$ rpki-client -vvf rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/1D88BC36F8C711E6B6C42C6CC4F9AE02.roa File: 1D88BC36F8C711E6B6C42C6CC4F9AE02.roa (raw, json) Hash identifier: di+Rm4OQP/ZGrPFK8dfRh21RT9iKabOLa+2mOyoNZOs= Subject key identifier: 1D:BD:7E:B9:9D:C1:3C:72:8E:35:63:41:92:DB:63:AD:BF:79:93:FF Certificate issuer: /CN=A918FDBF/serialNumber=8D9A228CC52F800EE5A432307B3432C63D8A9D87 Certificate serial: 1A87 Authority key identifier: 8D:9A:22:8C:C5:2F:80:0E:E5:A4:32:30:7B:34:32:C6:3D:8A:9D:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZoijMUvgA7lpDIwezQyxj2KnYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/1D88BC36F8C711E6B6C42C6CC4F9AE02.roa Signing time: Wed 30 Aug 2023 16:43:28 +0000 ROA not before: Wed 30 Aug 2023 16:43:28 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 131999 IP address blocks: 103.29.168.0/23 maxlen: 23 103.229.187.0/24 maxlen: 24 2401:b300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.crl rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZoijMUvgA7lpDIwezQyxj2KnYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:51:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6791 (0x1a87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FDBF/serialNumber=8D9A228CC52F800EE5A432307B3432C63D8A9D87 Validity Not Before: Aug 30 16:43:28 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ef71af-ccac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f7:23:14:bc:a6:3d:45:98:75:2b:2f:27:10: fd:4e:c2:63:63:45:47:f0:ea:c2:03:d3:76:d7:c4: 4f:8a:7c:2f:54:bb:4e:f7:a4:9f:77:ce:9f:8f:19: 39:32:eb:3c:f9:fa:70:75:f8:e6:c3:ca:86:87:02: 05:a1:b1:28:23:5d:5d:ae:25:3b:e6:63:61:fd:42: a9:72:90:3c:35:a7:bf:33:e9:5b:59:29:03:33:30: ff:bd:cf:f7:56:57:6d:21:52:c2:61:f0:be:81:2c: d2:a5:49:dc:ed:b7:1a:46:b4:2e:72:4c:e5:79:93: b7:f4:5a:32:a3:a7:3f:89:6a:9c:b9:34:5b:27:77: b5:79:6f:0c:4e:fd:20:2a:26:f1:bb:38:2e:46:a9: dc:33:c1:23:25:ca:c6:81:1c:11:15:a1:be:61:12: 48:97:76:5c:29:eb:d7:4f:7d:ed:87:56:2e:17:c5: cb:b1:9e:ad:78:37:99:b5:b9:fe:04:80:4a:d3:10: 73:4f:5e:5a:56:e2:45:61:6c:95:91:30:57:d0:b4: c5:0f:76:a1:59:1e:ba:00:0d:e2:52:01:26:1e:f0: c5:23:f8:0a:a1:cf:9d:c9:ee:c5:7e:fb:e6:a7:08: 34:0e:19:8d:81:04:5a:3e:84:07:af:81:97:42:03: 82:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:BD:7E:B9:9D:C1:3C:72:8E:35:63:41:92:DB:63:AD:BF:79:93:FF X509v3 Authority Key Identifier: keyid:8D:9A:22:8C:C5:2F:80:0E:E5:A4:32:30:7B:34:32:C6:3D:8A:9D:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZoijMUvgA7lpDIwezQyxj2KnYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/1D88BC36F8C711E6B6C42C6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.29.168.0/23 