$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8D8E7BCAE8D411ED8D0FAD45C4F9AE02.roa File: 8D8E7BCAE8D411ED8D0FAD45C4F9AE02.roa (raw, json) Hash identifier: lReP1CejwjQ/rMhrRbp5Y6O0KDDhfot5d8GF3POgyJs= Subject key identifier: 20:CD:C9:34:2E:E0:64:D8:12:82:10:77:63:2A:ED:3F:62:76:29:AC Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7141 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8D8E7BCAE8D411ED8D0FAD45C4F9AE02.roa Signing time: Wed 10 May 2023 16:47:22 +0000 ROA not before: Wed 10 May 2023 16:47:22 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 151148 IP address blocks: 103.90.205.0/24 maxlen: 24 103.90.206.0/24 maxlen: 24 103.90.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 15:26:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28993 (0x7141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:47:22 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bca9a-0673 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:9e:19:d4:70:7a:30:15:e3:a7:8a:6c:bd:f5: 00:1f:19:6f:dc:ec:7f:5a:5a:91:1d:da:20:64:38: de:99:58:f7:3b:31:d2:25:c5:31:92:d7:28:a5:a6: c5:27:d6:7d:d7:db:b5:28:f0:59:4d:19:0f:a3:55: 90:9c:64:9f:98:33:3a:9e:d6:ce:fa:5f:90:6d:81: 66:9f:3d:c0:f7:6d:c3:5b:e6:7c:82:1c:f7:18:6f: 8c:9d:02:c4:9f:64:9a:74:d0:fc:2e:d2:a6:79:0b: b7:84:0b:aa:da:a2:ed:93:97:f2:04:58:b7:eb:1f: ac:fe:11:85:b2:1c:44:9c:ae:07:ea:a9:f9:42:18: 48:85:71:05:3f:17:33:12:86:cc:16:8c:94:33:78: 0d:87:b0:fb:5a:9c:3d:f6:57:ba:83:16:82:da:fd: 0f:9d:44:3f:c5:11:e8:34:fd:47:0f:ce:f8:92:42: 77:99:b8:ea:fa:33:ac:18:57:f6:e9:82:0b:b5:a2: 2e:d7:7e:09:1c:fa:ee:26:17:cc:66:ba:8d:41:eb: 4e:7b:d0:aa:e7:f3:69:88:a2:57:c3:3e:ae:fd:33: ec:d2:f9:19:db:90:13:ed:55:82:8e:d9:fd:e3:0a: c4:ae:d4:de:80:3a:3b:cc:bd:e8:fe:74:9d:cb:96: 22:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:CD:C9:34:2E:E0:64:D8:12:82:10:77:63:2A:ED:3F:62:76:29:AC X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8D8E7BCAE8D411ED8D0FAD45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.90.205.0-103.90.207.255 Signature Algorithm: sha256WithRSAEncryption 30:e2:6c:37:d6:3a:aa:20:40:3f:86:23:b7:c1:00:d1:15:f7: 8b:1e:e6:fd:fc:94:60:7d:e4:67:b6:e7:c5:c8:d7:bc:42:f1: 99:d0:cc:61:90:c2:e2:79:f0:5b:8f:da:a1:ae:57:44:23:13: 0e:22:e7:9c:9c:4f:72:cf:32:3f:89:32:e0:32:cb:67:39:cc: c7:9b:c9:42:7d:94:37:c0:ba:3d:e3:9a:72:1f:6b:3c:4b:5c: 07:4e:f5:e0:95:63:89:bb:31:ab:16:45:d5:79:ef:b4:ea:45: 48:fb:68:4e:d4:3b:b2:18:3f:78:f9:e2:ce:b0:62:1a:71:b5: b5:39:c0:d1:4b:0f:bb:c0:04:6d:2d:88:82:c5:3f:8b:ad:f9: e7:12:33:c0:0b:02:4c:3f:7a:62:8a:51:13:a7:2e:fa:34:34: 64:3d:6d:70:c6:53:71:b7:4e:75:00:36:3c:a3:bb:0d:5a:47: d6:6e:d1:32:f5:10:48:c3:91:8c:21:47:66:17:d4:7e:f8:b6: 9e:76:02:5e:3d:63:d3:5a:fb:2f:fc:03:7f:b5:9d:d6:80:52: 6c:77:20:cd:e4:9e:2b:c8:5d:c4:5b:54:8c:c6:03:6b:37:95: ff:9e:17:c2:e2:3e:1c:e3:ca:bf:64:f9:bf:be:0a:bc:2f:82: ce:79:15:b2 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICcUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0NzIyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViY2E5YS0wNjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn54Z1HB6MBXjp4psvfUAHxlv3Ox/WlqRHdogZDjemVj3OzHSJcUxktcopabF J9Z919u1KPBZTRkPo1WQnGSfmDM6ntbO+l+QbYFmnz3A923DW+Z8ghz3GG+MnQLE n2SadND8LtKmeQu3hAuq2qLtk5fyBFi36x+s/hGFshxEnK4H6qn5QhhIhXEFPxcz EobMFoyUM3gNh7D7Wpw99le6gxaC2v0PnUQ/xRHoNP1HD874kkJ3mbjq+jOsGFf2 6YILtaIu134JHPruJhfMZrqNQetOe9Cq5/NpiKJXwz6u/TPs0vkZ25AT7VWCjtn9 4wrErtTegDo7zL3o/nSdy5Yi2wIDAQABo4ICnTCCApkwHQYDVR0OBBYEFCDNyTQu 4GTYEoIQd2Mq7T9idimsMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOEQ4RTdCQ0FF OEQ0MTFFRDhEMEZBRDQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAGdazQMEBGdawDANBgkqhkiG9w0BAQsFAAOCAQEAMOJs N9Y6qiBAP4Yjt8EA0RX3ix7m/fyUYH3kZ7bnxcjXvELxmdDMYZDC4nnwW4/aoa5X RCMTDiLnnJxPcs8yP4ky4DLLZznMx5vJQn2UN8C6PeOach9rPEtcB0714JVjibsx qxZF1XnvtOpFSPtoTtQ7shg/ePnizrBiGnG1tTnA0UsPu8AEbS2IgsU/i6355xIz wAsCTD96YopRE6cu+jQ0ZD1tcMZTcbdOdQA2PKO7DVpH1m7RMvUQSMORjCFHZhfU fvi2nnYCXj1j01r7L/wDf7Wd1oBSbHcgzeSeK8hdxFtUjMYDazeV/54XwuI+HOPK v2T5v74KvC+CznkVsg== -----END CERTIFICATE-----Generated at Sun Apr 28 16:49:27 2024 by rpki-client on console-ams.rpki-client.org