$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/25628DD88C7011EBA752313FC4F9AE02.roa File: 25628DD88C7011EBA752313FC4F9AE02.roa (raw, json) Hash identifier: MeyWAn9NuKv51TTGQA1AFrn7/mW4vBZ4ys17wfrcHrQ= Subject key identifier: E3:00:E6:BD:0B:8C:F4:C0:6C:73:C2:97:92:05:43:A7:37:64:13:10 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6B4E Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/25628DD88C7011EBA752313FC4F9AE02.roa Signing time: Wed 10 May 2023 16:19:02 +0000 ROA not before: Wed 10 May 2023 16:19:02 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134869 IP address blocks: 103.35.142.0/24 maxlen: 24 103.103.219.0/24 maxlen: 24 103.103.236.0/23 maxlen: 24 2403:f440::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27470 (0x6b4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:19:02 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc3f5-3743 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:85:17:40:bd:ed:fb:98:05:ff:75:a2:25:97: 09:f8:2d:45:5b:5f:01:3c:80:5b:3d:42:3f:e4:6d: 74:bc:f1:9d:ca:0e:1f:5b:8f:fa:e1:63:3a:14:fa: 0a:28:e7:74:13:a5:32:e3:cc:ac:97:5f:46:55:8d: 82:09:77:25:2e:84:74:fa:95:41:b0:c0:29:4c:04: 64:9f:35:23:46:f3:b1:db:84:52:60:86:ad:90:c6: 4f:2b:09:b8:d1:d1:fb:ce:a1:ff:eb:e5:f5:d6:1d: 13:31:a3:74:6b:3d:86:14:07:fe:63:ec:04:40:17: 20:88:fc:dd:ca:5d:35:4f:4b:42:cd:54:de:d0:95: 82:f2:46:40:f9:79:2f:d8:49:e2:80:d7:4b:79:d0: 2e:4d:82:df:b7:ec:3a:fb:4e:d3:7e:dd:3a:41:92: 3f:6c:45:7a:74:12:de:1e:06:8e:af:e8:c2:f0:a4: 36:6a:31:0b:1f:21:9c:cb:4c:45:73:e0:ae:b1:d6: 75:e2:66:ad:80:f0:a4:f0:25:25:16:c7:89:f0:50: 97:00:20:27:39:06:33:fd:92:7f:fc:b3:e0:1f:84: 55:4e:4a:d5:ff:33:4c:e8:16:f1:bf:91:32:5f:27: 00:bc:9d:19:ff:d4:19:32:85:97:12:69:3f:2f:70: 05:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:00:E6:BD:0B:8C:F4:C0:6C:73:C2:97:92:05:43:A7:37:64:13:10 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/25628DD88C7011EBA752313FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.35.142.0/24 103.103.219.0/24 103.103.236.0/23 IPv6: 2403:f440::/32 Signature Algorithm: sha256WithRSAEncryption a7:6e:bf:e1:d5:f0:0b:0f:91:60:2a:80:b5:fb:df:f9:36:c5: 2b:04:fc:c0:22:ed:8c:34:95:0c:3c:63:0a:03:85:ce:6c:56: 8d:3f:3b:93:34:34:d9:83:d7:4c:53:70:b1:03:2d:0b:16:70: fe:a1:8f:a6:9e:75:a2:c1:70:49:08:53:a5:33:4c:23:1c:b6: 14:2b:08:4c:8c:fa:1d:c3:bc:c4:92:5a:7c:95:c0:6e:48:52: ab:84:a1:11:81:3b:8b:56:8d:5d:12:65:31:d7:5d:3c:c1:81: 94:4f:66:e1:40:e1:72:fa:88:8f:f7:81:5d:2f:7c:e0:fe:ac: 09:5b:26:1f:1c:82:c2:d7:51:82:fe:92:ab:63:ac:8c:fd:29: 3a:ef:2e:56:d6:05:6f:77:49:44:10:f5:d1:ed:1f:d6:40:99: 69:e3:32:ca:43:d3:0a:30:ec:49:13:63:4f:65:19:06:a0:22: 5f:90:13:b5:fd:ee:ee:db:34:32:05:e3:5d:53:e2:0f:5b:2e: 53:9d:43:de:d9:36:bf:95:49:3a:aa:98:d1:35:e7:d9:d3:ba: fc:2b:9b:b5:23:19:36:41:76:19:e7:95:5a:c4:9d:1a:c0:6d: 48:f5:b7:d1:ce:66:95:82:69:21:72:20:7e:66:e0:1c:e0:16: 12:3b:cd:1d -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICa04wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxOTAyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzNmNS0zNzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1oUXQL3t+5gF/3WiJZcJ+C1FW18BPIBbPUI/5G10vPGdyg4fW4/64WM6FPoK KOd0E6Uy48ysl19GVY2CCXclLoR0+pVBsMApTARknzUjRvOx24RSYIatkMZPKwm4 0dH7zqH/6+X11h0TMaN0az2GFAf+Y+wEQBcgiPzdyl01T0tCzVTe0JWC8kZA+Xkv 2EnigNdLedAuTYLft+w6+07Tft06QZI/bEV6dBLeHgaOr+jC8KQ2ajELHyGcy0xF c+CusdZ14matgPCk8CUlFseJ8FCXACAnOQYz/ZJ//LPgH4RVTkrV/zNM6Bbxv5Ey XycAvJ0Z/9QZMoWXEmk/L3AF6QIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFOMA5r0L jPTAbHPCl5IFQ6c3ZBMQMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMjU2MjhERDg4 QzcwMTFFQkE3NTIzMTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBABnI44DBABnZ9sDBAFnZ+wwDQQCAAIwBwMFACQD9EAwDQYJ KoZIhvcNAQELBQADggEBAKduv+HV8AsPkWAqgLX73/k2xSsE/MAi7Yw0lQw8YwoD hc5sVo0/O5M0NNmD10xTcLEDLQsWcP6hj6aedaLBcEkIU6UzTCMcthQrCEyM+h3D vMSSWnyVwG5IUquEoRGBO4tWjV0SZTHXXTzBgZRPZuFA4XL6iI/3gV0vfOD+rAlb Jh8cgsLXUYL+kqtjrIz9KTrvLlbWBW93SUQQ9dHtH9ZAmWnjMspD0wow7EkTY09l GQagIl+QE7X97u7bNDIF411T4g9bLlOdQ97ZNr+VSTqqmNE159nTuvwrm7UjGTZB dhnnlVrEnRrAbUj1t9HOZpWCaSFyIH5m4BzgFhI7zR0= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:28 2024 by rpki-client on console-ams.rpki-client.org