$ rpki-client -vvf rpki.apnic.net/member_repository/A918EAFB/094F746E54F711EA838FA84FC4F9AE02/8DB89FC2572311EA9D4ED562C4F9AE02.roa File: 8DB89FC2572311EA9D4ED562C4F9AE02.roa (raw, json) Hash identifier: rOcBsWhnfD1tNVjKKBFpO1u3NWxJVGft4B65w6p9Vq4= Subject key identifier: 26:7B:7C:F9:3B:84:45:16:05:68:1D:4A:5A:41:3A:18:16:EB:FA:BC Certificate issuer: /CN=A918EAFB/serialNumber=F61FBAA61929D100FA99DBD480CE8C2C4EE73FF1 Certificate serial: 0965 Authority key identifier: F6:1F:BA:A6:19:29:D1:00:FA:99:DB:D4:80:CE:8C:2C:4E:E7:3F:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9h-6phkp0QD6mdvUgM6MLE7nP_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EAFB/094F746E54F711EA838FA84FC4F9AE02/8DB89FC2572311EA9D4ED562C4F9AE02.roa Signing time: Wed 16 Aug 2023 20:37:20 +0000 ROA not before: Wed 16 Aug 2023 20:37:20 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 27471 IP address blocks: 103.246.36.0/24 maxlen: 24 103.246.37.0/24 maxlen: 24 103.246.38.0/24 maxlen: 24 103.246.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EAFB/094F746E54F711EA838FA84FC4F9AE02/9h-6phkp0QD6mdvUgM6MLE7nP_E.crl rsync://rpki.apnic.net/member_repository/A918EAFB/094F746E54F711EA838FA84FC4F9AE02/9h-6phkp0QD6mdvUgM6MLE7nP_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9h-6phkp0QD6mdvUgM6MLE7nP_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2405 (0x965) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EAFB/serialNumber=F61FBAA61929D100FA99DBD480CE8C2C4EE73FF1 Validity Not Before: Aug 16 20:37:20 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64dd3380-c05a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f1:28:46:5a:86:a5:b6:c4:6d:f3:25:6b:47: e9:bc:d2:92:85:43:68:c6:12:07:c3:bd:e2:9d:23: 31:89:8b:ef:d4:6c:39:d2:de:f7:fe:be:4c:6b:43: 58:79:d3:26:00:5f:86:41:50:51:ab:da:a2:9b:5a: 1a:a2:4c:e7:14:b2:8a:89:99:64:11:2d:28:67:f4: b4:0b:fb:02:7f:88:12:13:fa:43:47:1e:c1:fc:70: 8d:e8:89:19:64:fa:15:ca:b5:9d:60:d0:0e:5c:51: 33:2c:0b:ad:e9:f9:c2:a4:21:ef:e3:19:bd:af:8a: 54:0d:ce:05:88:85:d6:23:14:48:f5:66:ba:1e:82: 26:5f:d3:97:57:96:8f:fa:51:14:b0:14:89:86:d2: 23:f2:3e:39:30:99:f6:39:27:49:8b:3f:cb:5b:0c: 5a:bd:ba:c9:68:fb:b4:e5:55:3e:37:d0:4b:6b:ae: 82:19:4f:90:df:c9:3c:df:6a:c8:7a:d2:89:a4:a9: 9d:7a:4f:79:45:3f:a1:ca:76:fb:ff:32:39:3c:b9: 41:a9:b4:10:93:65:25:a4:a1:19:65:bf:2f:7e:fe: c8:22:93:94:b2:6b:7d:d2:bc:d1:19:54:51:70:ee: 57:ed:30:91:1f:01:45:2e:02:b6:6d:2a:70:41:b7: b0:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:7B:7C:F9:3B:84:45:16:05:68:1D:4A:5A:41:3A:18:16:EB:FA:BC X509v3 Authority Key Identifier: