$ rpki-client -vvf rpki.apnic.net/member_repository/A918769B/B0935D54CC6311EC9B8E962BC4F9AE02/D8D89576CF2F11EC8378951DC4F9AE02.roa File: D8D89576CF2F11EC8378951DC4F9AE02.roa (raw, json) Hash identifier: OYNdYi1bozxcaoUI6QQq6o5EstuNZsTp1pz8ri3kBn0= Subject key identifier: CE:0E:3E:55:F8:DE:B8:41:C1:71:A3:CB:DD:7C:3F:C1:1B:10:FC:10 Certificate issuer: /CN=A918769B/serialNumber=24CCE80DF0D48A6D0C391A3AF0DD644DDBFB75AB Certificate serial: 01B0 Authority key identifier: 24:CC:E8:0D:F0:D4:8A:6D:0C:39:1A:3A:F0:DD:64:4D:DB:FB:75:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JMzoDfDUim0MORo68N1kTdv7das.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918769B/B0935D54CC6311EC9B8E962BC4F9AE02/D8D89576CF2F11EC8378951DC4F9AE02.roa Signing time: Mon 29 May 2023 06:07:25 +0000 ROA not before: Mon 29 May 2023 06:07:25 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 149811 IP address blocks: 103.186.242.0/24 maxlen: 24 103.186.243.0/24 maxlen: 24 2400:7660:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918769B/B0935D54CC6311EC9B8E962BC4F9AE02/JMzoDfDUim0MORo68N1kTdv7das.crl rsync://rpki.apnic.net/member_repository/A918769B/B0935D54CC6311EC9B8E962BC4F9AE02/JMzoDfDUim0MORo68N1kTdv7das.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JMzoDfDUim0MORo68N1kTdv7das.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 432 (0x1b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918769B/serialNumber=24CCE80DF0D48A6D0C391A3AF0DD644DDBFB75AB Validity Not Before: May 29 06:07:25 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6474411d-f68b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:77:26:72:5b:df:c9:ce:80:84:8e:ad:31:1a: 24:ce:36:a6:02:41:b7:2b:65:ff:53:bc:54:f1:fa: 7c:6c:c5:86:ea:2d:b2:3f:fe:8a:c2:f6:f0:91:90: 9a:39:22:47:4b:46:41:8b:19:50:42:c4:4d:58:71: 20:19:19:5d:69:17:d5:79:a8:5c:c3:b0:46:5a:c1: 79:b9:96:92:0d:0e:a4:69:5e:13:b5:bb:4b:cf:6b: 36:ff:ab:da:bc:b2:2c:1f:08:c9:4d:ec:8a:64:49: 02:57:8a:94:92:bd:81:57:62:df:03:56:57:75:3f: a2:c7:38:bf:d5:e7:55:a7:c2:62:a4:02:60:69:87: ca:f4:14:77:cf:23:f5:71:df:b0:05:36:55:aa:45: db:03:9f:41:db:11:7a:96:1a:5b:4a:e5:16:bb:4d: e4:d8:2a:41:61:ef:9a:e6:6e:6b:f9:65:49:ac:96: 90:7e:d0:fb:07:56:63:39:27:3a:95:9b:8c:9f:4c: 3f:d3:09:41:cc:f4:8d:ab:97:b8:f1:fb:6b:a2:67: d9:cc:e9:12:fe:04:62:8f:9b:69:a4:40:be:92:68: b6:77:f5:7b:24:05:18:55:ea:66:60:f9:f4:34:11: 4a:65:6a:9c:8e:30:d6:ea:6a:32:d4:c0:cf:29:4e: 97:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:0E:3E:55:F8:DE:B8:41:C1:71:A3:CB:DD:7C:3F:C1:1B:10:FC:10 X509v3 Authority Key Identifier: keyid:24:CC:E8:0D:F0:D4:8A:6D:0C:39:1A:3A:F0:DD:64:4D:DB:FB:75:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918769B/B0935D54CC6311EC9B8E962BC4F9AE02/JMzoDfDUim0MORo68N1kTdv7das.