103.229.187.0/24 IPv6: 2401:b300::/32 Signature Algorithm: sha256WithRSAEncryption a9:1f:71:a6:a6:36:11:ab:8b:d9:a3:1e:58:06:5f:24:4e:db: 22:af:8e:d9:64:7b:71:c3:d5:b6:c6:65:0d:72:59:65:6b:ac: b3:6c:0b:a9:74:60:84:e9:d4:47:99:b1:32:e7:fa:bf:5b:0d: 0c:de:05:1e:b6:65:67:3b:b1:c6:cd:0e:8a:f6:85:15:75:45: a0:98:15:be:ec:7e:5a:1e:c4:61:ee:fe:bc:a8:59:07:82:73: df:74:2b:25:fe:3d:5e:da:c7:aa:b0:e7:9d:b0:32:ba:e5:78: ce:2a:83:73:7f:e1:7d:b4:0e:cb:42:b0:ea:ae:58:6c:0e:0b: 95:e7:64:1a:ce:be:6f:16:90:16:47:cd:92:f7:22:eb:50:b0: 18:cc:d5:a9:6f:60:dc:67:46:e4:37:39:e5:f2:76:9c:4f:5b: 50:2a:dd:f4:4a:e0:2b:fd:f6:7a:65:7d:7f:d2:3f:66:3b:eb: b4:9f:39:00:63:20:4e:6f:e9:b1:1f:42:77:71:d2:27:72:25: a8:8e:3b:81:27:26:c9:28:53:ab:e1:b2:be:a1:b0:9b:3e:65: af:74:4d:74:a6:0c:8d:0c:02:64:d9:6c:ea:8e:93:eb:ae:1c: df:4d:42:4e:54:ef:11:36:33:12:6b:3e:9e:5e:18:50:91:34: 04:26:59:9c -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICGocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZEQkYxMTAvBgNVBAUTKDhEOUEyMjhDQzUyRjgwMEVFNUE0MzIzMDdCMzQzMkM2 M0Q4QTlEODcwHhcNMjMwODMwMTY0MzI4WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVmNzFhZi1jY2FjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwvcjFLymPUWYdSsvJxD9TsJjY0VH8OrCA9N218RPinwvVLtO96Sfd86fjxk5 Mus8+fpwdfjmw8qGhwIFobEoI11driU75mNh/UKpcpA8Nae/M+lbWSkDMzD/vc/3 VldtIVLCYfC+gSzSpUnc7bcaRrQuckzleZO39Foyo6c/iWqcuTRbJ3e1eW8MTv0g KibxuzguRqncM8EjJcrGgRwRFaG+YRJIl3ZcKevXT33th1YuF8XLsZ6teDeZtbn+ BIBK0xBzT15aVuJFYWyVkTBX0LTFD3ahWR66AA3iUgEmHvDFI/gKoc+dye7Ffvvm pwg0DhmNgQRaPoQHr4GXQgOCEQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFB29frmd wTxyjjVjQZLbY62/eZP/MB8GA1UdIwQYMBaAFI2aIozFL4AO5aQyMHs0MsY9ip2H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkRCRi85OUEzMEFGOEY4 QzUxMUU2OUVCQzU1NkFDNEY5QUUwMi9qWm9pak1VdmdBN2xwREl3ZXpReXhqMktu WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pab2lqTVV2Z0E3bHBESXdlelF5eGoyS25ZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZEQkYvOTlBMzBBRjhGOEM1MTFFNjlFQkM1NTZBQzRGOUFFMDIvMUQ4OEJDMzZG OEM3MTFFNkI2QzQyQzZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFnHagDBABn5bswDQQCAAIwBwMFACQBswAwDQYJKoZIhvcN AQELBQADggEBAKkfcaamNhGri9mjHlgGXyRO2yKvjtlke3HD1bbGZQ1yWWVrrLNs C6l0YITp1EeZsTLn+r9bDQzeBR62ZWc7scbNDor2hRV1RaCYFb7sfloexGHu/ryo WQeCc990KyX+PV7ax6qw552wMrrleM4qg3N/4X20DstCsOquWGwOC5XnZBrOvm8W kBZHzZL3IutQsBjM1alvYNxnRuQ3OeXydpxPW1Aq3fRK4Cv99nplfX/SP2Y767Sf OQBjIE5v6bEfQndx0idyJaiOO4EnJskoU6vhsr6hsJs+Za90TXSmDI0MAmTZbOqO k+uuHN9NQk5U7xE2MxJrPp5eGFCRNAQmWZw= -----END CERTIFICATE-----Generated at Fri May 31 20:34:08 2024 by rpki-client on console-ams.rpki-client.org