$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3FF8232641B611EE91245671C4F9AE02.roa File: 3FF8232641B611EE91245671C4F9AE02.roa (raw, json) Hash identifier: 667HTiUOPm+wAa2i9cx6uYBGoS8l00s6hfTGt93WzEw= Subject key identifier: C9:A4:9A:02:CB:69:96:E2:C2:42:BD:40:41:2C:36:A6:DD:CC:4D:29 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7870 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3FF8232641B611EE91245671C4F9AE02.roa Signing time: Wed 23 Aug 2023 13:12:40 +0000 ROA not before: Wed 23 Aug 2023 13:12:40 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134291 IP address blocks: 103.255.134.0/23 maxlen: 24 2401:2960::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30832 (0x7870) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Aug 23 13:12:40 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64e605c7-c9ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:13:1b:45:40:42:3a:2a:1b:37:7d:1c:fd:6d: a8:f1:da:c5:18:81:65:91:e8:74:44:7d:d2:4b:83: d1:03:02:3e:69:47:05:ae:94:13:78:06:d8:5d:39: f3:86:54:85:d8:8a:6d:1d:eb:4d:3a:bc:97:23:86: 7b:07:61:b4:4a:e3:18:49:86:6c:5b:28:6e:1b:36: 91:0c:20:3c:e6:cf:30:94:3e:45:9a:d1:31:e6:58: f4:e2:2d:63:d3:c1:cd:52:7c:fb:f2:57:f1:d6:58: b5:4c:45:ce:49:5a:eb:0b:e0:c5:f4:70:25:b1:17: 6f:d7:62:ac:0f:44:0b:fa:e6:8c:d9:11:53:ed:99: 6c:fa:12:ba:7a:5c:b3:c5:5e:c9:b3:42:a2:0a:8c: 21:4e:74:d3:bf:82:99:cf:58:75:42:67:37:1a:88: 61:41:75:33:d3:a8:d6:79:53:bb:8a:1e:2a:83:a1: a0:75:24:2b:4e:ab:8d:49:4f:64:21:46:80:75:33: de:ae:6c:64:eb:03:83:d1:d0:58:b8:03:35:3d:db: d7:fc:5a:a2:a6:37:1a:b0:c9:f0:5a:37:f9:51:d5: d6:07:4c:91:67:d5:4e:90:a1:fa:5f:d6:28:22:79: c6:b4:19:e3:6a:b3:a6:b5:e2:e5:f9:80:14:55:09: 2d:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:A4:9A:02:CB:69:96:E2:C2:42:BD:40:41:2C:36:A6:DD:CC:4D:29 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3FF8232641B611EE91245671C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.134.0/23 IPv6: 2401:2960::/32 Signature Algorithm: sha256WithRSAEncryption b2:77:2e:e1:b0:a6:ea:45:59:09:de:79:0c:5e:af:66:be:0c: 63:50:59:0f:97:f4:57:0c:55:c1:59:13:35:c1:21:b2:97:6f: 5a:b2:b0:4b:38:b9:01:53:38:e2:88:fd:c8:3d:1c:e3:7e:80: b7:7c:f3:83:26:08:44:d3:96:e2:59:3d:c8:24:e2:85:a7:72: a6:75:9c:c0:c9:06:71:61:ee:69:f6:b5:45:82:11:6c:0c:d0: 9f:ca:db:8b:f9:38:9f:d3:84:13:dd:28:e9:bf:d3:3a:f7:44: 77:60:10:12:17:6a:bf:17:7d:f2:5c:37:89:1f:46:c1:1b:31: d2:54:da:af:a4:9c:0c:5f:66:98:a1:00:0c:d4:0d:71:0d:b1: 1d:5f:08:1b:f6:96:08:e5:1a:35:49:16:74:9a:f3:4d:7c:e6: 09:f1:e6:df:65:a5:fc:64:9b:45:07:34:53:02:34:6b:cc:5b: 28:40:34:63:09:71:1a:81:f2:18:60:3f:09:6a:f4:eb:26:dd: bc:29:3d:2a:8f:d0:4d:02:0f:91:c4:38:17:ee:ae:3a:ff:da: 03:17:8d:9d:78:c6:a9:b7:e8:62:46:35:a7:6a:02:e4:ea:c8: 9d:7e:bf:25:da:e3:5f:1f:50:06:8c:29:30:b5:ae:23:bc:e7: 9e:20:a3:76 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICeHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwODIzMTMxMjQwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGU2MDVjNy1jOWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1hMbRUBCOiobN30c/W2o8drFGIFlkeh0RH3SS4PRAwI+aUcFrpQTeAbYXTnz hlSF2IptHetNOryXI4Z7B2G0SuMYSYZsWyhuGzaRDCA85s8wlD5FmtEx5lj04i1j 08HNUnz78lfx1li1TEXOSVrrC+DF9HAlsRdv12KsD0QL+uaM2RFT7Zls+hK6elyz xV7Js0KiCowhTnTTv4KZz1h1Qmc3GohhQXUz06jWeVO7ih4qg6GgdSQrTquNSU9k IUaAdTPermxk6wOD0dBYuAM1PdvX/FqipjcasMnwWjf5UdXWB0yRZ9VOkKH6X9Yo InnGtBnjarOmteLl+YAUVQktvQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFMmkmgLL aZbiwkK9QEEsNqbdzE0pMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvM0ZGODIzMjY0 MUI2MTFFRTkxMjQ1NjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFn/4YwDQQCAAIwBwMFACQBKWAwDQYJKoZIhvcNAQELBQAD ggEBALJ3LuGwpupFWQneeQxer2a+DGNQWQ+X9FcMVcFZEzXBIbKXb1qysEs4uQFT OOKI/cg9HON+gLd884MmCETTluJZPcgk4oWncqZ1nMDJBnFh7mn2tUWCEWwM0J/K 24v5OJ/ThBPdKOm/0zr3RHdgEBIXar8XffJcN4kfRsEbMdJU2q+knAxfZpihAAzU DXENsR1fCBv2lgjlGjVJFnSa80185gnx5t9lpfxkm0UHNFMCNGvMWyhANGMJcRqB 8hhgPwlq9Osm3bwpPSqP0E0CD5HEOBfurjr/2gMXjZ14xqm36GJGNadqAuTqyJ1+ vyXa418fUAaMKTC1riO8554go3Y= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:30 2024 by rpki-client on console-ams.rpki-client.org