$ rpki-client -vvf rpki.apnic.net/member_repository/A918D808/E26B4642F4B211E9BF3CE563C4F9AE02/C08681B4647911EEB69BD763C4F9AE02.roa File: C08681B4647911EEB69BD763C4F9AE02.roa (raw, json) Hash identifier: KsQPe0BSPEDmh4AwAHUrrCkF19sX/Ej9KEZGa6JwXa8= Subject key identifier: BD:15:4D:71:D6:3C:0A:55:56:E5:CA:7D:CC:F5:4D:0A:37:25:34:3C Certificate issuer: /CN=A918D808/serialNumber=0725F2491801505185C9069A4013635C38B56B72 Certificate serial: 0635 Authority key identifier: 07:25:F2:49:18:01:50:51:85:C9:06:9A:40:13:63:5C:38:B5:6B:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ByXySRgBUFGFyQaaQBNjXDi1a3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D808/E26B4642F4B211E9BF3CE563C4F9AE02/C08681B4647911EEB69BD763C4F9AE02.roa Signing time: Sun 31 Dec 2023 15:26:47 +0000 ROA not before: Sun 31 Dec 2023 15:26:47 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 61317 IP address blocks: 103.104.140.0/24 maxlen: 24 103.104.141.0/24 maxlen: 24 103.104.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D808/E26B4642F4B211E9BF3CE563C4F9AE02/ByXySRgBUFGFyQaaQBNjXDi1a3I.crl rsync://rpki.apnic.net/member_repository/A918D808/E26B4642F4B211E9BF3CE563C4F9AE02/ByXySRgBUFGFyQaaQBNjXDi1a3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ByXySRgBUFGFyQaaQBNjXDi1a3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jan 2024 16:04:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1589 (0x635) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D808/serialNumber=0725F2491801505185C9069A4013635C38B56B72 Validity Not Before: Dec 31 15:26:47 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65918836-2436 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:47:35:c8:e1:4a:9c:39:8d:5a:e5:a2:3c:8d: c1:17:06:9d:1e:b1:43:6e:da:98:7d:8f:e2:d6:41: 65:db:a9:e7:3a:a5:9b:f7:2f:9a:af:13:a6:bf:69: 63:5c:22:1d:58:8a:e7:8f:f0:3a:44:11:db:08:a2: 1f:3b:6b:eb:fd:cc:0e:30:65:1e:ce:21:ab:5a:3f: ff:1a:29:59:c3:2a:8d:a4:c4:55:05:c3:f3:ac:e2: 09:a3:b3:5c:61:78:11:7c:17:77:98:d2:2f:98:fd: 4e:69:43:ad:c3:c0:b4:9a:60:dd:f4:a0:a6:2e:31: 46:90:ef:da:43:6e:9c:c4:7e:6a:4f:78:9f:f9:37: d7:ad:9e:61:08:b6:6e:be:0a:9d:32:36:6c:4a:32: 9e:4b:99:9a:9e:01:61:1e:4a:a1:6c:3f:63:31:4e: c1:8c:13:74:b9:21:c0:8b:68:f6:ad:a2:65:2c:96: 7c:b0:29:b4:b5:be:20:be:62:82:68:ab:13:e0:a7: fb:a7:47:84:6f:da:1d:c3:dd:42:61:6d:f5:63:5e: 8e:bc:a1:50:86:79:79:18:27:5b:93:d3:c7:72:64: 2a:df:ff:ce:1e:89:17:13:57:1b:26:9e:bc:0b:86: 83:45:e8:e9:f4:65:1e:75:dc:91:89:fe:85:3f:02: 67:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:15:4D:71:D6:3C:0A:55:56:E5:CA:7D:CC:F5:4D:0A:37:25:34:3C X509v3 Authority Key Identifier: keyid:07:25:F2:49:18:01:50:51:85:C9:06:9A:40:13:63:5C:38:B5:6B:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D808/E26B4642F4B211E9BF3CE563C4F9AE02/ByXySRgBUFGFyQaaQBNjXDi1a3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ByXySRgBUFGFyQaaQBNjXDi1a3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D808/E26B4642F4B211E9BF3CE563C4F9AE02/C08681B4647911EEB69BD763C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.104.140.0/23 103.104.143.