$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9900E10E2F6C11EDA8ABA74BC4F9AE02.roa File: 9900E10E2F6C11EDA8ABA74BC4F9AE02.roa (raw, json) Hash identifier: 1gdLqHCUk3VrFkh6HJLUMxr8KA1OWWcY21F1hwoqdr8= Subject key identifier: 38:31:DF:60:2B:D3:D9:ED:B3:26:8A:C6:A9:4D:65:C5:44:71:E6:74 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7883 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9900E10E2F6C11EDA8ABA74BC4F9AE02.roa Signing time: Thu 24 Aug 2023 10:01:46 +0000 ROA not before: Thu 24 Aug 2023 10:01:46 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 138264 IP address blocks: 103.132.29.0/24 maxlen: 24 103.132.30.0/24 maxlen: 24 103.132.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30851 (0x7883) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Aug 24 10:01:46 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64e72a8a-06ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7b:9a:c1:43:cc:9d:d8:2a:f1:4d:3b:f9:39: d8:c1:73:e5:5e:42:b5:05:71:d8:80:1e:25:9b:a1: f2:1b:2b:29:1e:9b:d6:ce:95:83:4c:51:df:2a:2f: a3:fb:99:43:52:a6:b8:17:2f:c9:68:2d:13:f5:de: 08:0a:0d:b5:36:6f:db:4b:f2:69:f8:62:fb:ed:9a: 72:9b:ab:a3:94:30:a4:ee:23:73:84:75:e3:a9:7f: 8d:08:f7:0b:a8:53:78:be:87:ed:99:33:1c:11:06: c9:75:39:01:19:58:e8:49:6f:0c:06:a4:74:ab:96: a3:35:22:58:74:06:6f:90:3c:f0:3c:8e:6b:e6:f3: c9:bc:12:c9:4e:2d:5f:77:33:b3:66:8e:c1:2b:34: c3:f3:fd:14:87:0a:cb:de:9d:40:2b:14:41:49:b9: 53:54:72:dd:78:58:38:9d:91:0a:b1:41:cc:80:7c: de:67:1d:24:b8:01:8b:6b:18:59:d8:bf:09:16:43: bc:16:3a:ff:e9:37:c1:ea:27:2c:88:0e:c1:25:2e: 25:0a:26:5f:ff:8b:11:59:54:ce:6b:18:63:d3:00: 7b:af:fa:bb:e4:8d:4b:56:ab:c6:e4:30:0c:b2:89: 3c:c7:dd:fb:65:09:b2:15:0e:b0:14:eb:a5:2f:72: 8f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:31:DF:60:2B:D3:D9:ED:B3:26:8A:C6:A9:4D:65:C5:44:71:E6:74 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9900E10E2F6C11EDA8ABA74BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.132.29.0-103.132.31.255 Signature Algorithm: sha256WithRSAEncryption 47:c5:81:13:d2:44:91:3f:5b:87:8e:16:41:bf:02:46:ce:13: 0e:4f:fb:ba:81:5d:b6:1e:ee:7a:2b:36:70:60:f0:8f:07:3a: 40:3b:64:f5:7e:c9:34:00:f5:77:a6:32:c2:15:c2:0b:6a:0d: ef:f1:eb:db:4d:cf:a8:b7:4c:ff:3d:58:e7:62:0c:89:d6:3f: 74:1f:03:0e:38:13:a2:01:07:1c:84:87:b4:78:f0:6c:68:47: 99:71:e1:91:ea:f8:e0:86:c2:b7:76:4f:d9:97:35:65:ff:c5: 9b:24:2a:a2:18:80:e0:55:2a:53:f0:3e:27:e3:52:69:ce:e7: 25:7e:58:d2:f1:59:54:61:b5:f1:4c:82:d3:f5:aa:9e:27:6a: 9d:c0:7a:d8:3f:79:9e:c8:02:88:e8:91:4b:19:b1:50:52:40: e9:83:bb:ce:22:75:84:3a:5c:c2:a7:60:d8:b1:f1:b1:b4:73: 8e:9c:fc:2d:4d:b2:4d:3a:49:de:be:f9:72:b0:f3:e9:00:31: 8e:3e:31:b0:cf:33:bf:4f:f2:2f:00:92:fe:47:0a:6f:72:d6: fd:0a:1b:a9:d6:d3:8a:85:4d:26:0e:93:2f:ec:8f:9c:52:7d: cf:6a:51:ce:2f:6e:b5:5e:b3:46:21:ee:2e:e4:ff:69:4a:a5: f7:93:37:4b -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICeIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwODI0MTAwMTQ2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGU3MmE4YS0wNmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHuawUPMndgq8U07+TnYwXPlXkK1BXHYgB4lm6HyGyspHpvWzpWDTFHfKi+j +5lDUqa4Fy/JaC0T9d4ICg21Nm/bS/Jp+GL77Zpym6ujlDCk7iNzhHXjqX+NCPcL qFN4voftmTMcEQbJdTkBGVjoSW8MBqR0q5ajNSJYdAZvkDzwPI5r5vPJvBLJTi1f dzOzZo7BKzTD8/0UhwrL3p1AKxRBSblTVHLdeFg4nZEKsUHMgHzeZx0kuAGLaxhZ 2L8JFkO8Fjr/6TfB6icsiA7BJS4lCiZf/4sRWVTOaxhj0wB7r/q75I1LVqvG5DAM sok8x937ZQmyFQ6wFOulL3KPiQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFDgx32Ar 09ntsyaKxqlNZcVEceZ0MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOTkwMEUxMEUy RjZDMTFFREE4QUJBNzRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAGeEHQMEBWeEADANBgkqhkiG9w0BAQsFAAOCAQEAR8WB E9JEkT9bh44WQb8CRs4TDk/7uoFdth7ueis2cGDwjwc6QDtk9X7JNAD1d6YywhXC C2oN7/Hr203PqLdM/z1Y52IMidY/dB8DDjgTogEHHISHtHjwbGhHmXHhker44IbC t3ZP2Zc1Zf/FmyQqohiA4FUqU/A+J+NSac7nJX5Y0vFZVGG18UyC0/WqnidqncB6 2D95nsgCiOiRSxmxUFJA6YO7ziJ1hDpcwqdg2LHxsbRzjpz8LU2yTTpJ3r75crDz 6QAxjj4xsM8zv0/yLwCS/kcKb3LW/QobqdbTioVNJg6TL+yPnFJ9z2pRzi9utV6z RiHuLuT/aUql95M3Sw== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:40 2024 by rpki-client on console-ams.rpki-client.org