$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/38FFAC50884411EDA212BC24C4F9AE02.roa File: 38FFAC50884411EDA212BC24C4F9AE02.roa (raw, json) Hash identifier: QPlSKOGUOKQELYhdEj0QP2f5mUxZcFrCVNsi3sTOf2A= Subject key identifier: 95:71:C9:FA:C6:C3:59:CE:E1:1B:B0:CD:BB:2D:F0:59:67:DC:9A:6F Certificate issuer: /CN=A918D0DE/serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Certificate serial: 0A8E Authority key identifier: 93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/38FFAC50884411EDA212BC24C4F9AE02.roa Signing time: Sun 28 May 2023 21:01:03 +0000 ROA not before: Sun 28 May 2023 21:01:03 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 139052 IP address blocks: 103.139.18.0/23 maxlen: 24 2400:cd60::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2702 (0xa8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0DE/serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Validity Not Before: May 28 21:01:03 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6473c10f-d695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:5b:31:d4:4f:a6:b6:e9:3e:a3:57:03:9d:62: 86:07:b0:4d:32:5c:2a:2f:e3:24:27:9a:4c:0a:78: 76:a3:bf:e5:d8:16:2a:65:e7:f6:8a:d0:6b:a2:94: cb:0f:8b:47:f0:93:13:ac:2c:84:8d:00:53:2f:c6: ce:bb:77:05:9b:be:93:d9:f5:a4:99:ca:e3:58:48: 28:9b:3b:97:82:1c:e1:44:0b:e1:c7:9c:fe:c9:ec: ba:83:3f:10:8b:6b:00:63:9b:1c:49:eb:10:76:58: 10:54:8c:43:6d:54:9b:34:79:c1:da:20:25:81:32: e4:c6:64:84:e0:32:73:17:60:c4:0d:d9:8b:99:f2: 3e:36:68:13:40:92:68:8e:e5:6d:4f:09:c5:ee:c6: 2a:81:04:0b:79:d8:32:c0:94:0c:a2:37:de:b3:11: 33:cb:c0:d8:9b:7f:0e:4b:87:7f:41:d8:cc:f9:a9: b8:cf:cf:30:45:5f:bd:7c:c8:1f:71:74:bb:f2:71: dd:10:70:4d:9f:d2:cc:2c:ee:3f:09:e6:7b:35:73: 0a:4b:c8:2b:33:e7:f0:ed:47:0a:78:92:67:40:8c: 38:9b:50:5c:9c:7d:a0:a1:eb:1a:cc:78:ba:30:7c: 17:a0:47:68:c0:3a:8b:f1:bb:d3:1d:ea:92:2f:60: 62:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:71:C9:FA:C6:C3:59:CE:E1:1B:B0:CD:BB:2D:F0:59:67:DC:9A:6F X509v3 Authority Key Identifier: keyid:93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/38FFAC50884411EDA212BC24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.18.0/23 IPv6: 2400:cd60::/32 Signature Algorithm: sha256WithRSAEncryption 72:5d:79:87:8d:3c:9f:4a:a0:ea:58:d3:db:cd:34:f1:1c:2f: 7b:d1:33:fd:aa:56:71:b0:fe:16:ca:d0:1b:81:e2:72:94:37: ae:8d:03:b9:27:e3:bb:46:dd:e1:7a:61:26:95:4b:87:10:22: 62:9e:65:04:93:d1:f0:b8:9a:bf:31:b5:00:f5:f7:4c:14:a2: 18:2b:75:ef:87:7c:48:48:dd:d1:0d:83:e2:3c:7d:91:8e:f1: 78:df:75:b3:30:f8:30:1c:c6:e5:2e:8f:ea:6a:af:f4:1a:8e: 77:1e:54:fa:2b:86:12:96:63:45:0a:a4:e2:e0:71:50:00:98: 06:6c:77:4b:b5:fb:e6:4c:47:cf:59:8c:1f:2b:9c:9d:c9:af: b0:0d:48:80:46:ce:ac:c1:9d:79:ec:52:b7:af:6d:d8:8c:c7: 00:1f:0a:1d:d4:6f:2f:3a:a5:cd:f4:ec:dd:c0:0f:15:5a:4a: 4e:bd:b1:b6:75:01:89:1d:5c:96:77:90:1c:54:3f:da:fc:63: 41:31:40:af:2b:2b:89:25:f9:e1:46:9d:29:70:68:42:ea:df: 39:7e:e2:cb:82:03:55:45:48:f7:be:e9:b8:c8:6f:81:94:78: 45:33:c5:c9:f6:dc:d0:35:5b:90:27:f7:85:04:5f:fe:e4:46: 05:b9:d5:c2 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwREUxMTAvBgNVBAUTKDkzM0M0Q0Q2RDg0MzVDMEY4QkUyRjUyMzQ3MjZENjYx MEY3RURBM0EwHhcNMjMwNTI4MjEwMTAzWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDczYzEwZi1kNjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAslsx1E+mtuk+o1cDnWKGB7BNMlwqL+MkJ5pMCnh2o7/l2BYqZef2itBropTL D4tH8JMTrCyEjQBTL8bOu3cFm76T2fWkmcrjWEgomzuXghzhRAvhx5z+yey6gz8Q i2sAY5scSesQdlgQVIxDbVSbNHnB2iAlgTLkxmSE4DJzF2DEDdmLmfI+NmgTQJJo juVtTwnF7sYqgQQLedgywJQMojfesxEzy8DYm38OS4d/QdjM+am4z88wRV+9fMgf cXS78nHdEHBNn9LMLO4/CeZ7NXMKS8grM+fw7UcKeJJnQIw4m1BcnH2goesazHi6 MHwXoEdowDqL8bvTHeqSL2BikQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJVxyfrG w1nO4Ruwzbst8Fln3JpvMB8GA1UdIwQYMBaAFJM8TNbYQ1wPi+L1I0cm1mEPfto6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBERS9EQTQ1RDQzMDE1 MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhBLUw0dlVqUnliV1lROS0y am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6eE0xdGhEWEEtTDR2VWpSeWJXWVE5LTJqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQwREUvREE0NUQ0MzAxNTI1MTFFQTgwREJGMDA5QzRGOUFFMDIvMzhGRkFDNTA4 ODQ0MTFFREEyMTJCQzI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnixIwDQQCAAIwBwMFACQAzWAwDQYJKoZIhvcNAQELBQAD ggEBAHJdeYeNPJ9KoOpY09vNNPEcL3vRM/2qVnGw/hbK0BuB4nKUN66NA7kn47tG 3eF6YSaVS4cQImKeZQST0fC4mr8xtQD190wUohgrde+HfEhI3dENg+I8fZGO8Xjf dbMw+DAcxuUuj+pqr/QajnceVPorhhKWY0UKpOLgcVAAmAZsd0u1++ZMR89ZjB8r nJ3Jr7ANSIBGzqzBnXnsUrevbdiMxwAfCh3Uby86pc307N3ADxVaSk69sbZ1AYkd XJZ3kBxUP9r8Y0ExQK8rK4kl+eFGnSlwaELq3zl+4suCA1VFSPe+6bjIb4GUeEUz xcn23NA1W5An94UEX/7kRgW51cI= -----END CERTIFICATE-----Generated at Sun May 12 22:39:20 2024 by rpki-client on console-fra.rpki-client.org