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:fe:d6:0f:f8:a8:f1:19:cd:64:fb:d6:ba:78:5c:18:b2:12: 38:f0:a8:5a:40:62:08:4d:9c:f0:c6:32:2c:0a:cd:c4:84:5b: 91:71:6d:48:6b:73:1b:11:22:29:66:c3:78:b9:45:0b:64:83: eb:b8:e3:8c:7c:ca:aa:76:cc:d1:b2:08:6f:84:6c:f8:0d:d7: 85:d2:13:07:3a:bb:c0:65:d3:73:36:b5:d6:8b:62:81:33:92: 86:e5:94:f1:be:1b:b1:6d:0c:95:89:3e:d6:af:e7:1e:93:fd: 33:8a:35:9d:a0:63:09:37:10:32:b7:7a:94:7b:6b:d5:9e:06: 3b:4d:14:2b:72:15:e1:79:22:09:b8:95:6c:c9:b8:88:7c:a5: fd:4a:60:31:29:42:8b:70:18:57:cd:97:d4:da:5a:3c:08:5b: e2:14:28:a7:7c:5e:fe:63:1e:74:be:49:75:8f:2c:6d:69:80: d9:dc:83:b8:c1:24:30:34:77:28:b4:33:3c:0e:1e:8b:7a:01: b4:03:f8:82:0d:4b:fd:1e:fc:fe:df:7c:e2:61:4f:dc:71:07: ab:c1:35:70:ab:0e:ee:02:6f:c6:6c:02:f8:0b:ad:d7:4d:ad: 9c:6a:67:96:85:92:f9:e7:12:f7:9a:d4:ce:0e:9a:ab:9c:59: 68:21:94:e6 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ4MDgxMTAvBgNVBAUTKDA3MjVGMjQ5MTgwMTUwNTE4NUM5MDY5QTQwMTM2MzVD MzhCNTZCNzIwHhcNMjMxMjMxMTUyNjQ3WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTkxODgzNi0yNDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArEc1yOFKnDmNWuWiPI3BFwadHrFDbtqYfY/i1kFl26nnOqWb9y+arxOmv2lj XCIdWIrnj/A6RBHbCKIfO2vr/cwOMGUeziGrWj//GilZwyqNpMRVBcPzrOIJo7Nc YXgRfBd3mNIvmP1OaUOtw8C0mmDd9KCmLjFGkO/aQ26cxH5qT3if+TfXrZ5hCLZu vgqdMjZsSjKeS5mangFhHkqhbD9jMU7BjBN0uSHAi2j2raJlLJZ8sCm0tb4gvmKC aKsT4Kf7p0eEb9odw91CYW31Y16OvKFQhnl5GCdbk9PHcmQq3//OHokXE1cbJp68 C4aDRejp9GUeddyRif6FPwJnCQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFL0VTXHW PApVVuXKfcz1TQo3JTQ8MB8GA1UdIwQYMBaAFAcl8kkYAVBRhckGmkATY1w4tWty MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDgwOC9FMjZCNDY0MkY0 QjIxMUU5QkYzQ0U1NjNDNEY5QUUwMi9CeVh5U1JnQlVGR0Z5UWFhUUJOalhEaTFh M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J5WHlTUmdCVUZHRnlRYWFRQk5qWERpMWEzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQ4MDgvRTI2QjQ2NDJGNEIyMTFFOUJGM0NFNTYzQzRGOUFFMDIvQzA4NjgxQjQ2 NDc5MTFFRUI2OUJENzYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnaIwDBABnaI8wDQYJKoZIhvcNAQELBQADggEBAFz+1g/4 qPEZzWT71rp4XBiyEjjwqFpAYghNnPDGMiwKzcSEW5FxbUhrcxsRIilmw3i5RQtk g+u444x8yqp2zNGyCG+EbPgN14XSEwc6u8Bl03M2tdaLYoEzkobllPG+G7FtDJWJ Ptav5x6T/TOKNZ2gYwk3EDK3epR7a9WeBjtNFCtyFeF5Igm4lWzJuIh8pf1KYDEp QotwGFfNl9TaWjwIW+IUKKd8Xv5jHnS+SXWPLG1pgNncg7jBJDA0dyi0MzwOHot6 AbQD+IINS/0e/P7ffOJhT9xxB6vBNXCrDu4Cb8ZsAvgLrddNrZxqZ5aFkvnnEvea 1M4OmqucWWghlOY= -----END CERTIFICATE-----Generated at Tue Jan 2 21:04:43 2024 by rpki-client on console-ams.rpki-client.org