$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2FF596AC3B9211EBBD73D178C4F9AE02.roa File: 2FF596AC3B9211EBBD73D178C4F9AE02.roa (raw, json) Hash identifier: WsiU9OEIe5StyJN8h5eygzJIEK+VbWvid+bSJn7TTqc= Subject key identifier: 7B:53:F0:0A:BD:58:61:6D:F6:B0:BC:9C:C9:B8:66:8E:D1:3F:09:7E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6E93 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2FF596AC3B9211EBBD73D178C4F9AE02.roa Signing time: Wed 10 May 2023 16:34:41 +0000 ROA not before: Wed 10 May 2023 16:34:41 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141317 IP address blocks: 103.49.164.0/24 maxlen: 24 103.159.152.0/23 maxlen: 24 103.162.161.0/24 maxlen: 24 2001:df5:8c80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28307 (0x6e93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:34:41 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc7a1-3150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:e7:37:1f:f8:f2:cf:9d:8b:9d:29:06:51:ac: bf:a6:2f:e9:dd:32:e4:47:83:66:d9:53:b6:0a:f1: 8b:42:f3:eb:9b:e9:95:99:b7:32:6e:6a:31:8d:d5: 95:f7:16:2c:ba:b2:bc:cc:14:c5:86:11:0d:18:b2: fd:30:4d:47:c6:91:d2:d5:72:49:44:49:c2:4e:45: ad:f5:43:9f:1b:02:40:88:72:56:24:33:18:36:04: 38:fc:42:f8:fa:09:2a:d7:53:0e:08:c9:5e:3d:50: e6:3a:87:50:05:f6:cf:5d:77:4c:97:8a:3d:8e:18: 6f:84:cf:cc:76:51:ce:96:af:65:2d:a2:7c:5f:36: 45:c1:10:0c:cf:7f:b0:a6:59:6c:ed:68:07:49:e0: 4c:20:f1:37:07:e0:cd:8e:78:e7:0b:a6:4f:9f:62: 54:3c:9e:31:d8:67:9f:af:65:7e:0a:61:de:49:d4: df:9c:59:4c:77:99:4f:82:07:ca:ec:3a:15:af:3f: 49:f1:2f:81:55:b7:ae:45:81:85:53:95:29:85:3c: 6a:0d:1c:46:9c:62:6a:7c:58:49:0d:65:31:31:c0: 7e:bc:37:d6:4c:0e:d7:a3:6a:b9:ee:12:1c:91:40: 15:a5:59:f3:bd:f8:04:6b:34:c5:ce:10:0f:2b:23: 6d:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:53:F0:0A:BD:58:61:6D:F6:B0:BC:9C:C9:B8:66:8E:D1:3F:09:7E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2FF596AC3B9211EBBD73D178C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.49.164.0/24 103.159.152.0/23 103.162.161.0/24 IPv6: 2001:df5:8c80::/48 Signature Algorithm: sha256WithRSAEncryption 17:68:a3:a4:0c:7b:ad:aa:fb:28:52:ee:fc:5c:90:9e:6e:34: c2:79:f4:c9:2a:84:91:60:7b:a6:ce:cd:71:a8:c1:96:70:c4: 1f:c6:72:64:56:87:48:3b:68:3c:da:6b:a0:6b:01:a9:0b:45: 3d:26:31:90:2e:56:86:4b:29:01:9c:21:1a:a2:a9:79:dd:41: 92:cc:c6:5b:44:32:86:44:0b:cf:6b:db:6b:0f:d3:2c:57:e3: 19:7b:2a:98:d0:85:42:60:2d:98:14:82:4d:dc:fd:89:0f:a4: 40:ed:6a:e8:9d:10:a9:23:61:df:2d:1b:cd:f6:df:58:c7:ac: 53:d1:01:3f:29:8b:9f:29:52:3f:46:c8:82:67:11:a6:1c:aa: 46:8b:73:7b:90:e1:7d:53:b3:d9:52:48:ef:93:0f:98:74:54: 93:9e:db:61:df:2d:d7:94:ee:24:20:48:c3:56:84:04:ea:e8: f1:68:ce:35:df:98:00:16:d3:93:ad:a0:79:f6:11:8b:5d:a6: 26:33:5f:67:6e:46:c3:af:46:07:7f:32:b1:66:56:c8:e0:17: ec:d6:b4:fb:d6:f6:eb:2d:4d:cd:fa:fc:bc:cc:15:d0:5f:cf: 1d:17:76:6b:b6:b9:6f:52:17:6b:b3:de:41:13:9e:49:83:68: db:03:df:5d -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICbpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzNDQxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzdhMS0zMTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnec3H/jyz52LnSkGUay/pi/p3TLkR4Nm2VO2CvGLQvPrm+mVmbcybmoxjdWV 9xYsurK8zBTFhhENGLL9ME1HxpHS1XJJREnCTkWt9UOfGwJAiHJWJDMYNgQ4/EL4 +gkq11MOCMlePVDmOodQBfbPXXdMl4o9jhhvhM/MdlHOlq9lLaJ8XzZFwRAMz3+w plls7WgHSeBMIPE3B+DNjnjnC6ZPn2JUPJ4x2Gefr2V+CmHeSdTfnFlMd5lPggfK 7DoVrz9J8S+BVbeuRYGFU5UphTxqDRxGnGJqfFhJDWUxMcB+vDfWTA7Xo2q57hIc kUAVpVnzvfgEazTFzhAPKyNt0wIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFHtT8Aq9 WGFt9rC8nMm4Zo7RPwl+MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMkZGNTk2QUMz QjkyMTFFQkJENzNEMTc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBgEAgABMBIDBABnMaQDBAFnn5gDBABnoqEwDwQCAAIwCQMHACABDfWMgDAN BgkqhkiG9w0BAQsFAAOCAQEAF2ijpAx7rar7KFLu/FyQnm40wnn0ySqEkWB7ps7N cajBlnDEH8ZyZFaHSDtoPNproGsBqQtFPSYxkC5WhkspAZwhGqKped1BkszGW0Qy hkQLz2vbaw/TLFfjGXsqmNCFQmAtmBSCTdz9iQ+kQO1q6J0QqSNh3y0bzfbfWMes U9EBPymLnylSP0bIgmcRphyqRotze5DhfVOz2VJI75MPmHRUk57bYd8t15TuJCBI w1aEBOro8WjONd+YABbTk62gefYRi12mJjNfZ25Gw69GB38ysWZWyOAX7Na0+9b2 6y1Nzfr8vMwV0F/PHRd2a7a5b1IXa7PeQROeSYNo2wPfXQ== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:29 2024 by rpki-client on console-ams.rpki-client.org