$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/85D2F052D5E111ECB31AC843C4F9AE02.roa File: 85D2F052D5E111ECB31AC843C4F9AE02.roa (raw, json) Hash identifier: eRqgNXZiPpn5eu+PBqv7KFcJVmixcH1PA9NFew7HkKQ= Subject key identifier: 66:18:26:BF:0B:89:E7:50:DF:72:BB:19:17:7B:33:71:AF:6B:F5:C5 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7304 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/85D2F052D5E111ECB31AC843C4F9AE02.roa Signing time: Wed 31 May 2023 07:02:13 +0000 ROA not before: Wed 31 May 2023 07:02:13 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134868 IP address blocks: 103.139.201.0/24 maxlen: 24 103.139.222.0/23 maxlen: 24 103.209.16.0/23 maxlen: 24 103.211.162.0/23 maxlen: 24 2001:df0:9580::/48 maxlen: 48 2001:df1:3e00::/48 maxlen: 56 2001:df2:82c0::/48 maxlen: 48 2402:a740::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29444 (0x7304) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 07:02:13 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=6476f0f5-1037 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:a4:75:2b:0f:19:38:ef:30:1b:90:0e:50:e3: 9a:45:8c:d0:0a:8a:b1:d2:50:26:57:67:35:84:f5: a0:9f:1a:e2:d0:1f:5e:d0:8d:70:65:ca:b1:d1:75: 4f:a1:90:5c:50:c0:90:ea:d2:12:8c:ac:39:03:cd: c8:65:c9:96:03:5c:80:af:78:26:21:80:0b:eb:7f: cb:03:f8:04:82:9f:f0:04:33:81:ff:a5:14:7b:f5: bd:f1:95:e0:04:18:86:17:76:02:85:ed:4e:13:50: 65:49:a4:b7:9b:8b:9b:5b:b5:77:3f:35:d4:78:9a: c1:5f:86:27:32:4f:ef:b5:cb:63:91:98:22:31:ba: f6:1b:50:7e:50:75:01:51:d1:52:8c:2c:ad:18:97: c9:c1:e8:6c:fd:30:33:6c:6d:c2:ef:9c:16:0c:e8: eb:e1:d0:28:6a:78:36:93:a5:d4:03:62:ee:4a:69: a1:db:cd:50:b4:17:6d:e4:ad:88:b3:39:41:c5:7a: 2c:c9:d5:ae:43:23:70:6a:4e:ea:b8:96:92:9b:7e: c0:f9:88:de:0b:d5:e3:09:66:0b:89:e1:df:c4:c9: 06:e6:c5:77:d6:d6:d8:b9:8e:6f:3e:d7:b8:d7:0a: cc:6a:b3:d3:ee:97:8d:6b:de:09:3c:c0:f2:a0:3d: 60:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:18:26:BF:0B:89:E7:50:DF:72:BB:19:17:7B:33:71:AF:6B:F5:C5 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/85D2F052D5E111ECB31AC843C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.201.0/24 103.139.222.0/23 103.209.16.0/23 103.211.162.0/23 IPv6: 2001:df0:9580::/48 2001:df1:3e00::/48 2001:df2:82c0::/48 2402:a740::/32 Signature Algorithm: sha256WithRSAEncryption 62:ba:26:b1:80:ac:1a:09:8a:91:7a:56:d7:99:4a:e3:98:d1: e5:7d:cd:87:d7:78:2a:0e:6e:8f:ed:ed:9c:a4:08:77:2b:2b: 9f:5c:13:d8:b6:9d:7c:7c:0c:22:35:f6:e6:0a:66:ae:b4:5c: 5f:29:6a:36:0f:a9:93:ce:c9:58:52:2a:63:05:74:12:02:31: 5d:22:f2:3f:a8:2c:26:b8:1c:b6:11:fa:9d:da:4b:95:1b:2b: 28:09:28:27:74:f4:fe:4c:b8:34:5a:4c:df:94:44:c9:55:46: ae:55:35:a5:e0:ef:ee:f3:09:d8:0c:a4:c8:77:ed:6e:7b:c6: 7c:0a:92:e0:7a:de:3f:02:d0:20:9c:11:b6:b0:fb:19:33:95: 71:c0:f1:75:21:4f:bf:4a:4b:16:af:c8:f7:99:95:85:e5:ac: 86:32:68:ef:a1:45:db:d5:99:bd:9a:3c:cc:ed:ef:31:23:9a: 9a:95:e1:ec:02:da:8c:8d:30:f5:8a:1a:34:69:fc:0d:d8:66: 91:ef:6d:93:fe:32:d9:7d:e7:b7:30:12:44:8a:ec:11:ce:b5: f0:cf:09:c0:d6:08:1a:3e:c0:26:78:44:9b:0d:7f:85:6f:b1: 9a:9f:89:8d:7a:40:c5:27:de:7b:eb:0c:2f:e2:a7:cb:eb:a0: ef:5d:63:2f -----BEGIN CERTIFICATE----- MIIFrTCCBJWgAwIBAgICcwQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTMxMDcwMjEzWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDc2ZjBmNS0xMDM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn6R1Kw8ZOO8wG5AOUOOaRYzQCoqx0lAmV2c1hPWgnxri0B9e0I1wZcqx0XVP oZBcUMCQ6tISjKw5A83IZcmWA1yAr3gmIYAL63/LA/gEgp/wBDOB/6UUe/W98ZXg BBiGF3YChe1OE1BlSaS3m4ubW7V3PzXUeJrBX4YnMk/vtctjkZgiMbr2G1B+UHUB UdFSjCytGJfJwehs/TAzbG3C75wWDOjr4dAoang2k6XUA2LuSmmh281QtBdt5K2I szlBxXosydWuQyNwak7quJaSm37A+YjeC9XjCWYLieHfxMkG5sV31tbYuY5vPte4 1wrMarPT7peNa94JPMDyoD1gnwIDAQABo4IC0TCCAs0wHQYDVR0OBBYEFGYYJr8L iedQ33K7GRd7M3Gva/XFMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvODVEMkYwNTJE NUUxMTFFQ0IzMUFDODQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwWwYIKwYBBQUHAQcBAf8E TDBKMB4EAgABMBgDBABni8kDBAFni94DBAFn0RADBAFn06IwKAQCAAIwIgMHACAB DfCVgAMHACABDfE+AAMHACABDfKCwAMFACQCp0AwDQYJKoZIhvcNAQELBQADggEB AGK6JrGArBoJipF6VteZSuOY0eV9zYfXeCoObo/t7ZykCHcrK59cE9i2nXx8DCI1 9uYKZq60XF8pajYPqZPOyVhSKmMFdBICMV0i8j+oLCa4HLYR+p3aS5UbKygJKCd0 9P5MuDRaTN+URMlVRq5VNaXg7+7zCdgMpMh37W57xnwKkuB63j8C0CCcEbaw+xkz lXHA8XUhT79KSxavyPeZlYXlrIYyaO+hRdvVmb2aPMzt7zEjmpqV4ewC2oyNMPWK GjRp/A3YZpHvbZP+Mtl957cwEkSK7BHOtfDPCcDWCBo+wCZ4RJsNf4VvsZqfiY16 QMUn3nvrDC/ip8vroO9dYy8= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:38 2024 by rpki-client on console-ams.rpki-client.org