$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/705E5D9A30FA11EE9D1FED80C4F9AE02.roa File: 705E5D9A30FA11EE9D1FED80C4F9AE02.roa (raw, json) Hash identifier: o/k65nrKPrC0wI1KydKzObQ9i/VZ1ZJ/8+74WdauTrE= Subject key identifier: 77:61:D6:3C:C7:49:60:55:CD:B8:73:18:31:D5:76:2B:BA:EA:CC:EF Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8402 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/705E5D9A30FA11EE9D1FED80C4F9AE02.roa Signing time: Mon 04 Mar 2024 06:13:09 +0000 ROA not before: Mon 04 Mar 2024 06:13:09 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 133691 IP address blocks: 103.49.121.0/24 maxlen: 24 103.55.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33794 (0x8402) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Mar 4 06:13:09 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65e56675-b2a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:88:47:c3:35:7b:2e:45:e5:7f:90:da:2f:a0: 8c:17:a8:41:85:f2:ef:8f:4d:3b:37:a1:29:fe:f8: 41:f4:07:5c:c6:c1:31:52:9d:65:62:38:ef:ac:a7: f6:e8:49:4f:78:01:8e:f7:3f:45:0a:f7:b0:96:69: 73:b6:0f:67:5f:c4:a1:00:95:64:13:97:da:bb:9f: e6:ec:e0:26:98:53:87:f9:e2:47:7f:0c:33:ab:78: 15:9d:79:f6:ef:bd:df:ca:99:4a:51:e6:ad:43:9e: 72:2e:82:91:19:3f:18:86:89:87:5d:68:7c:8d:4c: 62:e9:29:ba:34:20:36:f2:fd:45:8d:af:33:3d:80: 44:58:9b:33:fd:74:78:6a:f7:b0:89:02:bd:d9:37: b3:a7:99:7d:65:81:d7:47:6b:fe:60:77:24:d9:81: bd:c5:e5:0f:7d:b0:31:58:e7:8d:9e:33:ec:10:2c: ce:34:ec:6d:54:7c:22:2e:91:fd:19:c9:d1:70:be: 32:fc:06:bf:ee:8c:b4:e4:aa:75:00:47:15:ee:fd: c9:15:c4:0b:ab:97:71:94:d3:56:53:04:05:a7:9b: ff:08:fb:07:cb:d3:0e:77:71:b8:1c:92:aa:f3:15: f9:27:dd:d3:5f:79:f1:12:0a:21:2e:83:c5:33:02: f9:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:61:D6:3C:C7:49:60:55:CD:B8:73:18:31:D5:76:2B:BA:EA:CC:EF X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/705E5D9A30FA11EE9D1FED80C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.49.121.0/24 103.55.213.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:2a:cd:32:a5:5d:4f:c6:36:fa:47:97:d7:39:5c:a6:2b:e3: 17:05:d0:14:27:16:df:84:89:de:67:ef:b3:47:2b:16:21:c9: f1:83:f5:f8:f2:82:7a:75:50:1a:f2:17:dc:f4:3a:84:07:02: 2a:ff:08:15:4a:7c:fe:12:9b:37:ab:a8:e3:e9:11:a0:a4:5e: 63:f6:e3:43:9a:f0:11:54:da:0f:ec:9f:cc:31:47:42:0e:cd: ae:91:a1:09:0a:cd:69:15:8c:8f:76:1e:bb:b0:20:43:7a:dd: e3:b2:52:ce:d7:d4:e1:ad:a0:c6:ed:ba:8b:31:85:24:98:03: de:e6:06:4c:ea:f4:a5:18:1c:df:07:8f:47:30:87:4c:c4:13: 0c:83:c3:58:19:d5:e7:2a:56:ff:51:48:62:3d:78:3c:01:0a: d9:2a:4b:19:75:a4:7f:2e:2e:f0:af:96:46:ce:f5:f4:51:de: 32:a4:ce:89:2d:50:81:9e:ab:63:48:92:65:60:24:de:96:b4: 02:f7:fb:c4:ee:a5:4d:4e:c4:bd:52:f1:2e:32:89:8a:12:e2: 2b:2f:48:f5:ed:72:16:d1:35:9c:fe:8f:e8:0d:c5:6d:24:0f: bc:ed:96:db:be:92:a3:44:80:22:6e:fd:c5:cb:d7:44:a8:a8: 9a:10:a9:54 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIDAIQCMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDMwNDA2MTMwOVoXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjVlNTY2NzUtYjJhMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALmIR8M1ey5F5X+Q2i+gjBeoQYXy749NOzehKf74QfQHXMbBMVKdZWI476yn 9uhJT3gBjvc/RQr3sJZpc7YPZ1/EoQCVZBOX2ruf5uzgJphTh/niR38MM6t4FZ15 9u+938qZSlHmrUOeci6CkRk/GIaJh11ofI1MYukpujQgNvL9RY2vMz2ARFibM/10 eGr3sIkCvdk3s6eZfWWB10dr/mB3JNmBvcXlD32wMVjnjZ4z7BAszjTsbVR8Ii6R /RnJ0XC+MvwGv+6MtOSqdQBHFe79yRXEC6uXcZTTVlMEBaeb/wj7B8vTDndxuByS qvMV+Sfd01958RIKIS6DxTMC+dcCAwEAAaOCApswggKXMB0GA1UdDgQWBBR3YdY8 x0lgVc24cxgx1XYruurM7zAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzcwNUU1RDlB MzBGQTExRUU5RDFGRUQ4MEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCUGCCsGAQUFBwEHAQH/ BBYwFDASBAIAATAMAwQAZzF5AwQAZzfVMA0GCSqGSIb3DQEBCwUAA4IBAQCPKs0y pV1Pxjb6R5fXOVymK+MXBdAUJxbfhIneZ++zRysWIcnxg/X48oJ6dVAa8hfc9DqE BwIq/wgVSnz+Eps3q6jj6RGgpF5j9uNDmvARVNoP7J/MMUdCDs2ukaEJCs1pFYyP dh67sCBDet3jslLO19ThraDG7bqLMYUkmAPe5gZM6vSlGBzfB49HMIdMxBMMg8NY GdXnKlb/UUhiPXg8AQrZKksZdaR/Li7wr5ZGzvX0Ud4ypM6JLVCBnqtjSJJlYCTe lrQC9/vE7qVNTsS9UvEuMomKEuIrL0j17XIW0TWc/o/oDcVtJA+87ZbbvpKjRIAi bv3Fy9dEqKiaEKlU -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:36 2024 by rpki-client on console-ams.rpki-client.org