$ rpki-client -vvf rpki.apnic.net/member_repository/A918D808/E26B4642F4B211E9BF3CE563C4F9AE02/EA73DAFE59EC11EE8B5FD019C4F9AE02.roa File: EA73DAFE59EC11EE8B5FD019C4F9AE02.roa (raw, json) Hash identifier: R3SqQMPjyU+OzJ+ADyDinKrzU+5obBQ4rQRI1KEmMzE= Subject key identifier: 18:82:4C:2E:17:F1:FE:59:D3:20:FC:30:B5:91:BE:18:03:91:0D:1C Certificate issuer: /CN=A918D808/serialNumber=0725F2491801505185C9069A4013635C38B56B72 Certificate serial: 05E2 Authority key identifier: 07:25:F2:49:18:01:50:51:85:C9:06:9A:40:13:63:5C:38:B5:6B:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ByXySRgBUFGFyQaaQBNjXDi1a3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D808/E26B4642F4B211E9BF3CE563C4F9AE02/EA73DAFE59EC11EE8B5FD019C4F9AE02.roa Signing time: Sat 23 Sep 2023 08:46:50 +0000 ROA not before: Sat 23 Sep 2023 08:46:50 +0000 ROA not after: Wed 31 Jan 2024 00:00:00 +0000 asID: 61317 IP address blocks: 103.104.140.0/24 maxlen: 24 103.104.142.0/24 maxlen: 24 103.104.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D808/E26B4642F4B211E9BF3CE563C4F9AE02/ByXySRgBUFGFyQaaQBNjXDi1a3I.crl rsync://rpki.apnic.net/member_repository/A918D808/E26B4642F4B211E9BF3CE563C4F9AE02/ByXySRgBUFGFyQaaQBNjXDi1a3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ByXySRgBUFGFyQaaQBNjXDi1a3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Sep 2023 06:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1506 (0x5e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D808/serialNumber=0725F2491801505185C9069A4013635C38B56B72 Validity Not Before: Sep 23 08:46:50 2023 GMT Not After : Jan 31 00:00:00 2024 GMT Subject: CN=650ea5fa-0ebb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:68:0b:87:75:d1:51:ab:be:c7:76:ca:f8:c2: 28:77:75:09:ab:c5:3a:42:5b:5d:73:db:23:8c:2a: c3:07:fa:9d:63:01:c1:58:4c:91:27:a3:70:d3:69: 1e:ae:87:cb:b5:d5:06:0f:86:39:d1:8c:2c:d8:f4: b1:dc:8c:ae:56:29:e7:6c:bc:7c:aa:25:ad:86:7d: 96:91:db:16:d8:79:1f:07:80:99:c3:22:a0:f2:b3: b8:04:4c:a2:27:48:8f:b7:0d:b2:7d:6a:59:ca:4d: e2:b5:cf:41:41:15:a6:f7:b3:86:af:e6:91:7e:b1: c6:f4:b6:75:d4:8a:81:46:76:19:5c:e5:38:e5:9d: ef:e5:76:9a:4e:de:eb:27:1d:45:63:7d:e8:c7:ac: 73:b3:f6:6f:5b:0a:23:b3:30:17:5b:e3:58:f6:1e: a1:03:08:83:e7:8d:40:89:e7:08:9e:aa:95:11:d7: 09:bd:c8:8e:a3:3b:9e:bf:92:7d:b8:7c:bb:87:ac: a0:1e:6c:b4:89:e0:da:72:b3:4c:86:0e:06:f4:fc: 9f:98:04:cd:bf:e1:b6:35:8c:76:11:12:89:27:df: 32:44:b5:30:b9:30:8a:af:32:5b:cc:c2:f7:b2:c9: 20:e4:71:09:0f:0f:9c:af:3c:13:22:fe:a0:88:d1: a5:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:82:4C:2E:17:F1:FE:59:D3:20:FC:30:B5:91:BE:18:03:91:0D:1C X509v3 Authority Key Identifier: keyid:07:25:F2:49:18:01:50:51:85:C9:06:9A:40:13:63:5C:38:B5:6B:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D808/E26B4642F4B211E9BF3CE563C4F9AE02/ByXySRgBUFGFyQaaQBNjXDi1a3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ByXySRgBUFGFyQaaQBNjXDi1a3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D808/E26B4642F4B211E9BF3CE563C4F9AE02/EA73DAFE59EC11EE8B5FD019C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.104.140.0/24 103.104.142.0/23 Signature Algorithm: sha256WithRSAEncryption 62:bb:16:59:cb:02:c8:cf:94:0d:e1:d4:5d:28:6d:b9:8e:e4: ed:61:ce:20:57:43:45:67:15:31:e2:40:e0:4b:4a:ea:17:8e: db:5d:af:a6:f0:d4:39:9d:37:7d:4c:65:79:1e:75:d5:6b:be: 4f:5f:cb:d8:6d:bf:ba:02:20:5e:44:39:e4:aa:3f:3c:91:77: 44:f2:c6:5c:c0:fa:c6:1e:ce:a4:7a:91:09:37:32:8d:4b:13: 70:5b:d5:e4:ec:36:9e:32:47:2a:12:f1:98:62:ae:0e:14:23: dd:cc:38:e0:5b:28:7d:f4:30:61:c3:50:ec:19:4b:5d:98:af: ad:bc:62:4b:51:ba:bb:ec:7d:75:f3:8d:f5:9f:71:c0:78:b9: ee:42:16:87:aa:3e:f6:16:87:c0:77:1b:63:57:43:ee:c7:76: 60:98:d1:01:40:97:06:6f:3f:ab:cd:b2:e7:c5:6f:f0:a8:f2: 3b:2b:2d:71:76:2b:56:03:59:04:06:64:89:70:75:d4:a8:1d: 97:95:fa:55:ff:d3:7c:68:d8:b8:cd:24:78:b9:1d:bf:14:10: 8b:18:6e:8d:60:d3:69:4e:4f:5c:2b:15:82:d4:d4:7f:5e:cd: e7:f9:23:55:90:db:88:e7:bf:f1:40:bd:24:53:e2:6a:6a:c3: d0:ea:1b:76 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ4MDgxMTAvBgNVBAUTKDA3MjVGMjQ5MTgwMTUwNTE4NUM5MDY5QTQwMTM2MzVD MzhCNTZCNzIwHhcNMjMwOTIzMDg0NjUwWhcNMjQwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTBlYTVmYS0wZWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1mgLh3XRUau+x3bK+MIod3UJq8U6Qltdc9sjjCrDB/qdYwHBWEyRJ6Nw02ke rofLtdUGD4Y50Yws2PSx3IyuVinnbLx8qiWthn2WkdsW2HkfB4CZwyKg8rO4BEyi J0iPtw2yfWpZyk3itc9BQRWm97OGr+aRfrHG9LZ11IqBRnYZXOU45Z3v5XaaTt7r Jx1FY33ox6xzs/ZvWwojszAXW+NY9h6hAwiD541AiecInqqVEdcJvciOozuev5J9 uHy7h6ygHmy0ieDacrNMhg4G9PyfmATNv+G2NYx2ERKJJ98yRLUwuTCKrzJbzML3 sskg5HEJDw+crzwTIv6giNGlAwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBiCTC4X 8f5Z0yD8MLWRvhgDkQ0cMB8GA1UdIwQYMBaAFAcl8kkYAVBRhckGmkATY1w4tWty MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDgwOC9FMjZCNDY0MkY0 QjIxMUU5QkYzQ0U1NjNDNEY5QUUwMi9CeVh5U1JnQlVGR0Z5UWFhUUJOalhEaTFh M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J5WHlTUmdCVUZHRnlRYWFRQk5qWERpMWEzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQ4MDgvRTI2QjQ2NDJGNEIyMTFFOUJGM0NFNTYzQzRGOUFFMDIvRUE3M0RBRkU1 OUVDMTFFRThCNUZEMDE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnaIwDBAFnaI4wDQYJKoZIhvcNAQELBQADggEBAGK7FlnL AsjPlA3h1F0obbmO5O1hziBXQ0VnFTHiQOBLSuoXjttdr6bw1DmdN31MZXkeddVr vk9fy9htv7oCIF5EOeSqPzyRd0TyxlzA+sYezqR6kQk3Mo1LE3Bb1eTsNp4yRyoS 8Zhirg4UI93MOOBbKH30MGHDUOwZS12Yr628YktRurvsfXXzjfWfccB4ue5CFoeq PvYWh8B3G2NXQ+7HdmCY0QFAlwZvP6vNsufFb/Co8jsrLXF2K1YDWQQGZIlwddSo HZeV+lX/03xo2LjNJHi5Hb8UEIsYbo1g02lOT1wrFYLU1H9ezef5I1WQ24jnv/FA vSRT4mpqw9DqG3Y= -----END CERTIFICATE-----Generated at Sat Sep 23 09:51:52 2023 by rpki-client on console-ams.rpki-client.org