$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4051FDDE9BAC11ED94132273C4F9AE02.roa File: 4051FDDE9BAC11ED94132273C4F9AE02.roa (raw, json) Hash identifier: TNZfrsfUMDQygtkYeEUVTCXp6Z5z6NpxJCHMeNQ6nOE= Subject key identifier: E1:45:9D:F7:AE:3E:A8:4C:8C:12:AE:7F:69:77:0C:99:DD:AE:7D:7B Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 767F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4051FDDE9BAC11ED94132273C4F9AE02.roa Signing time: Mon 31 Jul 2023 06:38:00 +0000 ROA not before: Mon 31 Jul 2023 06:38:00 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 139518 IP address blocks: 103.143.146.0/23 maxlen: 24 103.204.120.0/22 maxlen: 24 2001:df2:b1c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30335 (0x767f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jul 31 06:38:00 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64c756c8-7d65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:75:f1:69:07:5b:d7:aa:0b:2e:89:3d:45:7b: 17:f4:62:57:bd:75:9f:95:07:e0:0a:12:59:4a:73: a5:09:05:cc:3f:9d:4a:66:67:63:e0:f4:f8:4a:74: 0c:d3:d9:61:87:fc:08:61:3b:1c:38:2a:be:fb:ad: 07:7e:50:fa:4a:70:60:49:d5:42:51:d2:24:18:2d: 57:4b:f6:a2:56:60:fc:b3:08:4e:34:4e:8f:3c:1e: ab:af:7a:81:97:83:f0:62:d1:a0:2e:8b:1e:f7:0e: 78:ff:f8:98:96:35:fb:58:03:b9:bf:fe:d3:03:86: 5b:c9:91:f9:25:ca:d2:d8:ab:f1:19:17:d2:55:2d: a1:9d:19:e0:b7:d8:e0:7c:3c:88:1d:25:0b:1b:6f: d4:b2:e6:26:d7:28:78:d0:80:45:ce:f5:22:f5:39: 30:48:9f:1e:70:6e:76:f5:9b:0c:66:5e:68:b0:0f: ca:27:9a:5a:ce:5b:49:88:95:c8:7e:b9:cf:a5:61: eb:bd:e2:09:c3:50:0a:5c:e3:07:0e:18:60:0b:a8: e7:dc:cd:bd:2e:3b:fb:2e:da:10:d9:22:e2:a6:27: 57:e5:35:dc:c4:6c:07:9b:03:71:e3:01:8d:68:ea: 41:82:d8:26:42:72:14:c5:4e:82:4c:22:39:88:58: 23:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:45:9D:F7:AE:3E:A8:4C:8C:12:AE:7F:69:77:0C:99:DD:AE:7D:7B X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4051FDDE9BAC11ED94132273C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.146.0/23 103.204.120.0/22 IPv6: 2001:df2:b1c0::/48 Signature Algorithm: sha256WithRSAEncryption af:4e:d7:91:a9:2c:03:a2:07:e0:30:e2:a7:8b:3e:16:e3:00: 43:46:97:0d:ba:7c:b3:2e:e5:5e:d1:13:16:8a:fd:68:8d:39: 73:d4:06:48:f6:0e:ca:cb:52:01:35:51:7a:5a:fd:e3:b6:e6: 31:4c:80:b9:6a:d4:08:22:27:ed:c0:30:9a:6d:ea:b0:d6:f3: e7:70:88:e8:a8:2b:1a:c1:e7:0b:7f:f6:29:9c:a7:d3:10:45: fc:71:b7:67:36:b7:6a:8b:ac:53:d7:ec:1e:d1:c7:0d:19:e2: f2:76:12:84:97:54:6d:6c:67:37:84:af:84:38:4a:c5:93:f8: 78:9d:70:2c:7e:58:36:84:05:63:0a:88:66:3f:fc:17:da:65: 46:26:ed:2a:1d:ee:d3:f6:2d:11:94:21:90:9d:ee:63:6e:79: 41:54:60:2c:18:51:b2:4e:fb:18:e2:26:c2:ac:35:7c:f5:38: f5:8b:3d:11:11:4d:b1:b6:e4:a1:07:11:c8:d4:28:f9:57:13: d5:ad:ac:b8:57:22:07:82:a4:95:d6:0a:37:34:b3:9d:8f:95: 4b:de:2f:a6:5c:6f:2a:46:01:4d:9c:ee:18:be:e7:97:df:7e: 3f:17:e7:0d:14:4a:b8:d6:f7:37:c4:ad:d9:62:f9:b8:05:d8: b0:f7:bf:a6 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICdn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNzMxMDYzODAwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGM3NTZjOC03ZDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA33XxaQdb16oLLok9RXsX9GJXvXWflQfgChJZSnOlCQXMP51KZmdj4PT4SnQM 09lhh/wIYTscOCq++60HflD6SnBgSdVCUdIkGC1XS/aiVmD8swhONE6PPB6rr3qB l4PwYtGgLose9w54//iYljX7WAO5v/7TA4ZbyZH5JcrS2KvxGRfSVS2hnRngt9jg fDyIHSULG2/UsuYm1yh40IBFzvUi9TkwSJ8ecG529ZsMZl5osA/KJ5pazltJiJXI frnPpWHrveIJw1AKXOMHDhhgC6jn3M29Ljv7LtoQ2SLipidX5TXcxGwHmwNx4wGN aOpBgtgmQnIUxU6CTCI5iFgj3wIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFOFFnfeu PqhMjBKuf2l3DJndrn17MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNDA1MUZEREU5 QkFDMTFFRDk0MTMyMjczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAFnj5IDBAJnzHgwDwQCAAIwCQMHACABDfKxwDANBgkqhkiG 9w0BAQsFAAOCAQEAr07XkaksA6IH4DDip4s+FuMAQ0aXDbp8sy7lXtETFor9aI05 c9QGSPYOystSATVRelr947bmMUyAuWrUCCIn7cAwmm3qsNbz53CI6KgrGsHnC3/2 KZyn0xBF/HG3Zza3aousU9fsHtHHDRni8nYShJdUbWxnN4SvhDhKxZP4eJ1wLH5Y NoQFYwqIZj/8F9plRibtKh3u0/YtEZQhkJ3uY255QVRgLBhRsk77GOImwqw1fPU4 9Ys9ERFNsbbkoQcRyNQo+VcT1a2suFciB4KkldYKNzSznY+VS94vplxvKkYBTZzu GL7nl99+PxfnDRRKuNb3N8St2WL5uAXYsPe/pg== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:30 2024 by rpki-client on console-ams.rpki-client.org