$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8AA77942A3AC11EDB3083C2FC4F9AE02.roa File: 8AA77942A3AC11EDB3083C2FC4F9AE02.roa (raw, json) Hash identifier: 5wciS5TUfHtzl8LiAVg9LN+MmqnZcVzPrXLiVn/5Knk= Subject key identifier: 2B:0E:8E:42:BD:F9:1A:F2:B7:A8:8A:5A:02:5F:11:43:05:B1:92:4C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6CC6 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8AA77942A3AC11EDB3083C2FC4F9AE02.roa Signing time: Wed 10 May 2023 16:26:11 +0000 ROA not before: Wed 10 May 2023 16:26:11 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 137084 IP address blocks: 103.103.29.0/24 maxlen: 24 103.104.58.0/23 maxlen: 24 103.104.68.0/24 maxlen: 24 2001:df4:1700::/48 maxlen: 52 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27846 (0x6cc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:26:11 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc5a3-ce74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:06:bb:49:24:0b:9b:f7:ca:8a:81:3e:cf:7c: 38:a8:be:b4:5b:2c:a1:10:84:4d:3a:a0:fe:51:07: b6:81:ce:e3:f4:0a:ab:c8:e3:0b:45:87:f0:83:88: e0:2f:6d:50:63:1a:85:3f:df:94:eb:71:d7:7a:ac: 84:76:9d:11:27:6d:8f:8a:f6:eb:15:ec:41:c7:8c: 57:e1:53:a5:c7:88:48:2b:30:1a:5f:5d:c7:62:ef: c6:6c:42:c8:65:9b:3b:7a:e1:a0:da:cd:00:55:df: 22:bc:ab:55:29:7b:7c:7c:4b:4a:a8:72:a1:2f:1a: 4d:f2:1e:45:52:d8:b4:32:dc:52:03:55:4c:9c:b9: bf:90:23:38:5a:c1:0b:c7:3e:ae:6d:9a:35:cf:c5: c2:82:55:2b:30:65:42:cd:0c:ea:2d:48:19:a6:05: c7:50:6a:59:79:3b:55:23:1c:e8:34:d7:8f:42:a8: 71:fd:e0:c3:6e:10:07:90:1e:0b:da:6d:5d:0c:db: 85:09:a8:8a:da:b3:b7:e8:3a:9c:e7:14:ea:60:42: e9:e9:53:f9:42:42:4f:5e:8a:db:12:85:c9:c7:a3: 41:57:3f:80:62:5d:3a:70:a0:08:1d:97:f6:fe:95: 5a:9a:ac:61:28:b1:bd:ba:8a:73:b0:bc:65:54:20: ed:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:0E:8E:42:BD:F9:1A:F2:B7:A8:8A:5A:02:5F:11:43:05:B1:92:4C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8AA77942A3AC11EDB3083C2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.103.29.0/24 103.104.58.0/23 103.104.68.0/24 IPv6: 2001:df4:1700::/48 Signature Algorithm: sha256WithRSAEncryption 57:21:dc:ba:12:c5:d3:7b:f5:f3:b2:01:0e:d7:57:44:ad:ff: 0b:0c:84:8e:53:17:46:6a:e8:df:54:34:e2:83:4b:08:96:34: 78:5f:3d:b1:51:4a:fb:9e:d6:26:41:d2:52:f1:39:2a:e6:68: 9e:2d:df:9f:81:7a:0f:31:45:64:f7:b1:0a:c8:75:56:e9:76: 72:18:ce:8f:ab:57:d4:7f:8d:4b:1a:8d:f8:56:55:d6:8a:a0: 64:47:07:d8:f4:68:f3:71:2e:e2:36:83:69:6e:69:40:20:63: 88:8b:89:73:cb:a9:c1:9c:2a:7a:c3:2a:c4:f0:36:d1:58:fb: 0f:aa:47:08:c5:9b:d7:b2:fd:7b:fb:ae:0f:6a:41:38:fe:e4: 33:e2:a3:ec:d2:66:92:e8:53:8c:ab:14:3f:40:ed:98:30:0b: ae:a4:b2:4d:57:a1:80:d9:6b:6d:ea:92:5c:cc:4a:13:7e:38: 16:61:e8:21:f4:4e:a4:08:de:16:64:d3:93:59:a4:f9:93:de: 2c:14:c4:ce:0d:c7:79:28:e5:b3:05:e5:69:81:7e:f8:b6:85: e2:de:6d:4f:60:02:a3:73:67:ce:f5:5c:a2:d1:9a:45:bd:98: 33:24:6d:39:d7:33:79:9e:f0:25:80:5b:87:d9:8a:20:e4:a9: 82:b2:6a:d3 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICbMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNjExWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzVhMy1jZTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAa7SSQLm/fKioE+z3w4qL60WyyhEIRNOqD+UQe2gc7j9AqryOMLRYfwg4jg L21QYxqFP9+U63HXeqyEdp0RJ22PivbrFexBx4xX4VOlx4hIKzAaX13HYu/GbELI ZZs7euGg2s0AVd8ivKtVKXt8fEtKqHKhLxpN8h5FUti0MtxSA1VMnLm/kCM4WsEL xz6ubZo1z8XCglUrMGVCzQzqLUgZpgXHUGpZeTtVIxzoNNePQqhx/eDDbhAHkB4L 2m1dDNuFCaiK2rO36Dqc5xTqYELp6VP5QkJPXorbEoXJx6NBVz+AYl06cKAIHZf2 /pVamqxhKLG9uopzsLxlVCDtUQIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFCsOjkK9 +Rryt6iKWgJfEUMFsZJMMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOEFBNzc5NDJB M0FDMTFFREIzMDgzQzJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBgEAgABMBIDBABnZx0DBAFnaDoDBABnaEQwDwQCAAIwCQMHACABDfQXADAN BgkqhkiG9w0BAQsFAAOCAQEAVyHcuhLF03v187IBDtdXRK3/CwyEjlMXRmro31Q0 4oNLCJY0eF89sVFK+57WJkHSUvE5KuZoni3fn4F6DzFFZPexCsh1Vul2chjOj6tX 1H+NSxqN+FZV1oqgZEcH2PRo83Eu4jaDaW5pQCBjiIuJc8upwZwqesMqxPA20Vj7 D6pHCMWb17L9e/uuD2pBOP7kM+Kj7NJmkuhTjKsUP0DtmDALrqSyTVehgNlrbeqS XMxKE344FmHoIfROpAjeFmTTk1mk+ZPeLBTEzg3HeSjlswXlaYF++LaF4t5tT2AC o3NnzvVcotGaRb2YMyRtOdczeZ7wJYBbh9mKIOSpgrJq0w== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:38 2024 by rpki-client on console-ams.rpki-client.org