keyid:F6:1F:BA:A6:19:29:D1:00:FA:99:DB:D4:80:CE:8C:2C:4E:E7:3F:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EAFB/094F746E54F711EA838FA84FC4F9AE02/9h-6phkp0QD6mdvUgM6MLE7nP_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9h-6phkp0QD6mdvUgM6MLE7nP_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EAFB/094F746E54F711EA838FA84FC4F9AE02/8DB89FC2572311EA9D4ED562C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.246.36.0/22 Signature Algorithm: sha256WithRSAEncryption 5b:3d:ec:6f:c5:2e:11:94:29:9c:c7:64:99:8a:b8:19:cd:9d: 88:ed:e0:3e:cc:2d:f3:81:b3:39:46:5e:23:74:bf:32:f7:f8: a8:3b:fe:1e:73:15:e3:24:24:ba:af:9c:ab:bc:8e:ac:d2:e0: eb:fc:a2:ae:8a:f8:f8:b6:f0:1a:82:03:77:fb:f5:79:8e:c8: 1c:6c:20:eb:bb:d3:52:61:c4:1e:b8:90:19:e7:cd:2c:10:61: a8:be:e1:69:9b:05:40:66:f9:56:08:f3:ed:b4:fe:d5:e9:2f: e5:1d:9d:f3:02:bc:1c:b9:b1:8e:a8:a5:10:13:3a:4e:bc:7c: 55:1d:b9:09:b0:79:50:de:a9:8d:a8:6f:a7:c0:bd:c7:d0:c4: 11:dc:5a:24:6a:cf:da:73:a8:a6:9f:6a:18:3d:2d:2c:4d:fd: d2:8a:3c:66:df:b6:f3:f0:5d:8e:19:d2:ed:aa:95:9d:0f:40: ea:d3:d0:c1:7d:01:7a:d1:84:59:af:59:45:93:ae:5d:2e:b4: 6b:2b:f1:eb:c2:c2:af:ff:0f:b1:18:8b:5b:a9:11:9b:9d:7b: e8:8c:b5:0a:0f:96:47:67:a3:f4:ea:93:27:1d:9b:0f:da:df: 51:cc:eb:ac:1a:f0:e1:98:80:7d:f9:48:6d:a7:d5:c4:e8:a5: e9:e2:d3:95 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVBRkIxMTAvBgNVBAUTKEY2MUZCQUE2MTkyOUQxMDBGQTk5REJENDgwQ0U4QzJD NEVFNzNGRjEwHhcNMjMwODE2MjAzNzIwWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRkMzM4MC1jMDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0PEoRlqGpbbEbfMla0fpvNKShUNoxhIHw73inSMxiYvv1Gw50t73/r5Ma0NY edMmAF+GQVBRq9qim1oaokznFLKKiZlkES0oZ/S0C/sCf4gSE/pDRx7B/HCN6IkZ ZPoVyrWdYNAOXFEzLAut6fnCpCHv4xm9r4pUDc4FiIXWIxRI9Wa6HoImX9OXV5aP +lEUsBSJhtIj8j45MJn2OSdJiz/LWwxavbrJaPu05VU+N9BLa66CGU+Q38k832rI etKJpKmdek95RT+hynb7/zI5PLlBqbQQk2UlpKEZZb8vfv7IIpOUsmt90rzRGVRR cO5X7TCRHwFFLgK2bSpwQbewAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCZ7fPk7 hEUWBWgdSlpBOhgW6/q8MB8GA1UdIwQYMBaAFPYfuqYZKdEA+pnb1IDOjCxO5z/x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUFGQi8wOTRGNzQ2RTU0 RjcxMUVBODM4RkE4NEZDNEY5QUUwMi85aC02cGhrcDBRRDZtZHZVZ002TUxFN25Q X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzloLTZwaGtwMFFENm1kdlVnTTZNTEU3blBfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVBRkIvMDk0Rjc0NkU1NEY3MTFFQTgzOEZBODRGQzRGOUFFMDIvOERCODlGQzI1 NzIzMTFFQTlENEVENTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn9iQwDQYJKoZIhvcNAQELBQADggEBAFs97G/FLhGUKZzH ZJmKuBnNnYjt4D7MLfOBszlGXiN0vzL3+Kg7/h5zFeMkJLqvnKu8jqzS4Ov8oq6K +Pi28BqCA3f79XmOyBxsIOu701JhxB64kBnnzSwQYai+4WmbBUBm+VYI8+20/tXp L+UdnfMCvBy5sY6opRATOk68fFUduQmweVDeqY2ob6fAvcfQxBHcWiRqz9pzqKaf ahg9LSxN/dKKPGbftvPwXY4Z0u2qlZ0PQOrT0MF9AXrRhFmvWUWTrl0utGsr8evC wq//D7EYi1upEZude+iMtQoPlkdno/Tqkycdmw/a31HM66wa8OGYgH35SG2n1cTo peni05U= -----END CERTIFICATE-----Generated at Fri May 10 23:04:09 2024 by rpki-client on console-ams.rpki-client.org