$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/432B190C0FA711EBA1FABB7EC4F9AE02.roa File: 432B190C0FA711EBA1FABB7EC4F9AE02.roa (raw, json) Hash identifier: kyoTGSW7COu94ztCm3oUIZ0sfGcm7ieJNhfiEkuyW/g= Subject key identifier: 04:13:2A:47:DC:44:53:DB:F2:7D:1E:45:E5:87:54:DE:1F:25:E3:11 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 78D7 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/432B190C0FA711EBA1FABB7EC4F9AE02.roa Signing time: Tue 29 Aug 2023 05:19:55 +0000 ROA not before: Tue 29 Aug 2023 05:19:55 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 133989 IP address blocks: 103.55.104.0/24 maxlen: 24 103.55.105.0/24 maxlen: 24 103.55.106.0/24 maxlen: 24 103.55.107.0/24 maxlen: 24 103.84.202.0/23 maxlen: 24 103.101.100.0/22 maxlen: 24 103.110.6.0/23 maxlen: 24 111.223.0.0/22 maxlen: 22 111.223.0.0/24 maxlen: 24 111.223.1.0/24 maxlen: 24 111.223.2.0/24 maxlen: 24 111.223.3.0/24 maxlen: 24 2001:df6:7680::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30935 (0x78d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Aug 29 05:19:55 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64ed7ffb-dfb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:4e:c2:0c:e2:48:9a:00:ca:8e:57:a6:58:95: 26:c3:98:3d:47:a2:b3:45:89:3c:df:02:55:dd:0f: a1:99:d0:db:7c:78:3b:30:88:8f:17:c5:18:8c:ba: 6d:eb:93:9a:28:3f:b8:52:27:81:69:e0:d3:bb:c4: 26:65:df:72:c5:1e:70:61:e0:3a:8b:7f:a1:03:63: 92:0f:97:30:15:bf:50:4b:9f:a6:63:d3:48:d8:2b: 6f:86:89:0b:be:16:ab:86:e9:72:dd:2a:69:2d:72: cb:5b:9f:ce:d0:05:47:f9:ae:b4:35:91:46:23:11: 4f:ed:c1:9d:53:09:e1:7d:16:62:31:ed:e4:05:4c: 7f:3f:05:ea:43:60:fe:9e:07:80:e8:ee:91:6f:53: 66:de:df:7f:25:b4:a7:2a:9b:95:a8:7e:4e:c3:45: ce:2b:bb:8b:e4:4d:ec:a8:ae:86:6d:18:3e:41:f6: 31:f7:c5:f9:ca:95:c8:93:be:2b:a0:d7:9d:72:1b: dc:65:d5:a9:1b:24:44:14:00:d5:b5:25:05:72:46: f5:02:e4:c3:1b:f0:04:89:33:67:52:5e:24:00:6d: bd:7f:ef:80:83:c9:fd:6e:b9:bb:d8:95:f2:76:08: f4:51:ec:db:81:2f:e7:52:20:11:cf:22:fc:a6:fb: 34:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:13:2A:47:DC:44:53:DB:F2:7D:1E:45:E5:87:54:DE:1F:25:E3:11 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/432B190C0FA711EBA1FABB7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.55.104.0/22 103.84.202.0/23 103.101.100.0/22 103.110.6.0/23 111.223.0.0/22 IPv6: 2001:df6:7680::/48 Signature Algorithm: sha256WithRSAEncryption 8b:d9:b8:39:dd:3d:f0:89:63:bd:bc:74:96:4d:e3:50:a0:74: a5:1e:b9:2d:56:27:44:df:db:c0:d0:27:21:2e:7d:9a:52:6b: 9c:a6:54:55:ac:d3:dc:92:15:1a:58:95:14:32:30:f8:03:00: 81:cd:53:9e:80:40:b5:04:fe:c0:4c:8f:40:2c:d8:ad:9d:db: 7d:c1:d3:b8:73:69:90:38:99:e4:27:47:7a:84:65:74:c3:34: b4:75:6d:61:2b:b2:64:7e:84:47:b8:a2:65:dc:3a:8d:38:3d: 2d:05:b0:be:04:a5:0a:3e:2e:af:85:91:f1:d0:04:89:d4:cc: b8:f9:23:a2:87:a5:1d:08:17:c9:bc:5b:dd:31:b7:5c:d5:d8: 80:6f:77:d6:5c:49:12:b6:85:ef:fe:29:be:c3:fa:18:2e:db: 28:bf:e8:26:c9:a4:12:0e:58:96:a2:cd:57:19:23:92:f4:d2: 1d:b2:0a:fa:cc:95:8a:26:69:b2:25:8c:4b:9c:65:d9:85:91: 96:d3:ef:2c:74:99:a5:f4:50:76:bf:a0:4b:c7:6b:a5:1c:36: c4:78:14:68:c7:27:b8:0a:93:2e:f8:33:a0:7b:7d:f6:4c:07: c1:08:5b:46:9d:27:2a:a9:a8:90:ff:be:c3:4f:f2:49:ee:d4: 42:3a:0e:61 -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgICeNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwODI5MDUxOTU1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVkN2ZmYi1kZmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6E7CDOJImgDKjlemWJUmw5g9R6KzRYk83wJV3Q+hmdDbfHg7MIiPF8UYjLpt 65OaKD+4UieBaeDTu8QmZd9yxR5wYeA6i3+hA2OSD5cwFb9QS5+mY9NI2CtvhokL vharhuly3SppLXLLW5/O0AVH+a60NZFGIxFP7cGdUwnhfRZiMe3kBUx/PwXqQ2D+ ngeA6O6Rb1Nm3t9/JbSnKpuVqH5Ow0XOK7uL5E3sqK6GbRg+QfYx98X5ypXIk74r oNedchvcZdWpGyREFADVtSUFckb1AuTDG/AEiTNnUl4kAG29f++Ag8n9brm72JXy dgj0UezbgS/nUiARzyL8pvs0OQIDAQABo4ICvjCCArowHQYDVR0OBBYEFAQTKkfc RFPb8n0eReWHVN4fJeMRMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNDMyQjE5MEMw RkE3MTFFQkExRkFCQjdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSAYIKwYBBQUHAQcBAf8E OTA3MCQEAgABMB4DBAJnN2gDBAFnVMoDBAJnZWQDBAFnbgYDBAJv3wAwDwQCAAIw CQMHACABDfZ2gDANBgkqhkiG9w0BAQsFAAOCAQEAi9m4Od098Iljvbx0lk3jUKB0 pR65LVYnRN/bwNAnIS59mlJrnKZUVazT3JIVGliVFDIw+AMAgc1TnoBAtQT+wEyP QCzYrZ3bfcHTuHNpkDiZ5CdHeoRldMM0tHVtYSuyZH6ER7iiZdw6jTg9LQWwvgSl Cj4ur4WR8dAEidTMuPkjooelHQgXybxb3TG3XNXYgG931lxJEraF7/4pvsP6GC7b KL/oJsmkEg5YlqLNVxkjkvTSHbIK+syViiZpsiWMS5xl2YWRltPvLHSZpfRQdr+g S8drpRw2xHgUaMcnuAqTLvgzoHt99kwHwQhbRp0nKqmokP++w0/ySe7UQjoOYQ== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:30 2024 by rpki-client on console-ams.rpki-client.org