$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1E04076471EA11ECB3503078C4F9AE02.roa File: 1E04076471EA11ECB3503078C4F9AE02.roa (raw, json) Hash identifier: UgqE5DR9JZnRHsImh/eL4tdfX6HpHOwRP/IZycu9h6c= Subject key identifier: F7:99:F5:4D:B2:5F:9D:81:22:28:D1:5E:C1:61:AC:04:4B:80:8C:B4 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8732 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1E04076471EA11ECB3503078C4F9AE02.roa Signing time: Thu 09 May 2024 09:26:45 +0000 ROA not before: Thu 09 May 2024 09:26:45 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 132785 IP address blocks: 45.114.148.0/22 maxlen: 24 103.27.164.0/22 maxlen: 24 2001:df2:1140::/48 maxlen: 48 2401:2860::/32 maxlen: 32 2401:2860::/36 maxlen: 36 2401:2860::/40 maxlen: 40 2401:2860::/41 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34610 (0x8732) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 9 09:26:45 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=663c96d5-9e79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:96:8c:2c:4d:0c:cb:d6:3b:7f:39:d1:2f:80: 7e:3e:38:7e:f9:be:53:b1:4f:83:ae:5e:20:3c:bc: 32:71:5d:92:07:f8:fd:b5:0c:ad:2e:4f:69:65:b5: 7f:cc:0b:e3:9b:ae:30:61:43:7b:c7:4e:8e:35:13: 9f:6a:8d:24:61:05:bd:a0:ed:7c:f5:27:80:09:d9: 58:5a:c4:78:a2:2c:03:80:d5:94:fc:47:ce:89:a5: d0:28:03:35:e8:3e:4e:0f:50:dd:b4:49:a2:2a:02: 18:1b:cd:ee:42:0b:f4:ef:62:c5:b2:9a:7d:ce:a2: db:f1:a1:a4:d8:a7:11:f6:5b:ae:f4:6b:04:82:8c: 6f:f7:de:bc:6c:13:50:5d:ee:d0:2a:dc:be:92:f6: d2:75:5e:95:b4:a0:14:00:bf:2b:66:88:4c:55:fa: c0:a6:ee:16:3d:87:70:e2:be:37:60:09:a4:c9:e2: 47:a1:58:59:14:e6:21:44:88:c9:6c:c3:74:92:db: 2e:37:70:ed:82:f5:75:a9:e0:d5:eb:ac:9d:2a:8d: 74:77:85:5e:ad:3a:e4:76:48:ed:b3:9d:bf:d7:69: e4:f1:5a:0a:a3:37:ff:54:0d:9f:49:c7:26:aa:87: eb:46:99:7c:99:21:b5:5b:4e:f6:85:02:96:9c:57: 6c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:99:F5:4D:B2:5F:9D:81:22:28:D1:5E:C1:61:AC:04:4B:80:8C:B4 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1E04076471EA11ECB3503078C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.114.148.0/22 103.27.164.0/22 IPv6: 2001:df2:1140::/48 2401:2860::/32 Signature Algorithm: sha256WithRSAEncryption b2:1b:ac:5f:b3:1a:cb:75:ad:d8:10:51:f0:ba:95:f9:1e:94: 7c:58:28:42:06:53:ed:b7:62:84:84:c8:ee:33:a5:0b:19:c4: 68:e7:4f:d8:2c:1e:5d:ee:14:0c:a7:11:4d:26:6e:04:2b:84: 00:54:21:dd:1e:e2:6e:75:af:81:e6:21:9f:43:f9:ae:30:95: 69:03:c9:52:75:0c:b3:ef:05:bd:44:af:73:fa:23:46:6b:c0: 93:47:29:78:14:f0:18:fd:c1:75:bb:c1:05:24:92:0c:09:0e: 54:05:2d:e9:4d:05:82:c8:5e:59:dc:b4:6a:9e:07:84:2d:8f: 3e:98:8e:02:e5:8e:bc:91:51:9f:fc:0f:e9:e6:1a:f5:f9:46: f4:84:bd:42:ef:c4:ac:bd:97:01:25:00:55:94:cf:f3:6e:86: a8:c9:37:38:e8:f1:0a:54:f0:15:06:8d:17:5d:c0:a3:74:7a: 57:06:d1:f6:38:2f:d0:41:1a:58:d6:84:f2:36:2b:b8:e7:0c: 82:6d:93:59:85:6d:ef:f2:7b:3b:17:e1:f3:75:55:ff:75:0c: 07:ca:38:e8:91:00:6a:3d:5b:25:ed:e6:cb:12:22:40:1c:c9: b8:90:23:c3:39:22:69:57:4f:d1:48:6b:0b:db:3a:f0:b9:c0: 7e:e6:1e:e3 -----BEGIN CERTIFICATE----- MIIFkDCCBHigAwIBAgIDAIcyMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUwOTA5MjY0NVoXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjYzYzk2ZDUtOWU3OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOWWjCxNDMvWO3850S+Afj44fvm+U7FPg65eIDy8MnFdkgf4/bUMrS5PaWW1 f8wL45uuMGFDe8dOjjUTn2qNJGEFvaDtfPUngAnZWFrEeKIsA4DVlPxHzoml0CgD Neg+Tg9Q3bRJoioCGBvN7kIL9O9ixbKafc6i2/GhpNinEfZbrvRrBIKMb/fevGwT UF3u0CrcvpL20nVelbSgFAC/K2aITFX6wKbuFj2HcOK+N2AJpMniR6FYWRTmIUSI yWzDdJLbLjdw7YL1dang1eusnSqNdHeFXq065HZI7bOdv9dp5PFaCqM3/1QNn0nH JqqH60aZfJkhtVtO9oUClpxXbAcCAwEAAaOCArMwggKvMB0GA1UdDgQWBBT3mfVN sl+dgSIo0V7BYawES4CMtDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzFFMDQwNzY0 NzFFQTExRUNCMzUwMzA3OEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMD0GCCsGAQUFBwEHAQH/ BC4wLDASBAIAATAMAwQCLXKUAwQCZxukMBYEAgACMBADBwAgAQ3yEUADBQAkAShg MA0GCSqGSIb3DQEBCwUAA4IBAQCyG6xfsxrLda3YEFHwupX5HpR8WChCBlPtt2KE hMjuM6ULGcRo50/YLB5d7hQMpxFNJm4EK4QAVCHdHuJuda+B5iGfQ/muMJVpA8lS dQyz7wW9RK9z+iNGa8CTRyl4FPAY/cF1u8EFJJIMCQ5UBS3pTQWCyF5Z3LRqngeE LY8+mI4C5Y68kVGf/A/p5hr1+Ub0hL1C78SsvZcBJQBVlM/zboaoyTc46PEKVPAV Bo0XXcCjdHpXBtH2OC/QQRpY1oTyNiu45wyCbZNZhW3v8ns7F+HzdVX/dQwHyjjo kQBqPVsl7ebLEiJAHMm4kCPDOSJpV0/RSGsL2zrwucB+5h7j -----END CERTIFICATE-----Generated at Sat May 18 17:20:10 2024 by rpki-client on console-ams.rpki-client.org