$ rpki-client -vvf rpki.apnic.net/member_repository/A916593B/103C7D1CBB7A11EC829EE80DC4F9AE02/718673B6BB7F11EC9E187F19C4F9AE02.roa File: 718673B6BB7F11EC9E187F19C4F9AE02.roa (raw, json) Hash identifier: RBsZfQ0KicBrU4yaM84xnMz+5ewzEgbPfvc8Ksv4tmU= Subject key identifier: D5:38:D5:06:94:E5:A8:28:A5:DD:1F:31:75:56:7B:13:5E:CE:A0:E0 Certificate issuer: /CN=A916593B/serialNumber=49AB5DD11DC922DCC8F23DD5A92C6994DD703504 Certificate serial: 0237 Authority key identifier: 49:AB:5D:D1:1D:C9:22:DC:C8:F2:3D:D5:A9:2C:69:94:DD:70:35:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Satd0R3JItzI8j3VqSxplN1wNQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916593B/103C7D1CBB7A11EC829EE80DC4F9AE02/718673B6BB7F11EC9E187F19C4F9AE02.roa Signing time: Tue 21 Nov 2023 03:14:26 +0000 ROA not before: Tue 21 Nov 2023 03:14:26 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 45809 IP address blocks: 103.70.24.0/22 maxlen: 24 2001:dce:8::/48 maxlen: 48 2001:dce:9::/48 maxlen: 48 2001:dce:a::/48 maxlen: 48 2001:dce:2000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916593B/103C7D1CBB7A11EC829EE80DC4F9AE02/Satd0R3JItzI8j3VqSxplN1wNQQ.crl rsync://rpki.apnic.net/member_repository/A916593B/103C7D1CBB7A11EC829EE80DC4F9AE02/Satd0R3JItzI8j3VqSxplN1wNQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Satd0R3JItzI8j3VqSxplN1wNQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 567 (0x237) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916593B/serialNumber=49AB5DD11DC922DCC8F23DD5A92C6994DD703504 Validity Not Before: Nov 21 03:14:26 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=655c2092-c78c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:72:40:0e:da:ae:d3:c0:3a:61:7c:a1:59:d3: 62:dc:b5:6a:05:27:61:d7:07:6a:13:3d:a8:61:2a: 62:2c:d7:6b:b1:b2:db:05:27:df:8f:54:cd:44:5e: 73:89:e8:fc:b2:e1:3b:e3:f7:59:d8:1d:80:8e:b2: 05:77:cd:3c:f6:32:f1:e7:0b:27:1e:19:81:5b:23: 67:4e:db:df:3e:ec:17:20:3c:42:57:59:68:99:93: 0d:d8:9e:5a:1a:60:e5:f2:1c:ac:5b:a0:0c:19:97: fb:8a:32:ee:7e:8e:36:72:e9:2e:98:c2:dd:9e:75: 89:14:83:69:e2:07:e0:9f:ba:63:3b:2f:5c:3d:98: 5d:e4:9e:b5:44:db:58:95:82:ae:64:32:75:10:75: 71:d8:b0:86:31:c9:94:1c:41:72:7d:e6:48:01:e2: 3b:47:af:24:98:7a:61:4e:13:05:6c:df:99:cb:ad: 33:03:f2:09:eb:3e:d3:04:e2:3e:8a:8d:c0:a4:1d: c6:20:9c:ae:f6:d2:67:20:64:1e:c0:5b:5b:96:e3: b2:e4:f6:24:61:61:d0:c6:5b:4f:40:a4:21:92:d9: ed:03:c3:b6:82:d9:17:83:07:d2:24:cd:0e:6b:ed: ed:42:35:ed:bd:22:39:03:03:ff:00:52:7a:9c:95: e4:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:38:D5:06:94:E5:A8:28:A5:DD:1F:31:75:56:7B:13:5E:CE:A0:E0 X509v3 Authority Key Identifier: keyid:49:AB:5D:D1:1D:C9:22:DC:C8:F2:3D:D5:A9:2C:69:94:DD:70:35:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916593B/103C7D1CBB7A11EC829EE80DC4F9AE02/Satd0R3JItzI8j3VqSxplN1wNQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Satd0R3JItzI8j3VqSxplN1wNQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916593B/103C7D1CBB7A11EC829EE80DC4F9AE02/718673B6BB7F11EC9E187F19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.24.0/22 