$ rpki-client -vvf rpki.apnic.net/member_repository/A919EA3B/89D0060A261611EEBE76105CC4F9AE02/0218C21E261711EE9AEA7674C4F9AE02.roa File: 0218C21E261711EE9AEA7674C4F9AE02.roa (raw, json) Hash identifier: RZMve5XRVWle+RvBpGaeHCN9mHTmP3f3OrPVKG2OavE= Subject key identifier: FF:30:DC:C9:8E:07:B6:55:F7:F0:40:B0:85:B4:77:AE:CE:3E:75:CF Certificate issuer: /CN=A919EA3B/serialNumber=42AC1887DF2C9FF468C00EBC06559AE1790B7D41 Certificate serial: 02 Authority key identifier: 42:AC:18:87:DF:2C:9F:F4:68:C0:0E:BC:06:55:9A:E1:79:0B:7D:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QqwYh98sn_RowA68BlWa4XkLfUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EA3B/89D0060A261611EEBE76105CC4F9AE02/0218C21E261711EE9AEA7674C4F9AE02.roa Signing time: Wed 19 Jul 2023 09:31:16 +0000 ROA not before: Wed 19 Jul 2023 09:31:16 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 9230 IP address blocks: 103.137.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EA3B/89D0060A261611EEBE76105CC4F9AE02/QqwYh98sn_RowA68BlWa4XkLfUE.crl rsync://rpki.apnic.net/member_repository/A919EA3B/89D0060A261611EEBE76105CC4F9AE02/QqwYh98sn_RowA68BlWa4XkLfUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QqwYh98sn_RowA68BlWa4XkLfUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:05:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EA3B/serialNumber=42AC1887DF2C9FF468C00EBC06559AE1790B7D41 Validity Not Before: Jul 19 09:31:16 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64b7ad63-e70a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:1f:a8:65:af:7f:3a:f8:5f:08:70:06:bc:07: f0:ce:9a:8e:6e:21:27:76:c2:06:19:88:68:8f:c3: a2:99:11:97:31:9f:c6:57:fd:0e:12:ed:de:41:cc: c1:0f:90:d2:06:c0:12:24:aa:b6:34:0c:f0:00:7d: cf:10:26:ee:fb:f0:30:80:d9:f2:28:d1:eb:68:39: 75:03:bb:48:60:8c:c5:63:f8:8a:53:c5:69:f0:e1: 14:20:f9:7e:9b:c3:55:a4:65:af:84:dd:af:51:e5: 05:7c:d2:66:14:ae:be:55:78:d8:37:75:e8:66:7a: 12:f8:c5:52:f0:84:e9:22:6a:19:46:f2:59:ca:7d: 6e:18:2a:c6:58:59:91:4b:9f:9b:e3:02:a9:ec:c7: 23:88:3e:e2:fb:85:f8:9f:29:f6:85:da:8f:8f:4c: 0b:13:51:d7:58:e2:33:52:05:00:37:14:92:f4:9a: b4:5d:d5:6e:2e:35:ca:be:c6:93:92:82:78:5f:30: 51:e0:fd:6c:c4:83:7f:89:9f:40:2a:61:8e:29:c9: 0a:f6:9b:77:33:c2:69:48:7e:3b:53:d4:c6:af:e8: 09:a1:93:5a:14:f1:6e:07:4f:6c:23:a6:2a:ce:bb: 54:93:a5:66:55:86:4e:42:b0:9b:e5:99:f5:ab:f1: 89:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:30:DC:C9:8E:07:B6:55:F7:F0:40:B0:85:B4:77:AE:CE:3E:75:CF X509v3 Authority Key Identifier: keyid:42:AC:18:87:DF:2C:9F:F4:68:C0:0E:BC:06:55:9A:E1:79:0B:7D:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EA3B/89D0060A261611EEBE76105CC4F9AE02/QqwYh98sn_RowA68BlWa4XkLfUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QqwYh98sn_RowA68BlWa4XkLfUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EA3B/89D0060A261611EEBE76105CC4F9AE02/0218C21E261711EE9AEA7674C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.196.0/24 