$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/900E0ED889C111ECA9865C1DC4F9AE02.roa File: 900E0ED889C111ECA9865C1DC4F9AE02.roa (raw, json) Hash identifier: nIsHHKoVeekN9B9PyHqGBDBWdjXUwFLIsICKI8zcPMQ= Subject key identifier: A2:81:75:54:D6:F9:5F:22:B6:E3:35:A1:86:D4:B8:DC:DE:75:DE:A2 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 72BD Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/900E0ED889C111ECA9865C1DC4F9AE02.roa Signing time: Thu 25 May 2023 13:02:17 +0000 ROA not before: Thu 25 May 2023 13:02:17 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 138257 IP address blocks: 45.250.216.0/24 maxlen: 24 45.250.217.0/24 maxlen: 24 45.250.218.0/24 maxlen: 24 45.250.219.0/24 maxlen: 24 103.69.4.0/22 maxlen: 24 103.154.246.0/23 maxlen: 24 157.119.88.0/22 maxlen: 22 157.119.88.0/24 maxlen: 24 157.119.89.0/24 maxlen: 24 157.119.90.0/24 maxlen: 24 157.119.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29373 (0x72bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 25 13:02:17 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=646f5c58-a203 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:0e:ac:2a:2b:2b:bc:75:0a:42:db:1b:48:b5: f4:94:54:07:af:07:0b:0a:44:e0:7c:c8:68:e8:18: 59:ca:8e:aa:c5:b0:ac:e2:0f:ed:77:3e:28:45:95: 51:7a:ce:47:2e:28:65:c8:31:a4:61:fa:f5:94:d3: e9:27:34:a7:82:9c:9e:82:74:cd:94:3a:2f:22:95: 6e:34:70:cd:cf:25:84:e7:6c:23:66:5e:12:3d:31: 3d:64:a5:4e:4b:71:34:57:58:53:0d:9f:50:26:87: 95:1d:32:88:6a:b0:53:11:87:31:c2:09:e9:f0:be: 6e:a2:d5:ea:28:76:e6:85:b2:de:17:f1:67:f0:a8: 19:5b:d9:ce:37:c0:7b:f3:5d:ab:90:2c:81:ae:79: 69:9a:6c:b0:54:bd:66:54:cb:3b:69:f3:1d:bd:fa: 49:14:3b:dd:40:ad:c1:21:d7:0a:83:48:aa:50:7d: 5f:7d:ec:ac:03:01:d1:ea:33:62:73:f0:ee:f8:89: ee:aa:eb:3e:aa:50:9b:41:b5:21:ae:1e:3d:f4:f9: d8:1f:77:f6:3b:ce:45:89:24:27:a1:c2:63:dc:1a: c3:26:10:c8:3b:b2:ae:6a:ba:cf:d8:2b:31:03:8d: 23:eb:99:83:1d:b6:82:d4:77:cb:70:4e:73:74:e9: 35:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:81:75:54:D6:F9:5F:22:B6:E3:35:A1:86:D4:B8:DC:DE:75:DE:A2 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/900E0ED889C111ECA9865C1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.250.216.0/22 103.69.4.0/22 103.154.246.0/23 157.119.88.0/22 Signature Algorithm: sha256WithRSAEncryption 97:79:dc:40:7f:c5:d8:34:0c:2c:42:b3:65:1e:2f:20:c0:21: 02:03:45:78:6b:de:5d:4d:7c:f6:65:53:90:8c:2a:81:56:eb: 0f:c2:da:5f:9b:3f:a7:9d:93:41:05:4e:0a:d3:d7:22:47:94: dc:9b:e1:94:8e:46:90:5b:14:c2:6d:39:3c:2c:ef:b4:ea:b1: 14:6e:87:73:77:d5:c1:c7:43:c9:8d:e5:1c:0c:dc:da:ab:48: 07:f5:84:be:92:a4:c4:9f:91:9f:17:26:ea:67:95:42:0c:9d: 7d:83:c9:6a:88:98:47:7f:bd:74:80:da:f6:60:6a:85:1a:69: a9:a0:76:2b:12:4b:21:b9:aa:1e:01:7f:df:76:77:6d:af:1e: 81:31:de:27:66:51:23:f0:4e:58:04:21:c7:30:71:4a:58:79: f6:b3:58:99:5e:95:20:ba:de:79:26:6a:43:41:62:21:84:3a: 62:07:43:1c:c3:e1:18:55:6e:57:ad:dc:68:ad:58:18:98:1d: 45:04:ef:3f:89:d3:bd:89:de:69:76:65:ba:fe:49:b2:66:51: 0d:9e:e3:41:d7:68:46:d4:fb:87:6d:38:2e:24:16:cc:b8:bb: 7d:6a:bf:b5:ce:a4:ef:78:ca:e2:be:e0:77:82:65:b4:5f:bc: 47:20:b5:0c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICcr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTI1MTMwMjE3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDZmNWM1OC1hMjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5g6sKisrvHUKQtsbSLX0lFQHrwcLCkTgfMho6BhZyo6qxbCs4g/tdz4oRZVR es5HLihlyDGkYfr1lNPpJzSngpyegnTNlDovIpVuNHDNzyWE52wjZl4SPTE9ZKVO S3E0V1hTDZ9QJoeVHTKIarBTEYcxwgnp8L5uotXqKHbmhbLeF/Fn8KgZW9nON8B7 812rkCyBrnlpmmywVL1mVMs7afMdvfpJFDvdQK3BIdcKg0iqUH1ffeysAwHR6jNi c/Du+Inuqus+qlCbQbUhrh499PnYH3f2O85FiSQnocJj3BrDJhDIO7KuarrP2Csx A40j65mDHbaC1HfLcE5zdOk1VwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFKKBdVTW +V8ituM1oYbUuNzedd6iMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOTAwRTBFRDg4 OUMxMTFFQ0E5ODY1QzFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAIt+tgDBAJnRQQDBAFnmvYDBAKdd1gwDQYJKoZIhvcNAQEL BQADggEBAJd53EB/xdg0DCxCs2UeLyDAIQIDRXhr3l1NfPZlU5CMKoFW6w/C2l+b P6edk0EFTgrT1yJHlNyb4ZSORpBbFMJtOTws77TqsRRuh3N31cHHQ8mN5RwM3Nqr SAf1hL6SpMSfkZ8XJupnlUIMnX2DyWqImEd/vXSA2vZgaoUaaamgdisSSyG5qh4B f992d22vHoEx3idmUSPwTlgEIccwcUpYefazWJlelSC63nkmakNBYiGEOmIHQxzD 4RhVblet3GitWBiYHUUE7z+J072J3ml2Zbr+SbJmUQ2e40HXaEbU+4dtOC4kFsy4 u31qv7XOpO94yuK+4HeCZbRfvEcgtQw= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:39 2024 by rpki-client on console-ams.rpki-client.org