$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1C17A9F206EC11EB8753C925C4F9AE02.roa File: 1C17A9F206EC11EB8753C925C4F9AE02.roa (raw, json) Hash identifier: zhADFiUYyzeWeXcC8lh/TVnW2fZ8RsqPhQRElfOzHhU= Subject key identifier: B9:F0:75:60:BE:BC:6B:BE:70:FA:C7:87:AC:1D:29:15:8B:5A:D6:5B Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6B6F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1C17A9F206EC11EB8753C925C4F9AE02.roa Signing time: Wed 10 May 2023 16:19:40 +0000 ROA not before: Wed 10 May 2023 16:19:40 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134918 IP address blocks: 103.210.204.0/22 maxlen: 24 2405:ca40::/32 maxlen: 32 2405:ca40::/36 maxlen: 36 2405:ca40:1000::/36 maxlen: 36 2405:ca40:2000::/36 maxlen: 36 2405:ca40:3000::/36 maxlen: 36 2405:ca40:4000::/36 maxlen: 36 2405:ca40:5000::/36 maxlen: 36 2405:ca40:6000::/36 maxlen: 36 2405:ca40:7000::/36 maxlen: 36 2405:ca40:8000::/36 maxlen: 36 2405:ca40:9000::/36 maxlen: 36 2405:ca40:a000::/36 maxlen: 36 2405:ca40:b000::/36 maxlen: 36 2405:ca40:c000::/36 maxlen: 36 2405:ca40:d000::/36 maxlen: 36 2405:ca40:e000::/36 maxlen: 36 2405:ca40:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27503 (0x6b6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:19:40 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc41c-903e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:36:56:b9:62:99:27:d1:1f:bb:0c:a5:ef:4f: dd:cd:6b:df:82:c4:3a:e9:0b:02:be:5e:10:34:01: ab:5f:6d:b3:bb:bf:0e:9c:84:0a:1b:5b:e5:3d:36: b3:3e:b1:31:a0:96:1a:0b:7b:16:0f:83:65:2b:b2: 27:4b:45:86:3a:33:c6:11:0d:57:07:63:c7:84:19: 38:74:ac:3e:17:1e:9c:b1:1a:db:71:45:a7:0b:f7: 71:d8:ec:9a:b6:2c:50:59:50:8f:a6:5a:61:de:4f: 91:f2:51:a4:68:69:18:a6:6a:b2:ae:47:52:be:0d: fd:e4:49:22:0f:2e:aa:dc:6b:5a:ea:44:ab:6f:4c: e2:b3:d6:69:58:81:77:c3:cf:9e:1e:f5:7c:b2:b2: bc:fd:73:fe:f9:39:5a:9c:32:29:7e:ed:b0:0c:78: 7f:7f:e9:d7:36:28:03:19:1b:f9:10:38:ed:96:0d: ba:c9:b1:37:31:59:f2:98:74:59:e0:a3:28:fb:3a: 2e:e3:48:dd:da:6c:ab:e6:f8:e7:23:eb:77:62:2a: 04:9e:a8:15:14:27:9a:4f:97:fe:fd:31:f7:eb:25: 3b:53:71:a0:4b:1a:6c:ff:20:d1:77:64:a7:70:1f: bd:71:7f:bb:a5:49:64:d5:b0:99:7a:96:e7:03:90: ac:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:F0:75:60:BE:BC:6B:BE:70:FA:C7:87:AC:1D:29:15:8B:5A:D6:5B X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1C17A9F206EC11EB8753C925C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.210.204.0/22 IPv6: 2405:ca40::/32 Signature Algorithm: sha256WithRSAEncryption 1c:0c:39:6c:e8:e0:ca:69:f2:62:6c:3d:3a:4c:cb:ad:20:7a: 18:9c:19:7e:5f:2d:6e:af:15:73:88:0f:9c:76:dd:58:16:59: 81:5b:cd:b1:ec:66:0b:d4:0e:79:3a:b1:81:38:31:48:9e:93: 2c:0a:68:dc:af:93:e9:9c:00:cc:ba:07:69:58:4a:67:00:86: fd:57:5a:80:ec:eb:55:1d:25:b9:03:da:99:15:06:cf:18:7a: 26:1e:f7:6c:e9:40:b3:de:b8:cf:93:e6:3b:70:72:79:18:61: 71:7e:72:2e:76:ce:1c:5f:b7:df:3e:83:ca:2a:90:21:c9:ce: f3:91:e6:84:ab:68:30:77:b5:2a:dc:f4:e9:67:be:91:78:8d: 49:54:6c:92:3a:9a:a4:63:d2:77:f2:4d:d4:e1:7c:62:57:88: 5f:42:35:a0:75:3e:cf:4d:75:80:69:71:be:fe:80:e1:dd:a2: e3:c5:b7:b2:8b:58:1d:d4:eb:da:77:c7:14:5e:3b:5b:eb:96: c3:12:ab:1b:ae:c6:35:49:e1:4f:54:c3:2e:0e:e2:fd:31:86: 0d:de:3f:48:99:f5:22:12:44:14:30:48:1b:34:eb:16:c5:4c: f7:3d:bf:07:98:cc:3d:56:f9:06:29:90:b2:cc:be:57:69:f1: 8e:e3:6b:4a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICa28wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxOTQwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzQxYy05MDNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9jZWuWKZJ9Efuwyl70/dzWvfgsQ66QsCvl4QNAGrX22zu78OnIQKG1vlPTaz PrExoJYaC3sWD4NlK7InS0WGOjPGEQ1XB2PHhBk4dKw+Fx6csRrbcUWnC/dx2Oya tixQWVCPplph3k+R8lGkaGkYpmqyrkdSvg395EkiDy6q3Gta6kSrb0zis9ZpWIF3 w8+eHvV8srK8/XP++TlanDIpfu2wDHh/f+nXNigDGRv5EDjtlg26ybE3MVnymHRZ 4KMo+zou40jd2myr5vjnI+t3YioEnqgVFCeaT5f+/TH36yU7U3GgSxps/yDRd2Sn cB+9cX+7pUlk1bCZepbnA5CsVwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLnwdWC+ vGu+cPrHh6wdKRWLWtZbMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMUMxN0E5RjIw NkVDMTFFQjg3NTNDOTI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJn0swwDQQCAAIwBwMFACQFykAwDQYJKoZIhvcNAQELBQAD ggEBABwMOWzo4Mpp8mJsPTpMy60gehicGX5fLW6vFXOID5x23VgWWYFbzbHsZgvU Dnk6sYE4MUiekywKaNyvk+mcAMy6B2lYSmcAhv1XWoDs61UdJbkD2pkVBs8YeiYe 92zpQLPeuM+T5jtwcnkYYXF+ci52zhxft98+g8oqkCHJzvOR5oSraDB3tSrc9Oln vpF4jUlUbJI6mqRj0nfyTdThfGJXiF9CNaB1Ps9NdYBpcb7+gOHdouPFt7KLWB3U 69p3xxReO1vrlsMSqxuuxjVJ4U9Uwy4O4v0xhg3eP0iZ9SISRBQwSBs06xbFTPc9 vweYzD1W+QYpkLLMvldp8Y7ja0o= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:27 2024 by rpki-client on console-ams.rpki-client.org