$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/90929608E8D411ED8D0FAD45C4F9AE02.roa File: 90929608E8D411ED8D0FAD45C4F9AE02.roa (raw, json) Hash identifier: PuRDZbwG/g3rMBnRwZCzkElWRKrbPaZh74l+sfIUeEc= Subject key identifier: 66:C5:BB:B7:D3:BE:C1:28:53:88:65:B1:BE:2F:51:37:48:9E:95:D0 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7DDF Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/90929608E8D411ED8D0FAD45C4F9AE02.roa Signing time: Fri 17 Nov 2023 04:47:50 +0000 ROA not before: Fri 17 Nov 2023 04:47:50 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 135845 IP address blocks: 103.81.236.0/24 maxlen: 24 103.81.237.0/24 maxlen: 24 103.81.238.0/24 maxlen: 24 103.81.239.0/24 maxlen: 24 103.117.37.0/24 maxlen: 24 2406:a2c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32223 (0x7ddf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Nov 17 04:47:50 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=6556f076-8a30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:09:7f:15:d7:df:30:53:07:7f:5c:04:39:a2: 95:a4:66:5a:a3:65:9b:df:a4:22:79:15:d1:89:49: 15:81:19:35:eb:84:bc:e5:44:64:3d:0a:a3:47:9c: 7b:94:12:9d:81:e3:c1:e6:26:54:30:50:4d:62:47: e9:8b:5c:5a:10:6c:47:98:2b:8f:aa:48:d0:8a:b3: 5f:0d:be:18:fb:d0:62:b5:df:5f:74:d1:ec:c7:ee: 7e:a3:bb:45:81:8b:8e:35:6b:83:53:e8:a7:a4:e2: 4c:29:36:aa:f9:7d:32:20:0a:2e:65:d2:56:86:9e: 04:e3:19:13:21:16:72:24:e9:57:78:67:63:a1:74: 16:ee:18:74:64:d3:cd:cf:e0:a7:19:07:29:10:57: 31:28:61:29:38:17:4a:bf:87:5e:2e:03:82:b5:88: 0d:20:da:df:d0:ba:79:aa:70:6f:56:21:a7:ca:ba: a1:60:96:be:1a:aa:21:f0:92:fd:9d:1b:a8:0e:2c: fe:04:36:bc:69:69:d7:eb:2e:8b:71:82:9d:33:f2: 5a:56:f7:65:66:70:4c:de:39:01:a6:bb:ad:1e:5f: 40:07:5c:0f:35:4f:cc:6d:ec:7a:07:7c:72:e2:ad: 7d:f6:f4:3f:c4:35:00:a8:fb:44:20:e2:e5:7a:03: ad:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:C5:BB:B7:D3:BE:C1:28:53:88:65:B1:BE:2F:51:37:48:9E:95:D0 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/90929608E8D411ED8D0FAD45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.81.236.0/22 103.117.37.0/24 IPv6: 2406:a2c0::/32 Signature Algorithm: sha256WithRSAEncryption 83:57:ca:e6:36:d3:e2:e2:a8:22:2e:67:05:81:92:9b:a8:84: c3:fe:86:da:bb:3e:5f:6b:93:e8:e7:a5:4d:e7:5d:08:56:35: a3:48:01:48:ec:7a:98:85:11:45:cc:6f:97:05:f4:4b:89:de: 90:a2:ed:aa:24:95:84:4c:c7:c2:46:c8:f5:34:da:6e:d4:89: ae:03:67:d0:0e:c7:52:f5:90:2f:80:30:19:37:81:a7:31:96: 9f:bc:56:ea:33:56:1c:c0:a0:68:4d:a3:2e:cd:04:f8:93:05: 73:10:46:ad:2c:eb:7f:c2:cb:b0:40:48:95:d7:0f:da:f0:24: db:c9:96:28:78:8e:26:ed:23:e4:29:36:12:ab:b5:38:be:ed: 68:6f:e4:d2:29:39:74:b6:a9:7b:1c:53:5b:3b:f0:f9:3c:b5: 91:01:00:72:06:92:f0:a3:84:dc:e2:52:f7:5d:df:28:18:f4: 39:50:ab:c5:db:7a:2c:be:86:2a:02:92:43:d4:29:4a:a0:76: 19:72:04:ca:28:61:5a:1b:fe:23:7a:b1:1f:92:68:0e:d3:99: ad:f0:91:e3:34:32:09:35:fa:ea:7d:59:92:43:6d:bc:13:13: 58:95:b6:ef:2c:61:76:6a:5b:98:a7:15:2c:d2:03:f0:03:e9: 2f:fc:e5:2e -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICfd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMxMTE3MDQ0NzUwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTU2ZjA3Ni04YTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQl/FdffMFMHf1wEOaKVpGZao2Wb36QieRXRiUkVgRk164S85URkPQqjR5x7 lBKdgePB5iZUMFBNYkfpi1xaEGxHmCuPqkjQirNfDb4Y+9Bitd9fdNHsx+5+o7tF gYuONWuDU+inpOJMKTaq+X0yIAouZdJWhp4E4xkTIRZyJOlXeGdjoXQW7hh0ZNPN z+CnGQcpEFcxKGEpOBdKv4deLgOCtYgNINrf0Lp5qnBvViGnyrqhYJa+Gqoh8JL9 nRuoDiz+BDa8aWnX6y6LcYKdM/JaVvdlZnBM3jkBprutHl9AB1wPNU/Mbex6B3xy 4q199vQ/xDUAqPtEIOLlegOthwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFGbFu7fT vsEoU4hlsb4vUTdInpXQMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOTA5Mjk2MDhF OEQ0MTFFRDhEMEZBRDQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnUewDBABndSUwDQQCAAIwBwMFACQGosAwDQYJKoZIhvcN AQELBQADggEBAINXyuY20+LiqCIuZwWBkpuohMP+htq7Pl9rk+jnpU3nXQhWNaNI AUjsepiFEUXMb5cF9EuJ3pCi7aoklYRMx8JGyPU02m7Uia4DZ9AOx1L1kC+AMBk3 gacxlp+8VuozVhzAoGhNoy7NBPiTBXMQRq0s63/Cy7BASJXXD9rwJNvJlih4jibt I+QpNhKrtTi+7Whv5NIpOXS2qXscU1s78Pk8tZEBAHIGkvCjhNziUvdd3ygY9DlQ q8Xbeiy+hioCkkPUKUqgdhlyBMooYVob/iN6sR+SaA7Tma3wkeM0Mgk1+up9WZJD bbwTE1iVtu8sYXZqW5inFSzSA/AD6S/85S4= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:39 2024 by rpki-client on console-ams.rpki-client.org