$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3A630F461EE011EEB5EE5530C4F9AE02.roa File: 3A630F461EE011EEB5EE5530C4F9AE02.roa (raw, json) Hash identifier: Iaaypx9/o2msTax2UIz4KtwSj0D8xYwSrDgO624K/Cc= Subject key identifier: 57:9C:7F:77:ED:79:82:2D:F3:92:18:F2:71:F6:6F:1A:FE:84:D5:FF Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 753F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3A630F461EE011EEB5EE5530C4F9AE02.roa Signing time: Mon 10 Jul 2023 05:11:30 +0000 ROA not before: Mon 10 Jul 2023 05:11:30 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 140174 IP address blocks: 43.241.66.0/24 maxlen: 24 103.61.68.0/24 maxlen: 24 103.149.16.0/24 maxlen: 24 103.152.184.0/24 maxlen: 24 103.178.106.0/23 maxlen: 24 103.224.152.0/24 maxlen: 24 103.224.153.0/24 maxlen: 24 103.224.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30015 (0x753f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jul 10 05:11:30 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64ab9301-fa44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2b:e1:56:7e:a6:9e:7f:9c:6d:51:a7:d0:22: 37:b1:f7:54:5d:ef:a8:32:16:eb:ee:54:08:20:51: 51:37:82:5f:21:f0:4f:4d:d8:16:79:16:f6:24:b3: 24:53:21:19:3d:f5:c5:87:63:72:a0:19:aa:f7:ea: b0:b9:b7:c9:e7:5e:5e:c1:e9:99:58:27:85:66:6a: 3d:a1:9d:25:d9:bb:7d:18:c5:0b:2d:1f:ba:df:ca: d8:23:5d:5a:57:42:1d:4c:ec:8b:17:1f:4e:e0:c2: d0:d3:7a:e1:0c:06:e9:84:0b:30:31:f9:2c:67:74: 5e:14:c4:c6:7d:aa:78:af:0a:30:2d:6c:d3:ac:54: c4:8b:b4:37:92:b7:fc:fd:1c:eb:28:31:29:a0:8c: 22:be:11:0b:4d:d8:3b:b8:eb:08:14:9d:1d:80:59: 8b:85:15:19:98:1f:f6:d7:4c:49:62:c7:2b:3a:1b: 1e:5c:d4:ac:45:bd:11:d5:0b:8c:61:c0:a2:10:53: 64:b9:68:85:6e:66:80:61:b5:0c:ac:ff:06:1d:75: 9b:67:3e:72:7f:d7:ef:98:a6:de:9b:29:a3:db:f4: 55:99:47:cd:13:7e:0d:42:38:e2:87:00:63:ba:75: d0:1b:46:3f:56:fa:7c:cd:0d:a5:02:0a:04:6e:d0: 2e:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:9C:7F:77:ED:79:82:2D:F3:92:18:F2:71:F6:6F:1A:FE:84:D5:FF X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3A630F461EE011EEB5EE5530C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.241.66.0/24 103.61.68.0/24 103.149.16.0/24 103.152.184.0/24 103.178.106.0/23 103.224.152.0-103.224.154.255 Signature Algorithm: sha256WithRSAEncryption 90:c1:87:31:97:98:d8:df:00:c0:c9:ff:81:45:2e:ea:80:bc: 4f:51:77:1f:d7:e1:24:bf:d0:87:89:55:c8:68:19:1d:36:c1: 11:d2:6b:7c:e3:a2:33:1a:0f:bb:3d:37:61:30:5b:2d:32:13: a9:5d:5e:09:af:c2:2e:05:3a:05:a5:a9:ad:bc:c0:05:43:aa: b9:a0:c5:60:51:5f:f5:ba:5b:c2:4d:86:4b:44:0e:41:84:f2: b3:12:57:d5:de:c5:5d:34:d7:81:fd:27:bd:61:db:b3:7a:eb: d7:1d:4f:21:ae:45:86:19:09:36:b3:27:3a:e1:66:f3:46:5d: 63:86:fe:68:7b:a2:34:7f:3e:f4:5b:b3:5e:df:a4:3b:ad:7b: 3e:bc:2e:53:e8:3f:3e:53:aa:7e:10:4f:12:3d:ee:a6:c9:14: 0f:58:2c:78:1a:7d:67:a9:41:ea:41:29:c6:94:36:d5:f4:70: 43:b4:d0:b2:97:73:2b:cb:87:33:ab:24:ae:a8:b6:ea:6c:f1: e8:31:bf:fa:fa:5e:17:59:b3:f8:e8:72:50:35:72:70:d8:e3: fe:38:c1:93:ea:62:cd:3d:cc:fd:d8:25:fd:77:36:42:6c:c5: 8e:ac:71:fc:99:6d:36:b0:50:66:9c:13:99:6d:d6:63:23:92: f9:0a:7a:15 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICdT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNzEwMDUxMTMwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGFiOTMwMS1mYTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyivhVn6mnn+cbVGn0CI3sfdUXe+oMhbr7lQIIFFRN4JfIfBPTdgWeRb2JLMk UyEZPfXFh2NyoBmq9+qwubfJ515ewemZWCeFZmo9oZ0l2bt9GMULLR+638rYI11a V0IdTOyLFx9O4MLQ03rhDAbphAswMfksZ3ReFMTGfap4rwowLWzTrFTEi7Q3krf8 /RzrKDEpoIwivhELTdg7uOsIFJ0dgFmLhRUZmB/210xJYscrOhseXNSsRb0R1QuM YcCiEFNkuWiFbmaAYbUMrP8GHXWbZz5yf9fvmKbemymj2/RVmUfNE34NQjjihwBj unXQG0Y/Vvp8zQ2lAgoEbtAugQIDAQABo4ICuzCCArcwHQYDVR0OBBYEFFecf3ft eYIt85IY8nH2bxr+hNX/MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvM0E2MzBGNDYx RUUwMTFFRUI1RUU1NTMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MDIEAgABMCwDBAAr8UIDBABnPUQDBABnlRADBABnmLgDBAFnsmowDAMEA2fg mAMEAGfgmjANBgkqhkiG9w0BAQsFAAOCAQEAkMGHMZeY2N8AwMn/gUUu6oC8T1F3 H9fhJL/Qh4lVyGgZHTbBEdJrfOOiMxoPuz03YTBbLTITqV1eCa/CLgU6BaWprbzA BUOquaDFYFFf9bpbwk2GS0QOQYTysxJX1d7FXTTXgf0nvWHbs3rr1x1PIa5FhhkJ NrMnOuFm80ZdY4b+aHuiNH8+9FuzXt+kO617PrwuU+g/PlOqfhBPEj3upskUD1gs eBp9Z6lB6kEpxpQ21fRwQ7TQspdzK8uHM6skrqi26mzx6DG/+vpeF1mz+OhyUDVy cNjj/jjBk+pizT3M/dgl/Xc2QmzFjqxx/JltNrBQZpwTmW3WYyOS+Qp6FQ== -----END CERTIFICATE-----Generated at Sun Apr 28 15:51:18 2024 by rpki-client on console-fra.rpki-client.org