$ rpki-client -vvf rpki.apnic.net/member_repository/A918C21E/2575CFF032AA11EEA6099B3BC4F9AE02/79266D5C32AB11EE8EEB9940C4F9AE02.roa File: 79266D5C32AB11EE8EEB9940C4F9AE02.roa (raw, json) Hash identifier: hGDWimpHsH0wa6fbysCzhmdMq69+XlfTZ6p+ZMLG64Y= Subject key identifier: 2A:B9:92:C0:B9:A7:2C:D0:BE:2F:55:96:5A:B6:20:68:BD:7D:B0:45 Certificate issuer: /CN=A918C21E/serialNumber=00E40D956D68D61DA8581E54E8B8C2DBA16CB327 Certificate serial: 02 Authority key identifier: 00:E4:0D:95:6D:68:D6:1D:A8:58:1E:54:E8:B8:C2:DB:A1:6C:B3:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AOQNlW1o1h2oWB5U6LjC26Fssyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C21E/2575CFF032AA11EEA6099B3BC4F9AE02/79266D5C32AB11EE8EEB9940C4F9AE02.roa Signing time: Fri 04 Aug 2023 09:44:15 +0000 ROA not before: Fri 04 Aug 2023 09:44:15 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 136744 IP address blocks: 103.247.30.0/23 maxlen: 23 103.247.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C21E/2575CFF032AA11EEA6099B3BC4F9AE02/AOQNlW1o1h2oWB5U6LjC26Fssyc.crl rsync://rpki.apnic.net/member_repository/A918C21E/2575CFF032AA11EEA6099B3BC4F9AE02/AOQNlW1o1h2oWB5U6LjC26Fssyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AOQNlW1o1h2oWB5U6LjC26Fssyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 06:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C21E/serialNumber=00E40D956D68D61DA8581E54E8B8C2DBA16CB327 Validity Not Before: Aug 4 09:44:15 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ccc86f-161e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3a:9c:c2:8f:2d:c1:6f:91:93:41:41:f4:74: b2:b8:df:4e:b6:76:62:26:0c:1d:e3:f2:e5:bc:e9: 7d:d0:b5:f8:1f:9f:05:e4:dd:e2:2d:09:78:cf:25: 3d:0d:1c:ac:50:c6:d1:d0:ee:ff:e3:78:2b:12:7c: 70:2f:32:70:b0:e8:bf:bd:51:23:e6:4e:00:5b:5f: 78:58:9c:ed:7e:43:eb:3f:05:fa:6d:7e:df:b1:24: 78:70:db:85:7a:c7:12:fb:df:21:7c:02:d4:ab:a3: 1c:5a:e9:1a:b8:f4:4a:60:26:a3:64:a1:5e:d3:e9: 54:e2:a9:3e:46:26:81:0e:9e:ab:a2:49:fb:59:46: 0f:25:a3:31:bc:78:c5:1c:cf:f7:12:b9:fb:9c:54: 3d:d7:ca:7c:1b:e9:a0:f5:60:11:5a:20:9e:41:57: 6b:e0:3d:22:50:d5:90:4b:8d:52:07:5a:d1:37:96: 60:e7:c3:fc:d9:3a:f0:0e:cd:06:e5:46:a8:8a:c1: 38:24:bf:49:42:65:d9:bb:f7:d3:5e:5d:1a:90:11: 11:89:12:38:d0:29:6a:0a:9d:91:0d:10:3d:9a:bd: 0f:3f:71:5f:07:b5:b5:69:6f:d5:f6:26:b5:a3:8d: 0b:17:f4:d0:bb:f2:05:ea:7f:ea:d4:77:c7:62:93: 44:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:B9:92:C0:B9:A7:2C:D0:BE:2F:55:96:5A:B6:20:68:BD:7D:B0:45 X509v3 Authority Key Identifier: