$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/00816CAC739011ECB33A5570C4F9AE02.roa File: 00816CAC739011ECB33A5570C4F9AE02.roa (raw, json) Hash identifier: NedMgGkyTQaN/KdFyfRjfKi1e8PwWX1ShcX5n7g5lNI= Subject key identifier: 36:C4:AA:2D:9A:56:02:6F:97:7F:D7:84:43:EC:CE:1F:AB:38:15:01 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6CC2 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/00816CAC739011ECB33A5570C4F9AE02.roa Signing time: Wed 10 May 2023 16:26:07 +0000 ROA not before: Wed 10 May 2023 16:26:07 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136724 IP address blocks: 103.83.128.0/22 maxlen: 22 103.83.128.0/24 maxlen: 24 103.83.129.0/24 maxlen: 24 103.83.130.0/24 maxlen: 24 103.83.131.0/24 maxlen: 24 103.102.88.0/22 maxlen: 24 103.102.89.0/24 maxlen: 24 103.102.90.0/24 maxlen: 24 103.102.91.0/24 maxlen: 24 2402:4cc0::/32 maxlen: 34 2402:4cc0::/35 maxlen: 36 2402:4cc0:2000::/36 maxlen: 36 2402:4cc0:3000::/36 maxlen: 36 2402:4cc0:4000::/34 maxlen: 36 2402:4cc0:8000::/33 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 15:26:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27842 (0x6cc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:26:07 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc59e-d97f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:34:f2:ba:0f:88:3b:d0:7d:77:a5:89:5d:3b: 36:6a:bb:12:97:47:63:3b:83:1d:95:e1:f1:80:2d: f8:46:9e:d1:e5:08:83:e6:9d:81:1e:db:cc:25:26: b5:a4:52:9e:31:4a:fa:74:8e:51:c0:2b:28:f0:c6: 21:36:a0:97:99:86:c1:8f:ad:4d:fd:89:4b:16:d6: 95:5e:9e:37:c3:9f:a3:25:23:4a:61:38:ba:dc:7d: b6:bf:31:23:52:f8:ce:de:58:4a:f0:90:21:0f:64: a2:9e:51:8b:88:72:d4:18:3a:ff:c5:28:38:ef:04: 48:a1:87:e4:d2:16:71:81:c9:d5:cd:d9:56:48:c2: 66:91:1a:a8:6e:0d:97:41:73:5f:41:3b:a8:d3:0b: 0a:de:aa:ff:ec:ed:aa:2f:7a:bf:a1:63:1f:a7:2e: 9f:bc:1d:28:b9:00:c5:1c:20:85:7e:aa:be:e1:ad: 80:e6:09:f0:2c:94:26:4b:05:ed:5a:32:7f:19:82: 1c:af:ac:a7:06:c6:23:ef:2d:54:a1:f9:6e:f7:68: f2:fd:f0:3b:cd:03:8a:fd:87:76:ab:ab:08:66:e7: 40:0e:8e:39:72:a0:7b:7f:1e:e1:0e:fc:67:2f:81: 88:1f:64:23:0d:e0:b0:1f:8c:e0:d8:81:95:2e:7f: 42:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:C4:AA:2D:9A:56:02:6F:97:7F:D7:84:43:EC:CE:1F:AB:38:15:01 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/00816CAC739011ECB33A5570C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.83.128.0/22 103.102.88.0/22 IPv6: 2402:4cc0::/32 Signature Algorithm: sha256WithRSAEncryption 5c:c4:47:d6:0c:65:78:24:3f:38:59:0d:1f:21:0d:0d:97:d6: cd:28:75:3b:06:a1:03:07:70:38:83:e7:d2:bc:79:cd:16:cc: b8:a3:06:00:ce:8b:43:07:2e:1e:06:cd:c0:f9:90:ee:cc:bd: 39:cc:84:39:14:5a:2e:23:35:0c:78:7e:cb:fd:da:4a:4a:b0: 28:f2:ef:1b:8d:f3:c8:1f:80:da:f4:1c:01:f5:b5:4c:80:f4: 6f:d9:19:ec:dc:e1:33:c9:ff:66:17:b7:9b:2d:2e:3c:2b:e2: bc:25:78:dc:e5:c4:a2:1c:af:e5:a4:53:b8:4d:c4:96:aa:be: 4c:34:1c:e3:a9:66:ff:22:67:be:a8:eb:39:47:40:05:5d:47: 65:c7:22:0c:4f:44:ca:b7:66:c8:6b:39:34:7a:32:e4:36:e7: b1:6f:9d:43:1d:02:1d:85:4d:d9:a3:82:34:80:9b:3c:63:15: 7e:06:16:7b:e8:1b:66:9d:d2:ad:b4:1b:22:71:37:ee:b5:2b: 1b:ef:35:c2:b9:40:2f:6a:09:62:6a:54:aa:4a:da:ae:4b:03: fd:75:60:c5:b6:d1:26:91:14:dc:44:d1:92:1c:91:c2:8e:72: 7a:c8:f3:14:dd:68:5c:1a:7a:a6:f4:7d:e3:cf:79:57:ec:cc: 65:b6:7e:6b -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICbMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNjA3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzU5ZS1kOTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTTyug+IO9B9d6WJXTs2arsSl0djO4MdleHxgC34Rp7R5QiD5p2BHtvMJSa1 pFKeMUr6dI5RwCso8MYhNqCXmYbBj61N/YlLFtaVXp43w5+jJSNKYTi63H22vzEj UvjO3lhK8JAhD2SinlGLiHLUGDr/xSg47wRIoYfk0hZxgcnVzdlWSMJmkRqobg2X QXNfQTuo0wsK3qr/7O2qL3q/oWMfpy6fvB0ouQDFHCCFfqq+4a2A5gnwLJQmSwXt WjJ/GYIcr6ynBsYj7y1Uoflu92jy/fA7zQOK/Yd2q6sIZudADo45cqB7fx7hDvxn L4GIH2QjDeCwH4zg2IGVLn9CsQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFDbEqi2a VgJvl3/XhEPszh+rOBUBMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMDA4MTZDQUM3 MzkwMTFFQ0IzM0E1NTcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnU4ADBAJnZlgwDQQCAAIwBwMFACQCTMAwDQYJKoZIhvcN AQELBQADggEBAFzER9YMZXgkPzhZDR8hDQ2X1s0odTsGoQMHcDiD59K8ec0WzLij BgDOi0MHLh4GzcD5kO7MvTnMhDkUWi4jNQx4fsv92kpKsCjy7xuN88gfgNr0HAH1 tUyA9G/ZGezc4TPJ/2YXt5stLjwr4rwleNzlxKIcr+WkU7hNxJaqvkw0HOOpZv8i Z76o6zlHQAVdR2XHIgxPRMq3ZshrOTR6MuQ257FvnUMdAh2FTdmjgjSAmzxjFX4G FnvoG2ad0q20GyJxN+61KxvvNcK5QC9qCWJqVKpK2q5LA/11YMW20SaRFNxE0ZIc kcKOcnrI8xTdaFwaeqb0fePPeVfszGW2fms= -----END CERTIFICATE-----Generated at Sun Apr 28 16:49:11 2024 by rpki-client on console-ams.rpki-client.org