$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/731A2B22B11011EE9DA67E79C4F9AE02.roa File: 731A2B22B11011EE9DA67E79C4F9AE02.roa (raw, json) Hash identifier: ku3Uvphe66Leyv4EzTZKxKeEWEtAdwWqhpzEhog2BbI= Subject key identifier: A4:15:D3:61:BF:D6:77:09:00:92:2D:EA:7B:5E:83:C2:67:38:CB:E4 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 86E3 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/731A2B22B11011EE9DA67E79C4F9AE02.roa Signing time: Tue 30 Apr 2024 07:25:48 +0000 ROA not before: Tue 30 Apr 2024 07:25:48 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 137681 IP address blocks: 103.85.102.0/24 maxlen: 24 103.117.60.0/23 maxlen: 24 103.140.73.0/24 maxlen: 24 103.157.128.0/24 maxlen: 24 103.157.129.0/24 maxlen: 24 103.160.70.0/23 maxlen: 24 103.168.4.0/24 maxlen: 24 2401:15e0::/32 maxlen: 32 2406:1cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34531 (0x86e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Apr 30 07:25:48 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=66309cfc-ce01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:50:fc:42:11:14:18:7a:af:e7:20:93:18:fb: af:4c:89:8d:61:f7:b9:5f:10:d2:61:6a:de:76:1d: d5:37:a9:a0:cb:0f:c5:e6:4e:b7:2d:d8:a8:b7:30: 78:3f:fd:fa:b5:ab:e4:3a:45:db:44:be:55:30:ba: 52:04:86:3b:2c:e2:42:93:42:7e:23:9f:a5:26:f6: f6:6a:42:18:67:33:d7:e0:21:d7:b0:34:f9:32:7c: c2:66:92:ae:91:b7:7e:ce:ca:8a:ab:e9:c2:10:ca: 36:8a:26:aa:76:b4:97:15:64:e2:4d:c8:30:1f:99: 4c:d0:43:ba:95:e5:a7:e5:b2:5e:35:04:9f:4d:fa: 4f:6a:21:17:cd:12:62:af:c2:a0:52:7f:74:0b:23: 6a:c1:d7:61:e7:08:70:0e:9f:19:64:f8:1a:36:a9: d2:2d:46:1b:80:ce:c9:50:0b:13:d1:c8:ed:ad:e3: 23:53:96:bd:9a:01:94:d0:8e:cf:0a:8b:8f:56:64: a7:e9:49:d7:ce:81:a1:55:c1:e8:fb:2a:60:e2:43: fa:d0:f1:0a:00:d0:89:a0:68:70:73:62:6b:24:46: 96:1b:4e:b1:d7:e4:d7:f1:9f:2c:40:e0:4a:7e:2b: 71:42:6e:84:7c:60:cb:d4:22:94:79:9d:73:28:de: 69:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:15:D3:61:BF:D6:77:09:00:92:2D:EA:7B:5E:83:C2:67:38:CB:E4 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/731A2B22B11011EE9DA67E79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.85.102.0/24 103.117.60.0/23 103.140.73.0/24 103.157.128.0/23 103.160.70.0/23 103.168.4.0/24 IPv6: 2401:15e0::/32 2406:1cc0::/32 Signature Algorithm: sha256WithRSAEncryption 0e:99:68:8f:c0:69:0a:68:47:5f:fc:72:0d:e4:88:07:ae:9a: 09:74:3a:59:ac:1e:ca:36:5c:c6:7d:94:e0:9f:94:79:a9:c4: 27:f7:df:10:a5:07:bb:2e:71:7b:ac:e8:41:0b:86:e7:d4:b6: 56:f5:a0:5c:a8:51:5d:ce:5e:f3:3a:a3:bf:e0:5e:0d:e7:2e: 00:06:1c:67:c5:4e:90:1d:33:6f:55:de:9d:18:51:da:39:e8: d1:dd:31:3a:39:4e:46:e0:c4:fb:53:87:69:38:cb:c3:fa:7a: cc:f2:41:29:ca:ba:83:34:15:89:ba:fc:5c:58:c6:d8:63:9f: c4:c0:cb:f6:56:07:9f:3f:a4:39:73:2d:a9:d6:08:f3:92:73: 62:d6:d3:6e:f5:a1:9d:01:38:1f:e2:fb:9d:ee:37:28:ab:95: 14:d5:68:2b:01:fe:08:19:93:77:87:3f:4f:46:08:19:0d:d8: 88:3a:07:38:3f:72:d2:93:70:98:2d:9a:3a:cc:e1:ee:f0:14: a7:ec:0d:3f:3c:35:97:4d:cd:4d:b4:98:ef:1b:0f:c6:a6:a8: 06:bf:c4:82:59:e3:6b:da:00:db:be:82:4a:07:cb:0b:d6:03: 26:c6:fa:a0:63:0d:ad:6b:ab:fb:26:83:cd:52:cb:0c:a9:a0: 08:dc:b9:dc -----BEGIN CERTIFICATE----- MIIFpjCCBI6gAwIBAgIDAIbjMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDQzMDA3MjU0OFoXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjYzMDljZmMtY2UwMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANNQ/EIRFBh6r+cgkxj7r0yJjWH3uV8Q0mFq3nYd1TepoMsPxeZOty3YqLcw eD/9+rWr5DpF20S+VTC6UgSGOyziQpNCfiOfpSb29mpCGGcz1+Ah17A0+TJ8wmaS rpG3fs7KiqvpwhDKNoomqna0lxVk4k3IMB+ZTNBDupXlp+WyXjUEn036T2ohF80S Yq/CoFJ/dAsjasHXYecIcA6fGWT4Gjap0i1GG4DOyVALE9HI7a3jI1OWvZoBlNCO zwqLj1Zkp+lJ186BoVXB6PsqYOJD+tDxCgDQiaBocHNiayRGlhtOsdfk1/GfLEDg Sn4rcUJuhHxgy9QilHmdcyjeaRECAwEAAaOCAskwggLFMB0GA1UdDgQWBBSkFdNh v9Z3CQCSLep7XoPCZzjL5DAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzczMUEyQjIy QjExMDExRUU5REE2N0U3OUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMFMGCCsGAQUFBwEHAQH/ BEQwQjAqBAIAATAkAwQAZ1VmAwQBZ3U8AwQAZ4xJAwQBZ52AAwQBZ6BGAwQAZ6gE MBQEAgACMA4DBQAkARXgAwUAJAYcwDANBgkqhkiG9w0BAQsFAAOCAQEADploj8Bp CmhHX/xyDeSIB66aCXQ6WaweyjZcxn2U4J+UeanEJ/ffEKUHuy5xe6zoQQuG59S2 VvWgXKhRXc5e8zqjv+BeDecuAAYcZ8VOkB0zb1XenRhR2jno0d0xOjlORuDE+1OH aTjLw/p6zPJBKcq6gzQVibr8XFjG2GOfxMDL9lYHnz+kOXMtqdYI85JzYtbTbvWh nQE4H+L7ne43KKuVFNVoKwH+CBmTd4c/T0YIGQ3YiDoHOD9y0pNwmC2aOszh7vAU p+wNPzw1l03NTbSY7xsPxqaoBr/Eglnja9oA276CSgfLC9YDJsb6oGMNrWur+yaD zVLLDKmgCNy53A== -----END CERTIFICATE-----Generated at Sat May 18 16:20:03 2024 by rpki-client on console-fra.rpki-client.org