$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5F105322DA3011EB9325624DC4F9AE02.roa File: 5F105322DA3011EB9325624DC4F9AE02.roa (raw, json) Hash identifier: XoXUpceE0zP7ekSxbx2GU6keEhTB3d4qCwdBvmK0JsI= Subject key identifier: EE:74:F8:9B:DD:AD:22:05:62:53:27:A1:FB:11:C2:37:2F:5F:DF:1D Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 722E Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5F105322DA3011EB9325624DC4F9AE02.roa Signing time: Tue 16 May 2023 09:02:12 +0000 ROA not before: Tue 16 May 2023 09:02:12 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134250 IP address blocks: 103.130.70.0/23 maxlen: 24 2001:df4:1680::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29230 (0x722e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 16 09:02:12 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64634693-c672 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e3:b6:31:4a:43:79:b9:0d:be:61:6f:a1:5f: 2e:b0:ef:d6:6d:6e:0f:53:a4:7d:6b:a6:20:cf:7a: f5:88:a5:67:2b:64:9e:c9:e0:e0:b6:f1:99:79:79: d2:89:35:8c:a7:b6:15:10:15:17:b2:9c:cd:7e:e7: 69:36:73:8b:f4:57:04:dd:59:8b:fe:f1:a3:0e:fe: d5:1f:8b:eb:e2:8f:c1:52:7b:7a:5a:51:6e:e0:22: 1e:20:cc:c5:f0:94:60:e9:7b:dd:f1:a8:ab:d3:3d: ce:8b:8e:58:be:f3:95:62:64:ec:71:2d:a5:10:8e: d4:ea:b9:ac:6f:f9:1d:e2:7f:be:bf:15:31:b8:10: a5:9b:6d:86:41:8f:51:46:ea:23:1f:f5:46:c7:42: 46:5f:49:d3:2a:4c:db:5d:fe:1f:33:fc:69:17:62: 70:48:cd:17:e6:98:b2:f0:63:be:04:2f:cb:55:d5: 58:dc:ff:39:00:24:ac:43:94:d9:7b:68:e9:81:2f: 48:85:46:88:8f:e1:0a:7c:0b:3f:be:7e:4d:7b:24: 2e:22:fb:40:a1:d7:7f:76:ea:12:ff:b0:b7:fc:29: c0:f3:01:33:53:ec:75:ba:c4:47:a9:5e:06:47:ee: f2:9e:d2:a8:26:4b:85:58:66:c5:e7:46:1b:73:66: 2b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:74:F8:9B:DD:AD:22:05:62:53:27:A1:FB:11:C2:37:2F:5F:DF:1D X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5F105322DA3011EB9325624DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.130.70.0/23 IPv6: 2001:df4:1680::/48 Signature Algorithm: sha256WithRSAEncryption a2:11:e5:8e:ab:96:84:78:bb:61:36:26:5b:81:9e:22:c6:51: d1:61:65:bc:41:5b:43:b5:e8:12:a7:63:f3:02:f3:a3:7f:ec: 98:f1:4b:3e:96:1e:a7:ed:33:bf:fa:49:d6:c0:17:7c:93:35: 85:00:9d:19:63:c3:e7:08:63:b5:58:61:70:96:fd:5f:dd:ad: 03:80:d6:57:f7:4a:eb:b7:7d:a6:6c:30:16:08:a7:c4:e5:c6: 3f:ca:92:9e:87:67:f0:49:0c:75:36:8d:8c:9a:73:ff:67:75: 90:2d:4a:df:61:d4:12:26:34:a3:97:68:3e:59:23:ca:05:ad: 49:ce:ac:08:34:f3:5c:0c:b9:b4:df:78:bb:6c:34:58:9c:44: ee:d3:f7:0f:22:97:74:e8:65:09:58:a3:a3:71:0e:48:1d:8f: 59:24:01:fe:73:c7:87:72:2f:2e:5f:7e:47:1b:b8:95:14:f5: 52:9e:c3:4e:05:07:09:f8:58:04:53:a9:aa:2c:f9:65:5a:e8: 88:5f:ce:1b:ea:be:24:d9:10:ca:f9:9a:8e:de:f5:c9:6b:63: c8:3a:37:d6:59:e6:1b:4a:94:19:be:83:8a:43:55:0d:71:3e: 1e:2e:54:e2:27:bc:8b:88:94:e3:a9:07:82:f0:9a:e3:68:99: c9:17:cf:ff -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICci4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTE2MDkwMjEyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDYzNDY5My1jNjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOO2MUpDebkNvmFvoV8usO/WbW4PU6R9a6Ygz3r1iKVnK2SeyeDgtvGZeXnS iTWMp7YVEBUXspzNfudpNnOL9FcE3VmL/vGjDv7VH4vr4o/BUnt6WlFu4CIeIMzF 8JRg6Xvd8air0z3Oi45YvvOVYmTscS2lEI7U6rmsb/kd4n++vxUxuBClm22GQY9R RuojH/VGx0JGX0nTKkzbXf4fM/xpF2JwSM0X5piy8GO+BC/LVdVY3P85ACSsQ5TZ e2jpgS9IhUaIj+EKfAs/vn5NeyQuIvtAodd/duoS/7C3/CnA8wEzU+x1usRHqV4G R+7yntKoJkuFWGbF50Ybc2Yr0QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFO50+Jvd rSIFYlMnofsRwjcvX98dMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNUYxMDUzMjJE QTMwMTFFQjkzMjU2MjREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFngkYwDwQCAAIwCQMHACABDfQWgDANBgkqhkiG9w0BAQsF AAOCAQEAohHljquWhHi7YTYmW4GeIsZR0WFlvEFbQ7XoEqdj8wLzo3/smPFLPpYe p+0zv/pJ1sAXfJM1hQCdGWPD5whjtVhhcJb9X92tA4DWV/dK67d9pmwwFginxOXG P8qSnodn8EkMdTaNjJpz/2d1kC1K32HUEiY0o5doPlkjygWtSc6sCDTzXAy5tN94 u2w0WJxE7tP3DyKXdOhlCVijo3EOSB2PWSQB/nPHh3IvLl9+Rxu4lRT1Up7DTgUH CfhYBFOpqiz5ZVroiF/OG+q+JNkQyvmajt71yWtjyDo31lnmG0qUGb6DikNVDXE+ Hi5U4ie8i4iU46kHgvCa42iZyRfP/w== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:34 2024 by rpki-client on console-ams.rpki-client.org