$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/47F77B94AA9011EC85962A36C4F9AE02.roa File: 47F77B94AA9011EC85962A36C4F9AE02.roa (raw, json) Hash identifier: yg7eDljtzONnvGcH/BT9zx6dX918pRy/bXiJJNbnXd0= Subject key identifier: 0E:84:39:3C:2A:78:2B:0D:40:5D:28:5D:8D:EA:8F:5C:5C:F1:58:A0 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 69F4 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/47F77B94AA9011EC85962A36C4F9AE02.roa Signing time: Wed 10 May 2023 16:12:22 +0000 ROA not before: Wed 10 May 2023 16:12:22 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 132497 IP address blocks: 103.31.144.0/22 maxlen: 24 103.195.248.0/22 maxlen: 22 103.195.248.0/24 maxlen: 24 103.195.249.0/24 maxlen: 24 103.195.250.0/24 maxlen: 24 103.195.251.0/24 maxlen: 24 103.225.132.0/24 maxlen: 24 103.225.133.0/24 maxlen: 24 103.225.134.0/24 maxlen: 24 103.225.135.0/24 maxlen: 24 103.226.84.0/22 maxlen: 24 150.107.16.0/24 maxlen: 24 150.107.17.0/24 maxlen: 24 150.107.18.0/24 maxlen: 24 150.107.19.0/24 maxlen: 24 150.129.28.0/22 maxlen: 24 150.242.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27124 (0x69f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:12:22 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc266-08a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:e7:55:28:d6:74:68:48:4c:4a:49:50:7d:1b: f3:06:e2:2d:a0:37:7b:8a:41:31:60:de:0d:f7:60: 1f:ba:98:d8:fb:56:bc:92:44:03:44:ea:00:f6:c9: cf:76:c8:ef:60:6a:ba:9c:8b:dc:30:36:f0:9f:ee: 9f:e2:c6:e6:bb:0a:62:d7:df:a8:ee:78:a6:0b:b3: 38:a0:f2:16:b9:d5:7e:81:93:f6:8a:e2:c6:ab:ab: b7:dd:b2:c6:e9:23:47:e8:16:37:46:82:08:8c:ad: ac:c5:36:0d:6b:3e:25:67:07:57:d2:66:96:82:23: 70:36:36:3e:45:4d:b6:d4:95:c7:08:15:ef:b8:de: 92:4f:50:f4:48:42:51:1f:d1:b9:c0:41:50:de:90: 8c:87:e3:3a:9e:39:b5:d4:f9:cc:23:6b:c8:83:58: 81:d1:8e:e6:47:2f:53:74:8a:ab:cd:d1:8b:fa:98: 85:61:77:db:b0:da:f1:d1:24:86:4f:05:c5:50:39: e5:d8:b7:0e:74:8e:40:57:c1:f7:cd:46:67:99:bb: 09:6a:d1:3f:c7:d8:c4:de:27:5f:48:46:24:7b:92: 5d:97:7a:3a:57:87:01:11:90:a7:8e:01:26:85:fb: aa:36:f5:e4:37:cf:a2:67:28:ad:b1:2c:f9:28:8c: 92:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:84:39:3C:2A:78:2B:0D:40:5D:28:5D:8D:EA:8F:5C:5C:F1:58:A0 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/47F77B94AA9011EC85962A36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.31.144.0/22 103.195.248.0/22 103.225.132.0/22 103.226.84.0/22 150.107.16.0/22 150.129.28.0/22 150.242.196.0/22 Signature Algorithm: sha256WithRSAEncryption 91:9a:a1:b8:ec:4a:63:07:f0:e7:b1:86:41:7e:20:8d:ae:23: 3c:5f:f3:ee:12:56:5c:9a:09:e4:fb:4d:fd:5c:b3:af:0f:85: 93:f6:b1:e8:fc:14:8c:44:d5:c5:b7:d8:02:ae:c8:78:26:4b: 1d:ce:3f:ab:41:da:4b:93:07:4c:46:a1:33:5a:6e:c2:62:a1: d4:31:93:c8:71:ec:a0:be:a6:29:25:f6:12:08:90:54:26:85: b6:78:76:ec:67:dc:1d:b1:cb:ed:b0:e9:84:62:38:37:02:e1: a7:07:1c:02:9f:04:c0:12:80:04:c6:c8:c6:7d:0b:2e:4a:3f: d7:6c:21:a3:c5:f2:aa:45:3e:cc:a0:51:d5:fa:40:b7:bf:9e: 5f:c1:31:4d:02:18:17:5e:37:09:6a:a4:14:a6:34:24:7b:e7: 9b:9e:56:dc:04:79:41:45:19:b6:f2:02:f8:ae:74:67:d6:75: 6c:83:aa:76:54:aa:f4:da:44:00:9e:d4:8f:ac:bf:bf:74:94: d6:b1:07:b9:d1:21:71:7c:58:c3:6f:8b:b5:fe:8c:4a:6a:e4: ff:a0:4c:67:4b:32:eb:84:b9:bb:f3:b3:ec:e0:7d:d2:39:4f: 18:fa:80:25:9e:8f:7d:4e:36:7f:39:dc:9f:22:9c:8c:8b:ad: 25:ee:f3:92 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgICafQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxMjIyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzI2Ni0wOGE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnOdVKNZ0aEhMSklQfRvzBuItoDd7ikExYN4N92AfupjY+1a8kkQDROoA9snP dsjvYGq6nIvcMDbwn+6f4sbmuwpi19+o7nimC7M4oPIWudV+gZP2iuLGq6u33bLG 6SNH6BY3RoIIjK2sxTYNaz4lZwdX0maWgiNwNjY+RU221JXHCBXvuN6ST1D0SEJR H9G5wEFQ3pCMh+M6njm11PnMI2vIg1iB0Y7mRy9TdIqrzdGL+piFYXfbsNrx0SSG TwXFUDnl2LcOdI5AV8H3zUZnmbsJatE/x9jE3idfSEYke5Jdl3o6V4cBEZCnjgEm hfuqNvXkN8+iZyitsSz5KIySSQIDAQABo4ICuTCCArUwHQYDVR0OBBYEFA6EOTwq eCsNQF0oXY3qj1xc8VigMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNDdGNzdCOTRB QTkwMTFFQzg1OTYyQTM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQwYIKwYBBQUHAQcBAf8E NDAyMDAEAgABMCoDBAJnH5ADBAJnw/gDBAJn4YQDBAJn4lQDBAKWaxADBAKWgRwD BAKW8sQwDQYJKoZIhvcNAQELBQADggEBAJGaobjsSmMH8OexhkF+II2uIzxf8+4S VlyaCeT7Tf1cs68PhZP2sej8FIxE1cW32AKuyHgmSx3OP6tB2kuTB0xGoTNabsJi odQxk8hx7KC+pikl9hIIkFQmhbZ4duxn3B2xy+2w6YRiODcC4acHHAKfBMASgATG yMZ9Cy5KP9dsIaPF8qpFPsygUdX6QLe/nl/BMU0CGBdeNwlqpBSmNCR755ueVtwE eUFFGbbyAviudGfWdWyDqnZUqvTaRACe1I+sv790lNaxB7nRIXF8WMNvi7X+jEpq 5P+gTGdLMuuEubvzs+zgfdI5Txj6gCWej31ONn853J8inIyLrSXu85I= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:31 2024 by rpki-client on console-ams.rpki-client.org