$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D369A28CBDD011EA9702FC12C4F9AE02.roa File: D369A28CBDD011EA9702FC12C4F9AE02.roa (raw, json) Hash identifier: snbYAeU6JvSdYrJNHnrlZ9yfnvuBvIWRMhoAl3wkPVk= Subject key identifier: 6E:CE:93:99:1B:A5:E7:93:48:A3:0F:39:97:2A:02:D5:67:FE:20:90 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6BF8 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D369A28CBDD011EA9702FC12C4F9AE02.roa Signing time: Wed 10 May 2023 16:22:16 +0000 ROA not before: Wed 10 May 2023 16:22:16 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 135761 IP address blocks: 103.70.164.0/22 maxlen: 24 103.143.166.0/23 maxlen: 24 103.152.159.0/24 maxlen: 24 103.168.2.0/23 maxlen: 24 2407:1f40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27640 (0x6bf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:22:16 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc4b8-2f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:73:bf:1c:35:1f:8a:36:20:79:29:90:80:c9: a4:5c:82:2a:88:dd:85:3b:b0:2e:6e:a5:d5:5a:c6: a0:5f:ba:ef:87:2e:24:9e:bf:83:25:84:d8:8b:ef: 95:3b:1b:82:51:3c:6b:6d:f6:78:f6:33:4d:85:dc: 3c:32:6b:76:4d:eb:d7:83:23:d3:4c:5e:2a:12:e0: c5:99:0e:bf:e4:82:db:30:22:d2:ec:df:2c:cd:ba: d4:ce:65:33:94:13:2c:de:70:1c:ab:fb:41:12:8d: d8:50:a4:41:46:9d:86:c2:a9:8d:5e:0d:ce:cc:50: de:60:ab:4a:ab:53:eb:6c:86:fa:22:3a:cd:02:27: d4:dd:35:65:cf:93:56:d7:8e:60:ca:20:db:30:f6: 37:a2:4b:7e:a5:08:a4:5a:39:ca:71:42:54:d3:58: 54:4d:2a:93:56:d2:54:24:e4:01:a7:f8:26:2e:99: 4a:ec:00:36:74:cd:85:d9:89:59:57:5b:fc:25:2c: 0e:1e:69:24:a1:31:43:22:70:c3:b7:df:85:d3:f8: a4:cf:06:04:90:b2:28:c5:6d:1b:69:81:42:f2:38: 73:9c:66:d5:5e:3d:c5:f2:7a:93:be:aa:76:7f:1a: cb:ee:8f:bc:50:5f:d4:02:f2:92:05:5a:13:97:27: 55:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:CE:93:99:1B:A5:E7:93:48:A3:0F:39:97:2A:02:D5:67:FE:20:90 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D369A28CBDD011EA9702FC12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.164.0/22 103.143.166.0/23 103.152.159.0/24 103.168.2.0/23 IPv6: 2407:1f40::/32 Signature Algorithm: sha256WithRSAEncryption 70:aa:cc:76:0a:52:ec:93:65:55:78:52:77:24:3e:bc:00:17: 64:3c:5f:f7:32:4d:0e:54:0b:12:de:e8:ce:b1:41:86:83:60: 92:06:23:04:6c:0e:11:7c:0b:09:16:e3:d4:7e:8a:bf:0a:21: ac:12:9d:22:21:1f:f9:37:62:37:78:f3:3c:a3:f6:9c:55:a4: 28:46:ec:de:9c:d8:4d:92:50:81:e5:94:ae:6d:5b:6f:e3:ed: ac:5e:a1:4a:00:ab:d2:6f:f8:48:84:70:e7:59:c7:39:dd:79: ec:3a:43:e6:e6:af:1d:e6:e0:ee:80:3f:23:d1:19:ae:0e:5c: 11:2a:9e:46:e4:ed:61:66:44:fd:6a:3b:9e:59:ec:cf:5e:33: 74:d7:ce:c6:00:44:1b:0f:76:54:bf:2f:69:ea:f6:63:9f:f4: de:45:d4:02:77:14:e1:b8:47:48:5c:cc:30:4a:af:a6:17:55: 79:ab:b2:bd:c6:f5:9e:c2:ec:92:9c:fa:e7:9f:44:01:84:f2: 40:9f:fb:59:9d:81:7b:2e:57:c4:4e:38:87:15:b4:88:6e:01: d6:08:fa:f1:7b:35:8e:47:ce:27:fd:3d:1a:57:aa:e3:48:b0: 01:da:57:e3:0c:0f:44:39:f8:66:a4:55:13:fd:20:67:f8:50: 16:bd:ef:9d -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICa/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyMjE2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzRiOC0yZjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7nO/HDUfijYgeSmQgMmkXIIqiN2FO7AubqXVWsagX7rvhy4knr+DJYTYi++V OxuCUTxrbfZ49jNNhdw8Mmt2TevXgyPTTF4qEuDFmQ6/5ILbMCLS7N8szbrUzmUz lBMs3nAcq/tBEo3YUKRBRp2GwqmNXg3OzFDeYKtKq1PrbIb6IjrNAifU3TVlz5NW 145gyiDbMPY3okt+pQikWjnKcUJU01hUTSqTVtJUJOQBp/gmLplK7AA2dM2F2YlZ V1v8JSwOHmkkoTFDInDDt9+F0/ikzwYEkLIoxW0baYFC8jhznGbVXj3F8nqTvqp2 fxrL7o+8UF/UAvKSBVoTlydVawIDAQABo4ICtjCCArIwHQYDVR0OBBYEFG7Ok5kb peeTSKMPOZcqAtVn/iCQMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRDM2OUEyOENC REQwMTFFQTk3MDJGQzEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAJnRqQDBAFnj6YDBABnmJ8DBAFnqAIwDQQCAAIwBwMFACQH H0AwDQYJKoZIhvcNAQELBQADggEBAHCqzHYKUuyTZVV4UnckPrwAF2Q8X/cyTQ5U CxLe6M6xQYaDYJIGIwRsDhF8CwkW49R+ir8KIawSnSIhH/k3Yjd48zyj9pxVpChG 7N6c2E2SUIHllK5tW2/j7axeoUoAq9Jv+EiEcOdZxzndeew6Q+bmrx3m4O6APyPR Ga4OXBEqnkbk7WFmRP1qO55Z7M9eM3TXzsYARBsPdlS/L2nq9mOf9N5F1AJ3FOG4 R0hczDBKr6YXVXmrsr3G9Z7C7JKc+uefRAGE8kCf+1mdgXsuV8ROOIcVtIhuAdYI +vF7NY5Hzif9PRpXquNIsAHaV+MMD0Q5+GakVRP9IGf4UBa9750= -----END CERTIFICATE-----Generated at Thu May 16 17:51:43 2024 by rpki-client on console-ams.rpki-client.org