$ rpki-client -vvf rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/E2846570135E11EB9D58482CC4F9AE02.roa File: E2846570135E11EB9D58482CC4F9AE02.roa (raw, json) Hash identifier: VmCCO9rKxQqxPlrHeWq9U7q+LKdaSQL34qbQkvZoV8g= Subject key identifier: C6:65:97:72:73:D4:E0:82:FA:CF:EF:BB:EB:E7:3E:A1:4C:9F:BC:8D Certificate issuer: /CN=A918036A/serialNumber=57840FB441D2B34C8EE699D264712B4A5E0FED8D Certificate serial: 0F01 Authority key identifier: 57:84:0F:B4:41:D2:B3:4C:8E:E6:99:D2:64:71:2B:4A:5E:0F:ED:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4QPtEHSs0yO5pnSZHErSl4P7Y0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/E2846570135E11EB9D58482CC4F9AE02.roa Signing time: Wed 04 Oct 2023 04:04:25 +0000 ROA not before: Wed 04 Oct 2023 04:04:25 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 132400 IP address blocks: 103.72.188.0/22 maxlen: 22 103.72.188.0/24 maxlen: 24 103.72.189.0/24 maxlen: 24 103.72.190.0/24 maxlen: 24 103.72.191.0/24 maxlen: 24 160.20.40.0/22 maxlen: 22 160.20.40.0/24 maxlen: 24 160.20.41.0/24 maxlen: 24 160.20.42.0/24 maxlen: 24 160.20.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.crl rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4QPtEHSs0yO5pnSZHErSl4P7Y0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:35:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3841 (0xf01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918036A/serialNumber=57840FB441D2B34C8EE699D264712B4A5E0FED8D Validity Not Before: Oct 4 04:04:25 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651ce448-0985 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:1b:bc:3d:79:86:6f:4c:a5:4d:37:56:ab:4b: ce:31:ea:dc:ed:d2:0e:1a:c1:fb:34:ee:d5:18:ed: 12:c7:31:34:1f:f3:87:5c:36:4b:a7:ac:8a:24:b6: b3:65:fe:1b:43:a7:b9:8d:94:68:44:c8:5b:65:cd: 11:64:ea:0c:bb:a4:ba:2d:1a:a0:66:ec:a7:ec:8f: b0:b4:5d:74:3f:d1:2e:98:80:1d:9f:f2:ad:15:00: 86:e5:ef:7a:28:0b:9e:11:5a:dc:ff:ca:ca:0c:01: bc:6d:ef:49:e2:c4:64:ad:1a:b4:41:30:52:27:a7: 97:3f:3d:9f:73:eb:61:1a:24:a6:a9:e6:82:c1:99: 34:45:d3:87:3b:e8:7c:a9:23:c1:42:a0:c6:1b:e3: 1f:27:34:8a:41:1c:15:de:16:72:f4:d0:5a:00:c3: 6f:9a:51:9e:a6:31:c1:65:89:f0:63:62:ee:6e:d2: a3:be:12:d6:58:34:a5:df:d9:f0:23:b0:d1:45:0c: 8e:a4:ad:61:d9:95:09:a1:84:df:0d:2b:63:61:32: 2b:9b:4c:ea:2b:de:cd:6d:6e:c1:bd:08:d5:3a:18: a1:53:9a:00:47:03:69:d8:90:9c:81:0b:b9:47:4c: ba:77:33:a8:b8:e8:ef:d7:67:5b:b1:cd:be:94:2a: 6b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:65:97:72:73:D4:E0:82:FA:CF:EF:BB:EB:E7:3E:A1:4C:9F:BC:8D X509v3 Authority Key Identifier: keyid:57:84:0F:B4:41:D2:B3:4C:8E:E6:99:D2:64:71:2B:4A:5E:0F:ED:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4QPtEHSs0yO5pnSZHErSl4P7Y0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/E2846570135E11EB9D58482CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.72.188.0/22 