$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/399D18862AAD11ED9B419E0DC4F9AE02.roa File: 399D18862AAD11ED9B419E0DC4F9AE02.roa (raw, json) Hash identifier: dUl0Vb5hfQtgandfZ1gX94v1EAvmuNllvlUgJCTYQs0= Subject key identifier: 4B:0C:13:35:00:AA:71:32:98:41:7D:08:0E:7C:F6:F0:20:0B:EC:3E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6CB3 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/399D18862AAD11ED9B419E0DC4F9AE02.roa Signing time: Wed 10 May 2023 16:25:48 +0000 ROA not before: Wed 10 May 2023 16:25:48 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136704 IP address blocks: 103.103.28.0/24 maxlen: 24 103.127.104.0/23 maxlen: 24 103.147.94.0/23 maxlen: 24 103.147.132.0/23 maxlen: 24 103.183.238.0/23 maxlen: 24 103.184.168.0/23 maxlen: 24 2001:df3:5880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27827 (0x6cb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:25:48 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc58c-76d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:7b:54:26:e7:af:6c:5a:f2:13:ae:48:5c:e3: cf:d8:0a:ef:29:89:56:ec:85:01:34:c0:13:b6:68: c2:af:f4:ba:3b:b9:ff:87:41:04:42:ff:9a:da:35: 3b:82:90:51:d9:c9:5a:f4:47:f4:38:b7:49:14:66: 25:6d:30:5a:47:c9:f3:02:42:d1:66:4e:3c:a5:5d: 17:28:7f:77:d3:36:72:b6:3f:c1:b8:a2:9b:f0:92: 59:39:aa:8e:23:90:84:0e:52:92:41:ed:c7:08:53: 31:47:57:24:21:67:4d:6b:a0:38:e4:9b:be:68:1b: 34:f0:e9:6c:52:1d:b2:9b:0d:5a:5f:33:68:60:73: 2b:73:c4:60:66:cf:1b:0a:bc:4f:dc:d7:97:5d:31: 8c:47:0e:a9:02:7b:88:9f:10:4e:20:86:a9:76:20: 3f:e0:a7:3b:e3:13:65:23:22:1e:52:28:13:b1:fd: 54:e9:da:e9:98:29:9a:a8:75:61:be:fc:a3:5c:22: 16:d0:e7:e7:0e:9f:95:a0:ca:1d:01:bc:84:44:67: 43:87:78:b6:2f:ce:e6:42:ca:f0:44:07:cd:20:da: 5f:af:c3:e5:0f:c7:66:45:fc:89:94:dc:a3:07:16: ce:33:ed:4b:f0:70:a4:e7:94:6b:e0:bb:ce:89:30: 49:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:0C:13:35:00:AA:71:32:98:41:7D:08:0E:7C:F6:F0:20:0B:EC:3E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/399D18862AAD11ED9B419E0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.103.28.0/24 103.127.104.0/23 103.147.94.0/23 103.147.132.0/23 103.183.238.0/23 103.184.168.0/23 IPv6: 2001:df3:5880::/48 Signature Algorithm: sha256WithRSAEncryption 31:dd:2a:dc:e2:bd:a5:08:3c:2d:8f:02:c3:6f:5a:22:0a:b7: 9b:fd:46:f8:91:ff:d4:ce:63:ce:25:01:8b:a2:cb:f9:31:38: 5f:53:4b:40:4f:fe:0b:a4:cc:9f:1c:11:d4:9c:61:9c:0a:de: fb:84:e8:cd:64:f0:3b:28:94:02:ff:d7:b2:42:74:23:32:68: b5:93:74:3d:bd:5d:90:7c:d8:f4:7e:09:60:92:96:f1:84:50: 7f:ea:ce:dd:51:a6:24:31:2f:bc:08:32:f2:68:b2:45:2c:b1: 7b:24:73:e0:b2:42:f4:2d:96:af:a4:e9:a8:c2:05:41:d8:37: 6c:e0:c6:b6:8e:ae:b0:2c:1a:e3:25:b3:4e:b6:b8:06:9f:b8: 7e:6d:7c:dd:ee:15:1b:82:1a:fa:59:bb:8c:a6:71:c1:b5:ef: 08:09:1b:4c:9a:97:b6:c3:7e:5c:c6:ca:ad:b3:c7:39:49:74: 99:19:5b:71:ef:65:81:89:51:df:85:09:25:14:31:c4:e5:81: d5:6a:7d:39:e5:8f:65:41:c6:e4:7a:e0:98:75:bf:03:33:39: da:9f:96:6e:51:0b:5d:b2:c0:8e:8e:6e:1a:d0:d6:4b:54:dd: 27:5e:d5:1e:df:53:30:59:e7:48:1c:87:2e:ee:0b:2f:ea:33: a5:6b:6e:62 -----BEGIN CERTIFICATE----- MIIFoDCCBIigAwIBAgICbLMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNTQ4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzU4Yy03NmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA53tUJuevbFryE65IXOPP2ArvKYlW7IUBNMATtmjCr/S6O7n/h0EEQv+a2jU7 gpBR2cla9Ef0OLdJFGYlbTBaR8nzAkLRZk48pV0XKH930zZytj/BuKKb8JJZOaqO I5CEDlKSQe3HCFMxR1ckIWdNa6A45Ju+aBs08OlsUh2ymw1aXzNoYHMrc8RgZs8b CrxP3NeXXTGMRw6pAnuInxBOIIapdiA/4Kc74xNlIyIeUigTsf1U6drpmCmaqHVh vvyjXCIW0OfnDp+VoModAbyERGdDh3i2L87mQsrwRAfNINpfr8PlD8dmRfyJlNyj BxbOM+1L8HCk55Rr4LvOiTBJsQIDAQABo4ICxDCCAsAwHQYDVR0OBBYEFEsMEzUA qnEymEF9CA589vAgC+w+MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMzk5RDE4ODYy QUFEMTFFRDlCNDE5RTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTgYIKwYBBQUHAQcBAf8E PzA9MCoEAgABMCQDBABnZxwDBAFnf2gDBAFnk14DBAFnk4QDBAFnt+4DBAFnuKgw DwQCAAIwCQMHACABDfNYgDANBgkqhkiG9w0BAQsFAAOCAQEAMd0q3OK9pQg8LY8C w29aIgq3m/1G+JH/1M5jziUBi6LL+TE4X1NLQE/+C6TMnxwR1JxhnAre+4TozWTw OyiUAv/XskJ0IzJotZN0Pb1dkHzY9H4JYJKW8YRQf+rO3VGmJDEvvAgy8miyRSyx eyRz4LJC9C2Wr6TpqMIFQdg3bODGto6usCwa4yWzTra4Bp+4fm183e4VG4Ia+lm7 jKZxwbXvCAkbTJqXtsN+XMbKrbPHOUl0mRlbce9lgYlR34UJJRQxxOWB1Wp9OeWP ZUHG5HrgmHW/AzM52p+WblELXbLAjo5uGtDWS1TdJ17VHt9TMFnnSByHLu4LL+oz pWtuYg== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:30 2024 by rpki-client on console-ams.rpki-client.org