$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/44BF8BCCA49111EE9F620272C4F9AE02.roa File: 44BF8BCCA49111EE9F620272C4F9AE02.roa (raw, json) Hash identifier: vOGCFAA6r9JZnP3Kb+CTpGT8hvRU8egDTliOnS5pXT8= Subject key identifier: C7:9D:B3:70:24:36:73:F3:99:36:73:AE:8F:19:8C:00:16:A7:FD:18 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8324 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/44BF8BCCA49111EE9F620272C4F9AE02.roa Signing time: Mon 19 Feb 2024 06:43:42 +0000 ROA not before: Mon 19 Feb 2024 06:43:42 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 151757 IP address blocks: 103.82.185.0/24 maxlen: 24 103.82.187.0/24 maxlen: 24 113.192.4.0/23 maxlen: 24 2401:7760::/32 maxlen: 32 2401:7760::/34 maxlen: 34 2401:7760:4000::/34 maxlen: 34 2401:7760:8000::/34 maxlen: 34 2401:7760:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33572 (0x8324) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Feb 19 06:43:42 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65d2f89d-cab7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:60:93:a7:19:d0:6f:4e:0c:77:13:e8:a8:d5: 3d:3e:04:72:d4:46:98:a1:51:35:9e:07:80:c3:1b: 70:c9:d1:44:a3:ca:d8:e1:1e:87:98:4d:07:59:92: e2:3a:5e:c0:62:08:36:d0:7f:48:3b:cf:ce:a7:a0: 27:af:01:1f:a8:f2:18:f6:df:ab:73:a5:37:0a:ec: 0f:98:72:e3:c0:c9:92:15:cc:d1:98:3e:45:18:c2: be:6f:1b:65:95:ee:0d:aa:ec:83:f8:b2:a1:2f:87: e9:20:e8:57:10:08:7d:2c:1b:bf:fc:27:c4:1a:9f: ec:08:b4:25:d0:bc:2e:c1:a2:c8:df:35:f7:aa:07: 31:21:37:37:0e:7d:c3:1c:31:ac:a4:8f:b9:7b:e9: bb:af:2b:be:c1:6a:ca:f9:84:de:bf:50:3d:01:77: c7:ad:5f:c9:19:48:63:3e:2c:50:f0:79:8f:58:b0: a0:d1:2a:0f:90:a2:1f:5c:bc:1d:83:5d:06:7b:8b: 8b:f4:b4:34:79:9d:83:7d:3c:da:9d:e8:b7:1c:e3: e0:51:45:19:aa:5b:46:cc:7b:01:bd:1a:2c:5e:1c: f4:3b:95:da:7f:bb:33:49:dc:3f:58:f5:9b:c2:32: 7b:34:8e:c0:29:e6:78:6f:0a:ca:11:a2:15:16:63: 60:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:9D:B3:70:24:36:73:F3:99:36:73:AE:8F:19:8C:00:16:A7:FD:18 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/44BF8BCCA49111EE9F620272C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.82.185.0/24 103.82.187.0/24 113.192.4.0/23 IPv6: 2401:7760::/32 Signature Algorithm: sha256WithRSAEncryption 29:85:05:6d:b6:ef:f8:57:bf:c9:bf:9a:7c:f3:72:24:bb:c9: 36:19:54:8d:e1:23:f7:7f:75:b2:5a:79:35:d7:c3:be:0c:65: 0d:79:8d:b8:4f:f4:28:d4:f4:4a:56:b8:a2:a3:cf:09:33:5d: 68:cf:eb:3f:29:93:a0:e1:cb:d6:17:6d:56:f3:ed:07:90:ce: 71:1d:c8:20:9b:c5:ff:db:e4:5f:d6:d2:6d:46:91:75:41:02: 8f:ea:59:34:a9:d3:15:44:47:f9:be:8c:8f:5a:51:6c:79:8a: 15:b2:24:4f:72:60:04:3a:3d:f4:0c:98:7f:3c:07:8e:ae:6f: d1:34:53:e1:ee:1f:22:b5:00:8a:d7:b6:b3:ba:ba:74:80:1d: a7:ee:a9:7e:a0:03:29:99:85:f0:61:21:3a:05:22:39:60:61: d7:4e:c8:11:6d:d0:ec:b5:5c:b0:7a:b4:0b:c0:af:ad:2f:df: 97:be:ef:06:69:1e:74:84:f1:0d:b7:53:5a:7e:e0:d5:f5:67: 54:23:6f:23:c5:69:ee:c6:e9:61:55:81:d4:11:35:b2:62:bf: 29:ac:33:f7:51:74:63:75:88:3d:b5:05:55:73:2c:6a:c5:75: d1:5a:29:76:59:5f:db:a5:0f:05:40:f3:2f:fa:02:ec:b3:f8: f9:af:2e:b6 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgIDAIMkMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDIxOTA2NDM0MloXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjVkMmY4OWQtY2FiNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMJgk6cZ0G9ODHcT6KjVPT4EctRGmKFRNZ4HgMMbcMnRRKPK2OEeh5hNB1mS 4jpewGIINtB/SDvPzqegJ68BH6jyGPbfq3OlNwrsD5hy48DJkhXM0Zg+RRjCvm8b ZZXuDarsg/iyoS+H6SDoVxAIfSwbv/wnxBqf7Ai0JdC8LsGiyN8196oHMSE3Nw59 wxwxrKSPuXvpu68rvsFqyvmE3r9QPQF3x61fyRlIYz4sUPB5j1iwoNEqD5CiH1y8 HYNdBnuLi/S0NHmdg3082p3otxzj4FFFGapbRsx7Ab0aLF4c9DuV2n+7M0ncP1j1 m8IyezSOwCnmeG8KyhGiFRZjYNECAwEAAaOCArAwggKsMB0GA1UdDgQWBBTHnbNw JDZz85k2c66PGYwAFqf9GDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzQ0QkY4QkND QTQ5MTExRUU5RjYyMDI3MkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDoGCCsGAQUFBwEHAQH/ BCswKTAYBAIAATASAwQAZ1K5AwQAZ1K7AwQBccAEMA0EAgACMAcDBQAkAXdgMA0G CSqGSIb3DQEBCwUAA4IBAQAphQVttu/4V7/Jv5p883Iku8k2GVSN4SP3f3WyWnk1 18O+DGUNeY24T/Qo1PRKVriio88JM11oz+s/KZOg4cvWF21W8+0HkM5xHcggm8X/ 2+Rf1tJtRpF1QQKP6lk0qdMVREf5voyPWlFseYoVsiRPcmAEOj30DJh/PAeOrm/R NFPh7h8itQCK17azurp0gB2n7ql+oAMpmYXwYSE6BSI5YGHXTsgRbdDstVywerQL wK+tL9+Xvu8GaR50hPENt1NafuDV9WdUI28jxWnuxulhVYHUETWyYr8prDP3UXRj dYg9tQVVcyxqxXXRWil2WV/bpQ8FQPMv+gLss/j5ry62 -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:30 2024 by rpki-client on console-ams.rpki-client.org