$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3988D54EC19111EDBF6F046DC4F9AE02.roa File: 3988D54EC19111EDBF6F046DC4F9AE02.roa (raw, json) Hash identifier: FsySl/9AOEe0Kv1uIJvydPmoLYgXF/xgKnr6GSqGiZU= Subject key identifier: 97:4F:A8:1D:06:76:38:C6:2C:B5:FE:BF:DF:38:26:3B:B2:A3:04:81 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7EBB Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3988D54EC19111EDBF6F046DC4F9AE02.roa Signing time: Fri 24 Nov 2023 05:22:24 +0000 ROA not before: Fri 24 Nov 2023 05:22:24 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 150644 IP address blocks: 103.98.79.0/24 maxlen: 24 103.174.254.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32443 (0x7ebb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Nov 24 05:22:24 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=6560330f-9e61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d0:63:fc:d4:ae:c3:cc:80:36:71:5a:bc:10: 17:e3:15:41:b8:b3:8f:45:b7:9a:08:97:52:f1:81: c9:b3:95:43:31:16:38:dd:3c:6f:3f:28:32:9b:ea: bd:f3:ea:72:61:0d:a5:64:63:80:3f:07:f9:4e:b9: 88:e8:1a:3e:09:2c:19:14:cd:54:c0:9d:c8:68:44: b4:a1:f0:8f:34:86:14:1e:ed:93:0b:df:ff:69:d3: 2d:ba:58:1a:40:3c:8b:c3:c4:bf:26:cb:8a:81:7f: 52:f2:8b:a0:fd:f3:d0:c6:d6:cb:90:3a:6c:a5:3d: 87:c0:ea:a6:d6:90:fd:99:87:28:26:ec:17:76:10: d0:ed:22:c5:95:28:69:58:2c:4c:a6:da:8d:42:5d: c3:aa:d4:ed:89:7f:6b:0d:56:af:5e:6d:a5:89:e0: 4d:ad:d4:38:32:6d:3f:75:5b:98:5a:20:80:c9:df: ea:66:da:ef:f9:c1:7c:22:00:51:ac:b2:af:bc:91: 9a:8c:18:d1:93:ad:c2:75:0e:ce:b0:8e:8f:57:dd: 77:f0:80:7b:86:90:b5:54:ad:d7:04:7f:40:ef:58: c3:ec:2c:85:9c:f7:79:76:47:13:2d:e8:08:f3:0b: 14:26:d6:d9:2b:41:96:8b:dd:17:a2:89:05:47:c1: 85:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:4F:A8:1D:06:76:38:C6:2C:B5:FE:BF:DF:38:26:3B:B2:A3:04:81 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3988D54EC19111EDBF6F046DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.98.79.0/24 103.174.254.0/23 Signature Algorithm: sha256WithRSAEncryption 54:d2:ab:6c:a0:60:2b:15:36:c7:14:75:d3:6a:d5:60:58:79: a6:ec:36:ab:36:de:ad:f5:ef:4c:dc:ef:89:e0:99:02:6c:4f: 9a:7d:fe:06:69:57:c1:a3:88:9b:99:50:30:4b:2d:51:87:05: 5b:cd:24:f0:18:80:d8:d3:46:b4:92:8b:ac:a2:21:14:6b:90: 21:d2:8a:35:97:8d:b8:80:c1:be:be:c3:4b:8d:ee:28:81:a2: ac:09:de:c8:a6:44:2c:09:f9:e5:9e:3b:4c:6d:b7:64:0a:d6: 3b:36:d8:11:a8:c2:68:b1:fc:99:e6:03:0f:cb:9c:c4:85:c3: a4:7f:6c:34:fa:10:cb:ed:c7:36:4d:ec:e7:36:ea:27:db:12: a1:9c:d4:e9:8a:c7:a6:95:79:6f:d4:83:0d:ce:2e:ff:86:9b: 54:32:2c:1c:fe:0a:a4:d8:08:90:5c:6d:c6:d0:7e:6a:29:ea: 9b:bf:9c:d3:60:9c:21:17:ad:58:b9:a4:ed:53:77:97:9a:40: bc:94:06:04:c6:e4:14:02:7b:8f:cd:41:35:cc:20:0c:ef:45: 21:7b:2b:36:a0:6d:0a:e1:2c:7d:6e:f1:6b:54:bb:96:5c:93: 88:4d:d0:b2:65:82:ad:d1:42:a9:ea:db:d3:da:25:32:84:3b: 1f:d5:99:ac -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICfrswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMxMTI0MDUyMjI0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTYwMzMwZi05ZTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAptBj/NSuw8yANnFavBAX4xVBuLOPRbeaCJdS8YHJs5VDMRY43TxvPygym+q9 8+pyYQ2lZGOAPwf5TrmI6Bo+CSwZFM1UwJ3IaES0ofCPNIYUHu2TC9//adMtulga QDyLw8S/JsuKgX9S8oug/fPQxtbLkDpspT2HwOqm1pD9mYcoJuwXdhDQ7SLFlShp WCxMptqNQl3DqtTtiX9rDVavXm2lieBNrdQ4Mm0/dVuYWiCAyd/qZtrv+cF8IgBR rLKvvJGajBjRk63CdQ7OsI6PV9138IB7hpC1VK3XBH9A71jD7CyFnPd5dkcTLegI 8wsUJtbZK0GWi90XookFR8GFlwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJdPqB0G djjGLLX+v984JjuyowSBMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMzk4OEQ1NEVD MTkxMTFFREJGNkYwNDZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnYk8DBAFnrv4wDQYJKoZIhvcNAQELBQADggEBAFTSq2yg YCsVNscUddNq1WBYeabsNqs23q3170zc74ngmQJsT5p9/gZpV8GjiJuZUDBLLVGH BVvNJPAYgNjTRrSSi6yiIRRrkCHSijWXjbiAwb6+w0uN7iiBoqwJ3simRCwJ+eWe O0xtt2QK1js22BGowmix/JnmAw/LnMSFw6R/bDT6EMvtxzZN7Oc26ifbEqGc1OmK x6aVeW/Ugw3OLv+Gm1QyLBz+CqTYCJBcbcbQfmop6pu/nNNgnCEXrVi5pO1Td5ea QLyUBgTG5BQCe4/NQTXMIAzvRSF7KzagbQrhLH1u8WtUu5Zck4hN0LJlgq3RQqnq 29PaJTKEOx/Vmaw= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:30 2024 by rpki-client on console-ams.rpki-client.org