$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/44F939C89E6811EEA1DFCC6AC4F9AE02.roa File: 44F939C89E6811EEA1DFCC6AC4F9AE02.roa (raw, json) Hash identifier: +3gNJwBnt3CpSwktMHwutJjddrkTGI5tYsmmrYkWph8= Subject key identifier: 46:EB:E1:12:81:F2:0C:73:74:01:58:14:6A:FF:ED:F9:A0:C0:40:A1 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 803C Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/44F939C89E6811EEA1DFCC6AC4F9AE02.roa Signing time: Tue 19 Dec 2023 12:19:45 +0000 ROA not before: Tue 19 Dec 2023 12:19:45 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 58594 IP address blocks: 45.116.4.0/22 maxlen: 22 45.116.4.0/24 maxlen: 24 45.116.5.0/24 maxlen: 24 45.116.6.0/24 maxlen: 24 45.116.7.0/24 maxlen: 24 103.249.40.0/22 maxlen: 22 103.249.40.0/24 maxlen: 24 103.249.41.0/24 maxlen: 24 103.249.42.0/24 maxlen: 24 103.249.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32828 (0x803c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Dec 19 12:19:45 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65818a61-339e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6c:a2:cd:91:4b:25:8b:bd:ab:a1:18:6c:15: 59:c3:0c:0c:a5:89:ba:f3:cc:f7:92:ea:af:9c:e8: 0b:6f:20:c8:53:90:bf:d5:65:8b:86:85:44:ef:ba: 6d:b5:3c:e9:a2:bc:22:dd:78:ee:af:3b:ef:23:7f: 2a:f5:9a:4d:bc:01:55:25:b8:c7:e1:f7:58:db:4b: 57:83:36:4a:39:1c:99:e7:36:a3:79:35:3b:69:47: 3f:8a:3d:29:c4:ff:37:56:ef:ee:d5:17:f0:11:40: ad:60:b6:03:d3:32:f0:bc:ee:f1:95:68:68:a7:38: a2:15:3f:89:76:87:0e:2f:02:91:f7:4e:90:79:c8: 42:f7:bc:c3:2b:d8:d5:a5:b6:e6:95:a3:87:08:cc: 1a:c8:d1:65:a7:d3:35:b2:13:3f:51:de:04:39:15: ab:20:1e:f0:ab:88:28:ae:2a:59:6f:3e:7a:a3:9c: ad:55:cd:5c:4e:7b:96:19:46:37:c0:df:81:b1:82: 04:79:eb:c1:79:2c:98:51:74:c6:46:93:8c:f5:b0: d3:da:94:45:69:44:d3:7a:c6:49:57:b1:42:9b:9d: 73:08:70:38:6a:d1:33:45:e4:3b:fb:46:25:72:83: 61:8a:f9:03:9a:e7:b1:80:d4:0e:9b:5d:d0:84:9a: 63:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:EB:E1:12:81:F2:0C:73:74:01:58:14:6A:FF:ED:F9:A0:C0:40:A1 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/44F939C89E6811EEA1DFCC6AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.116.4.0/22 103.249.40.0/22 Signature Algorithm: sha256WithRSAEncryption 23:47:bb:5e:67:6e:71:4d:3e:fa:ef:9f:95:95:c2:54:7a:9d: 9b:e4:59:d2:27:60:fc:6a:7f:82:d9:aa:85:fe:ec:0f:b4:d8: 5a:c1:27:aa:29:de:f6:94:48:b0:94:45:1b:bf:40:c5:d1:2e: 2b:84:81:8a:68:06:75:45:a5:ee:80:4c:6b:1c:31:b6:ff:b6: ef:32:0e:ae:4f:fa:8e:d2:00:03:f5:86:d0:1c:83:5e:14:84: d2:7d:4c:90:53:52:71:68:cc:35:a8:bf:b4:c0:26:db:39:41: 55:77:dc:0a:d2:53:8b:fe:14:60:5d:ec:12:cd:f0:b0:95:28: 55:53:7c:76:ff:c5:f4:2a:01:50:1e:42:dc:66:f5:c6:0c:61: a3:99:98:e9:ef:85:67:2e:58:fa:95:15:31:79:a9:88:d7:f9: 06:52:85:51:8d:13:d6:14:4d:c4:13:c2:9f:bb:0e:95:60:f2: a4:21:22:d0:c9:82:e7:1c:48:25:e7:bb:7f:7b:8d:83:7f:8f: 42:49:1b:29:a9:9a:00:e8:a3:b3:14:0f:43:f9:51:da:1a:dc: 3c:a8:e5:4d:17:19:db:23:a7:26:86:d2:73:e2:df:98:1e:b9: 1a:9a:ea:15:69:a8:e9:61:69:be:4e:9e:b3:0b:d2:af:34:d4: 94:c1:8c:53 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIDAIA8MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTIzMTIxOTEyMTk0NVoXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjU4MThhNjEtMzM5ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL1sos2RSyWLvauhGGwVWcMMDKWJuvPM95Lqr5zoC28gyFOQv9Vli4aFRO+6 bbU86aK8It147q877yN/KvWaTbwBVSW4x+H3WNtLV4M2Sjkcmec2o3k1O2lHP4o9 KcT/N1bv7tUX8BFArWC2A9My8Lzu8ZVoaKc4ohU/iXaHDi8CkfdOkHnIQve8wyvY 1aW25pWjhwjMGsjRZafTNbITP1HeBDkVqyAe8KuIKK4qWW8+eqOcrVXNXE57lhlG N8DfgbGCBHnrwXksmFF0xkaTjPWw09qURWlE03rGSVexQpudcwhwOGrRM0XkO/tG JXKDYYr5A5rnsYDUDptd0ISaYxUCAwEAAaOCApswggKXMB0GA1UdDgQWBBRG6+ES gfIMc3QBWBRq/+35oMBAoTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzQ0RjkzOUM4 OUU2ODExRUVBMURGQ0M2QUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCUGCCsGAQUFBwEHAQH/ BBYwFDASBAIAATAMAwQCLXQEAwQCZ/koMA0GCSqGSIb3DQEBCwUAA4IBAQAjR7te Z25xTT7675+VlcJUep2b5FnSJ2D8an+C2aqF/uwPtNhawSeqKd72lEiwlEUbv0DF 0S4rhIGKaAZ1RaXugExrHDG2/7bvMg6uT/qO0gAD9YbQHINeFITSfUyQU1JxaMw1 qL+0wCbbOUFVd9wK0lOL/hRgXewSzfCwlShVU3x2/8X0KgFQHkLcZvXGDGGjmZjp 74VnLlj6lRUxeamI1/kGUoVRjRPWFE3EE8Kfuw6VYPKkISLQyYLnHEgl57t/e42D f49CSRspqZoA6KOzFA9D+VHaGtw8qOVNFxnbI6cmhtJz4t+YHrkamuoVaajpYWm+ Tp6zC9KvNNSUwYxT -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:30 2024 by rpki-client on console-ams.rpki-client.org