$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/79436CA2533911ECA6125437C4F9AE02.roa File: 79436CA2533911ECA6125437C4F9AE02.roa (raw, json) Hash identifier: Sgl1r+n8Hbe1t2Sba8aRRIrf2RYWEvd/LB+tI8VCRUA= Subject key identifier: A0:C6:53:D5:0C:E7:46:C5:47:B3:DD:D0:B8:3A:F1:22:F2:F5:25:DF Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7A2D Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/79436CA2533911ECA6125437C4F9AE02.roa Signing time: Wed 13 Sep 2023 03:53:51 +0000 ROA not before: Wed 13 Sep 2023 03:53:51 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 146870 IP address blocks: 103.173.132.0/24 maxlen: 24 103.237.84.0/24 maxlen: 24 2001:df7:9d80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31277 (0x7a2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Sep 13 03:53:51 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=6501324f-cafe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:01:48:4e:7a:fb:0c:0e:8e:a6:1c:50:d7:ff: 0f:da:2d:a1:83:71:e3:ea:5f:8c:18:ab:06:06:2d: 07:d5:fa:94:03:26:fd:98:4a:fc:59:e6:f2:17:32: 4b:e8:64:d7:28:7a:e1:2d:3f:36:cb:fc:8b:8f:b6: c4:30:31:67:4e:35:39:f4:47:ba:ad:b7:8d:86:3b: 93:ae:84:eb:b8:05:79:98:35:34:ed:4d:2a:58:4f: fe:ca:41:b6:a3:cb:a2:98:f8:58:d7:3f:e8:8f:41: 09:d0:f7:a1:ad:04:8f:7d:dc:b6:7f:b3:76:b7:19: a4:84:e1:9c:0a:37:df:e2:14:c6:85:a3:a8:62:0a: 93:00:51:2e:4f:ef:fa:7b:6a:db:c1:4e:d4:fb:54: 16:c8:3e:7b:c4:e5:01:62:1c:77:31:54:d9:4d:5f: 2a:b8:90:75:fe:a0:06:e9:0e:6c:4a:6d:f0:bb:0a: 0f:6c:8e:7c:e7:7a:e0:2b:1b:e4:9e:2e:97:c9:88: bf:09:36:aa:53:47:87:b6:cf:bb:ff:38:bd:46:59: 09:9f:82:92:2b:95:d2:15:29:32:5a:4c:84:b4:f4: 47:bb:6d:e0:72:e8:92:8d:bb:70:8b:1d:7d:f6:6e: 68:eb:74:70:92:b1:88:2a:05:43:3a:7f:67:57:a2: df:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:C6:53:D5:0C:E7:46:C5:47:B3:DD:D0:B8:3A:F1:22:F2:F5:25:DF X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/79436CA2533911ECA6125437C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.132.0/24 103.237.84.0/24 IPv6: 2001:df7:9d80::/48 Signature Algorithm: sha256WithRSAEncryption 21:9b:66:45:ad:77:22:d0:2a:a2:59:81:d0:f7:45:d1:74:0f: 4f:23:55:3f:0b:bf:30:be:11:47:37:d3:b0:d5:72:0c:e9:9f: dd:5f:53:22:ba:56:0c:ff:d9:23:8d:e5:10:c4:45:ca:e4:2c: 4d:26:4b:b2:03:15:aa:0a:b3:c3:ee:27:4a:24:16:f9:09:e4: ae:4e:26:29:c3:27:e6:1a:0a:e9:fe:dc:59:f2:27:99:a0:1b: 42:c5:06:c1:cb:c5:e2:66:c7:0a:bd:a2:13:be:60:ae:1b:ca: 51:a6:f2:d6:c8:c9:04:3e:51:49:2e:8e:7f:be:b1:35:70:87: 19:f7:c6:47:49:96:c0:92:c9:b1:ae:d1:47:85:14:37:8a:e7: a3:09:9e:40:a0:c3:10:cd:93:55:aa:ed:1e:de:14:aa:5f:6a: 4b:19:6d:d0:7e:71:db:f1:bf:5e:d3:2e:da:dd:92:76:a6:6a: 4a:c5:09:d1:99:32:4e:85:fb:19:21:f0:55:b9:0a:e7:e9:b4: 3d:6d:14:12:1e:d5:53:8b:19:3f:de:4d:e9:02:71:7f:db:cf: df:7b:70:55:a0:2a:d0:56:a9:53:c0:cb:2f:f3:5a:1e:7a:c3: 2e:5f:27:f8:c2:be:e3:ad:c0:e2:3e:c9:bd:7b:fd:61:f0:be: 21:2c:ff:3a -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICei0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwOTEzMDM1MzUxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTAxMzI0Zi1jYWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0QFITnr7DA6OphxQ1/8P2i2hg3Hj6l+MGKsGBi0H1fqUAyb9mEr8WebyFzJL 6GTXKHrhLT82y/yLj7bEMDFnTjU59Ee6rbeNhjuTroTruAV5mDU07U0qWE/+ykG2 o8uimPhY1z/oj0EJ0PehrQSPfdy2f7N2txmkhOGcCjff4hTGhaOoYgqTAFEuT+/6 e2rbwU7U+1QWyD57xOUBYhx3MVTZTV8quJB1/qAG6Q5sSm3wuwoPbI5853rgKxvk ni6XyYi/CTaqU0eHts+7/zi9RlkJn4KSK5XSFSkyWkyEtPRHu23gcuiSjbtwix19 9m5o63RwkrGIKgVDOn9nV6LfxQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFKDGU9UM 50bFR7Pd0Lg68SLy9SXfMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNzk0MzZDQTI1 MzM5MTFFQ0E2MTI1NDM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnrYQDBABn7VQwDwQCAAIwCQMHACABDfedgDANBgkqhkiG 9w0BAQsFAAOCAQEAIZtmRa13ItAqolmB0PdF0XQPTyNVPwu/ML4RRzfTsNVyDOmf 3V9TIrpWDP/ZI43lEMRFyuQsTSZLsgMVqgqzw+4nSiQW+Qnkrk4mKcMn5hoK6f7c WfInmaAbQsUGwcvF4mbHCr2iE75grhvKUaby1sjJBD5RSS6Of76xNXCHGffGR0mW wJLJsa7RR4UUN4rnowmeQKDDEM2TVartHt4Uql9qSxlt0H5x2/G/XtMu2t2SdqZq SsUJ0ZkyToX7GSHwVbkK5+m0PW0UEh7VU4sZP95N6QJxf9vP33twVaAq0FapU8DL L/NaHnrDLl8n+MK+463A4j7JvXv9YfC+ISz/Og== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:37 2024 by rpki-client on console-ams.rpki-client.org