$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4871429A658D11EDAF4D1976C4F9AE02.roa File: 4871429A658D11EDAF4D1976C4F9AE02.roa (raw, json) Hash identifier: UNk+OLFFaIOAw3p7vf+0LFuadYkJZfPMeI8OXEB7PuI= Subject key identifier: DE:98:F2:92:90:C1:53:8F:29:94:D6:63:1F:02:72:93:A3:FD:8D:B0 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 71DB Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4871429A658D11EDAF4D1976C4F9AE02.roa Signing time: Wed 10 May 2023 16:50:16 +0000 ROA not before: Wed 10 May 2023 16:50:16 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 61317 IP address blocks: 103.172.84.0/24 maxlen: 24 103.235.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 04:51:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29147 (0x71db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:50:16 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bcb48-6b92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:bc:e1:62:43:f8:85:a2:1e:53:95:13:cf:5e: 93:22:e2:97:5d:64:69:fb:f2:f1:09:66:00:85:9e: 93:2e:cc:11:c4:7c:b5:f2:48:7e:15:99:a7:b6:5e: aa:27:ac:69:6f:ea:3f:21:9f:1f:3f:47:4a:83:de: aa:b3:35:b7:db:7e:3b:14:86:bd:57:98:75:a7:d1: 5d:00:f8:b7:de:7a:35:21:5e:1d:57:28:9e:81:de: 0a:90:c0:21:fa:63:27:0a:fb:d9:db:b3:40:27:28: 4e:0a:66:d0:c7:29:48:76:4f:98:7a:61:05:f0:8a: e0:25:d5:a2:68:3f:52:21:77:c8:a6:f8:77:74:37: 47:72:38:ff:83:97:e6:c2:a9:2d:98:c8:d1:95:45: f3:8a:1f:e3:ba:9a:8b:63:dd:be:2f:ea:d2:b3:bf: 87:f4:f3:53:53:5e:1c:bf:ca:05:b4:78:a0:18:c3: 78:c6:60:af:05:9b:e8:53:4f:d4:5f:9c:65:63:6f: fa:44:51:95:c5:ca:55:99:9b:96:dc:66:fd:b0:09: bc:f4:56:6d:27:96:82:c8:e7:87:76:51:75:67:5c: dc:8d:ae:d1:45:88:84:48:a8:e9:b3:b9:5a:eb:15: ce:a0:1f:7a:41:56:5d:9b:f9:7e:51:4d:64:ad:b6: d5:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:98:F2:92:90:C1:53:8F:29:94:D6:63:1F:02:72:93:A3:FD:8D:B0 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4871429A658D11EDAF4D1976C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.84.0/24 103.235.64.0/24 Signature Algorithm: sha256WithRSAEncryption 08:46:5f:14:ed:9c:4c:b9:b0:75:20:f5:f9:93:69:c9:c9:26: f3:f8:34:67:2b:37:51:39:d0:6a:44:43:0e:5d:14:32:56:53: ca:08:9e:fe:6f:60:60:38:17:bf:53:03:bc:d5:05:d9:52:eb: c6:9c:e8:c0:6d:92:84:14:f2:05:ba:a4:11:c9:6a:11:42:f8: e1:bd:58:25:61:ce:4f:b9:22:25:f1:d8:c8:52:fa:a7:04:0e: 4d:71:21:35:ff:26:a8:63:d2:86:5b:10:ad:33:83:13:7b:c0: d1:36:81:33:6b:70:c1:38:6b:c0:d3:84:10:4a:2c:cc:21:2c: 65:84:32:a7:06:92:35:99:c2:c9:d6:7c:bd:50:f2:4e:01:f0: cb:ea:0b:0e:ac:ba:88:3c:b3:64:c0:06:e5:72:16:0c:c2:6f: 65:a7:1e:02:3b:9b:fa:ba:bd:b3:8d:52:a0:6b:8b:fb:25:c0: d6:8d:03:17:57:e8:da:21:34:3c:e0:ff:2a:47:9e:00:83:58: fa:96:aa:4c:ba:a7:0b:5e:cd:a2:e1:7f:b0:38:29:ac:73:07: ed:09:b0:68:09:62:b4:67:0b:43:51:50:a6:4b:85:14:9e:7e: 60:46:43:fe:cc:43:fe:13:29:ce:ed:e3:e0:59:c1:ce:14:9d: 37:08:f3:e4 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICcdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY1MDE2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViY2I0OC02YjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnrzhYkP4haIeU5UTz16TIuKXXWRp+/LxCWYAhZ6TLswRxHy18kh+FZmntl6q J6xpb+o/IZ8fP0dKg96qszW32347FIa9V5h1p9FdAPi33no1IV4dVyiegd4KkMAh +mMnCvvZ27NAJyhOCmbQxylIdk+YemEF8IrgJdWiaD9SIXfIpvh3dDdHcjj/g5fm wqktmMjRlUXzih/jupqLY92+L+rSs7+H9PNTU14cv8oFtHigGMN4xmCvBZvoU0/U X5xlY2/6RFGVxcpVmZuW3Gb9sAm89FZtJ5aCyOeHdlF1Z1zcja7RRYiESKjps7la 6xXOoB96QVZdm/l+UU1krbbVTwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFN6Y8pKQ wVOPKZTWYx8CcpOj/Y2wMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNDg3MTQyOUE2 NThEMTFFREFGNEQxOTc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnrFQDBABn60AwDQYJKoZIhvcNAQELBQADggEBAAhGXxTt nEy5sHUg9fmTacnJJvP4NGcrN1E50GpEQw5dFDJWU8oInv5vYGA4F79TA7zVBdlS 68ac6MBtkoQU8gW6pBHJahFC+OG9WCVhzk+5IiXx2MhS+qcEDk1xITX/Jqhj0oZb EK0zgxN7wNE2gTNrcME4a8DThBBKLMwhLGWEMqcGkjWZwsnWfL1Q8k4B8MvqCw6s uog8s2TABuVyFgzCb2WnHgI7m/q6vbONUqBri/slwNaNAxdX6NohNDzg/ypHngCD WPqWqky6pwtezaLhf7A4KaxzB+0JsGgJYrRnC0NRUKZLhRSefmBGQ/7MQ/4TKc7t 4+BZwc4UnTcI8+Q= -----END CERTIFICATE-----Generated at Thu Apr 25 06:17:27 2024 by rpki-client on console-ams.rpki-client.org