$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3B57DB0A3B0E11ECA663EE27C4F9AE02.roa File: 3B57DB0A3B0E11ECA663EE27C4F9AE02.roa (raw, json) Hash identifier: Na+KtAlFdP/WUzBb7aQl0Gb0uX08ibk5rM2oZWQuIrQ= Subject key identifier: 03:14:BE:B5:3B:97:10:D8:6D:7C:7E:FA:0F:C0:9F:EE:BA:21:7F:F1 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7B94 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3B57DB0A3B0E11ECA663EE27C4F9AE02.roa Signing time: Tue 10 Oct 2023 11:27:54 +0000 ROA not before: Tue 10 Oct 2023 11:27:54 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141285 IP address blocks: 103.80.226.0/23 maxlen: 24 103.158.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31636 (0x7b94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Oct 10 11:27:54 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=6525353a-b43f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:95:a9:59:7e:15:99:5e:2a:cf:4c:9f:2d:fd: 7f:92:b4:c0:72:5f:61:2f:36:ec:81:9c:6e:65:f5: 1b:82:23:1d:a0:0b:7e:de:6a:38:ae:11:a8:d7:5f: f7:03:e2:cb:4e:c0:35:1d:de:b1:92:92:5e:0b:94: 5a:1f:10:03:59:bd:e3:8a:69:fd:ff:6b:55:86:33: bc:c1:7a:e7:5f:a4:f8:99:18:5f:35:e3:32:76:59: f1:3d:22:6d:ca:bb:56:77:28:f3:28:fe:7c:b4:db: ad:06:71:84:53:4a:9a:ff:3c:a5:cd:6b:ca:9e:b6: 8f:e5:7e:c9:3b:b6:ae:a8:39:a0:90:0a:98:7b:99: d5:32:f4:66:58:b1:06:09:4d:a3:e5:1b:10:63:8f: d9:ac:9c:43:fc:c5:e9:98:36:2a:6a:38:47:34:5a: 24:9b:1f:3d:d7:4c:45:0f:49:97:a7:d9:7d:59:b8: ff:e5:2b:24:62:c4:28:ff:e9:e7:4a:d0:5f:92:68: 01:49:1d:4e:9c:95:19:ba:b5:aa:a7:21:c6:73:2a: aa:28:d4:5f:70:89:5f:5d:32:bf:03:6f:7d:4f:64: 4b:c8:66:11:89:65:05:47:fe:cb:e7:61:d8:59:bf: b7:38:83:e3:11:cf:7c:2a:b2:74:59:f2:c7:17:b8: a6:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:14:BE:B5:3B:97:10:D8:6D:7C:7E:FA:0F:C0:9F:EE:BA:21:7F:F1 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3B57DB0A3B0E11ECA663EE27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.80.226.0/23 103.158.136.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:fb:bf:2c:7c:a0:b2:83:19:bc:32:18:31:da:50:d8:3e:b5: cf:14:83:5a:b6:fc:4d:90:19:89:2b:48:a7:fa:5b:68:18:91: ba:32:46:60:eb:2b:4c:99:fb:f8:74:69:ea:6c:78:55:1e:71: ce:db:33:47:69:96:ee:9d:b4:59:d9:95:f2:29:f2:a5:ff:0b: 64:1d:d1:b9:5f:62:2e:55:6d:02:46:d5:b9:f4:0f:96:b0:2d: 6c:45:bf:66:81:aa:c4:2e:fd:4f:f3:49:1a:d0:5f:bb:74:18: eb:da:79:cc:c3:af:61:58:4d:84:c4:cb:16:92:be:63:bd:c8: c4:f9:d7:fc:cd:c7:e6:3e:d7:34:4a:64:0c:23:e5:52:a2:33: e0:5c:17:05:1d:7c:0d:c3:08:d8:66:43:72:a1:b1:69:e8:b0: 71:97:0e:4d:45:21:42:d9:5b:fd:3b:9c:c4:0d:51:ab:c2:db: 42:bd:34:08:f1:94:b4:76:5c:2b:d4:cb:0c:9e:97:e6:98:9d: 5d:4f:90:b7:66:5a:18:72:3e:9c:ea:d5:f5:ff:5e:37:21:c7: 12:52:bd:35:af:ae:a7:3c:84:ed:7b:9d:ac:79:1a:1a:67:5d: 4e:d3:60:ee:d9:94:6b:3b:d0:4e:29:08:52:66:39:80:59:8b: 17:ae:df:ae -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICe5QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMxMDEwMTEyNzU0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTI1MzUzYS1iNDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZWpWX4VmV4qz0yfLf1/krTAcl9hLzbsgZxuZfUbgiMdoAt+3mo4rhGo11/3 A+LLTsA1Hd6xkpJeC5RaHxADWb3jimn9/2tVhjO8wXrnX6T4mRhfNeMydlnxPSJt yrtWdyjzKP58tNutBnGEU0qa/zylzWvKnraP5X7JO7auqDmgkAqYe5nVMvRmWLEG CU2j5RsQY4/ZrJxD/MXpmDYqajhHNFokmx8910xFD0mXp9l9Wbj/5SskYsQo/+nn StBfkmgBSR1OnJUZurWqpyHGcyqqKNRfcIlfXTK/A299T2RLyGYRiWUFR/7L52HY Wb+3OIPjEc98KrJ0WfLHF7imZwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAMUvrU7 lxDYbXx++g/An+66IX/xMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvM0I1N0RCMEEz QjBFMTFFQ0E2NjNFRTI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnUOIDBAFnnogwDQYJKoZIhvcNAQELBQADggEBAC77vyx8 oLKDGbwyGDHaUNg+tc8Ug1q2/E2QGYkrSKf6W2gYkboyRmDrK0yZ+/h0aepseFUe cc7bM0dplu6dtFnZlfIp8qX/C2Qd0blfYi5VbQJG1bn0D5awLWxFv2aBqsQu/U/z SRrQX7t0GOvaeczDr2FYTYTEyxaSvmO9yMT51/zNx+Y+1zRKZAwj5VKiM+BcFwUd fA3DCNhmQ3KhsWnosHGXDk1FIULZW/07nMQNUavC20K9NAjxlLR2XCvUywyel+aY nV1PkLdmWhhyPpzq1fX/XjchxxJSvTWvrqc8hO17nax5GhpnXU7TYO7ZlGs70E4p CFJmOYBZixeu364= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:30 2024 by rpki-client on console-ams.rpki-client.org