$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9D8685A202F611EBB4DBB80AC4F9AE02.roa File: 9D8685A202F611EBB4DBB80AC4F9AE02.roa (raw, json) Hash identifier: NacyLdOVAQwtI2IfQ7kBWdOo5/6LN+zdq803nYiBauc= Subject key identifier: 50:FB:EE:88:03:77:F9:30:62:3C:D6:20:87:DF:25:8F:9A:EF:1F:DB Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6ADE Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9D8685A202F611EBB4DBB80AC4F9AE02.roa Signing time: Wed 10 May 2023 16:16:52 +0000 ROA not before: Wed 10 May 2023 16:16:52 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134001 IP address blocks: 103.50.152.0/22 maxlen: 24 103.74.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27358 (0x6ade) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:16:52 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc374-cb3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:4d:b0:f2:8f:d8:d2:e5:93:b2:8d:c0:ca:cc: 8f:79:ea:a9:ab:55:bd:c9:70:d8:c6:c6:3b:69:ea: 98:b8:2a:07:d7:7f:7a:46:d6:a1:78:31:a9:d6:64: 1d:35:48:82:8c:0d:63:7b:a7:45:26:8f:a0:20:49: 5d:15:c0:cf:66:76:d0:32:b7:3e:30:75:42:2f:96: a7:0f:dc:1f:62:99:b1:38:5b:32:04:11:f8:68:b4: 8a:63:42:d7:b1:96:c8:4a:92:3d:e3:18:43:cc:57: dd:13:87:f2:ec:72:1c:e2:d9:fc:d0:81:3b:22:8d: 5b:32:49:26:13:7f:96:87:34:22:e3:24:71:20:48: 12:6d:48:03:39:bc:8b:7e:9e:0d:d0:cd:81:da:39: 08:41:97:c1:3e:bf:9f:a6:28:fc:77:c8:0c:80:00: d1:f5:c7:81:5e:e6:ab:56:0d:72:65:9b:d0:91:97: d2:6a:67:fc:63:db:c4:91:7c:58:33:84:90:8d:ff: fb:cf:05:56:d2:ff:2b:99:06:96:46:d6:fc:11:ac: e5:3d:4e:4a:15:82:d0:9f:37:97:b6:3b:73:98:25: e9:63:ac:e4:9e:c3:a2:4f:4d:c7:b7:1b:a8:bb:33: 93:bc:e9:dd:b2:96:3e:c3:35:f4:73:28:12:3a:77: 88:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:FB:EE:88:03:77:F9:30:62:3C:D6:20:87:DF:25:8F:9A:EF:1F:DB X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9D8685A202F611EBB4DBB80AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.50.152.0/22 103.74.96.0/22 Signature Algorithm: sha256WithRSAEncryption 68:44:dd:6d:4f:8b:de:86:13:c1:de:d5:93:4d:e3:93:f2:71: 1b:da:3a:5b:87:35:c1:83:f6:13:a4:28:e2:a3:d6:50:19:35: 24:30:21:8b:a0:ac:22:ea:9f:0e:b1:3a:12:0d:bd:57:cf:f0: cb:5c:6e:85:b4:12:dc:6b:ee:38:04:72:85:00:0b:b0:1b:71: d3:37:e3:d5:a9:ae:05:15:df:5a:97:2c:91:36:3b:27:e9:23: cc:08:34:c5:4d:ec:ee:27:b0:e8:33:47:ad:72:a5:af:8a:22: b6:63:7e:22:00:4f:72:c2:3e:43:9d:98:2c:0b:08:f8:fc:34: 33:79:b1:fe:d5:63:f3:9c:ca:73:37:37:ae:f0:13:51:b3:c4: 0c:7c:9c:f3:68:c0:5a:0d:1b:fd:99:4b:69:f0:f9:a2:27:d6: 36:c5:d3:e4:a4:f0:72:1a:1e:20:01:69:40:4e:a8:57:9a:da: 80:a9:a0:b9:df:fc:47:60:c7:65:86:cd:dd:fb:d5:be:1f:ae: 66:64:2f:2e:ac:83:d0:19:25:90:8d:26:82:85:d4:e1:32:3f: d1:31:4b:4a:4c:af:73:a2:a8:c2:dd:27:0b:20:e1:44:b2:8e: f3:1d:c1:70:75:7d:42:38:4b:aa:90:41:d6:d6:dc:85:df:a7: 5f:2a:66:e8 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICat4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxNjUyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzM3NC1jYjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6U2w8o/Y0uWTso3AysyPeeqpq1W9yXDYxsY7aeqYuCoH1396RtaheDGp1mQd NUiCjA1je6dFJo+gIEldFcDPZnbQMrc+MHVCL5anD9wfYpmxOFsyBBH4aLSKY0LX sZbISpI94xhDzFfdE4fy7HIc4tn80IE7Io1bMkkmE3+WhzQi4yRxIEgSbUgDObyL fp4N0M2B2jkIQZfBPr+fpij8d8gMgADR9ceBXuarVg1yZZvQkZfSamf8Y9vEkXxY M4SQjf/7zwVW0v8rmQaWRtb8EazlPU5KFYLQnzeXtjtzmCXpY6zknsOiT03Htxuo uzOTvOndspY+wzX0cygSOneIZQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFD77ogD d/kwYjzWIIffJY+a7x/bMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOUQ4Njg1QTIw MkY2MTFFQkI0REJCODBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnMpgDBAJnSmAwDQYJKoZIhvcNAQELBQADggEBAGhE3W1P i96GE8He1ZNN45PycRvaOluHNcGD9hOkKOKj1lAZNSQwIYugrCLqnw6xOhINvVfP 8MtcboW0Etxr7jgEcoUAC7AbcdM349WprgUV31qXLJE2OyfpI8wINMVN7O4nsOgz R61ypa+KIrZjfiIAT3LCPkOdmCwLCPj8NDN5sf7VY/OcynM3N67wE1GzxAx8nPNo wFoNG/2ZS2nw+aIn1jbF0+Sk8HIaHiABaUBOqFea2oCpoLnf/Edgx2WGzd371b4f rmZkLy6sg9AZJZCNJoKF1OEyP9ExS0pMr3OiqMLdJwsg4USyjvMdwXB1fUI4S6qQ QdbW3IXfp18qZug= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:40 2024 by rpki-client on console-ams.rpki-client.org