$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/87D07C20CD5D11EDBB5F326AC4F9AE02.roa File: 87D07C20CD5D11EDBB5F326AC4F9AE02.roa (raw, json) Hash identifier: OsDrRjllunlvqLJOyNQFmo4oLbX7QYnr+jUbfuOntzc= Subject key identifier: 48:90:9C:DC:C3:78:12:85:84:E0:10:10:C9:7F:31:32:F9:40:E1:B3 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6BDE Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/87D07C20CD5D11EDBB5F326AC4F9AE02.roa Signing time: Wed 10 May 2023 16:21:46 +0000 ROA not before: Wed 10 May 2023 16:21:46 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 135724 IP address blocks: 45.117.28.0/24 maxlen: 24 45.117.29.0/24 maxlen: 24 45.117.30.0/24 maxlen: 24 45.117.31.0/24 maxlen: 24 103.57.80.0/24 maxlen: 24 103.57.81.0/24 maxlen: 24 103.57.82.0/24 maxlen: 24 103.57.83.0/24 maxlen: 24 103.69.20.0/22 maxlen: 24 116.66.188.0/22 maxlen: 24 2001:df3:3200::/48 maxlen: 48 2001:df4:5c00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27614 (0x6bde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:21:46 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc49a-f599 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:48:db:9d:ab:1f:07:56:36:fc:75:cb:b3:85: 12:7a:79:ac:bb:22:d1:2a:40:ab:46:ec:26:9a:20: 79:6a:5b:d0:6b:4a:52:f6:94:21:dc:6c:39:25:8f: 6d:5c:12:a8:d5:86:0f:08:b7:17:f5:f3:ed:07:c3: 6f:5e:47:f0:a6:a2:4e:ae:4c:8c:20:14:e5:c0:24: 51:f3:b2:2f:61:93:01:ae:aa:65:e4:96:c1:58:67: ab:57:dd:24:5d:fe:2d:10:c2:ef:a1:05:da:41:a6: ab:31:3c:21:1c:b5:01:35:f9:c5:43:8f:0b:c6:38: c9:db:cc:cf:f8:96:81:cb:7b:80:51:cb:c2:18:ae: 9d:fd:cf:82:3d:bd:4c:dc:48:13:42:82:ff:0b:8e: 66:7b:c3:f2:37:95:c0:7c:50:ff:df:ff:c7:d5:a3: f1:eb:ec:e0:d0:c0:a3:f0:9a:b2:10:40:78:a5:f6: 3d:78:bf:53:9c:ff:d1:c5:ef:e3:db:84:9f:6e:98: 0b:8c:84:b4:25:e1:42:be:c0:1a:c7:03:30:72:94: 59:46:ae:2a:8d:55:b0:ab:33:36:4a:83:27:57:16: 03:d1:51:0c:93:28:48:d4:46:e1:85:66:ff:cf:f5: c8:e1:35:43:9d:d3:3a:b0:ec:6b:18:c2:dc:36:a2: 0f:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:90:9C:DC:C3:78:12:85:84:E0:10:10:C9:7F:31:32:F9:40:E1:B3 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/87D07C20CD5D11EDBB5F326AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.117.28.0/22 103.57.80.0/22 103.69.20.0/22 116.66.188.0/22 IPv6: 2001:df3:3200::/48 2001:df4:5c00::/48 Signature Algorithm: sha256WithRSAEncryption 7c:a7:eb:3a:a0:33:c2:7d:2a:b2:6e:17:21:bb:68:5d:cf:4d: 68:b7:ae:48:ad:d0:ff:e6:f1:5e:c6:04:0c:64:c8:2c:90:cb: 36:e1:0d:54:e1:00:1c:c9:a2:31:cc:7c:35:5e:a7:d0:ad:b4: fe:56:29:7a:25:08:a5:ca:55:22:7d:b3:f7:3c:16:f0:98:b0: 7c:1e:ee:cf:93:bd:21:2e:18:b0:cf:f4:fb:ea:1b:de:42:d4: bd:da:1e:86:ef:56:51:84:cd:b6:38:c4:d0:6c:d3:13:40:1c: 5f:42:34:31:78:3c:0f:af:5d:bb:41:54:f8:cb:1f:14:49:78: 40:b5:6c:82:9a:7c:11:bc:11:fd:8b:14:24:a9:84:21:c5:71: 65:65:84:c0:d2:51:93:f9:4e:7e:f5:8c:32:9e:8b:fa:12:fc: 64:2a:c9:65:d3:f2:65:30:0b:d3:5f:2c:55:7f:10:e4:1e:0c: c6:77:ad:48:44:19:26:82:bf:f9:1b:2b:ed:29:ae:ee:b3:4d: 99:73:62:a4:36:ed:fc:48:44:99:86:cc:ed:b4:67:31:61:53: 9d:f5:0a:e1:05:68:76:ce:0b:44:52:a8:91:0e:f9:65:93:b7: 00:80:a3:7f:19:af:c4:d8:a3:d9:39:18:f3:ee:a5:4c:88:8d: 4f:33:89:3a -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgICa94wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyMTQ2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzQ5YS1mNTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnUjbnasfB1Y2/HXLs4USenmsuyLRKkCrRuwmmiB5alvQa0pS9pQh3Gw5JY9t XBKo1YYPCLcX9fPtB8NvXkfwpqJOrkyMIBTlwCRR87IvYZMBrqpl5JbBWGerV90k Xf4tEMLvoQXaQaarMTwhHLUBNfnFQ48LxjjJ28zP+JaBy3uAUcvCGK6d/c+CPb1M 3EgTQoL/C45me8PyN5XAfFD/3//H1aPx6+zg0MCj8JqyEEB4pfY9eL9TnP/Rxe/j 24SfbpgLjIS0JeFCvsAaxwMwcpRZRq4qjVWwqzM2SoMnVxYD0VEMkyhI1EbhhWb/ z/XI4TVDndM6sOxrGMLcNqIPPQIDAQABo4ICwTCCAr0wHQYDVR0OBBYEFEiQnNzD eBKFhOAQEMl/MTL5QOGzMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvODdEMDdDMjBD RDVEMTFFREJCNUYzMjZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSwYIKwYBBQUHAQcBAf8E PDA6MB4EAgABMBgDBAItdRwDBAJnOVADBAJnRRQDBAJ0QrwwGAQCAAIwEgMHACAB DfMyAAMHACABDfRcADANBgkqhkiG9w0BAQsFAAOCAQEAfKfrOqAzwn0qsm4XIbto Xc9NaLeuSK3Q/+bxXsYEDGTILJDLNuENVOEAHMmiMcx8NV6n0K20/lYpeiUIpcpV In2z9zwW8JiwfB7uz5O9IS4YsM/0++ob3kLUvdoehu9WUYTNtjjE0GzTE0AcX0I0 MXg8D69du0FU+MsfFEl4QLVsgpp8EbwR/YsUJKmEIcVxZWWEwNJRk/lOfvWMMp6L +hL8ZCrJZdPyZTAL018sVX8Q5B4MxnetSEQZJoK/+Rsr7Smu7rNNmXNipDbt/EhE mYbM7bRnMWFTnfUK4QVods4LRFKokQ75ZZO3AICjfxmvxNij2TkY8+6lTIiNTzOJ Og== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:38 2024 by rpki-client on console-ams.rpki-client.org