$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/13E8304CB8C111EDAC68E946C4F9AE02.roa File: 13E8304CB8C111EDAC68E946C4F9AE02.roa (raw, json) Hash identifier: 7z6BzP99ohpDkIoZkjIPtp0YilS9/YH25XTjVcA9Isc= Subject key identifier: 6B:F4:BE:7A:B8:B8:16:C6:5A:0C:79:34:30:9C:57:4F:E1:3A:F5:BF Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6D09 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/13E8304CB8C111EDAC68E946C4F9AE02.roa Signing time: Wed 10 May 2023 16:27:23 +0000 ROA not before: Wed 10 May 2023 16:27:23 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 137174 IP address blocks: 103.112.84.0/23 maxlen: 24 103.112.86.0/23 maxlen: 24 2400:e4e0::/48 maxlen: 48 2400:e4e0:1::/48 maxlen: 48 2400:e4e0:2::/48 maxlen: 48 2400:e4e0:3::/48 maxlen: 48 2400:e4e0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27913 (0x6d09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:27:23 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc5eb-96be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9d:06:c5:a4:ed:f9:6a:b2:4d:82:21:4f:94: 46:82:1a:92:76:c2:f2:ed:22:af:27:39:c1:4b:38: 5f:3c:69:ec:2c:46:77:41:dd:ad:64:ea:8b:cf:04: ac:b3:44:e0:fd:43:42:ba:50:cc:c8:fd:8c:d9:e5: 13:87:37:32:45:1b:41:c8:f6:ec:23:fe:9b:79:3a: 72:54:66:12:68:27:c4:88:88:97:fe:a8:9e:26:63: 2e:13:9f:1a:f8:76:9b:0a:4b:9d:b9:d9:b7:0f:74: d8:aa:31:60:51:cc:9a:b2:2e:ff:04:a3:93:8c:c7: 17:e7:60:b7:21:07:e9:e3:41:37:53:17:74:b6:df: a6:72:37:e4:9d:36:4d:2f:bf:14:52:65:ae:cf:3d: 68:db:c9:12:8e:36:83:4b:9c:24:bb:6e:55:b4:c3: 65:b8:62:29:af:40:c9:26:15:9b:32:7d:af:ad:8a: 09:ef:1a:62:c0:9f:58:54:0e:58:55:30:71:e5:56: f3:5a:2f:84:fd:4f:39:6d:d3:b7:ff:02:54:15:d0: 98:a1:5e:e8:12:2e:22:5e:c4:36:81:32:e1:88:77: d6:f7:4a:e6:74:85:e9:ed:52:d4:2e:f7:c6:53:81: fa:68:bf:7d:8c:3b:8a:01:0b:57:b8:7e:4a:40:98: 9b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:F4:BE:7A:B8:B8:16:C6:5A:0C:79:34:30:9C:57:4F:E1:3A:F5:BF X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/13E8304CB8C111EDAC68E946C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.112.84.0/22 IPv6: 2400:e4e0::-2400:e4e0:4:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 11:b9:21:29:73:42:72:20:78:d6:37:ff:73:14:38:15:5e:99: bc:ac:9a:d1:f2:48:57:35:9a:7a:16:5f:94:9d:b6:7b:22:5a: 90:af:62:eb:5e:ee:45:aa:2d:ed:ca:78:7e:97:d2:92:00:c5: b9:d6:53:f5:38:e4:53:e2:cc:94:d8:30:c5:9d:28:7d:2b:05: c1:3a:20:89:9e:cd:4d:f7:d3:b0:40:36:8f:13:a3:48:db:c0: 38:de:b2:67:6b:ae:80:77:0d:6f:7f:6a:6e:75:f8:98:69:2e: 56:60:e1:35:24:93:7e:76:93:e6:9d:fd:47:3a:21:dc:01:93: 67:eb:aa:86:9d:a7:6d:f3:0e:0b:c7:45:da:b4:1f:9d:1b:ff: 36:fb:13:00:dd:9d:33:f6:c7:b9:70:79:0e:c2:87:e5:d2:dc: 1a:9a:23:c2:a1:48:26:02:11:60:ac:e7:4b:ae:84:17:50:da: d4:3a:c1:2b:4e:9c:d7:ca:52:b0:7f:8a:ce:50:2d:06:6a:e2: 20:80:0a:a6:b6:84:4c:ba:f6:96:5b:36:f3:0b:db:74:bd:25: 5e:07:e4:90:f3:36:a3:f8:e8:ed:d3:9d:c2:cb:ae:c1:7f:74: 55:85:d1:38:d9:44:74:7d:2f:40:b3:53:7e:49:3f:b7:25:52: a4:0d:d7:8b -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICbQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNzIzWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzVlYi05NmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy50GxaTt+WqyTYIhT5RGghqSdsLy7SKvJznBSzhfPGnsLEZ3Qd2tZOqLzwSs s0Tg/UNCulDMyP2M2eUThzcyRRtByPbsI/6beTpyVGYSaCfEiIiX/qieJmMuE58a +HabCkududm3D3TYqjFgUcyasi7/BKOTjMcX52C3IQfp40E3Uxd0tt+mcjfknTZN L78UUmWuzz1o28kSjjaDS5wku25VtMNluGIpr0DJJhWbMn2vrYoJ7xpiwJ9YVA5Y VTBx5VbzWi+E/U85bdO3/wJUFdCYoV7oEi4iXsQ2gTLhiHfW90rmdIXp7VLULvfG U4H6aL99jDuKAQtXuH5KQJibEQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFGv0vnq4 uBbGWgx5NDCcV0/hOvW/MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMTNFODMwNENC OEMxMTFFREFDNjhFOTQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBAJncFQwGAQCAAIwEjAQAwUFJADk4AMHACQA5OAABDANBgkq hkiG9w0BAQsFAAOCAQEAEbkhKXNCciB41jf/cxQ4FV6ZvKya0fJIVzWaehZflJ22 eyJakK9i617uRaot7cp4fpfSkgDFudZT9TjkU+LMlNgwxZ0ofSsFwTogiZ7NTffT sEA2jxOjSNvAON6yZ2uugHcNb39qbnX4mGkuVmDhNSSTfnaT5p39Rzoh3AGTZ+uq hp2nbfMOC8dF2rQfnRv/NvsTAN2dM/bHuXB5DsKH5dLcGpojwqFIJgIRYKznS66E F1Da1DrBK06c18pSsH+KzlAtBmriIIAKpraETLr2lls28wvbdL0lXgfkkPM2o/jo 7dOdwsuuwX90VYXRONlEdH0vQLNTfkk/tyVSpA3Xiw== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:26 2024 by rpki-client on console-ams.rpki-client.org