$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/885164428E7411EEAF588258C4F9AE02.roa File: 885164428E7411EEAF588258C4F9AE02.roa (raw, json) Hash identifier: Qd2PM4LKa5fJy7qTe0rsdc0woLm+IVkAFOhJqQCAwb0= Subject key identifier: 64:F4:A5:20:B3:16:F9:00:3B:73:36:C4:92:FA:5E:54:F4:6C:22:CF Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8759 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/885164428E7411EEAF588258C4F9AE02.roa Signing time: Wed 15 May 2024 07:04:05 +0000 ROA not before: Wed 15 May 2024 07:04:05 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134264 IP address blocks: 103.57.184.0/22 maxlen: 24 162.12.244.0/22 maxlen: 22 162.12.244.0/24 maxlen: 24 162.12.245.0/24 maxlen: 24 162.12.246.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:38:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34649 (0x8759) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 15 07:04:05 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=66445e65-5a70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:15:4c:bd:68:57:db:b5:16:7f:95:14:6c:52: 72:2f:2f:cd:bf:7c:94:14:7c:d6:ab:3c:b4:d9:57: 42:a0:b6:55:0f:dd:59:4c:b6:51:6d:72:1d:a2:34: 7e:27:5f:c1:10:88:54:b9:7d:27:8c:1b:15:9d:84: 62:d8:c3:e6:58:ad:56:67:50:ef:24:62:4c:a2:90: 6d:f9:d6:8d:ef:bb:35:b6:a0:26:38:55:b3:b4:f2: db:90:42:da:d9:bc:56:11:d3:9a:e1:4d:4c:15:ad: e9:1b:84:69:9f:38:8f:2c:fd:3d:6b:c3:de:7b:1b: 97:59:ba:87:e5:ed:9c:10:82:82:da:d1:ad:0a:68: ee:80:e1:86:b1:64:ad:06:c4:27:7d:e2:6d:7a:78: f8:d7:5b:27:f8:1c:75:a0:9f:9b:2b:8b:21:7c:02: 77:5c:67:bd:f4:15:ba:1e:4d:f9:26:7b:9d:33:68: f6:20:ac:a7:a9:fd:02:a9:c9:75:45:db:44:73:f6: 2b:62:09:40:c3:d8:18:56:79:f2:15:1a:be:82:ef: d7:c3:0e:32:ec:11:d1:5e:b1:af:ba:24:4a:d6:20: 3a:3b:d1:b1:04:7a:f2:a1:89:7d:70:c4:cd:5e:46: 14:a5:d2:94:d6:18:76:b8:24:ff:3c:09:f7:e0:8f: 0f:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:F4:A5:20:B3:16:F9:00:3B:73:36:C4:92:FA:5E:54:F4:6C:22:CF X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/885164428E7411EEAF588258C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.57.184.0/22 162.12.244.0/22 Signature Algorithm: sha256WithRSAEncryption 6b:bd:1c:12:4d:28:19:dd:59:b6:25:65:10:75:f8:45:06:c0: 42:0c:5f:3e:08:4c:74:3e:80:e2:b9:36:67:3f:95:3e:01:d7: 5c:5f:d0:05:75:17:7b:c3:e5:cb:62:89:87:23:75:48:74:71: 0f:ae:ad:1f:0f:ce:b8:94:6f:03:0f:e1:dc:e5:f4:3e:2f:fa: 6f:6b:9c:44:71:02:dd:7f:61:7d:79:50:34:80:03:63:99:83: 83:ae:8f:80:17:9d:58:38:b0:5b:4e:71:18:4d:14:a2:91:0f: 6c:d0:69:6a:de:0f:b3:9e:83:97:7f:0a:bd:e9:58:87:51:ca: 81:e6:80:62:68:4d:53:3e:83:91:fb:c9:2c:e3:1e:f0:93:c3: 30:49:fb:67:a2:c7:03:0f:c4:45:35:80:84:df:da:e1:7f:46: bd:5f:89:d9:03:37:1d:5c:49:02:e4:48:6d:0f:ac:64:a0:89: ab:4b:e1:32:83:47:19:e8:90:f3:57:c6:0b:7a:51:e8:e9:bf: 00:88:37:95:28:fb:0e:85:54:f2:e8:6f:fa:88:27:12:a9:ec: ed:ae:f6:73:42:d3:aa:a8:cc:36:d3:7a:53:d6:8a:85:e2:2a: 84:a9:ae:e2:5d:7a:6f:50:37:ab:c6:74:76:05:22:b1:41:e2: a1:4a:e8:4e -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIDAIdZMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUxNTA3MDQwNVoXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY0NDVlNjUtNWE3MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJwVTL1oV9u1Fn+VFGxSci8vzb98lBR81qs8tNlXQqC2VQ/dWUy2UW1yHaI0 fidfwRCIVLl9J4wbFZ2EYtjD5litVmdQ7yRiTKKQbfnWje+7NbagJjhVs7Ty25BC 2tm8VhHTmuFNTBWt6RuEaZ84jyz9PWvD3nsbl1m6h+XtnBCCgtrRrQpo7oDhhrFk rQbEJ33ibXp4+NdbJ/gcdaCfmyuLIXwCd1xnvfQVuh5N+SZ7nTNo9iCsp6n9AqnJ dUXbRHP2K2IJQMPYGFZ58hUavoLv18MOMuwR0V6xr7okStYgOjvRsQR68qGJfXDE zV5GFKXSlNYYdrgk/zwJ9+CPD98CAwEAAaOCApswggKXMB0GA1UdDgQWBBRk9KUg sxb5ADtzNsSS+l5U9GwizzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzg4NTE2NDQy OEU3NDExRUVBRjU4ODI1OEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCUGCCsGAQUFBwEHAQH/ BBYwFDASBAIAATAMAwQCZzm4AwQCogz0MA0GCSqGSIb3DQEBCwUAA4IBAQBrvRwS TSgZ3Vm2JWUQdfhFBsBCDF8+CEx0PoDiuTZnP5U+AddcX9AFdRd7w+XLYomHI3VI dHEPrq0fD864lG8DD+Hc5fQ+L/pva5xEcQLdf2F9eVA0gANjmYODro+AF51YOLBb TnEYTRSikQ9s0Glq3g+znoOXfwq96ViHUcqB5oBiaE1TPoOR+8ks4x7wk8MwSftn oscDD8RFNYCE39rhf0a9X4nZAzcdXEkC5EhtD6xkoImrS+Eyg0cZ6JDzV8YLelHo 6b8AiDeVKPsOhVTy6G/6iCcSqeztrvZzQtOqqMw203pT1oqF4iqEqa7iXXpvUDer xnR2BSKxQeKhSuhO -----END CERTIFICATE-----Generated at Thu May 16 16:14:46 2024 by rpki-client on console-fra.rpki-client.org