$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3C72086688DF11ECB2B6512AC4F9AE02.roa File: 3C72086688DF11ECB2B6512AC4F9AE02.roa (raw, json) Hash identifier: uqPo8Bp84ARRNC2EKTKrxXkoT+7nPqmiavhdIZ+WPek= Subject key identifier: 93:2B:69:91:19:7E:B7:92:71:94:3F:70:F3:61:62:34:19:FE:FF:9C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6CCD Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3C72086688DF11ECB2B6512AC4F9AE02.roa Signing time: Wed 10 May 2023 16:26:19 +0000 ROA not before: Wed 10 May 2023 16:26:19 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 137094 IP address blocks: 103.107.150.0/24 maxlen: 24 103.152.199.0/24 maxlen: 24 103.181.38.0/24 maxlen: 24 103.181.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27853 (0x6ccd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:26:19 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc5aa-0a9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:8f:8b:36:21:57:fc:57:c9:b2:3a:68:c3:d6: b8:72:3b:9e:1a:46:86:07:46:78:1c:c2:f8:06:bf: 4d:f4:af:8a:68:00:7f:aa:bd:66:d5:6f:59:ee:c0: 56:58:61:62:5f:3e:ec:93:97:f8:55:f3:88:5f:25: b5:9c:0d:53:65:98:b1:47:c1:8a:5e:45:03:d1:3e: f1:b0:a4:c0:33:fe:06:3a:0a:47:0b:51:6e:cd:be: 88:72:6d:e4:09:fc:0c:88:1d:c7:a1:6e:01:cb:0d: 73:39:f1:72:34:49:8d:63:69:11:b8:7c:f2:be:c6: 01:12:45:10:74:5a:dd:ea:e3:32:26:91:57:a9:19: 17:21:89:f8:d7:f7:6f:ff:22:84:9a:4a:6f:74:e4: 1b:f8:d9:a3:aa:74:10:f3:bf:01:7d:fb:3f:69:97: 91:fe:59:b2:e2:04:17:1d:44:ed:ed:a5:66:0d:78: 3c:06:99:4a:5c:f9:ca:21:4f:11:1d:7f:a6:17:99: ef:74:8e:40:05:62:fe:18:8e:30:3e:75:2d:3c:cf: eb:ed:e6:b4:c4:07:4d:0f:f6:e7:ed:bc:d5:29:4b: 6e:fa:6c:68:2c:13:c5:ab:d1:1f:78:be:35:ae:a2: 6c:26:b8:be:65:eb:a2:13:cb:23:f5:86:2e:ed:8c: 72:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:2B:69:91:19:7E:B7:92:71:94:3F:70:F3:61:62:34:19:FE:FF:9C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3C72086688DF11ECB2B6512AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.107.150.0/24 103.152.199.0/24 103.181.38.0/23 Signature Algorithm: sha256WithRSAEncryption 83:28:17:5e:90:85:83:73:ea:8e:e8:d0:bc:d4:a5:95:cb:7a: 2d:b0:db:b9:ac:74:13:35:aa:6e:00:54:44:78:3b:3f:77:7d: 27:87:0d:d6:a5:2c:fe:0b:9c:e2:63:45:8c:09:9f:79:76:ed: 8f:20:82:31:1b:91:23:e4:0e:c3:15:ba:33:a8:7c:e1:c7:1e: 38:28:d1:2d:75:64:20:8d:e0:0e:a9:35:94:4c:d0:33:ad:45: 46:d0:f5:61:8e:6e:18:3a:38:be:e0:ab:80:5a:7c:5f:22:67: 2a:7b:40:d4:48:2a:dd:53:40:46:ef:de:13:08:2d:2f:b7:35: 74:ac:e4:f3:a6:fa:39:1e:93:54:b0:c9:41:b7:79:27:67:61: 4f:71:3d:11:35:9f:fa:28:07:51:0e:1c:40:d1:1b:4e:eb:74: 87:b2:0e:c2:db:a2:3e:da:0f:8f:32:75:d3:5a:ae:d4:7c:c4: 67:a9:4f:29:78:98:29:86:9d:33:83:f2:0f:89:7c:e9:ea:fa: 09:7b:78:c5:fa:61:03:79:cf:80:ef:48:fa:2c:99:53:f2:a8: 1a:59:04:ee:5e:27:d8:34:87:70:7b:68:d8:71:83:db:85:14: 2b:d0:7a:01:77:db:0a:04:18:51:89:7e:f3:78:1d:f8:b3:db: 4a:a7:07:eb -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICbM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNjE5WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzVhYS0wYTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Y+LNiFX/FfJsjpow9a4cjueGkaGB0Z4HML4Br9N9K+KaAB/qr1m1W9Z7sBW WGFiXz7sk5f4VfOIXyW1nA1TZZixR8GKXkUD0T7xsKTAM/4GOgpHC1Fuzb6Icm3k CfwMiB3HoW4Byw1zOfFyNEmNY2kRuHzyvsYBEkUQdFrd6uMyJpFXqRkXIYn41/dv /yKEmkpvdOQb+NmjqnQQ878Bffs/aZeR/lmy4gQXHUTt7aVmDXg8BplKXPnKIU8R HX+mF5nvdI5ABWL+GI4wPnUtPM/r7ea0xAdND/bn7bzVKUtu+mxoLBPFq9EfeL41 rqJsJri+ZeuiE8sj9YYu7YxywwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFJMraZEZ freScZQ/cPNhYjQZ/v+cMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvM0M3MjA4NjY4 OERGMTFFQ0IyQjY1MTJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABna5YDBABnmMcDBAFntSYwDQYJKoZIhvcNAQELBQADggEB AIMoF16QhYNz6o7o0LzUpZXLei2w27msdBM1qm4AVER4Oz93fSeHDdalLP4LnOJj RYwJn3l27Y8ggjEbkSPkDsMVujOofOHHHjgo0S11ZCCN4A6pNZRM0DOtRUbQ9WGO bhg6OL7gq4BafF8iZyp7QNRIKt1TQEbv3hMILS+3NXSs5POm+jkek1SwyUG3eSdn YU9xPRE1n/ooB1EOHEDRG07rdIeyDsLboj7aD48yddNartR8xGepTyl4mCmGnTOD 8g+JfOnq+gl7eMX6YQN5z4DvSPosmVPyqBpZBO5eJ9g0h3B7aNhxg9uFFCvQegF3 2woEGFGJfvN4Hfiz20qnB+s= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:30 2024 by rpki-client on console-ams.rpki-client.org