IPv6: 2001:dce:8::-2001:dce:a:ffff:ffff:ffff:ffff:ffff 2001:dce:2000::/48 Signature Algorithm: sha256WithRSAEncryption 91:c2:c8:26:39:46:14:5b:b0:45:81:19:44:b1:75:fd:ee:d2: 2f:a9:66:75:e4:49:06:bd:a8:d1:00:64:0c:57:b6:00:ec:8b: 86:f5:dd:8f:d4:8b:84:ce:0a:95:b9:22:60:45:d7:c9:e2:15: 67:cd:77:21:28:56:62:9d:81:bf:59:e1:72:59:27:78:6e:4b: 95:2c:9f:d5:9d:55:ba:5d:6c:45:91:16:ad:99:15:9e:53:8e: 11:56:23:7b:ee:34:a0:fa:98:ca:76:2d:2d:3d:c9:7c:cb:bb: bf:f1:2c:b2:07:d7:84:5f:cb:29:bf:9a:19:02:5c:be:f1:c6: d5:9f:e0:9a:77:f1:01:6e:d7:5d:d1:84:15:f5:67:bf:84:a4: 3d:c2:66:a5:b3:39:c2:9b:9c:cb:27:b6:c9:c9:d5:e3:a5:f3: be:86:f0:b3:ee:e4:a9:aa:df:f2:c4:84:24:98:52:3b:41:28: cb:be:07:11:e3:5e:a8:73:e7:de:6c:24:6f:a0:6d:cb:7b:37: db:43:6c:74:3f:55:79:66:52:0d:95:b2:8b:12:85:7b:ad:8a: a7:60:5b:86:8f:e4:fe:48:e6:6c:e6:b8:1c:71:99:91:c1:60: d9:cf:d3:1d:0a:67:76:05:50:12:5b:1e:2c:9c:74:62:8c:74: d3:46:3a:10 -----BEGIN CERTIFICATE----- MIIFljCCBH6gAwIBAgICAjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU5M0IxMTAvBgNVBAUTKDQ5QUI1REQxMURDOTIyRENDOEYyM0RENUE5MkM2OTk0 REQ3MDM1MDQwHhcNMjMxMTIxMDMxNDI2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTVjMjA5Mi1jNzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1HJADtqu08A6YXyhWdNi3LVqBSdh1wdqEz2oYSpiLNdrsbLbBSffj1TNRF5z iej8suE74/dZ2B2AjrIFd8089jLx5wsnHhmBWyNnTtvfPuwXIDxCV1lomZMN2J5a GmDl8hysW6AMGZf7ijLufo42cukumMLdnnWJFINp4gfgn7pjOy9cPZhd5J61RNtY lYKuZDJ1EHVx2LCGMcmUHEFyfeZIAeI7R68kmHphThMFbN+Zy60zA/IJ6z7TBOI+ io3ApB3GIJyu9tJnIGQewFtbluOy5PYkYWHQxltPQKQhktntA8O2gtkXgwfSJM0O a+3tQjXtvSI5AwP/AFJ6nJXkdwIDAQABo4ICujCCArYwHQYDVR0OBBYEFNU41QaU 5agopd0fMXVWexNezqDgMB8GA1UdIwQYMBaAFEmrXdEdySLcyPI91aksaZTdcDUE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTkzQi8xMDNDN0QxQ0JC N0ExMUVDODI5RUU4MERDNEY5QUUwMi9TYXRkMFIzSkl0ekk4ajNWcVN4cGxOMXdO UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NhdGQwUjNKSXR6SThqM1ZxU3hwbE4xd05RUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU5M0IvMTAzQzdEMUNCQjdBMTFFQzgyOUVFODBEQzRGOUFFMDIvNzE4NjczQjZC QjdGMTFFQzlFMTg3RjE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRAYIKwYBBQUHAQcBAf8E NTAzMAwEAgABMAYDBAJnRhgwIwQCAAIwHTASAwcDIAENzgAIAwcAIAENzgAKAwcA IAENziAAMA0GCSqGSIb3DQEBCwUAA4IBAQCRwsgmOUYUW7BFgRlEsXX97tIvqWZ1 5EkGvajRAGQMV7YA7IuG9d2P1IuEzgqVuSJgRdfJ4hVnzXchKFZinYG/WeFyWSd4 bkuVLJ/VnVW6XWxFkRatmRWeU44RViN77jSg+pjKdi0tPcl8y7u/8SyyB9eEX8sp v5oZAly+8cbVn+Cad/EBbtdd0YQV9We/hKQ9wmalsznCm5zLJ7bJydXjpfO+hvCz 7uSpqt/yxIQkmFI7QSjLvgcR416oc+febCRvoG3LezfbQ2x0P1V5ZlINlbKLEoV7 rYqnYFuGj+T+SOZs5rgccZmRwWDZz9MdCmd2BVASWx4snHRijHTTRjoQ -----END CERTIFICATE-----Generated at Wed May 15 04:38:25 2024 by rpki-client on console-ams.rpki-client.org