$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B6FF2D00AD2511EDB34D7E28C4F9AE02.roa File: B6FF2D00AD2511EDB34D7E28C4F9AE02.roa (raw, json) Hash identifier: +cNvCn8mojubrsT6E/xSEUDysmT6vg6dIdscF/IbQD8= Subject key identifier: D4:DD:A1:78:9E:98:F3:BA:6D:5D:97:15:14:C1:67:D1:21:12:58:DD Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 870D Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B6FF2D00AD2511EDB34D7E28C4F9AE02.roa Signing time: Mon 06 May 2024 07:04:25 +0000 ROA not before: Mon 06 May 2024 07:04:25 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 150606 IP address blocks: 103.61.242.0/24 maxlen: 24 103.61.243.0/24 maxlen: 24 2001:df3:b6c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34573 (0x870d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 6 07:04:25 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=663880f9-2624 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e8:36:85:b8:df:14:49:2d:5a:06:1e:1d:65: d4:77:9c:3e:c9:9c:c5:70:d4:18:f8:b4:4c:1e:95: b8:6d:fd:91:d2:88:50:d3:39:9f:46:d1:93:97:5c: 04:94:2a:c5:f7:b1:1c:cc:9a:23:6a:2a:6a:58:ab: e9:34:95:74:b7:5d:6e:20:93:1f:37:be:b5:d8:a8: 69:21:41:b9:e2:cb:59:ba:ac:86:eb:d2:59:2f:45: 24:ef:a8:77:31:b1:d0:c4:b5:54:70:de:0c:f3:07: 2d:6e:fe:09:21:63:6f:73:29:0d:a9:62:b7:dc:5c: 33:de:14:71:69:44:b5:74:c8:fa:96:d9:d3:f6:c7: be:84:6a:2b:fd:4e:be:b5:c0:51:aa:07:32:5d:da: 54:d7:d2:c8:a6:a9:27:76:94:06:d9:d2:69:a2:1d: 67:cd:68:f0:99:5e:01:86:0b:46:f6:a4:64:51:72: e8:a9:55:eb:2f:3e:e9:6a:31:7c:30:cf:79:4d:21: 39:7c:f0:1b:50:fc:2a:e2:98:0c:c5:bd:47:de:cd: e6:33:93:07:0d:3f:9c:40:8f:2a:de:ec:ee:1e:52: d8:fd:4f:74:ce:19:21:3e:e8:3c:a9:06:a1:12:b8: 9e:6d:a3:81:2c:6d:d9:63:1e:1c:bb:25:fe:ca:9a: 1e:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:DD:A1:78:9E:98:F3:BA:6D:5D:97:15:14:C1:67:D1:21:12:58:DD X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B6FF2D00AD2511EDB34D7E28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.61.242.0/23 IPv6: 2001:df3:b6c0::/48 Signature Algorithm: sha256WithRSAEncryption 9e:c2:15:bf:c8:f8:3b:5f:84:8d:52:e2:16:33:e9:34:c9:2d: 50:e2:3e:4f:ab:73:0a:8d:06:47:a8:51:b1:72:6f:f1:53:eb: 46:dc:0d:2f:cd:88:b2:8c:2b:1d:c8:b0:c4:db:e7:78:94:00: 10:b1:2a:cf:79:91:e8:62:b3:6c:3c:6c:9c:1e:b9:c3:7b:bf: 70:af:4c:71:50:bd:eb:8d:89:75:50:38:de:46:76:ec:08:0b: 0f:fe:91:98:88:07:4e:3e:5f:85:38:85:de:c8:85:63:1f:25: 19:38:d1:ad:64:17:f5:76:95:12:23:6d:77:54:e2:60:55:99: 81:a9:7e:46:8d:ba:72:bc:81:db:d4:fe:6c:34:be:4a:23:1c: 8b:6c:fa:73:3f:a2:71:9c:ee:15:4c:cb:8a:c5:be:8e:58:c3: e8:d6:94:98:1f:e2:2f:e2:95:db:6c:c1:0c:a6:29:69:25:92: a3:39:87:46:14:ee:89:c8:53:d3:0a:24:5d:5e:5e:10:46:27: 12:12:a6:c0:1d:e8:d3:84:d2:04:fd:18:d8:44:14:c9:91:cc: 3f:d0:fa:1c:d3:56:d5:e9:90:5a:60:8d:e4:fe:e0:3b:4d:54: a1:9d:d5:be:4a:fb:48:e8:a8:a2:81:6d:88:44:75:75:e5:d0: d8:c5:1c:ac -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDAIcNMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUwNjA3MDQyNVoXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjYzODgwZjktMjYyNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALvoNoW43xRJLVoGHh1l1HecPsmcxXDUGPi0TB6VuG39kdKIUNM5n0bRk5dc BJQqxfexHMyaI2oqalir6TSVdLddbiCTHze+tdioaSFBueLLWbqshuvSWS9FJO+o dzGx0MS1VHDeDPMHLW7+CSFjb3MpDalit9xcM94UcWlEtXTI+pbZ0/bHvoRqK/1O vrXAUaoHMl3aVNfSyKapJ3aUBtnSaaIdZ81o8JleAYYLRvakZFFy6KlV6y8+6Wox fDDPeU0hOXzwG1D8KuKYDMW9R97N5jOTBw0/nECPKt7s7h5S2P1PdM4ZIT7oPKkG oRK4nm2jgSxt2WMeHLsl/sqaHt0CAwEAAaOCAqYwggKiMB0GA1UdDgQWBBTU3aF4 npjzum1dlxUUwWfRIRJY3TAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0I2RkYyRDAw QUQyNTExRURCMzREN0UyOEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQBZz3yMA8EAgACMAkDBwAgAQ3ztsAwDQYJKoZIhvcNAQEL BQADggEBAJ7CFb/I+DtfhI1S4hYz6TTJLVDiPk+rcwqNBkeoUbFyb/FT60bcDS/N iLKMKx3IsMTb53iUABCxKs95kehis2w8bJweucN7v3CvTHFQveuNiXVQON5GduwI Cw/+kZiIB04+X4U4hd7IhWMfJRk40a1kF/V2lRIjbXdU4mBVmYGpfkaNunK8gdvU /mw0vkojHIts+nM/onGc7hVMy4rFvo5Yw+jWlJgf4i/ildtswQymKWklkqM5h0YU 7onIU9MKJF1eXhBGJxISpsAd6NOE0gT9GNhEFMmRzD/Q+hzTVtXpkFpgjeT+4DtN VKGd1b5K+0joqKKBbYhEdXXl0NjFHKw= -----END CERTIFICATE-----Generated at Thu May 16 17:51:41 2024 by rpki-client on console-ams.rpki-client.org