Signature Algorithm: sha256WithRSAEncryption 61:bf:7f:50:d0:e9:64:31:1b:ab:48:68:fe:0e:38:77:82:45: 37:46:c7:a5:ca:7e:33:14:a3:7c:6a:d5:f6:f1:84:ea:02:ad: cd:be:ea:a8:95:1d:80:23:5d:88:08:cf:8b:80:70:39:3a:b6: 05:a8:93:47:43:0a:e5:6d:f7:8c:72:c2:2b:c2:7b:e4:10:d5: 4a:ca:c4:b4:a7:d7:35:5a:32:f4:57:aa:7b:b6:17:11:73:2c: 4b:76:f4:ae:fb:a8:e1:a4:75:94:dd:04:56:4f:5b:ce:8e:f3: 1e:44:15:ff:7d:c4:98:27:39:c4:e0:6e:bf:27:bf:1f:1a:45: 09:28:50:51:9a:2f:60:72:1b:6c:73:e1:ba:fb:7a:1f:5d:63: b0:ea:65:7e:15:68:00:d0:16:48:23:23:e6:d8:c7:03:e6:24: 82:89:da:d0:7c:da:0c:1f:1f:0d:9d:0f:e9:84:8b:de:40:4c: ae:a4:0e:7d:f9:61:18:8a:f1:37:21:b3:1f:fd:d7:93:10:53: 64:f9:02:da:ef:14:24:b4:1d:9b:ff:40:be:80:02:a2:39:48: 39:81:7e:3b:6c:53:28:0e:3d:77:19:66:9a:24:07:9c:2c:3b: c9:c7:5d:ad:8e:df:9d:05:b7:9a:0e:58:4e:85:1c:cc:0a:2c: 75:9b:09:aa -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RUEzQjExMC8GA1UEBRMoNDJBQzE4ODdERjJDOUZGNDY4QzAwRUJDMDY1NTlBRTE3 OTBCN0Q0MTAeFw0yMzA3MTkwOTMxMTZaFw0yNDA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0YjdhZDYzLWU3MGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYH6hlr386+F8IcAa8B/DOmo5uISd2wgYZiGiPw6KZEZcxn8ZX/Q4S7d5BzMEP kNIGwBIkqrY0DPAAfc8QJu778DCA2fIo0etoOXUDu0hgjMVj+IpTxWnw4RQg+X6b w1WkZa+E3a9R5QV80mYUrr5VeNg3dehmehL4xVLwhOkiahlG8lnKfW4YKsZYWZFL n5vjAqnsxyOIPuL7hfifKfaF2o+PTAsTUddY4jNSBQA3FJL0mrRd1W4uNcq+xpOS gnhfMFHg/WzEg3+Jn0AqYY4pyQr2m3czwmlIfjtT1Mav6Amhk1oU8W4HT2wjpirO u1STpWZVhk5CsJvlmfWr8YnzAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU/zDcyY4H tlX38ECwhbR3rs4+dc8wHwYDVR0jBBgwFoAUQqwYh98sn/RowA68BlWa4XkLfUEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlFQTNCLzg5RDAwNjBBMjYx NjExRUVCRTc2MTA1Q0M0RjlBRTAyL1Fxd1loOThzbl9Sb3dBNjhCbFdhNFhrTGZV RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUXF3WWg5OHNuX1Jvd0E2OEJsV2E0WGtMZlVFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUEzQi84OUQwMDYwQTI2MTYxMUVFQkU3NjEwNUNDNEY5QUUwMi8wMjE4QzIxRTI2 MTcxMUVFOUFFQTc2NzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeJxDANBgkqhkiG9w0BAQsFAAOCAQEAYb9/UNDpZDEbq0ho /g44d4JFN0bHpcp+MxSjfGrV9vGE6gKtzb7qqJUdgCNdiAjPi4BwOTq2BaiTR0MK 5W33jHLCK8J75BDVSsrEtKfXNVoy9Feqe7YXEXMsS3b0rvuo4aR1lN0EVk9bzo7z HkQV/33EmCc5xOBuvye/HxpFCShQUZovYHIbbHPhuvt6H11jsOplfhVoANAWSCMj 5tjHA+Ykgona0HzaDB8fDZ0P6YSL3kBMrqQOfflhGIrxNyGzH/3XkxBTZPkC2u8U JLQdm/9AvoACojlIOYF+O2xTKA49dxlmmiQHnCw7ycddrY7fnQW3mg5YToUczAos dZsJqg== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:28 2024 by rpki-client on console-ams.rpki-client.org