keyid:00:E4:0D:95:6D:68:D6:1D:A8:58:1E:54:E8:B8:C2:DB:A1:6C:B3:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C21E/2575CFF032AA11EEA6099B3BC4F9AE02/AOQNlW1o1h2oWB5U6LjC26Fssyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AOQNlW1o1h2oWB5U6LjC26Fssyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C21E/2575CFF032AA11EEA6099B3BC4F9AE02/79266D5C32AB11EE8EEB9940C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.247.30.0/23 Signature Algorithm: sha256WithRSAEncryption 47:35:b3:14:03:22:c7:12:9a:87:c2:ec:59:59:dc:93:6b:9c: 0b:0a:68:60:a0:36:69:ff:4f:02:36:7e:3a:f6:5e:cb:2c:2e: 51:e3:ab:64:0a:bb:a4:b5:9d:73:94:5b:b0:dd:8e:25:28:ad: d9:fa:1a:fa:5e:9b:20:13:6e:39:a8:55:4f:e0:49:2a:de:23: 58:7a:98:ce:90:ce:8a:33:3b:a4:65:b7:c3:e7:92:90:85:ee: 42:0a:73:63:1d:1e:09:4e:54:fa:ac:6c:11:c6:38:aa:9e:d8: 36:64:76:33:8a:2a:f5:4f:88:1a:f1:5a:62:09:81:c1:f0:8c: cf:84:a6:3b:a1:84:2a:57:df:bc:31:9a:79:62:ad:ae:3d:51: f8:d3:ff:82:a0:15:af:69:ee:e4:f3:6d:35:d8:e4:26:b3:ce: 34:c3:eb:ce:52:a3:1c:c8:f9:b7:c3:9c:7c:3f:6c:53:28:48: ec:55:10:62:9d:43:92:fb:44:b0:5e:76:9b:4f:fc:c3:e9:27: 21:70:6e:0f:dc:6f:4e:ff:5d:09:48:7d:32:0f:19:c8:31:1d: 0d:7c:85:91:3c:64:1e:e6:c1:b0:e6:85:94:42:29:f4:cd:1f: 8a:d1:ec:9c:68:01:de:48:5e:dc:bf:fe:ff:1f:a3:30:e9:6b: dc:bc:27:ea -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QzIxRTExMC8GA1UEBRMoMDBFNDBEOTU2RDY4RDYxREE4NTgxRTU0RThCOEMyREJB MTZDQjMyNzAeFw0yMzA4MDQwOTQ0MTVaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0Y2NjODZmLTE2MWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrOpzCjy3Bb5GTQUH0dLK43062dmImDB3j8uW86X3QtfgfnwXk3eItCXjPJT0N HKxQxtHQ7v/jeCsSfHAvMnCw6L+9USPmTgBbX3hYnO1+Q+s/Bfptft+xJHhw24V6 xxL73yF8AtSroxxa6Rq49EpgJqNkoV7T6VTiqT5GJoEOnquiSftZRg8lozG8eMUc z/cSufucVD3Xynwb6aD1YBFaIJ5BV2vgPSJQ1ZBLjVIHWtE3lmDnw/zZOvAOzQbl RqiKwTgkv0lCZdm799NeXRqQERGJEjjQKWoKnZENED2avQ8/cV8HtbVpb9X2JrWj jQsX9NC78gXqf+rUd8dik0RJAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUKrmSwLmn LNC+L1WWWrYgaL19sEUwHwYDVR0jBBgwFoAUAOQNlW1o1h2oWB5U6LjC26Fssycw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThDMjFFLzI1NzVDRkYwMzJB QTExRUVBNjA5OUIzQkM0RjlBRTAyL0FPUU5sVzFvMWgyb1dCNVU2TGpDMjZGc3N5 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQU9RTmxXMW8xaDJvV0I1VTZMakMyNkZzc3ljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzIxRS8yNTc1Q0ZGMDMyQUExMUVFQTYwOTlCM0JDNEY5QUUwMi83OTI2NkQ1QzMy QUIxMUVFOEVFQjk5NDBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWf3HjANBgkqhkiG9w0BAQsFAAOCAQEARzWzFAMixxKah8Ls WVnck2ucCwpoYKA2af9PAjZ+OvZeyywuUeOrZAq7pLWdc5RbsN2OJSit2foa+l6b IBNuOahVT+BJKt4jWHqYzpDOijM7pGW3w+eSkIXuQgpzYx0eCU5U+qxsEcY4qp7Y NmR2M4oq9U+IGvFaYgmBwfCMz4SmO6GEKlffvDGaeWKtrj1R+NP/gqAVr2nu5PNt NdjkJrPONMPrzlKjHMj5t8OcfD9sUyhI7FUQYp1DkvtEsF52m0/8w+knIXBuD9xv Tv9dCUh9Mg8ZyDEdDXyFkTxkHubBsOaFlEIp9M0fitHsnGgB3khe3L/+/x+jMOlr 3Lwn6g== -----END CERTIFICATE-----Generated at Sun May 5 08:21:08 2024 by rpki-client on console-ams.rpki-client.org