$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8300DBF0401B11EE8CBAFB71C4F9AE02.roa File: 8300DBF0401B11EE8CBAFB71C4F9AE02.roa (raw, json) Hash identifier: txU1aCOSKT8k91k0XX7DII8lIIoOzXY44GD01s8EF8I= Subject key identifier: 9D:1A:AE:AC:D6:90:69:E1:7B:08:11:64:F8:E5:6D:BB:30:16:89:84 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 784E Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8300DBF0401B11EE8CBAFB71C4F9AE02.roa Signing time: Tue 22 Aug 2023 22:51:13 +0000 ROA not before: Tue 22 Aug 2023 22:51:13 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 138260 IP address blocks: 103.124.172.0/24 maxlen: 24 103.124.173.0/24 maxlen: 24 103.124.174.0/24 maxlen: 24 103.124.175.0/24 maxlen: 24 2401:2a20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30798 (0x784e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Aug 22 22:51:13 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64e53be0-6652 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a0:f9:68:39:f8:a1:31:b8:6f:84:bb:da:c3: 84:34:58:c8:db:c0:7e:e3:ec:c3:4d:bd:79:21:5a: 9e:17:dd:a1:e4:6f:f3:1b:da:ac:d7:ff:d9:1b:44: c5:08:f7:ff:b7:04:16:1b:1e:ae:c1:31:94:54:95: a7:29:58:e1:7f:fd:10:53:d6:a1:ac:8e:33:37:8e: 74:96:ef:ca:5e:b9:87:e7:dd:78:95:c8:92:95:57: fd:70:58:8c:33:f6:5f:83:21:70:60:ec:28:e5:49: c9:5d:fa:d5:f3:29:cd:4d:5d:63:7e:28:1b:83:34: 90:37:18:6e:3d:f0:67:f2:aa:4c:ca:bc:3a:ff:b9: 6a:0d:5d:db:1e:67:c5:f6:49:cf:c4:18:5f:52:ac: e0:72:cd:44:1a:2b:a2:9e:1f:20:da:2d:2f:8d:3b: 43:69:39:59:ff:9f:69:71:19:6f:f5:36:fb:68:5c: 35:a1:dd:cc:c8:ad:98:a0:66:be:2a:ae:dc:48:60: 3a:f6:15:e1:91:bf:a0:3a:d0:1e:a6:2d:1b:b4:95: 19:33:7a:e6:04:5f:8c:e4:75:63:8e:83:b8:66:9f: e7:0d:a4:be:66:11:95:41:16:5e:c7:65:41:b5:1f: e6:30:74:55:ea:a4:be:80:67:df:87:6e:d2:98:55: da:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:1A:AE:AC:D6:90:69:E1:7B:08:11:64:F8:E5:6D:BB:30:16:89:84 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8300DBF0401B11EE8CBAFB71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.124.172.0/22 IPv6: 2401:2a20::/32 Signature Algorithm: sha256WithRSAEncryption 87:97:ca:72:cd:26:f1:2a:52:58:9c:19:07:3a:de:f2:13:b6: ed:cb:04:ea:7f:59:8b:23:1b:5a:e0:07:a8:f9:ee:62:ac:a7: 71:eb:c7:92:3a:8a:ff:f7:73:8e:04:4a:8a:a9:2b:3d:75:c7: 27:be:de:8b:08:f1:b9:7d:c4:da:48:be:27:a8:13:2c:58:9a: e3:eb:26:ef:23:96:f2:81:09:b7:23:5d:75:9c:90:fe:e6:e1: b8:9e:b3:a9:b6:7a:aa:cf:b1:39:b4:29:f2:1c:3c:80:89:f1: 83:a4:66:ac:7a:51:0b:54:b8:4d:01:c5:09:9e:9d:89:35:6c: 2a:09:cf:82:e2:a7:a2:c5:71:1e:8e:77:84:26:25:d8:31:c0: 05:fa:b6:63:2d:c4:a6:c1:0c:b0:de:cd:fd:c0:2c:8a:1d:af: 68:02:12:1e:af:53:f2:d8:e1:fa:9b:73:3e:58:da:e8:5a:3c: f0:17:a3:d4:eb:fd:86:95:ef:19:fa:86:ef:92:bb:fe:81:a2: 42:45:79:26:96:5e:44:82:d7:54:2c:ca:64:e0:23:0d:69:71: 02:82:3e:f5:8c:f2:1b:15:5e:51:a4:d5:19:e0:65:2b:29:de: 1b:b8:4f:30:d1:c5:55:92:87:13:c9:24:c4:b8:81:c9:94:e2: c9:5c:37:24 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICeE4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwODIyMjI1MTEzWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGU1M2JlMC02NjUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzaD5aDn4oTG4b4S72sOENFjI28B+4+zDTb15IVqeF92h5G/zG9qs1//ZG0TF CPf/twQWGx6uwTGUVJWnKVjhf/0QU9ahrI4zN450lu/KXrmH5914lciSlVf9cFiM M/ZfgyFwYOwo5UnJXfrV8ynNTV1jfigbgzSQNxhuPfBn8qpMyrw6/7lqDV3bHmfF 9knPxBhfUqzgcs1EGiuinh8g2i0vjTtDaTlZ/59pcRlv9Tb7aFw1od3MyK2YoGa+ Kq7cSGA69hXhkb+gOtAepi0btJUZM3rmBF+M5HVjjoO4Zp/nDaS+ZhGVQRZex2VB tR/mMHRV6qS+gGffh27SmFXa3wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJ0arqzW kGnhewgRZPjlbbswFomEMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvODMwMERCRjA0 MDFCMTFFRThDQkFGQjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnfKwwDQQCAAIwBwMFACQBKiAwDQYJKoZIhvcNAQELBQAD ggEBAIeXynLNJvEqUlicGQc63vITtu3LBOp/WYsjG1rgB6j57mKsp3Hrx5I6iv/3 c44ESoqpKz11xye+3osI8bl9xNpIvieoEyxYmuPrJu8jlvKBCbcjXXWckP7m4bie s6m2eqrPsTm0KfIcPICJ8YOkZqx6UQtUuE0BxQmenYk1bCoJz4Lip6LFcR6Od4Qm JdgxwAX6tmMtxKbBDLDezf3ALIodr2gCEh6vU/LY4fqbcz5Y2uhaPPAXo9Tr/YaV 7xn6hu+Su/6BokJFeSaWXkSC11QsymTgIw1pcQKCPvWM8hsVXlGk1RngZSsp3hu4 TzDRxVWShxPJJMS4gcmU4slcNyQ= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:38 2024 by rpki-client on console-ams.rpki-client.org