$ rpki-client -vvf rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/6D1AB66299DC11EC8F668276C4F9AE02.roa File: 6D1AB66299DC11EC8F668276C4F9AE02.roa (raw, json) Hash identifier: FWoO/+Lm9aGZBFUfNqbe6GMXLp4oCWQOP8DeUKW0aa4= Subject key identifier: D8:42:7D:2E:1C:BD:D6:C2:02:E8:8B:5F:7E:B2:7C:9E:DD:D4:84:C7 Certificate issuer: /CN=A918BD1A/serialNumber=20746DA96C6C9348E94BBB74DCCB5901C6ECB7B3 Certificate serial: 02DB Authority key identifier: 20:74:6D:A9:6C:6C:93:48:E9:4B:BB:74:DC:CB:59:01:C6:EC:B7:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHRtqWxsk0jpS7t03MtZAcbst7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/6D1AB66299DC11EC8F668276C4F9AE02.roa Signing time: Thu 25 Apr 2024 03:36:20 +0000 ROA not before: Thu 25 Apr 2024 03:36:20 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 149627 IP address blocks: 103.122.122.0/24 maxlen: 24 103.182.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.crl rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHRtqWxsk0jpS7t03MtZAcbst7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:09:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 731 (0x2db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BD1A/serialNumber=20746DA96C6C9348E94BBB74DCCB5901C6ECB7B3 Validity Not Before: Apr 25 03:36:20 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6629cfb3-d7cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b9:af:78:81:94:3f:ac:3b:37:23:ed:81:59: dc:13:90:9b:10:8c:2b:ba:01:e1:67:95:5e:fb:cd: 7e:50:e1:2d:9e:3d:dd:69:ef:a8:92:8d:37:39:a6: e5:50:e8:17:8c:7b:45:49:17:12:d8:0c:99:d9:0d: 0c:db:fb:df:c1:3e:3f:bc:b9:0d:08:21:ee:52:37: 15:7e:cd:d3:f1:7c:c7:b1:ce:a2:b7:e2:20:78:4e: 83:f7:4c:1d:ca:0b:65:fd:e3:46:78:fa:57:ec:ce: 37:31:2d:f0:0f:73:31:c7:ca:2a:c1:ad:ce:84:b6: 75:f0:a1:6d:92:80:79:65:71:10:eb:aa:76:61:94: 47:52:61:fb:cb:00:68:dc:a9:a1:4a:61:a3:3d:71: 36:fe:ef:e1:b2:aa:9e:bc:fe:3f:6e:6c:69:ac:32: b5:09:24:fa:01:56:d4:04:a9:ea:eb:21:b8:92:51: 68:c0:28:20:45:3b:12:4c:ef:2b:7f:70:6f:9d:b9: 44:67:bf:c4:f1:76:2f:c4:5a:a9:8c:fc:80:77:88: d3:32:9d:48:8e:0a:5b:4a:d9:2e:e8:63:e0:e0:0f: 84:ba:40:a5:ef:df:20:bd:28:07:92:66:1b:df:8a: 37:f5:20:d8:f9:ea:9e:58:4c:6c:6d:89:37:af:fe: 14:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:42:7D:2E:1C:BD:D6:C2:02:E8:8B:5F:7E:B2:7C:9E:DD:D4:84:C7 X509v3 Authority Key Identifier: keyid:20:74:6D:A9:6C:6C:93:48:E9:4B:BB:74:DC:CB:59:01:C6:EC:B7:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHRtqWxsk0jpS7t03MtZAcbst7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/6D1AB66299DC11EC8F668276C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.122.122.0/24 