$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7A44A836119411EDA5BF6877C4F9AE02.roa File: 7A44A836119411EDA5BF6877C4F9AE02.roa (raw, json) Hash identifier: Vit7pxOPFLsPjPpMcTPPdt+xLPSQm0b6ynTDglOvslw= Subject key identifier: 38:AF:17:E9:C8:7D:36:C9:0E:70:45:86:53:A1:A2:E7:B1:06:B3:6D Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6A1B Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7A44A836119411EDA5BF6877C4F9AE02.roa Signing time: Wed 10 May 2023 16:13:07 +0000 ROA not before: Wed 10 May 2023 16:13:07 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 132784 IP address blocks: 103.49.254.0/24 maxlen: 24 103.49.255.0/24 maxlen: 24 103.174.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27163 (0x6a1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:13:07 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc293-d212 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bd:98:d5:9f:4a:6c:3a:d0:f1:11:4f:4d:6c: 69:65:09:4f:ba:35:2c:c4:cf:f9:f5:0a:83:a5:de: c0:d5:9d:bd:10:11:28:f3:b6:93:76:c1:a9:b5:66: 1a:c3:bf:39:49:24:3b:70:77:05:d9:6f:30:b9:26: b7:04:57:7e:7c:96:92:fd:cc:e1:02:f6:cf:a4:db: ce:6b:57:dd:b2:3b:41:4b:17:44:bc:34:cf:29:a7: b7:e6:81:01:93:57:33:31:18:0a:3a:06:24:64:6d: 8f:55:b1:8e:cb:b5:20:d7:de:10:f5:21:96:64:4c: a3:3e:66:fd:ad:4a:e7:4e:96:8c:10:38:a8:a1:3d: 84:99:0a:2b:83:40:2a:6f:4d:af:f4:6a:86:52:b1: 93:8b:e3:e1:59:0c:ca:ee:97:21:62:87:1b:b3:62: 78:d0:a7:67:cf:82:b7:5c:42:5b:61:b0:a4:cf:7a: 96:f3:9c:47:90:c6:ab:be:cb:36:50:76:89:40:e3: f7:f4:1b:58:6e:9e:98:6b:0a:47:d1:c1:44:86:32: aa:59:42:22:2a:c8:5d:c3:9e:bc:68:a6:11:aa:cd: df:f3:33:4b:e1:37:8a:61:54:4b:20:c6:9a:6e:37: 14:10:78:fc:72:b1:e2:01:4d:9d:17:ba:29:af:ef: b8:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:AF:17:E9:C8:7D:36:C9:0E:70:45:86:53:A1:A2:E7:B1:06:B3:6D X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7A44A836119411EDA5BF6877C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.49.254.0/23 103.174.199.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:f6:9e:50:74:93:d8:84:9c:fc:3e:d3:33:81:d9:0c:ff:1b: 26:f0:50:c1:64:6c:13:a0:91:0a:40:3d:80:65:69:a8:0e:16: d2:c1:70:09:aa:30:6b:6a:44:57:c7:33:6d:9b:2b:fb:a0:97: 0d:90:70:65:94:e0:62:ab:4e:94:66:68:a5:75:b8:84:fd:22: 0c:26:2b:b0:a6:8a:9a:04:5d:4d:3f:88:a8:2e:f6:ca:c9:23: e5:eb:c9:f5:1f:b5:83:90:6a:09:fd:52:73:98:4f:36:00:83: 2f:e0:b9:71:cf:df:db:ae:d8:46:9a:30:34:ea:42:8f:07:fd: 56:b5:6e:3d:64:e2:9a:eb:7a:a5:e8:f7:f2:67:08:94:fe:f5: 0a:35:1c:5f:04:51:0c:5d:e1:4d:90:48:dc:7a:ea:31:69:17: 8d:69:4a:bc:02:9a:88:2e:fc:07:af:6e:59:80:ec:d2:b6:62: 2b:99:14:1a:4e:73:b8:a0:c2:3b:a5:03:00:af:2f:91:5c:82: 94:70:81:18:28:9c:07:80:ad:91:bc:5c:1d:4a:e1:f0:ce:de: 44:99:fb:34:51:9b:85:20:42:2b:30:0e:fd:cf:3b:48:3a:d9: 81:03:2a:96:dc:6d:cd:3e:04:4a:fb:7c:6e:19:0b:1f:b7:6d: 3c:ed:a9:ad -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICahswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxMzA3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzI5My1kMjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAur2Y1Z9KbDrQ8RFPTWxpZQlPujUsxM/59QqDpd7A1Z29EBEo87aTdsGptWYa w785SSQ7cHcF2W8wuSa3BFd+fJaS/czhAvbPpNvOa1fdsjtBSxdEvDTPKae35oEB k1czMRgKOgYkZG2PVbGOy7Ug194Q9SGWZEyjPmb9rUrnTpaMEDiooT2EmQorg0Aq b02v9GqGUrGTi+PhWQzK7pchYocbs2J40Kdnz4K3XEJbYbCkz3qW85xHkMarvss2 UHaJQOP39BtYbp6YawpH0cFEhjKqWUIiKshdw568aKYRqs3f8zNL4TeKYVRLIMaa bjcUEHj8crHiAU2dF7opr++4bQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDivF+nI fTbJDnBFhlOhouexBrNtMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvN0E0NEE4MzYx MTk0MTFFREE1QkY2ODc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnMf4DBABnrscwDQYJKoZIhvcNAQELBQADggEBAB72nlB0 k9iEnPw+0zOB2Qz/GybwUMFkbBOgkQpAPYBlaagOFtLBcAmqMGtqRFfHM22bK/ug lw2QcGWU4GKrTpRmaKV1uIT9IgwmK7CmipoEXU0/iKgu9srJI+XryfUftYOQagn9 UnOYTzYAgy/guXHP39uu2EaaMDTqQo8H/Va1bj1k4prreqXo9/JnCJT+9Qo1HF8E UQxd4U2QSNx66jFpF41pSrwCmogu/AevblmA7NK2YiuZFBpOc7igwjulAwCvL5Fc gpRwgRgonAeArZG8XB1K4fDO3kSZ+zRRm4UgQiswDv3PO0g62YEDKpbcbc0+BEr7 fG4ZCx+3bTztqa0= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:37 2024 by rpki-client on console-ams.rpki-client.org