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JMzoDfDUim0MORo68N1kTdv7das.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918769B/B0935D54CC6311EC9B8E962BC4F9AE02/D8D89576CF2F11EC8378951DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.242.0/23 IPv6: 2400:7660:ffff::/48 Signature Algorithm: sha256WithRSAEncryption 8a:8e:67:f0:bb:41:63:94:cc:9c:6a:f1:6d:23:92:c6:25:f0: c3:c2:47:bd:5b:fe:ed:c5:bc:d2:4d:53:99:66:3a:6f:bd:40: 78:4d:f7:80:e7:06:5d:d9:ea:22:16:5a:9a:67:8b:0d:dc:d9: 4f:f5:e8:bc:8c:1d:89:8e:2e:64:b7:0c:8b:d2:df:e6:73:84: dc:f9:c1:ba:cd:4b:65:64:94:75:a6:70:2e:05:f5:73:40:d8: 74:87:e8:52:ec:10:f8:8b:55:52:1d:ac:16:5e:5e:55:05:92: 6d:5e:28:b5:61:0a:2f:2d:2c:48:ac:ff:ea:db:86:77:e6:13: ae:cb:fe:76:19:db:99:2f:e7:0a:db:cf:7d:eb:b4:80:9a:2f: 74:8b:27:fa:af:30:af:d5:b1:9d:86:32:3b:35:5d:0f:cc:a6: 23:99:32:77:8d:22:6c:cb:df:92:3e:ce:c4:77:df:da:df:07: 9e:03:1d:9f:1e:0f:2c:8b:6f:95:99:aa:75:2c:a3:3e:ca:ee: 18:67:77:5d:9a:7e:99:28:55:57:3b:1b:9f:a9:35:e7:02:e4: 3c:63:64:4e:af:20:33:46:fe:83:b7:21:10:fa:f5:d2:38:89: 89:d5:cf:73:67:68:0a:a8:03:cc:72:d3:64:0a:9d:fa:bc:e4: 9c:22:22:12 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc2OUIxMTAvBgNVBAUTKDI0Q0NFODBERjBENDhBNkQwQzM5MUEzQUYwREQ2NDRE REJGQjc1QUIwHhcNMjMwNTI5MDYwNzI1WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDc0NDExZC1mNjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyncmclvfyc6AhI6tMRokzjamAkG3K2X/U7xU8fp8bMWG6i2yP/6KwvbwkZCa OSJHS0ZBixlQQsRNWHEgGRldaRfVeahcw7BGWsF5uZaSDQ6kaV4TtbtLz2s2/6va vLIsHwjJTeyKZEkCV4qUkr2BV2LfA1ZXdT+ixzi/1edVp8JipAJgaYfK9BR3zyP1 cd+wBTZVqkXbA59B2xF6lhpbSuUWu03k2CpBYe+a5m5r+WVJrJaQftD7B1ZjOSc6 lZuMn0w/0wlBzPSNq5e48ftromfZzOkS/gRij5tppEC+kmi2d/V7JAUYVepmYPn0 NBFKZWqcjjDW6moy1MDPKU6XxwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFM4OPlX4 3rhBwXGjy918P8EbEPwQMB8GA1UdIwQYMBaAFCTM6A3w1IptDDkaOvDdZE3b+3Wr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzY5Qi9CMDkzNUQ1NEND NjMxMUVDOUI4RTk2MkJDNEY5QUUwMi9KTXpvRGZEVWltME1PUm82OE4xa1Rkdjdk YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pNem9EZkRVaW0wTU9SbzY4TjFrVGR2N2Rhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODc2OUIvQjA5MzVENTRDQzYzMTFFQzlCOEU5NjJCQzRGOUFFMDIvRDhEODk1NzZD RjJGMTFFQzgzNzg5NTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnuvIwDwQCAAIwCQMHACQAdmD//zANBgkqhkiG9w0BAQsF AAOCAQEAio5n8LtBY5TMnGrxbSOSxiXww8JHvVv+7cW80k1TmWY6b71AeE33gOcG XdnqIhZammeLDdzZT/XovIwdiY4uZLcMi9Lf5nOE3PnBus1LZWSUdaZwLgX1c0DY dIfoUuwQ+ItVUh2sFl5eVQWSbV4otWEKLy0sSKz/6tuGd+YTrsv+dhnbmS/nCtvP feu0gJovdIsn+q8wr9WxnYYyOzVdD8ymI5kyd40ibMvfkj7OxHff2t8HngMdnx4P LItvlZmqdSyjPsruGGd3XZp+mShVVzsbn6k15wLkPGNkTq8gM0b+g7chEPr10jiJ idXPc2doCqgDzHLTZAqd+rzknCIiEg== -----END CERTIFICATE-----Generated at Sun May 19 04:20:43 2024 by rpki-client on console-ams.rpki-client.org