$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0731FB7A4B5411ECB050D13AC4F9AE02.roa File: 0731FB7A4B5411ECB050D13AC4F9AE02.roa (raw, json) Hash identifier: Hzf/q1RZnOOANWN8dSvD8+JZxTH4yQoZqi6U6CimeoM= Subject key identifier: 13:41:25:DB:66:D9:96:A2:5E:35:B8:D6:F5:03:89:79:05:A5:5F:EA Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 71F5 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0731FB7A4B5411ECB050D13AC4F9AE02.roa Signing time: Fri 12 May 2023 05:52:08 +0000 ROA not before: Fri 12 May 2023 05:52:08 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141498 IP address blocks: 103.133.64.0/24 maxlen: 24 103.133.65.0/24 maxlen: 24 103.133.66.0/24 maxlen: 24 103.133.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29173 (0x71f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 12 05:52:08 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645dd407-df42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:af:7b:12:0e:52:06:98:94:ea:94:85:bd:17: cb:29:42:f5:c8:34:9f:4d:93:32:7b:60:93:e4:c2: 32:20:f4:f9:0e:44:51:da:8a:77:93:8d:38:6b:8d: c5:e9:58:ef:7f:e7:ee:f6:86:f6:1b:43:1f:5f:cf: 10:86:57:76:e5:7d:98:17:74:24:0c:cd:97:dc:ed: 36:18:ad:b9:b6:6d:58:6d:e0:db:e0:0d:6b:21:35: f5:da:d2:af:a6:82:65:67:1f:d9:eb:2d:82:2a:d1: 9d:4c:8d:6c:95:5b:76:67:7a:78:5f:27:f1:ac:19: 4e:73:95:fe:e9:de:c7:3d:1c:6c:43:68:07:b9:2a: 10:dd:da:1d:4c:c9:cb:24:6c:1a:67:0d:14:2a:3b: de:bb:46:f7:d5:cb:9a:ba:6b:e4:ae:41:11:12:2f: 32:4b:6f:85:d2:e9:3f:3c:9a:63:3b:e4:ce:eb:48: e2:7c:c0:62:b1:24:ae:1f:cf:a0:83:a1:b9:4f:2a: d2:79:19:08:83:42:6f:79:ce:18:2b:57:3e:b0:cb: 10:46:d4:eb:ad:68:da:48:27:f1:20:93:89:c0:9a: e1:46:ad:23:d3:60:0b:bc:60:fb:5a:5f:3c:00:a3: 65:e8:55:73:d8:47:83:0d:98:a2:b2:c8:fa:da:ca: 39:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:41:25:DB:66:D9:96:A2:5E:35:B8:D6:F5:03:89:79:05:A5:5F:EA X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0731FB7A4B5411ECB050D13AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.64.0/22 Signature Algorithm: sha256WithRSAEncryption 76:0a:44:a7:30:8b:d4:b9:67:31:a6:e7:5d:aa:c1:16:d2:27: b4:08:d7:d7:4a:21:01:0c:b5:9e:98:63:a7:ae:2c:ef:2e:14: 28:af:3b:6a:3f:0b:fe:ee:53:50:74:47:68:cc:c7:5e:1d:62: 15:e6:62:2e:fd:b0:ae:ec:1b:68:45:df:83:a1:cd:42:a4:2b: 34:81:25:7b:66:dc:ca:5a:bf:a1:35:da:12:f3:6f:37:76:ae: 00:67:5a:c0:ef:fd:ed:de:f9:10:f9:22:70:80:bc:f8:22:44: d8:7c:d3:5b:7c:ab:d2:8b:1a:32:a8:63:aa:25:fc:3f:d9:7f: 10:c9:f7:6a:8c:39:5e:c1:52:04:0c:bf:44:7e:c8:8d:6c:bb: 17:0d:47:7a:d2:8a:de:f7:a9:46:53:c9:c1:ff:f9:0b:50:bc: 12:db:0a:27:16:40:e1:9b:e4:bb:b6:65:64:24:52:c0:02:af: a3:34:20:5d:5d:3c:2b:40:4c:56:47:ee:a7:b6:71:81:fb:46: db:98:c2:fc:3d:73:05:9f:c4:40:31:a8:ee:54:d3:fe:da:ad: 87:d4:20:17:61:bd:c9:9b:00:18:a8:1a:39:03:35:47:8d:af: 07:d4:12:88:10:03:f4:c5:2f:bf:3e:13:12:75:43:66:50:5e: 02:e0:8a:4f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICcfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEyMDU1MjA4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDVkZDQwNy1kZjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAva97Eg5SBpiU6pSFvRfLKUL1yDSfTZMye2CT5MIyIPT5DkRR2op3k404a43F 6Vjvf+fu9ob2G0MfX88Qhld25X2YF3QkDM2X3O02GK25tm1YbeDb4A1rITX12tKv poJlZx/Z6y2CKtGdTI1slVt2Z3p4XyfxrBlOc5X+6d7HPRxsQ2gHuSoQ3dodTMnL JGwaZw0UKjveu0b31cuaumvkrkEREi8yS2+F0uk/PJpjO+TO60jifMBisSSuH8+g g6G5TyrSeRkIg0Jvec4YK1c+sMsQRtTrrWjaSCfxIJOJwJrhRq0j02ALvGD7Wl88 AKNl6FVz2EeDDZiissj62so5nQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBNBJdtm 2ZaiXjW41vUDiXkFpV/qMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMDczMUZCN0E0 QjU0MTFFQ0IwNTBEMTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnhUAwDQYJKoZIhvcNAQELBQADggEBAHYKRKcwi9S5ZzGm 512qwRbSJ7QI19dKIQEMtZ6YY6euLO8uFCivO2o/C/7uU1B0R2jMx14dYhXmYi79 sK7sG2hF34OhzUKkKzSBJXtm3Mpav6E12hLzbzd2rgBnWsDv/e3e+RD5InCAvPgi RNh801t8q9KLGjKoY6ol/D/ZfxDJ92qMOV7BUgQMv0R+yI1suxcNR3rSit73qUZT ycH/+QtQvBLbCicWQOGb5Lu2ZWQkUsACr6M0IF1dPCtATFZH7qe2cYH7RtuYwvw9 cwWfxEAxqO5U0/7arYfUIBdhvcmbABioGjkDNUeNrwfUEogQA/TFL78+ExJ1Q2ZQ XgLgik8= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:26 2024 by rpki-client on console-ams.rpki-client.org