$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6ABAEC9AA64411EEBBF38616C4F9AE02.roa File: 6ABAEC9AA64411EEBBF38616C4F9AE02.roa (raw, json) Hash identifier: b7N3B5pjKHWfOS7z8tp8MSQSvcyIO8yD2F1y4qFv6P0= Subject key identifier: A2:97:5A:A7:81:92:02:A3:37:12:29:AE:E1:42:5C:AC:52:4F:9F:C8 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 872A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6ABAEC9AA64411EEBBF38616C4F9AE02.roa Signing time: Thu 09 May 2024 07:30:00 +0000 ROA not before: Thu 09 May 2024 07:30:00 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141549 IP address blocks: 103.66.76.0/22 maxlen: 24 103.74.136.0/22 maxlen: 24 103.119.178.0/23 maxlen: 24 103.163.112.0/23 maxlen: 24 2407:2640::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34602 (0x872a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 9 07:30:00 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=663c7b78-ee1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2e:91:26:b0:76:40:e4:5b:a6:46:b6:f9:03: c4:2a:ec:8f:9e:24:50:17:ec:5f:ba:b2:23:2e:a3: 08:ad:e5:b1:a9:90:a7:c1:80:eb:0a:a3:c3:05:6b: 23:0b:e8:af:cc:6d:e8:1a:5e:cc:26:a3:c4:d8:59: 46:6c:89:28:aa:2c:9d:9d:be:a6:bc:91:e8:f7:56: c8:16:88:fb:03:a1:c1:b6:2c:65:26:64:52:f5:3b: 72:50:1d:6f:5c:d7:c0:eb:a4:aa:cc:44:6b:cb:dc: be:23:07:e1:61:4f:57:cb:5b:36:6b:40:16:48:64: e0:25:bf:12:83:b7:0b:e7:f5:82:33:30:ec:30:a0: a1:a9:20:2f:41:ab:28:5e:bb:9d:d3:65:57:73:b8: fa:2a:88:56:13:72:84:50:d9:3d:13:4c:d9:7c:9a: 1d:6c:36:eb:57:e1:28:25:59:d1:ce:88:9c:d8:d8: d5:12:1b:3a:b5:6f:0b:93:b4:32:a2:54:61:c1:90: d3:e8:0f:f9:b9:59:aa:32:99:4b:1b:38:20:df:9a: d0:54:2b:54:96:7d:ef:32:95:9f:f8:76:c4:d4:ba: 61:43:70:a4:18:14:48:41:6e:ec:ff:16:62:e8:e8: 14:7d:2f:ce:23:d8:de:1c:5b:28:d4:18:ce:9b:cd: 91:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:97:5A:A7:81:92:02:A3:37:12:29:AE:E1:42:5C:AC:52:4F:9F:C8 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6ABAEC9AA64411EEBBF38616C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.66.76.0/22 103.74.136.0/22 103.119.178.0/23 103.163.112.0/23 IPv6: 2407:2640::/32 Signature Algorithm: sha256WithRSAEncryption 7b:dd:2d:98:c0:9e:ff:56:c8:7f:4f:69:3c:35:9d:b7:df:43: e5:57:7e:31:46:54:d1:1a:dc:12:1e:91:9d:fd:4a:9f:1a:d7: 27:c5:f1:69:5f:5b:bd:69:42:9b:8f:ea:71:62:d8:f1:7f:ff: f1:98:8d:ca:c9:47:bb:84:28:4b:40:ec:8a:99:b6:0d:3e:49: 08:75:e0:9f:d2:bd:ad:29:6d:e8:f1:15:ea:d6:91:fd:be:00: b0:57:9c:29:a8:f6:f7:ac:cc:bc:20:49:cf:e6:16:53:6d:5d: 58:bd:33:ea:bf:8d:21:10:49:34:d3:8a:d2:1f:c5:1e:54:57: 1f:c4:13:ed:e0:e9:32:0a:ad:69:b6:6e:11:62:ff:36:ea:39: 2b:5f:1c:bf:a4:f6:16:ae:22:74:da:38:35:c3:ef:5f:e5:bb: 14:db:c8:2e:32:7a:7c:f2:b1:09:5a:16:79:04:9a:41:65:11: de:10:7a:56:16:2d:0e:2f:5c:97:a0:b1:5a:63:40:12:9f:d1: 78:e8:41:fb:c1:2a:6f:e0:f4:2a:f0:1d:1c:c7:a8:5a:a3:5e: 41:db:9d:a9:8e:e8:7d:36:6e:6f:5e:ca:ad:b7:d1:d0:3c:b6: c9:a4:24:f4:0d:fd:bc:62:a9:aa:fe:ba:44:0b:12:0f:c0:b4: ae:7e:80:58 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgIDAIcqMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUwOTA3MzAwMFoXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjYzYzdiNzgtZWUxYzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKoukSawdkDkW6ZGtvkDxCrsj54kUBfsX7qyIy6jCK3lsamQp8GA6wqjwwVr Iwvor8xt6BpezCajxNhZRmyJKKosnZ2+pryR6PdWyBaI+wOhwbYsZSZkUvU7clAd b1zXwOukqsxEa8vcviMH4WFPV8tbNmtAFkhk4CW/EoO3C+f1gjMw7DCgoakgL0Gr KF67ndNlV3O4+iqIVhNyhFDZPRNM2XyaHWw261fhKCVZ0c6InNjY1RIbOrVvC5O0 MqJUYcGQ0+gP+blZqjKZSxs4IN+a0FQrVJZ97zKVn/h2xNS6YUNwpBgUSEFu7P8W YujoFH0vziPY3hxbKNQYzpvNkQsCAwEAAaOCArYwggKyMB0GA1UdDgQWBBSil1qn gZICozcSKa7hQlysUk+fyDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzZBQkFFQzlB QTY0NDExRUVCQkYzODYxNkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMEAGCCsGAQUFBwEHAQH/ BDEwLzAeBAIAATAYAwQCZ0JMAwQCZ0qIAwQBZ3eyAwQBZ6NwMA0EAgACMAcDBQAk ByZAMA0GCSqGSIb3DQEBCwUAA4IBAQB73S2YwJ7/Vsh/T2k8NZ2330PlV34xRlTR GtwSHpGd/UqfGtcnxfFpX1u9aUKbj+pxYtjxf//xmI3KyUe7hChLQOyKmbYNPkkI deCf0r2tKW3o8RXq1pH9vgCwV5wpqPb3rMy8IEnP5hZTbV1YvTPqv40hEEk004rS H8UeVFcfxBPt4OkyCq1ptm4RYv826jkrXxy/pPYWriJ02jg1w+9f5bsU28guMnp8 8rEJWhZ5BJpBZRHeEHpWFi0OL1yXoLFaY0ASn9F46EH7wSpv4PQq8B0cx6hao15B 252pjuh9Nm5vXsqtt9HQPLbJpCT0Df28Yqmq/rpECxIPwLSufoBY -----END CERTIFICATE-----Generated at Sat May 18 16:20:03 2024 by rpki-client on console-fra.rpki-client.org