$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6E87AF72BDCF11EA8755D90DC4F9AE02.roa File: 6E87AF72BDCF11EA8755D90DC4F9AE02.roa (raw, json) Hash identifier: d+A7+lVGFADqbPu4VCpSrb9MGIVLbBgQUJBZqhWkKog= Subject key identifier: 19:67:2C:52:43:E4:0F:63:74:3F:CE:30:B7:C2:6E:1B:AD:23:7B:4E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7508 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6E87AF72BDCF11EA8755D90DC4F9AE02.roa Signing time: Wed 05 Jul 2023 07:21:27 +0000 ROA not before: Wed 05 Jul 2023 07:21:27 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 139547 IP address blocks: 103.142.134.0/24 maxlen: 24 103.142.135.0/24 maxlen: 24 2001:df2:a540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29960 (0x7508) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jul 5 07:21:27 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64a519f7-e43f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:14:c3:0d:fb:f5:54:b4:c1:a9:6d:6f:36:b3: cc:a7:1d:1d:6a:b3:56:db:96:3f:a1:53:3f:67:5a: 7d:37:fe:4e:10:ed:af:86:da:7e:b5:4d:78:09:b9: 31:db:82:16:41:08:b2:8d:e0:38:85:dd:fa:a7:89: 7c:dc:ce:4a:fa:f7:41:1b:9f:16:c4:df:17:9f:ec: 2a:40:16:52:ae:a2:6e:9c:cc:ef:0f:c6:2f:4b:16: 7a:ab:98:df:01:a0:8e:30:ec:e7:26:32:76:17:32: 25:24:8e:40:6b:71:57:a5:00:27:1d:da:fe:bd:9a: d1:58:68:1f:7f:0c:ce:b3:8c:a1:7f:fc:2c:6d:a9: bc:7a:f9:49:57:0b:1b:cd:eb:de:c7:a4:b8:9d:2b: f5:c6:a4:4a:38:71:e3:48:5f:9c:16:2d:b2:92:18: 04:02:d3:8d:6b:bb:21:67:18:de:95:36:d6:98:70: 20:4f:44:4f:4d:f3:ff:25:9e:a4:99:3f:f3:b1:bf: fd:25:d8:4b:88:0a:f8:bf:ab:ce:0d:f8:16:a1:66: 76:1b:92:b5:51:f3:8d:d1:bc:52:cb:d0:7c:bb:2a: b1:cf:2d:40:e1:18:ac:ab:18:2b:9b:6f:d9:bf:6f: ab:0c:ac:b3:be:02:33:10:d7:24:70:8c:41:7e:65: 05:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:67:2C:52:43:E4:0F:63:74:3F:CE:30:B7:C2:6E:1B:AD:23:7B:4E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6E87AF72BDCF11EA8755D90DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.134.0/23 IPv6: 2001:df2:a540::/48 Signature Algorithm: sha256WithRSAEncryption 32:b4:6d:c3:af:eb:c0:54:10:b8:62:85:fc:ab:28:84:56:a3: 6b:b0:39:82:1f:0a:79:46:69:7b:49:40:15:ca:63:aa:17:33: be:7e:08:be:9c:7d:13:ec:75:5f:fe:08:f6:47:42:a2:68:71: bb:36:14:17:c1:35:89:19:f3:99:b0:45:53:00:4e:5b:a5:0c: a5:f6:bd:e5:1f:ab:dc:1b:2c:6c:b0:af:65:df:9e:62:a4:01: 5a:b8:0a:8e:77:de:23:36:af:60:34:44:f8:84:6e:73:9f:94: fa:49:50:34:85:99:d1:18:cf:1f:7a:2f:9d:65:e2:5a:bf:e1: cd:50:2e:d7:cc:b5:d9:cb:dc:b1:f6:f6:0e:06:d7:c6:5e:8f: 2d:ff:bd:46:f9:ee:09:9f:89:d1:e2:a7:45:e3:87:ca:69:d8: 91:1f:3b:07:c5:09:dd:70:d9:19:91:1d:72:f4:26:64:2d:1b: 37:69:9a:a1:66:ac:f0:5a:2d:39:aa:fa:89:a2:56:66:4c:d8: 00:4e:b1:d0:9c:c8:15:2c:9e:71:45:56:c1:ad:14:a8:1c:d2: 65:60:73:1d:1a:8b:d1:52:2f:53:d9:9f:b0:d4:cf:f5:90:3e: 4a:d2:ea:56:9e:f3:59:99:bb:8b:03:1b:90:80:3e:ce:4a:37: 96:37:72:f3 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICdQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNzA1MDcyMTI3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE1MTlmNy1lNDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxTDDfv1VLTBqW1vNrPMpx0darNW25Y/oVM/Z1p9N/5OEO2vhtp+tU14Cbkx 24IWQQiyjeA4hd36p4l83M5K+vdBG58WxN8Xn+wqQBZSrqJunMzvD8YvSxZ6q5jf AaCOMOznJjJ2FzIlJI5Aa3FXpQAnHdr+vZrRWGgffwzOs4yhf/wsbam8evlJVwsb zevex6S4nSv1xqRKOHHjSF+cFi2ykhgEAtONa7shZxjelTbWmHAgT0RPTfP/JZ6k mT/zsb/9JdhLiAr4v6vODfgWoWZ2G5K1UfON0bxSy9B8uyqxzy1A4Risqxgrm2/Z v2+rDKyzvgIzENckcIxBfmUF6wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBlnLFJD 5A9jdD/OMLfCbhutI3tOMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNkU4N0FGNzJC RENGMTFFQTg3NTVEOTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnjoYwDwQCAAIwCQMHACABDfKlQDANBgkqhkiG9w0BAQsF AAOCAQEAMrRtw6/rwFQQuGKF/KsohFaja7A5gh8KeUZpe0lAFcpjqhczvn4Ivpx9 E+x1X/4I9kdComhxuzYUF8E1iRnzmbBFUwBOW6UMpfa95R+r3BssbLCvZd+eYqQB WrgKjnfeIzavYDRE+IRuc5+U+klQNIWZ0RjPH3ovnWXiWr/hzVAu18y12cvcsfb2 DgbXxl6PLf+9RvnuCZ+J0eKnReOHymnYkR87B8UJ3XDZGZEdcvQmZC0bN2maoWas 8FotOar6iaJWZkzYAE6x0JzIFSyecUVWwa0UqBzSZWBzHRqL0VIvU9mfsNTP9ZA+ StLqVp7zWZm7iwMbkIA+zko3ljdy8w== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:36 2024 by rpki-client on console-ams.rpki-client.org