$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2EEBFA98D9EC11EEBF3C3664C4F9AE02.roa File: 2EEBFA98D9EC11EEBF3C3664C4F9AE02.roa (raw, json) Hash identifier: bcxqcBpwleJSg9iAt6/2LuUdNgBS4j8N81briOwXTeY= Subject key identifier: 99:6C:D9:0C:33:95:1C:24:9D:5F:FC:54:FE:47:1E:BD:7E:AC:68:6D Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 83FC Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2EEBFA98D9EC11EEBF3C3664C4F9AE02.roa Signing time: Mon 04 Mar 2024 05:58:12 +0000 ROA not before: Mon 04 Mar 2024 05:58:12 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141834 IP address blocks: 103.51.54.0/24 maxlen: 24 103.51.55.0/24 maxlen: 24 103.167.126.0/23 maxlen: 24 103.187.110.0/23 maxlen: 24 2001:df6:b680::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33788 (0x83fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Mar 4 05:58:12 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65e562f4-fab1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:66:56:bd:57:f5:fa:dd:32:dc:5f:a5:1f:da: 63:ec:f8:2c:fe:47:ec:40:ef:b2:09:cd:ba:7d:45: bb:02:ca:8e:b9:b8:2b:35:1a:03:65:55:c1:a7:dd: b6:c9:d7:44:20:66:31:5c:a4:c3:e8:3d:24:8f:96: d9:ef:99:97:0c:ed:bb:78:c3:ef:cb:7d:bd:63:11: 96:b1:0a:83:f7:26:83:f3:43:0d:33:7b:81:66:c4: 71:e9:f4:2a:5e:bf:f7:9c:0c:b1:a7:ff:32:00:02: 39:7c:d5:61:d0:67:80:d7:46:8c:3a:d7:7a:ad:64: 9d:e1:49:3d:a3:d3:ef:3e:60:e5:1a:be:1f:d2:86: d6:4a:9e:81:b5:c2:2c:13:80:7b:e0:f5:43:57:da: d5:46:07:e8:a7:53:f6:9e:5b:88:33:1e:9e:47:c5: 33:a1:07:0e:34:11:78:86:6a:a4:80:96:48:cc:6b: 7c:84:d1:31:68:27:f3:ab:b3:bb:90:78:cd:06:0c: 8f:b5:b7:e8:da:f9:e8:c6:92:40:50:63:fd:df:53: 8e:60:38:d3:8a:d9:96:b9:16:40:a2:d0:e7:ad:38: 36:35:23:95:b9:2b:69:34:3c:b2:07:f4:f1:c3:23: 7b:dd:c1:5a:19:cd:8d:13:2e:9a:c7:b8:c5:68:20: d0:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:6C:D9:0C:33:95:1C:24:9D:5F:FC:54:FE:47:1E:BD:7E:AC:68:6D X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2EEBFA98D9EC11EEBF3C3664C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.51.54.0/23 103.167.126.0/23 103.187.110.0/23 IPv6: 2001:df6:b680::/48 Signature Algorithm: sha256WithRSAEncryption 3c:37:3f:31:18:2f:dc:fb:eb:82:0c:92:06:53:d8:22:20:38: 53:c2:04:87:45:a5:3c:de:77:be:e9:81:85:ae:8e:da:96:a6: c7:cc:95:53:5f:0e:f8:f1:90:2f:cc:c3:86:92:65:5c:2b:e5: 3f:6a:ad:4d:8d:de:38:eb:ae:0c:76:af:4f:48:ff:84:4c:cc: d9:d5:50:df:7f:62:16:fa:a3:a3:7e:37:25:92:e4:92:7a:3b: 49:19:74:3f:54:e3:20:be:3f:9c:5f:63:80:44:89:ef:db:e5: 26:db:9e:72:14:b3:2b:4f:a3:cd:1d:44:5b:41:92:c5:37:3e: 63:57:9c:f8:4e:03:cb:08:3d:19:e0:e4:52:e3:0d:1f:83:d4: d9:c2:90:b3:9b:d6:c5:d7:75:0d:ca:c9:22:40:cb:be:2f:39: 8b:41:d7:31:80:7b:bb:10:81:04:0a:87:25:32:56:b7:21:e3: 34:63:ba:9d:ab:b8:c4:ad:de:1e:a1:05:b6:8b:e7:c9:d8:be: 9b:65:8d:e6:a2:17:75:60:c5:7b:6c:85:02:e5:86:64:e4:ad: bb:55:5d:73:a8:af:8c:18:f5:10:43:53:08:db:ff:2b:d8:f6: b4:1f:8b:2e:4b:61:78:17:db:1b:de:b8:84:0b:20:df:5d:cc: 63:37:23:29 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgIDAIP8MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDMwNDA1NTgxMloXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjVlNTYyZjQtZmFiMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKhmVr1X9frdMtxfpR/aY+z4LP5H7EDvsgnNun1FuwLKjrm4KzUaA2VVwafd tsnXRCBmMVykw+g9JI+W2e+Zlwztu3jD78t9vWMRlrEKg/cmg/NDDTN7gWbEcen0 Kl6/95wMsaf/MgACOXzVYdBngNdGjDrXeq1kneFJPaPT7z5g5Rq+H9KG1kqegbXC LBOAe+D1Q1fa1UYH6KdT9p5biDMenkfFM6EHDjQReIZqpICWSMxrfITRMWgn86uz u5B4zQYMj7W36Nr56MaSQFBj/d9TjmA404rZlrkWQKLQ5604NjUjlbkraTQ8sgf0 8cMje93BWhnNjRMumse4xWgg0GcCAwEAAaOCArIwggKuMB0GA1UdDgQWBBSZbNkM M5UcJJ1f/FT+Rx69fqxobTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzJFRUJGQTk4 RDlFQzExRUVCRjNDMzY2NEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDwGCCsGAQUFBwEHAQH/ BC0wKzAYBAIAATASAwQBZzM2AwQBZ6d+AwQBZ7tuMA8EAgACMAkDBwAgAQ32toAw DQYJKoZIhvcNAQELBQADggEBADw3PzEYL9z764IMkgZT2CIgOFPCBIdFpTzed77p gYWujtqWpsfMlVNfDvjxkC/Mw4aSZVwr5T9qrU2N3jjrrgx2r09I/4RMzNnVUN9/ Yhb6o6N+NyWS5JJ6O0kZdD9U4yC+P5xfY4BEie/b5SbbnnIUsytPo80dRFtBksU3 PmNXnPhOA8sIPRng5FLjDR+D1NnCkLOb1sXXdQ3KySJAy74vOYtB1zGAe7sQgQQK hyUyVrch4zRjup2ruMSt3h6hBbaL58nYvptljeaiF3VgxXtshQLlhmTkrbtVXXOo r4wY9RBDUwjb/yvY9rQfiy5LYXgX2xveuIQLIN9dzGM3Iyk= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:29 2024 by rpki-client on console-ams.rpki-client.org