$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A0C5CA8AFB9611ECB0A2556AC4F9AE02.roa File: A0C5CA8AFB9611ECB0A2556AC4F9AE02.roa (raw, json) Hash identifier: D8dc+0+vrz/dSO32G5XgaYVRY+SXWPdJNID27SY1YxU= Subject key identifier: 0B:E8:78:03:7F:5E:00:35:0E:0C:25:4F:BC:2B:2B:0F:63:EA:CE:5E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 69E2 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A0C5CA8AFB9611ECB0A2556AC4F9AE02.roa Signing time: Wed 10 May 2023 16:12:00 +0000 ROA not before: Wed 10 May 2023 16:12:00 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 131442 IP address blocks: 103.29.116.0/22 maxlen: 24 103.97.240.0/22 maxlen: 24 103.122.10.0/23 maxlen: 24 103.187.81.0/24 maxlen: 24 103.191.42.0/23 maxlen: 24 103.255.180.0/22 maxlen: 24 150.107.20.0/22 maxlen: 24 150.107.40.0/22 maxlen: 24 2001:df0:f640::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27106 (0x69e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:12:00 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc250-33a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b9:56:9c:e9:a4:61:49:26:b8:f4:76:7d:83: 8a:1c:73:ec:bf:97:4a:85:93:8e:0e:b1:be:bf:1c: d2:1b:d0:60:6e:9b:77:ca:6f:3b:c8:1c:b3:e2:d6: 64:ca:26:a4:80:be:79:81:b2:8c:e5:41:55:d1:c7: 3f:33:0d:b6:20:9f:1d:88:28:bf:1f:cf:7e:10:59: fb:f7:ca:39:9d:0c:a5:d9:fd:0d:b3:80:72:20:cf: 80:d0:ea:f4:4d:93:f2:3e:aa:4f:2b:7d:96:ef:50: 50:ae:31:0a:55:19:89:25:3a:d6:99:f6:09:12:03: 2f:40:c1:53:07:37:80:4d:97:b4:0c:08:ad:b2:44: 22:e9:50:70:e0:fc:f0:33:03:e9:86:b6:fb:b1:b0: b2:76:57:9a:26:93:33:9a:73:6d:8f:ea:20:c4:d7: d2:54:e9:04:53:45:c1:78:b0:ed:97:a7:66:6d:d0: f8:96:e1:2a:c2:cf:d8:64:1b:f7:0a:52:63:e2:9e: b7:aa:5f:ae:ac:69:d1:01:20:ee:f3:1e:f8:93:a0: d9:19:19:29:2c:da:50:11:96:a5:34:e3:7f:00:2e: 37:2f:ae:cf:fc:e4:67:90:ed:26:ab:b9:e8:7b:28: d5:1b:8a:e8:c7:d2:3d:cf:e5:84:b7:0a:98:d8:c5: d2:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:E8:78:03:7F:5E:00:35:0E:0C:25:4F:BC:2B:2B:0F:63:EA:CE:5E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A0C5CA8AFB9611ECB0A2556AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.29.116.0/22 103.97.240.0/22 103.122.10.0/23 103.187.81.0/24 103.191.42.0/23 103.255.180.0/22 150.107.20.0/22 150.107.40.0/22 IPv6: 2001:df0:f640::/48 Signature Algorithm: sha256WithRSAEncryption 0b:9d:40:62:cc:1b:8c:09:6c:1f:1d:b2:47:45:64:81:ec:88: ae:c6:a9:08:46:e4:df:f8:39:08:93:b0:ff:e3:c8:97:6f:7b: 9f:c0:9f:f8:5b:4a:61:b3:62:50:38:a1:d6:11:14:98:8c:66: c2:2b:85:2b:f6:9b:f2:79:de:4b:bf:64:ac:22:56:c8:52:50: 41:82:bd:42:9f:cb:14:74:53:b2:94:4e:63:b8:4f:a8:5a:94: 0a:5f:f2:cf:9b:a2:06:e2:91:ce:38:75:be:10:82:19:b8:f1: 6e:77:45:55:fd:da:03:c2:cc:1e:24:6a:67:26:8f:7a:68:0f: ce:07:4f:d3:f4:20:45:d3:bf:02:1e:d7:0e:ed:b1:15:12:44: fd:34:3d:ae:1a:c7:2a:98:48:34:3a:46:4e:51:88:20:98:07: c0:9c:c1:09:98:a8:e8:0a:2f:88:b9:11:3b:f6:b1:15:0b:70: fa:d8:2b:79:ca:55:60:b9:93:07:7d:c9:1b:b3:45:c5:ae:bd: b6:c9:06:a4:d3:91:8f:a6:92:b1:6a:93:4e:93:c2:c7:7d:55: 96:fe:7f:cb:de:31:3b:f2:b0:e4:3d:5a:46:a1:b9:38:c9:53: b7:65:43:dd:5a:ae:6a:bf:d7:ba:7c:15:74:b7:9c:c6:52:86: da:c8:ea:97 -----BEGIN CERTIFICATE----- MIIFrDCCBJSgAwIBAgICaeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxMjAwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzI1MC0zM2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLlWnOmkYUkmuPR2fYOKHHPsv5dKhZOODrG+vxzSG9Bgbpt3ym87yByz4tZk yiakgL55gbKM5UFV0cc/Mw22IJ8diCi/H89+EFn798o5nQyl2f0Ns4ByIM+A0Or0 TZPyPqpPK32W71BQrjEKVRmJJTrWmfYJEgMvQMFTBzeATZe0DAitskQi6VBw4Pzw MwPphrb7sbCydleaJpMzmnNtj+ogxNfSVOkEU0XBeLDtl6dmbdD4luEqws/YZBv3 ClJj4p63ql+urGnRASDu8x74k6DZGRkpLNpQEZalNON/AC43L67P/ORnkO0mq7no eyjVG4rox9I9z+WEtwqY2MXSwwIDAQABo4IC0DCCAswwHQYDVR0OBBYEFAvoeAN/ XgA1DgwlT7wrKw9j6s5eMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQTBDNUNBOEFG Qjk2MTFFQ0IwQTI1NTZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwWgYIKwYBBQUHAQcBAf8E SzBJMDYEAgABMDADBAJnHXQDBAJnYfADBAFnegoDBABnu1EDBAFnvyoDBAJn/7QD BAKWaxQDBAKWaygwDwQCAAIwCQMHACABDfD2QDANBgkqhkiG9w0BAQsFAAOCAQEA C51AYswbjAlsHx2yR0VkgeyIrsapCEbk3/g5CJOw/+PIl297n8Cf+FtKYbNiUDih 1hEUmIxmwiuFK/ab8nneS79krCJWyFJQQYK9Qp/LFHRTspROY7hPqFqUCl/yz5ui BuKRzjh1vhCCGbjxbndFVf3aA8LMHiRqZyaPemgPzgdP0/QgRdO/Ah7XDu2xFRJE /TQ9rhrHKphINDpGTlGIIJgHwJzBCZio6AoviLkRO/axFQtw+tgrecpVYLmTB33J G7NFxa69tskGpNORj6aSsWqTTpPCx31Vlv5/y94xO/Kw5D1aRqG5OMlTt2VD3Vqu ar/XunwVdLecxlKG2sjqlw== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:40 2024 by rpki-client on console-ams.rpki-client.org