103.182.219.0/24 Signature Algorithm: sha256WithRSAEncryption 87:f8:6a:d7:ed:d5:91:87:36:82:52:1a:32:35:fe:45:83:f2: 85:94:93:8f:3c:72:82:91:b9:c0:ce:f6:ec:36:a5:68:6f:91: 89:f2:6c:f1:bb:15:48:91:e9:ef:6f:bb:1e:a8:8e:90:cd:b1: e3:a6:89:73:d1:c3:04:4d:dd:e0:63:89:c0:83:88:3a:d5:c8: 1b:49:0e:73:12:c0:75:20:df:88:f4:84:38:42:70:84:fc:ed: 6e:2e:e0:b0:83:cf:34:28:71:49:8b:6e:36:71:59:ea:a2:5e: 85:3a:a8:53:3f:de:65:71:50:b8:6a:f2:19:6e:e4:38:93:24: ba:12:9a:70:e2:d9:87:4d:14:63:df:2e:01:63:23:01:8a:7d: 7d:9d:23:5a:53:38:b6:01:5e:c0:ca:3c:72:18:d4:ce:07:f8: dd:b5:d0:21:5c:40:44:2a:0c:5f:ee:22:22:c0:f8:8b:a7:44: 79:13:11:10:63:86:36:9d:0e:25:8e:c4:51:70:a9:99:c1:53: c3:1c:84:ac:8d:c0:38:de:b0:15:e2:38:9a:0e:29:c9:b7:a0: be:5e:6d:9c:d6:eb:f4:58:49:dd:4e:1e:47:cd:3a:22:f7:78: b0:72:5d:3e:da:1b:06:d4:18:46:31:fb:b7:e5:ed:4c:5b:5d: 62:29:8a:e3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJEMUExMTAvBgNVBAUTKDIwNzQ2REE5NkM2QzkzNDhFOTRCQkI3NERDQ0I1OTAx QzZFQ0I3QjMwHhcNMjQwNDI1MDMzNjIwWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjI5Y2ZiMy1kN2NiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7mveIGUP6w7NyPtgVncE5CbEIwrugHhZ5Ve+81+UOEtnj3dae+oko03Oabl UOgXjHtFSRcS2AyZ2Q0M2/vfwT4/vLkNCCHuUjcVfs3T8XzHsc6it+IgeE6D90wd ygtl/eNGePpX7M43MS3wD3Mxx8oqwa3OhLZ18KFtkoB5ZXEQ66p2YZRHUmH7ywBo 3KmhSmGjPXE2/u/hsqqevP4/bmxprDK1CST6AVbUBKnq6yG4klFowCggRTsSTO8r f3BvnblEZ7/E8XYvxFqpjPyAd4jTMp1IjgpbStku6GPg4A+EukCl798gvSgHkmYb 34o39SDY+eqeWExsbYk3r/4URwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNhCfS4c vdbCAuiLX36yfJ7d1ITHMB8GA1UdIwQYMBaAFCB0balsbJNI6Uu7dNzLWQHG7Lez MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkQxQS80QzZFQUJFODk5 RDgxMUVDQjlFMzU3NkZDNEY5QUUwMi9JSFJ0cVd4c2swanBTN3QwM010WkFjYnN0 N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIUnRxV3hzazBqcFM3dDAzTXRaQWNic3Q3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEJEMUEvNEM2RUFCRTg5OUQ4MTFFQ0I5RTM1NzZGQzRGOUFFMDIvNkQxQUI2NjI5 OURDMTFFQzhGNjY4Mjc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnenoDBABnttswDQYJKoZIhvcNAQELBQADggEBAIf4atft 1ZGHNoJSGjI1/kWD8oWUk488coKRucDO9uw2pWhvkYnybPG7FUiR6e9vux6ojpDN seOmiXPRwwRN3eBjicCDiDrVyBtJDnMSwHUg34j0hDhCcIT87W4u4LCDzzQocUmL bjZxWeqiXoU6qFM/3mVxULhq8hlu5DiTJLoSmnDi2YdNFGPfLgFjIwGKfX2dI1pT OLYBXsDKPHIY1M4H+N210CFcQEQqDF/uIiLA+IunRHkTERBjhjadDiWOxFFwqZnB U8MchKyNwDjesBXiOJoOKcm3oL5ebZzW6/RYSd1OHkfNOiL3eLByXT7aGwbUGEYx +7fl7UxbXWIpiuM= -----END CERTIFICATE-----Generated at Sat Jun 1 04:59:04 2024 by rpki-client on console-fra.rpki-client.org