$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/79D93090BCFC11EAB86EE937C4F9AE02.roa File: 79D93090BCFC11EAB86EE937C4F9AE02.roa (raw, json) Hash identifier: XZge3b8B23pTKkycvJmVvFoPh9TRFGeejv5uFEVNq1w= Subject key identifier: 40:27:54:90:8C:CF:AD:C4:7C:8D:45:CA:18:9D:1A:DD:14:68:D7:0A Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6C6D Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/79D93090BCFC11EAB86EE937C4F9AE02.roa Signing time: Wed 10 May 2023 16:24:28 +0000 ROA not before: Wed 10 May 2023 16:24:28 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136352 IP address blocks: 103.80.156.0/24 maxlen: 24 103.80.157.0/24 maxlen: 24 103.80.158.0/24 maxlen: 24 103.80.159.0/24 maxlen: 24 2400:54c0::/32 maxlen: 32 2400:54c0::/44 maxlen: 44 2400:54c0:10::/44 maxlen: 44 2400:54c0:20::/44 maxlen: 44 2400:54c0:30::/44 maxlen: 44 2400:54c0:40::/44 maxlen: 44 2400:54c0:50::/44 maxlen: 44 2400:54c0:60::/44 maxlen: 44 2400:54c0:70::/44 maxlen: 44 2400:54c0:80::/44 maxlen: 44 2400:54c0:90::/44 maxlen: 44 2400:54c0:a0::/44 maxlen: 44 2400:54c0:b0::/44 maxlen: 44 2400:54c0:c0::/44 maxlen: 44 2400:54c0:d0::/44 maxlen: 44 2400:54c0:e0::/44 maxlen: 44 2400:54c0:f0::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27757 (0x6c6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:24:28 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc53c-3382 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:61:30:01:bf:73:65:d3:1e:71:4c:d5:9d:48: 0b:10:04:36:60:a4:0c:19:52:71:1d:d0:a4:9e:72: 40:5d:c3:ff:01:1a:18:8b:a3:5f:5f:21:b7:23:55: 09:8a:de:42:97:28:78:8d:b3:ad:f8:9c:9e:f7:6d: 7d:b7:c4:53:a6:70:38:e4:ba:98:fc:90:f7:25:b0: f8:cc:d5:80:98:ac:c5:ce:e9:d5:b6:6b:79:7e:a2: 0c:82:03:c0:ac:ac:f7:ee:2d:92:77:79:d3:f9:7b: 5c:bc:df:a3:6a:66:61:2c:89:0f:c9:3e:0a:9a:70: 9b:be:e1:55:3d:87:5a:ff:d0:ac:0b:d5:13:c8:01: 6f:97:9d:a4:57:d5:48:4e:14:cd:a3:9b:4c:bf:b9: 33:a4:00:bc:58:00:67:d5:19:a7:8b:f0:64:21:35: 17:8a:03:d8:16:a8:04:a5:5e:eb:a4:81:ee:ce:f4: 10:88:73:2a:96:85:3d:6d:97:25:c3:11:9f:55:a7: d7:56:55:d1:89:f1:45:d3:77:53:7b:6a:97:9e:b2: 8c:08:bb:9d:06:37:5a:4a:d8:c0:3f:a3:a1:c4:76: 07:61:09:9e:30:8d:dd:74:f7:97:e9:4b:76:24:72: e9:60:d9:20:27:14:8b:1e:ee:d6:94:57:4c:d5:41: 91:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:27:54:90:8C:CF:AD:C4:7C:8D:45:CA:18:9D:1A:DD:14:68:D7:0A X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/79D93090BCFC11EAB86EE937C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.80.156.0/22 IPv6: 2400:54c0::/32 Signature Algorithm: sha256WithRSAEncryption 83:3b:f4:48:99:f2:d8:1a:80:d2:8b:7a:b4:a9:a2:6c:64:40: 01:cf:aa:27:56:ab:47:3b:d9:a5:e5:bd:88:3f:63:fc:f5:dd: de:b8:98:52:8f:f9:4f:f2:b0:d2:95:ef:40:f7:4e:bd:27:84: f6:8b:66:8b:0a:da:31:cd:46:a9:e6:74:53:00:07:a1:a3:95: 5f:51:a5:8b:24:21:c1:f9:dc:d0:9e:f4:53:96:e5:9e:df:26: 63:03:12:9e:a1:67:2d:cf:85:6a:f4:04:c4:15:8f:33:bb:b3: 03:28:75:00:d0:59:fb:3a:2b:23:ed:c6:c0:cc:aa:66:46:c7: ca:3b:6c:1b:9c:54:c1:00:aa:7f:02:e2:9d:53:98:07:b5:bc: 04:22:5a:88:1b:d2:ac:49:73:ff:4b:cf:a9:9a:72:0a:1b:a1: 74:d1:8e:ef:18:24:92:ec:1b:59:b3:f1:64:24:b1:e4:a3:52: 13:b5:91:c0:80:1d:a0:42:57:65:ce:16:f8:89:cd:bc:1e:8b: d9:2c:37:90:b4:23:11:cc:f2:48:e3:88:a3:01:40:7c:c0:b6: 62:1a:a1:aa:b5:20:29:1b:0b:33:5f:47:20:7d:cd:d6:5f:ab: 3f:ad:ec:2e:43:5b:ff:32:51:dc:34:3c:6e:ab:c5:5f:af:ec: 6f:4e:aa:67 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICbG0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNDI4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzUzYy0zMzgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmEwAb9zZdMecUzVnUgLEAQ2YKQMGVJxHdCknnJAXcP/ARoYi6NfXyG3I1UJ it5Clyh4jbOt+Jye9219t8RTpnA45LqY/JD3JbD4zNWAmKzFzunVtmt5fqIMggPA rKz37i2Sd3nT+XtcvN+jamZhLIkPyT4KmnCbvuFVPYda/9CsC9UTyAFvl52kV9VI ThTNo5tMv7kzpAC8WABn1Rmni/BkITUXigPYFqgEpV7rpIHuzvQQiHMqloU9bZcl wxGfVafXVlXRifFF03dTe2qXnrKMCLudBjdaStjAP6OhxHYHYQmeMI3ddPeX6Ut2 JHLpYNkgJxSLHu7WlFdM1UGREQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFEAnVJCM z63EfI1FyhidGt0UaNcKMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNzlEOTMwOTBC Q0ZDMTFFQUI4NkVFOTM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnUJwwDQQCAAIwBwMFACQAVMAwDQYJKoZIhvcNAQELBQAD ggEBAIM79EiZ8tgagNKLerSpomxkQAHPqidWq0c72aXlvYg/Y/z13d64mFKP+U/y sNKV70D3Tr0nhPaLZosK2jHNRqnmdFMAB6GjlV9RpYskIcH53NCe9FOW5Z7fJmMD Ep6hZy3PhWr0BMQVjzO7swModQDQWfs6KyPtxsDMqmZGx8o7bBucVMEAqn8C4p1T mAe1vAQiWogb0qxJc/9Lz6macgoboXTRju8YJJLsG1mz8WQkseSjUhO1kcCAHaBC V2XOFviJzbwei9ksN5C0IxHM8kjjiKMBQHzAtmIaoaq1ICkbCzNfRyB9zdZfqz+t 7C5DW/8yUdw0PG6rxV+v7G9Oqmc= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:37 2024 by rpki-client on console-ams.rpki-client.org