$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/548D8548008711EFA8894881C4F9AE02.roa File: 548D8548008711EFA8894881C4F9AE02.roa (raw, json) Hash identifier: BWpl5nqdPMMqP6H+WcMNwP3mSrj+fYuPoDYlH6cDDn8= Subject key identifier: 05:89:2D:4D:DB:F3:37:AF:80:E5:5C:70:69:5B:E2:F2:E1:42:52:92 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8684 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/548D8548008711EFA8894881C4F9AE02.roa Signing time: Mon 22 Apr 2024 09:09:31 +0000 ROA not before: Mon 22 Apr 2024 09:09:31 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 150600 IP address blocks: 103.108.44.0/24 maxlen: 24 2001:df2:16c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 12:33:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34436 (0x8684) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Apr 22 09:09:31 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=6626294a-aa99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:23:67:37:ec:00:f4:84:fe:14:42:7b:69:93: 94:43:f7:4a:a8:e1:5d:b5:f5:ae:01:bb:51:f9:45: 7f:e1:c1:ef:5b:ac:65:76:90:d8:1f:43:27:1a:46: 07:8d:1c:1f:55:b1:33:a1:40:12:05:cd:44:ad:29: b9:a6:e1:2d:b6:df:1f:36:17:9e:72:a2:db:9f:e6: f2:cf:12:00:49:9f:1d:ac:4d:ec:b7:72:6a:4f:8f: 9e:22:a1:9c:62:86:50:47:7e:32:41:c0:13:67:70: 52:6a:50:55:d8:96:b6:58:2f:c0:1b:7f:14:a7:9b: 28:eb:f6:ad:a2:f7:c4:62:1b:23:57:60:bb:34:74: 1a:a3:87:91:fb:27:64:6b:51:bf:07:7f:c9:cf:ab: 51:ca:11:63:0e:ee:87:0a:f1:ae:61:22:3d:1e:03: 6d:5f:1d:3f:42:da:bb:f3:8e:f1:b0:8b:cc:48:1a: be:ff:e6:ee:67:5f:8b:41:2b:19:70:5e:66:1b:8b: 00:4b:ad:84:44:c4:52:85:45:43:8c:59:b2:a5:29: 87:17:9e:86:83:59:ad:5e:ac:c7:f2:16:2a:41:26: fa:a5:05:0c:28:cf:66:c6:98:fa:6f:5d:e2:04:d4: 75:40:81:62:bb:5e:24:83:e4:8f:cc:d4:ab:7e:cc: 43:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:89:2D:4D:DB:F3:37:AF:80:E5:5C:70:69:5B:E2:F2:E1:42:52:92 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/548D8548008711EFA8894881C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.108.44.0/24 IPv6: 2001:df2:16c0::/48 Signature Algorithm: sha256WithRSAEncryption 71:6a:83:6a:9b:c3:e2:db:09:8a:42:9f:da:06:e0:41:55:76: 9e:46:be:ff:7c:ae:94:2f:b6:4c:d0:c1:cb:a2:a5:3c:47:32: b3:bd:8c:0a:69:63:b3:6b:05:78:73:2d:9a:d2:89:75:ba:5d: 0a:68:53:06:91:67:2b:64:8d:aa:94:15:8c:ad:fe:bf:c9:70: d0:43:51:49:af:86:0f:33:62:d6:7f:75:bd:b2:62:8c:e3:76: fe:42:7f:29:31:0b:08:82:45:cf:8f:f1:68:d4:a1:d0:76:d5: 14:05:07:cc:8f:20:f8:2f:c0:82:d6:86:b9:31:b3:ae:c1:0e: 5b:5b:53:f2:ff:13:03:bc:57:b3:6c:80:fc:fb:6c:96:a2:a0: 15:a6:2d:5d:a9:c4:91:47:ad:30:f7:51:62:95:31:56:ae:da: bc:3d:0e:74:6a:2e:01:47:2d:10:2b:d4:ed:56:e9:b2:2e:bb: 88:86:7f:5e:96:6d:b4:c4:68:65:13:d4:0b:57:ec:18:a5:5d: 23:80:c5:a1:e9:81:90:b2:2d:fc:1a:ef:97:e2:f3:62:3d:91: 93:d0:33:99:51:e6:d5:ee:c2:f7:fd:5a:90:2d:b5:51:ef:bd: d0:d0:e3:82:39:c5:98:79:ca:71:aa:c7:6a:59:3a:c9:93:98: b3:34:d5:9b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDAIaEMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDQyMjA5MDkzMVoXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjYyNjI5NGEtYWE5OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALMjZzfsAPSE/hRCe2mTlEP3SqjhXbX1rgG7UflFf+HB71usZXaQ2B9DJxpG B40cH1WxM6FAEgXNRK0puabhLbbfHzYXnnKi25/m8s8SAEmfHaxN7Ldyak+PniKh nGKGUEd+MkHAE2dwUmpQVdiWtlgvwBt/FKebKOv2raL3xGIbI1dguzR0GqOHkfsn ZGtRvwd/yc+rUcoRYw7uhwrxrmEiPR4DbV8dP0Lau/OO8bCLzEgavv/m7mdfi0Er GXBeZhuLAEuthETEUoVFQ4xZsqUphxeehoNZrV6sx/IWKkEm+qUFDCjPZsaY+m9d 4gTUdUCBYrteJIPkj8zUq37MQ7MCAwEAAaOCAqYwggKiMB0GA1UdDgQWBBQFiS1N 2/M3r4DlXHBpW+Ly4UJSkjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzU0OEQ4NTQ4 MDA4NzExRUZBODg5NDg4MUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQAZ2wsMA8EAgACMAkDBwAgAQ3yFsAwDQYJKoZIhvcNAQEL BQADggEBAHFqg2qbw+LbCYpCn9oG4EFVdp5Gvv98rpQvtkzQwcuipTxHMrO9jApp Y7NrBXhzLZrSiXW6XQpoUwaRZytkjaqUFYyt/r/JcNBDUUmvhg8zYtZ/db2yYozj dv5CfykxCwiCRc+P8WjUodB21RQFB8yPIPgvwILWhrkxs67BDltbU/L/EwO8V7Ns gPz7bJaioBWmLV2pxJFHrTD3UWKVMVau2rw9DnRqLgFHLRAr1O1W6bIuu4iGf16W bbTEaGUT1AtX7BilXSOAxaHpgZCyLfwa75fi82I9kZPQM5lR5tXuwvf9WpAttVHv vdDQ44I5xZh5ynGqx2pZOsmTmLM01Zs= -----END CERTIFICATE-----Generated at Fri May 17 14:08:05 2024 by rpki-client on console-fra.rpki-client.org