$ rpki-client -vvf rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/A33B03A2F07911ECBDB1BC4BC4F9AE02.roa File: A33B03A2F07911ECBDB1BC4BC4F9AE02.roa (raw, json) Hash identifier: 6/hZGliPgE0ifcXcKbdvex1k1tulDr+I2fIAgCiLmqM= Subject key identifier: 1B:D8:F0:38:22:92:0E:88:33:56:75:DB:9F:28:76:AE:E2:E9:13:BF Certificate issuer: /CN=A918B241/serialNumber=DA012542EA59355FE88478D21D73E36CEBCDF3CB Certificate serial: 017D Authority key identifier: DA:01:25:42:EA:59:35:5F:E8:84:78:D2:1D:73:E3:6C:EB:CD:F3:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gElQupZNV_ohHjSHXPjbOvN88s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/A33B03A2F07911ECBDB1BC4BC4F9AE02.roa Signing time: Thu 31 Aug 2023 03:33:23 +0000 ROA not before: Thu 31 Aug 2023 03:33:23 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 135126 IP address blocks: 103.120.8.0/22 maxlen: 22 103.120.8.0/24 maxlen: 24 103.120.9.0/24 maxlen: 24 103.120.10.0/24 maxlen: 24 103.120.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.crl rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gElQupZNV_ohHjSHXPjbOvN88s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 May 2024 04:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 381 (0x17d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B241/serialNumber=DA012542EA59355FE88478D21D73E36CEBCDF3CB Validity Not Before: Aug 31 03:33:23 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f00a03-9571 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ae:b9:b8:b1:c9:cb:d8:05:89:8a:c0:29:0b: 24:be:dc:86:13:ff:9b:4b:d6:b7:b6:aa:a5:a3:35: f7:7f:fe:7c:86:a7:6a:9e:a9:7c:63:0b:d6:91:2c: 43:05:9f:f2:18:90:d4:9e:91:4b:99:57:0d:fe:dd: f2:29:8a:57:a3:23:81:1d:32:a5:93:d1:99:54:bd: 16:c8:f4:a9:83:fc:c6:15:f1:0d:f2:a8:fd:6a:cc: 6e:4c:47:71:6f:0d:c4:c3:53:ac:8c:0d:9a:dc:c3: a2:54:c6:12:da:e1:c7:45:66:27:24:61:03:05:07: b0:62:5c:13:24:1e:f7:ed:32:0e:ed:e9:b8:1d:2b: df:a6:13:6c:a5:0c:9f:b4:a3:f4:0c:3d:af:da:7a: ec:1c:b5:65:71:ef:04:12:51:1e:f4:44:4f:14:23: 3d:a9:6f:72:3b:45:50:9d:a2:56:ce:ce:8a:0f:13: 84:75:53:c7:9e:3a:06:70:33:c8:21:81:61:bc:27: 3b:45:e9:ec:71:a4:b3:e1:a3:91:d1:40:96:22:fe: 26:51:0a:e3:e2:91:2d:4b:13:8e:ab:ea:27:be:55: 0f:58:d3:53:5b:16:f6:16:3b:29:9e:13:60:13:85: 9c:d2:99:95:f6:88:45:00:8b:54:4f:26:5e:a7:28: d1:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:D8:F0:38:22:92:0E:88:33:56:75:DB:9F:28:76:AE:E2:E9:13:BF X509v3 Authority Key Identifier: keyid:DA:01:25:42:EA:59:35:5F:E8:84:78:D2:1D:73:E3:6C:EB:CD:F3:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gElQupZNV_ohHjSHXPjbOvN88s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/A33B03A2F07911ECBDB1BC4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.8.0/22 