$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2EE4E35A11F611EBB9E48D74C4F9AE02.roa File: 2EE4E35A11F611EBB9E48D74C4F9AE02.roa (raw, json) Hash identifier: Gk9BypzDwcM9pCdmaum4LgoLQ74kbb3kfZimvm2mK1o= Subject key identifier: 63:D6:E3:EA:B4:66:81:9D:51:5E:89:4E:3A:7C:75:AD:AD:58:78:3C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 71B6 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2EE4E35A11F611EBB9E48D74C4F9AE02.roa Signing time: Wed 10 May 2023 16:49:36 +0000 ROA not before: Wed 10 May 2023 16:49:36 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 58457 IP address blocks: 103.23.29.0/24 maxlen: 24 103.103.208.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29110 (0x71b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:49:36 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bcb20-7b00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:34:4a:58:13:e6:2e:08:62:8e:85:4f:83:8d: 0f:ce:12:96:95:06:48:ce:3c:0f:11:71:aa:fe:ca: 6e:b1:1e:b6:3a:f9:64:c5:e7:33:c8:8a:a9:91:b7: 15:4e:3f:fc:64:a9:54:4f:4e:ea:4e:68:51:75:8f: 07:91:c2:6a:e4:91:8b:f7:40:b2:16:15:03:14:d2: b8:a1:a9:c7:84:86:ab:5a:96:db:48:be:32:7a:44: 87:ea:c4:75:3f:33:2b:93:a2:72:0b:e4:93:96:72: 18:92:5f:6f:73:56:d0:72:cd:0e:25:88:d2:50:d1: 40:06:c8:94:3f:ed:f1:a3:4a:dd:27:81:66:b6:57: 2c:9d:bc:3c:d0:16:1e:48:ff:f8:46:f4:bf:b1:c5: 71:a1:e1:b4:bd:d2:3e:4b:95:0d:c2:e6:4f:4c:33: a8:87:7b:eb:56:69:e3:46:c2:e2:f7:10:54:a2:11: ec:bd:e1:f2:41:c2:eb:83:66:2d:7e:ae:39:54:3b: 57:dc:58:f2:e7:01:3b:b0:8f:70:4b:2f:4c:fe:4d: bc:b5:ab:05:76:b3:0d:4f:1a:ff:10:08:48:f6:73: 2d:6d:be:55:91:eb:4e:5b:66:56:a6:69:72:5a:03: a5:05:54:9c:34:cd:af:cb:5b:7f:92:0d:1e:91:2f: ba:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:D6:E3:EA:B4:66:81:9D:51:5E:89:4E:3A:7C:75:AD:AD:58:78:3C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2EE4E35A11F611EBB9E48D74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.29.0/24 103.103.208.0/23 Signature Algorithm: sha256WithRSAEncryption 14:70:a5:b5:d0:a4:c0:c9:d3:e9:eb:21:3c:d8:5e:c3:5f:7e: 33:c6:a5:4a:1b:1c:5c:d7:c8:6b:b3:54:ad:94:96:1c:c7:16: 34:9c:b0:9d:64:b0:a9:97:df:c7:05:59:c3:65:fc:90:0f:57: 5b:73:f1:02:68:f8:9b:a3:b6:99:89:fc:b7:ce:3b:92:0c:44: 29:11:cc:e4:58:1d:4d:f2:0f:c4:20:46:71:e9:74:4a:6f:63: 94:46:0d:f7:a4:d2:0f:0b:8a:60:22:88:ed:d0:a1:9c:86:5d: de:64:37:1d:ca:6c:96:68:e4:75:0f:84:5f:3d:da:8a:70:f8: be:e7:3f:7c:d4:12:6c:c3:ec:2a:40:7e:13:8b:1c:76:ba:71: 34:0d:10:80:a3:63:cc:48:e8:68:96:b2:47:c0:08:b8:31:d3: c5:99:ae:a5:62:1d:2c:94:7a:11:3b:1a:2f:48:dc:a2:9c:63: d4:3c:fa:06:f6:34:26:23:da:f3:81:d8:90:ec:4b:f2:6b:e6: b1:d8:2b:54:0c:4c:c5:4e:ec:c2:64:d0:20:66:4e:57:ac:ff: 6f:f5:40:3f:aa:21:57:59:7d:3e:81:e4:ce:28:2a:5e:a6:b8: 57:9f:9b:d8:61:0d:c6:a1:00:8c:91:6b:19:01:27:5d:76:38: 5c:3a:24:d5 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICcbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0OTM2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViY2IyMC03YjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjRKWBPmLghijoVPg40PzhKWlQZIzjwPEXGq/spusR62OvlkxeczyIqpkbcV Tj/8ZKlUT07qTmhRdY8HkcJq5JGL90CyFhUDFNK4oanHhIarWpbbSL4yekSH6sR1 PzMrk6JyC+STlnIYkl9vc1bQcs0OJYjSUNFABsiUP+3xo0rdJ4Fmtlcsnbw80BYe SP/4RvS/scVxoeG0vdI+S5UNwuZPTDOoh3vrVmnjRsLi9xBUohHsveHyQcLrg2Yt fq45VDtX3Fjy5wE7sI9wSy9M/k28tasFdrMNTxr/EAhI9nMtbb5VketOW2ZWpmly WgOlBVScNM2vy1t/kg0ekS+66QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGPW4+q0 ZoGdUV6JTjp8da2tWHg8MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMkVFNEUzNUEx MUY2MTFFQkI5RTQ4RDc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnFx0DBAFnZ9AwDQYJKoZIhvcNAQELBQADggEBABRwpbXQ pMDJ0+nrITzYXsNffjPGpUobHFzXyGuzVK2UlhzHFjScsJ1ksKmX38cFWcNl/JAP V1tz8QJo+JujtpmJ/LfOO5IMRCkRzORYHU3yD8QgRnHpdEpvY5RGDfek0g8LimAi iO3QoZyGXd5kNx3KbJZo5HUPhF892opw+L7nP3zUEmzD7CpAfhOLHHa6cTQNEICj Y8xI6GiWskfACLgx08WZrqViHSyUehE7Gi9I3KKcY9Q8+gb2NCYj2vOB2JDsS/Jr 5rHYK1QMTMVO7MJk0CBmTles/2/1QD+qIVdZfT6B5M4oKl6muFefm9hhDcahAIyR axkBJ112OFw6JNU= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:29 2024 by rpki-client on console-ams.rpki-client.org