD5/NqNTn37 zvJFUChPoUyOJ67D+72uF5ea3/stw445yaBhJdk22OdHw3LImLeC+K+8qZB4Prho mR50UPVAoNEZnDZjvwpCRqom3QIDAQABo4ICozCCAp8wHQYDVR0OBBYEFOvu/VLc VdytKFYUQNZRdgVJXDSIMB8GA1UdIwQYMBaAFLhb7Zm/dAq61aOZyd9f6ZYqbejx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NURFNS9FM0VENjVEOEY0 QkUxMUVBOUMzNUZFNkFDNEY5QUUwMi91RnZ0bWI5MENyclZvNW5KMzFfcGxpcHQ2 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VGdnRtYjkwQ3JyVm81bkozMV9wbGlwdDZQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTVERTUvRTNFRDY1RDhGNEJFMTFFQTlDMzVGRTZBQzRGOUFFMDIvQzZFREQ1MkVG NEMwMTFFQUE3QjI1OTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAJnVwgwDAMEBHTM0AMEAHTM0jANBgkqhkiG9w0BAQsFAAOC AQEAGIELXsQF32/bYBHGJn/Gv6SKYxpVhEx55ygWfew4nGlfV3m93uKg1Ohn9Qgr dxwhV610k2jmiDorLfVoeTaKrXUR4fq5h+PzkmrH+q25VQTIKaadXrMFd/0dYvw1 dImELPSnt3YmmQQ1fFHn9XRD+IRyjjaWLcy80HhXndH5oGmVO6RziKyMt4vhlwqT PejFY8uw6U3cadA5fNbXIXlcX8SUfsseEzc2qV2UrzHOm23NxTmONAHF3OsS4TAu jO/f+C/iCMHvEE9OLet19dy2VdC9eb/ZvwkpjkFgX+VdgINA7tveDDq6Gzt6Jt8c grq9EcHy/OfZXV4DgT3ABldyCA== -----END CERTIFICATE-----Generated at Mon May 20 23:42:24 2024 by rpki-client on console-ams.rpki-client.org