Signature Algorithm: sha256WithRSAEncryption a4:48:e5:c6:38:46:9d:1b:34:ad:82:a4:ee:81:08:e1:c7:06: c5:09:24:3c:3f:52:1d:1a:98:c9:c6:49:b3:97:f0:44:49:be: 85:81:1f:f9:7c:79:04:9a:eb:fd:67:3a:52:5a:80:d8:9f:d4: 23:f1:49:82:78:f2:91:7a:3b:b4:18:0d:44:1d:49:e6:05:e7: 80:4a:3a:8f:93:b3:82:41:f1:11:65:34:56:04:ec:49:72:bc: d5:e8:b2:15:e5:96:0d:5e:e0:82:46:57:38:47:15:fa:2d:af: e1:90:c6:35:f8:fd:d9:5d:4b:de:76:cf:0c:8d:68:0e:7a:08: 9b:ba:bb:86:ae:18:4f:d2:6f:41:6e:51:84:b5:c4:6f:27:7b: e6:c5:61:de:ac:8d:0c:18:97:8a:1c:a3:fd:c5:e6:3f:16:4c: 0a:8f:fb:5d:e0:d5:bf:92:fa:2f:0f:3d:61:91:50:2b:1a:b3: f8:34:2f:f0:6c:0a:c0:f3:87:34:9c:8f:e3:59:c5:2b:56:d9: 30:ed:a6:ad:7b:95:0b:39:67:a4:f0:92:17:8e:64:28:3d:48: 45:44:d6:c1:a5:af:a4:f2:6b:65:c2:83:47:93:9e:1d:ad:8c: aa:a3:86:49:49:75:8f:75:dd:c1:23:e6:28:67:12:af:5f:12: d1:74:91:10 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEIyNDExMTAvBgNVBAUTKERBMDEyNTQyRUE1OTM1NUZFODg0NzhEMjFENzNFMzZD RUJDREYzQ0IwHhcNMjMwODMxMDMzMzIzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYwMGEwMy05NTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvK65uLHJy9gFiYrAKQskvtyGE/+bS9a3tqqlozX3f/58hqdqnql8YwvWkSxD BZ/yGJDUnpFLmVcN/t3yKYpXoyOBHTKlk9GZVL0WyPSpg/zGFfEN8qj9asxuTEdx bw3Ew1OsjA2a3MOiVMYS2uHHRWYnJGEDBQewYlwTJB737TIO7em4HSvfphNspQyf tKP0DD2v2nrsHLVlce8EElEe9ERPFCM9qW9yO0VQnaJWzs6KDxOEdVPHnjoGcDPI IYFhvCc7RenscaSz4aOR0UCWIv4mUQrj4pEtSxOOq+onvlUPWNNTWxb2FjspnhNg E4Wc0pmV9ohFAItUTyZepyjRAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBvY8Dgi kg6IM1Z1258odq7i6RO/MB8GA1UdIwQYMBaAFNoBJULqWTVf6IR40h1z42zrzfPL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjI0MS9CNjQ5Q0E5NkYw NzQxMUVDOUE1MUQ1NDhDNEY5QUUwMi8yZ0VsUXVwWk5WX29oSGpTSFhQamJPdk44 OHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnRWxRdXBaTlZfb2hIalNIWFBqYk92Tjg4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEIyNDEvQjY0OUNBOTZGMDc0MTFFQzlBNTFENTQ4QzRGOUFFMDIvQTMzQjAzQTJG MDc5MTFFQ0JEQjFCQzRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJneAgwDQYJKoZIhvcNAQELBQADggEBAKRI5cY4Rp0bNK2C pO6BCOHHBsUJJDw/Uh0amMnGSbOX8ERJvoWBH/l8eQSa6/1nOlJagNif1CPxSYJ4 8pF6O7QYDUQdSeYF54BKOo+Ts4JB8RFlNFYE7ElyvNXoshXllg1e4IJGVzhHFfot r+GQxjX4/dldS952zwyNaA56CJu6u4auGE/Sb0FuUYS1xG8ne+bFYd6sjQwYl4oc o/3F5j8WTAqP+13g1b+S+i8PPWGRUCsas/g0L/BsCsDzhzScj+NZxStW2TDtpq17 lQs5Z6TwkheOZCg9SEVE1sGlr6Tya2XCg0eTnh2tjKqjhklJdY913cEj5ihnEq9f EtF0kRA= -----END CERTIFICATE-----Generated at Thu May 23 05:40:06 2024 by rpki-client on console-ams.rpki-client.org