$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5D9C0652DD7911EBA6E0FF2BC4F9AE02.roa File: 5D9C0652DD7911EBA6E0FF2BC4F9AE02.roa (raw, json) Hash identifier: apEqlI5fvqQi7xGAAWeDS3H/nUhVJX7Du+W07PzEXis= Subject key identifier: 7B:53:96:F9:78:A7:2B:09:BC:71:FE:95:DD:38:C7:51:83:4E:BB:78 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8753 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5D9C0652DD7911EBA6E0FF2BC4F9AE02.roa Signing time: Tue 14 May 2024 11:11:39 +0000 ROA not before: Tue 14 May 2024 11:11:39 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134946 IP address blocks: 103.82.188.0/23 maxlen: 24 103.82.190.0/24 maxlen: 24 2001:df2:ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 08:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34643 (0x8753) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 14 11:11:39 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=664346eb-1f7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5b:ee:90:c5:5d:21:dc:54:32:56:b0:05:87: dd:f2:d6:4b:7e:76:c7:38:3d:94:a8:ca:09:21:5f: 3c:8e:67:b6:60:7d:51:63:de:95:79:47:a4:71:31: 0e:cb:71:38:a0:9f:b7:ca:ee:6f:4e:2f:7e:77:4e: 9a:ad:6c:37:19:86:2e:60:ae:06:68:80:39:f8:b1: fe:6a:af:58:b2:6b:40:0b:bc:b6:79:ad:05:c8:cd: 4c:24:60:89:ab:1a:70:0c:60:44:d2:4b:62:9e:f2: f8:43:74:47:6a:53:4d:b1:af:8d:55:16:1d:1f:f1: b4:f0:47:8e:4a:cc:29:53:a1:a0:16:3b:32:61:af: c1:06:b1:de:cc:84:a6:41:74:4b:f1:61:9b:d6:74: 49:c2:c3:26:32:27:44:54:34:1f:80:12:fc:51:90: 21:96:c1:08:88:4a:c2:3f:2c:8b:d5:c1:05:ce:65: 86:8c:c7:29:32:7b:61:0d:e7:f2:ee:24:78:b5:f2: fa:8e:b7:d5:d5:49:80:1f:8f:a3:80:dd:b7:ed:06: 6f:a6:ff:0f:1b:a9:dc:b1:ff:b8:03:30:b7:42:d4: 03:41:16:9e:f0:46:8f:f6:f0:40:ad:b5:85:1d:2d: d0:d0:75:5d:29:f6:2e:37:56:3a:5b:71:71:66:c1: ce:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:53:96:F9:78:A7:2B:09:BC:71:FE:95:DD:38:C7:51:83:4E:BB:78 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5D9C0652DD7911EBA6E0FF2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.82.188.0-103.82.190.255 IPv6: 2001:df2:ec0::/48 Signature Algorithm: sha256WithRSAEncryption 06:c5:66:a8:d0:ea:d7:00:f3:13:d0:b5:18:c4:cc:6a:d1:2f: 8b:10:eb:ab:6b:d3:56:3d:9e:71:d7:44:c8:99:8f:7e:f5:0a: 56:66:d3:10:e9:e1:d4:82:e1:a0:4a:be:94:ae:28:b5:57:40: a8:94:3c:dd:f6:84:b2:a8:a2:62:c8:24:6b:b1:6e:40:0c:79: 68:85:40:59:c4:b0:9c:1d:dc:b1:87:63:e1:9e:e9:6b:68:42: 10:f6:15:24:19:e4:52:1f:21:16:81:a9:a5:c3:fc:ac:ea:9f: de:63:62:18:3f:e7:1d:81:aa:d3:18:a5:bf:59:d1:44:45:ab: ca:9c:0a:b8:dc:22:7e:a9:36:40:29:58:42:25:7d:a3:20:8e: eb:fa:55:1f:86:5d:3b:69:40:2e:66:12:36:35:8b:b1:f6:02: 4a:89:5b:0f:b2:45:8b:6b:14:64:56:50:23:2c:64:09:98:7e: e3:59:a0:3d:03:85:8c:bc:87:f2:65:25:15:30:20:eb:1a:9c: f7:6a:a1:74:99:74:a4:41:42:0e:bf:01:ff:e9:61:b8:87:ae: 0c:b6:5a:89:e8:82:9f:4c:a8:f9:8e:06:59:1f:20:52:cc:10: 13:67:e8:d0:80:ce:61:2e:c8:e6:4e:2b:2d:ae:8a:be:9b:a8: 21:32:7b:dd -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgIDAIdTMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUxNDExMTEzOVoXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY0MzQ2ZWItMWY3ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALZb7pDFXSHcVDJWsAWH3fLWS352xzg9lKjKCSFfPI5ntmB9UWPelXlHpHEx DstxOKCft8rub04vfndOmq1sNxmGLmCuBmiAOfix/mqvWLJrQAu8tnmtBcjNTCRg iasacAxgRNJLYp7y+EN0R2pTTbGvjVUWHR/xtPBHjkrMKVOhoBY7MmGvwQax3syE pkF0S/Fhm9Z0ScLDJjInRFQ0H4AS/FGQIZbBCIhKwj8si9XBBc5lhozHKTJ7YQ3n 8u4keLXy+o631dVJgB+Po4Ddt+0Gb6b/Dxup3LH/uAMwt0LUA0EWnvBGj/bwQK21 hR0t0NB1XSn2LjdWOltxcWbBznkCAwEAAaOCAq4wggKqMB0GA1UdDgQWBBR7U5b5 eKcrCbxx/pXdOMdRg067eDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzVEOUMwNjUy REQ3OTExRUJBNkUwRkYyQkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDgGCCsGAQUFBwEHAQH/ BCkwJzAUBAIAATAOMAwDBAJnUrwDBABnUr4wDwQCAAIwCQMHACABDfIOwDANBgkq hkiG9w0BAQsFAAOCAQEABsVmqNDq1wDzE9C1GMTMatEvixDrq2vTVj2ecddEyJmP fvUKVmbTEOnh1ILhoEq+lK4otVdAqJQ83faEsqiiYsgka7FuQAx5aIVAWcSwnB3c sYdj4Z7pa2hCEPYVJBnkUh8hFoGppcP8rOqf3mNiGD/nHYGq0xilv1nRREWrypwK uNwifqk2QClYQiV9oyCO6/pVH4ZdO2lALmYSNjWLsfYCSolbD7JFi2sUZFZQIyxk CZh+41mgPQOFjLyH8mUlFTAg6xqc92qhdJl0pEFCDr8B/+lhuIeuDLZaieiCn0yo +Y4GWR8gUswQE2fo0IDOYS7I5k4rLa6KvpuoITJ73Q== -----END CERTIFICATE-----Generated at Fri May 17 12:06:59 2024 by rpki-client on console-fra.rpki-client.org