$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/99DEDCA485BA11EC94CD2D6CC4F9AE02.roa File: 99DEDCA485BA11EC94CD2D6CC4F9AE02.roa (raw, json) Hash identifier: N+a9wLI7NP6Ei3ffYWRVNZVXqw8HJRW9DE1ZNiE8nDM= Subject key identifier: 81:04:F5:10:71:D2:1E:06:B4:7A:ED:0C:62:D7:36:BD:EA:85:77:F2 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6C93 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/99DEDCA485BA11EC94CD2D6CC4F9AE02.roa Signing time: Wed 10 May 2023 16:25:12 +0000 ROA not before: Wed 10 May 2023 16:25:12 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136652 IP address blocks: 103.110.36.0/24 maxlen: 24 103.110.37.0/24 maxlen: 24 103.110.38.0/24 maxlen: 24 103.110.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27795 (0x6c93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:25:12 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc568-4e4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:98:b9:af:23:ee:6b:24:0c:9c:c5:eb:76:6a: fd:07:7d:75:4c:d1:24:62:0c:4c:1b:f3:e7:6f:24: df:76:9a:71:8a:af:a1:50:24:31:bc:82:e3:f4:38: 88:04:e4:69:03:ee:05:95:0e:2b:ad:3a:77:0c:48: f7:25:1d:e3:96:1d:d1:f6:74:22:73:01:1d:00:7b: 36:aa:ea:e2:39:a2:0e:fa:c7:79:b6:26:94:52:29: f9:ff:2b:c1:ef:cf:56:00:43:1f:b1:7d:1c:34:06: c3:bf:37:83:da:dc:39:42:7c:ab:ff:7f:da:fb:b3: 93:f7:fa:d1:0f:e7:46:73:f2:59:df:7a:f7:3f:71: 9c:2e:c3:e1:7f:14:58:67:f5:a4:eb:a5:c3:03:46: e8:c7:6b:08:cc:a6:68:ac:5e:21:7e:c6:5f:0f:65: a3:82:e5:5b:f8:19:df:61:c3:28:9c:22:f8:3f:e3: 44:b7:95:77:e4:3d:a6:fd:04:46:53:f2:3d:d9:5f: c9:03:21:78:d8:94:47:c3:83:3f:d0:0e:0d:f5:37: 3c:52:2f:38:53:b2:c3:1c:01:fb:eb:f5:7e:39:de: 0a:de:51:64:d8:1a:2f:c9:7e:f6:fa:71:20:fa:77: 1d:5a:d4:bf:b4:b4:48:7a:8a:c4:f3:35:30:a0:f1: 50:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:04:F5:10:71:D2:1E:06:B4:7A:ED:0C:62:D7:36:BD:EA:85:77:F2 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/99DEDCA485BA11EC94CD2D6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.110.36.0/22 Signature Algorithm: sha256WithRSAEncryption 10:b3:14:dd:12:aa:8d:6e:09:7f:f6:bf:14:e3:30:8c:90:7d: 93:50:23:3d:59:f0:4a:fa:a5:10:b8:ce:7e:bf:28:ac:49:5e: b0:fc:16:a3:65:a7:77:c6:9e:bf:76:04:8d:d3:52:07:a9:10: 18:e9:82:fe:c7:a3:43:60:05:ab:04:90:95:36:58:00:2f:03: c8:04:06:a3:96:09:c0:45:58:99:8c:16:79:9a:92:18:6e:92: dc:d9:03:24:36:88:2a:9e:0f:7e:4e:fb:a7:96:53:91:a4:8e: 2b:66:cb:63:10:ec:37:bd:76:88:8c:a2:1b:58:3e:10:a0:11: d0:e1:59:e1:c1:07:be:54:f5:85:86:f5:5c:41:15:06:b4:a5: 4e:8f:1d:94:88:46:3b:6c:21:52:3b:d3:8a:21:82:14:fd:7d: e9:78:a3:4c:32:d9:00:6d:19:6e:03:37:76:93:10:b1:fd:db: 02:f8:99:79:9f:0b:87:c1:c7:ca:4a:50:01:0b:5b:ee:f2:a8: 40:9a:ae:3f:75:66:95:99:78:02:5b:7d:3b:e6:84:bf:b6:32: ef:24:64:47:24:c0:7a:85:5c:9e:bc:09:5b:6e:d6:45:f7:a0: ea:fa:4d:c5:f0:20:e7:8c:9e:d2:de:47:a8:3f:02:48:58:2b: 64:8e:5a:d5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNTEyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzU2OC00ZTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZi5ryPuayQMnMXrdmr9B311TNEkYgxMG/PnbyTfdppxiq+hUCQxvILj9DiI BORpA+4FlQ4rrTp3DEj3JR3jlh3R9nQicwEdAHs2quriOaIO+sd5tiaUUin5/yvB 789WAEMfsX0cNAbDvzeD2tw5Qnyr/3/a+7OT9/rRD+dGc/JZ33r3P3GcLsPhfxRY Z/Wk66XDA0box2sIzKZorF4hfsZfD2WjguVb+BnfYcMonCL4P+NEt5V35D2m/QRG U/I92V/JAyF42JRHw4M/0A4N9Tc8Ui84U7LDHAH76/V+Od4K3lFk2BovyX72+nEg +ncdWtS/tLRIeorE8zUwoPFQswIDAQABo4IClTCCApEwHQYDVR0OBBYEFIEE9RBx 0h4GtHrtDGLXNr3qhXfyMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOTlERURDQTQ4 NUJBMTFFQzk0Q0QyRDZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnbiQwDQYJKoZIhvcNAQELBQADggEBABCzFN0Sqo1uCX/2 vxTjMIyQfZNQIz1Z8Er6pRC4zn6/KKxJXrD8FqNlp3fGnr92BI3TUgepEBjpgv7H o0NgBasEkJU2WAAvA8gEBqOWCcBFWJmMFnmakhhuktzZAyQ2iCqeD35O+6eWU5Gk jitmy2MQ7De9doiMohtYPhCgEdDhWeHBB75U9YWG9VxBFQa0pU6PHZSIRjtsIVI7 04ohghT9fel4o0wy2QBtGW4DN3aTELH92wL4mXmfC4fBx8pKUAELW+7yqECarj91 ZpWZeAJbfTvmhL+2Mu8kZEckwHqFXJ68CVtu1kX3oOr6TcXwIOeMntLeR6g/AkhY K2SOWtU= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:40 2024 by rpki-client on console-ams.rpki-client.org