160.20.40.0/22 Signature Algorithm: sha256WithRSAEncryption 19:ed:45:a9:e0:a3:ef:ef:44:6f:7d:06:ee:ed:76:6a:d5:96: a0:21:c1:7a:a1:6d:47:7f:e6:f7:5c:69:6f:33:cc:04:00:c2: 14:08:79:1d:40:5f:95:99:c1:00:54:2e:09:34:ad:1d:69:3e: 23:ab:c2:3c:28:44:97:6d:b2:49:9b:a6:54:b2:e1:13:36:cf: 87:f5:35:ff:a9:16:b3:7e:a5:71:6d:9e:b0:9e:51:cc:0b:c4: 23:ca:10:21:f4:0f:88:1e:0e:42:2e:4d:67:a8:b7:5b:84:34: 29:00:ff:8b:c3:49:7b:d1:c6:ae:97:a5:42:21:38:f7:b0:c0: 61:b2:99:23:48:bc:d4:3f:08:eb:b6:e1:88:35:a9:d7:79:ca: 2e:b7:04:16:cf:10:f7:45:91:1a:56:fe:f5:20:29:1c:be:07: fb:8b:42:66:5d:05:75:e9:5d:b1:d9:c6:51:53:ed:ac:11:5f: 40:9c:ba:d1:5c:cd:47:f5:49:d3:7c:55:15:79:31:7a:d2:87: 1f:81:7c:29:62:77:da:3e:75:ef:c2:5f:cf:a1:76:3d:61:7c: dc:5b:6b:e8:0c:fb:22:4c:ad:02:6e:28:47:7c:9f:7a:aa:c2: 39:aa:ff:97:58:51:ef:b5:61:11:2e:2a:42:5f:05:0e:59:06: 78:39:87:c7 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDwEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzNkExMTAvBgNVBAUTKDU3ODQwRkI0NDFEMkIzNEM4RUU2OTlEMjY0NzEyQjRB NUUwRkVEOEQwHhcNMjMxMDA0MDQwNDI1WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFjZTQ0OC0wOTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwRu8PXmGb0ylTTdWq0vOMerc7dIOGsH7NO7VGO0SxzE0H/OHXDZLp6yKJLaz Zf4bQ6e5jZRoRMhbZc0RZOoMu6S6LRqgZuyn7I+wtF10P9EumIAdn/KtFQCG5e96 KAueEVrc/8rKDAG8be9J4sRkrRq0QTBSJ6eXPz2fc+thGiSmqeaCwZk0RdOHO+h8 qSPBQqDGG+MfJzSKQRwV3hZy9NBaAMNvmlGepjHBZYnwY2LubtKjvhLWWDSl39nw I7DRRQyOpK1h2ZUJoYTfDStjYTIrm0zqK97NbW7BvQjVOhihU5oARwNp2JCcgQu5 R0y6dzOouOjv12dbsc2+lCpr1QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMZll3Jz 1OCC+s/vu+vnPqFMn7yNMB8GA1UdIwQYMBaAFFeED7RB0rNMjuaZ0mRxK0peD+2N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDM2QS80MzNBRjc4QzQ2 QzcxMUU5QURFOUQ0MjRDNEY5QUUwMi9WNFFQdEVIU3MweU81cG5TWkhFclNsNFA3 WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Y0UVB0RUhTczB5TzVwblNaSEVyU2w0UDdZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODAzNkEvNDMzQUY3OEM0NkM3MTFFOUFERTlENDI0QzRGOUFFMDIvRTI4NDY1NzAx MzVFMTFFQjlENTg0ODJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnSLwDBAKgFCgwDQYJKoZIhvcNAQELBQADggEBABntRang o+/vRG99Bu7tdmrVlqAhwXqhbUd/5vdcaW8zzAQAwhQIeR1AX5WZwQBULgk0rR1p PiOrwjwoRJdtskmbplSy4RM2z4f1Nf+pFrN+pXFtnrCeUcwLxCPKECH0D4geDkIu TWeot1uENCkA/4vDSXvRxq6XpUIhOPewwGGymSNIvNQ/COu24Yg1qdd5yi63BBbP EPdFkRpW/vUgKRy+B/uLQmZdBXXpXbHZxlFT7awRX0CcutFczUf1SdN8VRV5MXrS hx+BfClid9o+de/CX8+hdj1hfNxba+gM+yJMrQJuKEd8n3qqwjmq/5dYUe+1YREu KkJfBQ5ZBng5h8c= -----END CERTIFICATE-----Generated at Fri May 31 20:34:07 2024 by rpki-client on console-ams.rpki-client.org