$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0584C194E8FF11EAA215666CC4F9AE02.roa File: 0584C194E8FF11EAA215666CC4F9AE02.roa (raw, json) Hash identifier: szi9nEroSRlkcqDl6JU7Us05+F3tBVo1J8D4FSdHdUE= Subject key identifier: DE:0E:34:3D:1B:83:69:ED:59:EC:C0:B8:42:8E:8E:81:DC:D2:08:B8 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7F44 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0584C194E8FF11EAA215666CC4F9AE02.roa Signing time: Mon 04 Dec 2023 08:29:03 +0000 ROA not before: Mon 04 Dec 2023 08:29:03 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134943 IP address blocks: 103.141.115.0/24 maxlen: 24 103.204.184.0/24 maxlen: 24 103.204.185.0/24 maxlen: 24 103.204.186.0/24 maxlen: 24 103.204.187.0/24 maxlen: 24 2404:13c0:1111::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32580 (0x7f44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Dec 4 08:29:03 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=656d8dce-e0d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:3d:3e:9c:74:3a:a6:f2:d6:66:32:0b:af:88: 3d:00:49:1a:20:ca:0a:6c:1e:70:09:79:15:ed:b6: 9f:3a:0d:42:b5:fd:e5:71:1f:61:1b:9c:80:8c:77: ca:3c:7c:37:56:0a:a9:3e:8e:2c:de:5b:cd:7f:29: 48:72:51:51:db:17:5c:ae:68:5d:b1:0b:3a:a3:79: 19:d9:4a:e7:8a:b2:5b:32:ca:91:fa:03:34:58:44: f9:a5:e5:61:77:5a:1f:03:d4:c5:f8:f6:76:db:c7: 3e:61:98:c4:c5:89:92:2c:ad:ee:c0:cb:ca:88:0e: 1d:05:84:76:9f:2c:97:43:57:d1:76:e9:91:a2:1c: 19:6e:bd:dd:9d:32:4f:3d:35:e7:71:02:62:7f:ee: 12:ef:66:1a:d5:3d:c0:e7:c7:82:77:f8:50:e7:8b: ae:61:68:21:71:85:9f:39:1f:77:9f:bf:a6:35:16: 61:14:46:25:53:e7:a4:05:48:9f:ee:77:83:55:85: 51:10:24:bd:6f:de:86:9e:6f:3b:fb:17:3b:75:88: 5b:8f:22:ae:50:af:fe:94:82:ef:6e:69:a3:7b:8e: 71:39:12:30:68:33:27:b4:0b:ab:b9:ef:7d:c8:be: 78:7a:89:99:70:3b:29:fb:e8:02:7c:66:86:9a:b2: 6b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:0E:34:3D:1B:83:69:ED:59:EC:C0:B8:42:8E:8E:81:DC:D2:08:B8 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0584C194E8FF11EAA215666CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.115.0/24 103.204.184.0/22 IPv6: 2404:13c0:1111::/48 Signature Algorithm: sha256WithRSAEncryption 58:25:d4:46:d8:0d:fe:3e:fd:6d:86:97:e2:1e:1d:42:5b:72: 67:57:3f:af:1d:08:4e:83:67:14:89:37:c7:00:c8:0f:09:db: 99:92:ab:c6:bc:25:11:2f:46:07:df:a7:6c:36:a7:32:a5:e7: 0c:ae:4c:84:60:c7:7d:c4:7c:78:77:70:00:78:9e:78:1d:09: 0b:5e:3f:30:21:92:cc:54:6a:e2:f4:67:fd:30:11:68:33:b0: e0:88:7a:c1:53:45:b4:13:f9:04:9f:dd:9c:4d:5d:ea:c2:cb: b1:ab:e4:ab:43:a2:ec:a1:67:6d:cf:a8:a0:91:d9:3a:94:c1: 46:02:de:b5:b1:d0:25:44:3d:84:b6:08:a1:96:27:97:e7:a2: 9c:91:ae:c5:7f:77:c9:93:24:68:b4:3c:19:20:d8:c6:83:6b: 7c:31:7b:7b:05:8b:19:79:83:8c:6a:fc:a3:3c:01:f1:b6:b8: 01:fe:3f:a2:b6:e0:a5:ba:1b:a1:0b:2b:57:0a:5b:5c:dc:e0: aa:aa:4b:21:3b:ae:a7:27:9a:9b:5f:7e:91:31:86:43:b0:7f: 75:a1:61:66:a0:50:e3:18:0b:aa:32:28:4a:c9:8a:f6:1b:a9: f2:4b:76:03:60:95:eb:18:17:83:bc:29:67:47:0f:19:f8:d2: 5b:30:0b:75 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICf0QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMxMjA0MDgyOTAzWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZkOGRjZS1lMGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4D0+nHQ6pvLWZjILr4g9AEkaIMoKbB5wCXkV7bafOg1Ctf3lcR9hG5yAjHfK PHw3VgqpPo4s3lvNfylIclFR2xdcrmhdsQs6o3kZ2UrnirJbMsqR+gM0WET5peVh d1ofA9TF+PZ228c+YZjExYmSLK3uwMvKiA4dBYR2nyyXQ1fRdumRohwZbr3dnTJP PTXncQJif+4S72Ya1T3A58eCd/hQ54uuYWghcYWfOR93n7+mNRZhFEYlU+ekBUif 7neDVYVRECS9b96Gnm87+xc7dYhbjyKuUK/+lILvbmmje45xORIwaDMntAurue99 yL54eomZcDsp++gCfGaGmrJrGwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFN4OND0b g2ntWezAuEKOjoHc0gi4MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMDU4NEMxOTRF OEZGMTFFQUEyMTU2NjZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnjXMDBAJnzLgwDwQCAAIwCQMHACQEE8ARETANBgkqhkiG 9w0BAQsFAAOCAQEAWCXURtgN/j79bYaX4h4dQltyZ1c/rx0IToNnFIk3xwDIDwnb mZKrxrwlES9GB9+nbDanMqXnDK5MhGDHfcR8eHdwAHieeB0JC14/MCGSzFRq4vRn /TARaDOw4Ih6wVNFtBP5BJ/dnE1d6sLLsavkq0Oi7KFnbc+ooJHZOpTBRgLetbHQ JUQ9hLYIoZYnl+einJGuxX93yZMkaLQ8GSDYxoNrfDF7ewWLGXmDjGr8ozwB8ba4 Af4/orbgpboboQsrVwpbXNzgqqpLITuupyeam19+kTGGQ7B/daFhZqBQ4xgLqjIo SsmK9hup8kt2A2CV6xgXg7wpZ0cPGfjSWzALdQ== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:25 2024 by rpki-client on console-ams.rpki-client.org