$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A0DA53E6D77D11EE90D4B40AC4F9AE02.roa File: A0DA53E6D77D11EE90D4B40AC4F9AE02.roa (raw, json) Hash identifier: n6GFjQWb8Fcbipn5+XUEgbTjmLTjuwvh6WjH+fcehgQ= Subject key identifier: B2:92:5D:4E:66:BF:80:91:50:39:0D:09:C2:FD:CE:D5:82:2B:6B:31 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8587 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A0DA53E6D77D11EE90D4B40AC4F9AE02.roa Signing time: Thu 28 Mar 2024 12:11:46 +0000 ROA not before: Thu 28 Mar 2024 12:11:46 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 16509 IP address blocks: 103.54.236.0/24 maxlen: 24 103.94.140.0/24 maxlen: 24 103.166.180.0/24 maxlen: 24 103.167.152.0/23 maxlen: 24 103.175.106.0/23 maxlen: 23 103.181.194.0/24 maxlen: 24 103.233.120.0/24 maxlen: 24 203.78.131.0/24 maxlen: 24 2001:df6:9580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34183 (0x8587) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Mar 28 12:11:46 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=66055e82-fe0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:34:b1:4b:1b:71:24:c6:f0:7b:3d:0a:9c:16: c7:ac:88:56:fc:b0:e0:8a:f3:ab:d3:d6:9a:fb:c6: 87:8e:cb:17:04:b7:9b:c6:99:b3:fd:13:31:93:1d: 8c:6d:8b:5d:ca:73:89:0a:de:21:4c:5d:ce:7a:5f: 92:dc:84:67:dd:f1:02:55:9e:37:ad:80:66:4e:49: 81:c7:36:27:94:9a:89:0f:32:3a:d0:b5:08:2a:c7: fd:87:00:a4:a1:05:d3:6c:40:bc:7e:6d:4b:93:87: c8:e2:4f:53:2d:de:05:9e:8b:5b:de:d8:1b:7f:94: d8:75:cb:7d:78:2d:d7:fa:b9:b4:f2:f2:55:3f:e8: 5e:ab:79:90:14:72:28:5b:c9:b5:ee:c2:01:f0:da: f4:6f:cd:ca:06:80:93:14:54:c8:7c:2d:6a:65:61: b1:4d:4c:64:a8:8c:88:23:97:9e:47:35:00:7d:3d: e8:81:9b:fa:10:61:41:9b:d2:2c:64:d2:b7:a9:a3: 31:aa:7c:e5:c4:ed:1a:7c:bf:f4:0e:13:dd:ae:13: 24:d6:7c:66:29:5c:d4:be:b7:12:8d:14:1b:64:d6: 74:07:7c:cc:6f:e0:eb:00:d1:20:cd:23:fd:4c:bf: 69:ca:28:65:ca:02:39:4f:76:3e:fe:be:3f:6c:a5: e9:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:92:5D:4E:66:BF:80:91:50:39:0D:09:C2:FD:CE:D5:82:2B:6B:31 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A0DA53E6D77D11EE90D4B40AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.54.236.0/24 103.94.140.0/24 103.166.180.0/24 103.167.152.0/23 103.175.106.0/23 103.181.194.0/24 103.233.120.0/24 203.78.131.0/24 IPv6: 2001:df6:9580::/48 Signature Algorithm: sha256WithRSAEncryption 98:a9:b1:9c:56:32:a5:b4:72:9a:08:41:38:39:28:94:07:6f: 31:18:59:6e:cf:90:f8:cf:47:60:0d:3e:f3:4e:ec:1a:80:23: 3a:dd:be:7d:17:80:d4:63:9c:f8:4d:d1:f1:27:47:9c:c8:21: f0:16:4f:a9:84:3e:32:dc:df:14:1c:a4:54:88:9a:3f:c8:46: d7:d6:49:95:1f:45:52:df:62:e9:ec:49:86:71:bb:45:d6:41: 64:c8:ad:6a:be:9b:07:98:59:60:4d:52:92:8f:d7:04:f2:72: 88:9e:0f:c7:cb:c9:11:89:48:40:e2:ad:d0:4a:40:db:3d:8a: 12:f3:52:79:2e:e8:c1:bd:93:f1:e5:84:89:5f:7c:39:ae:d1: 75:f1:35:f4:d8:02:4c:10:c2:05:22:38:df:24:fa:2a:5d:b3: 47:25:23:6b:99:af:1b:6e:a7:a7:1b:c5:e9:31:b6:d8:e8:a2: 5a:83:04:89:6d:1f:61:27:8d:2c:e8:86:fe:5f:0f:d4:46:73: d0:8f:cc:63:9a:d2:40:0f:9a:72:0f:cd:d3:44:8f:39:06:f5: 09:59:d1:f7:1d:0a:8d:66:d9:99:db:14:5a:b3:56:0f:09:9c: a1:65:eb:92:89:4d:35:cc:ab:fa:8e:f0:a7:63:3f:54:fc:1e: f3:e5:86:3a -----BEGIN CERTIFICATE----- MIIFrTCCBJWgAwIBAgIDAIWHMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDMyODEyMTE0NloXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjYwNTVlODItZmUwYjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMQ0sUsbcSTG8Hs9CpwWx6yIVvyw4Irzq9PWmvvGh47LFwS3m8aZs/0TMZMd jG2LXcpziQreIUxdznpfktyEZ93xAlWeN62AZk5Jgcc2J5SaiQ8yOtC1CCrH/YcA pKEF02xAvH5tS5OHyOJPUy3eBZ6LW97YG3+U2HXLfXgt1/q5tPLyVT/oXqt5kBRy KFvJte7CAfDa9G/NygaAkxRUyHwtamVhsU1MZKiMiCOXnkc1AH096IGb+hBhQZvS LGTSt6mjMap85cTtGny/9A4T3a4TJNZ8Zilc1L63Eo0UG2TWdAd8zG/g6wDRIM0j /Uy/acooZcoCOU92Pv6+P2yl6TMCAwEAAaOCAtAwggLMMB0GA1UdDgQWBBSykl1O Zr+AkVA5DQnC/c7VgitrMTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0EwREE1M0U2 RDc3RDExRUU5MEQ0QjQwQUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMFoGCCsGAQUFBwEHAQH/ BEswSTA2BAIAATAwAwQAZzbsAwQAZ16MAwQAZ6a0AwQBZ6eYAwQBZ69qAwQAZ7XC AwQAZ+l4AwQAy06DMA8EAgACMAkDBwAgAQ32lYAwDQYJKoZIhvcNAQELBQADggEB AJipsZxWMqW0cpoIQTg5KJQHbzEYWW7PkPjPR2ANPvNO7BqAIzrdvn0XgNRjnPhN 0fEnR5zIIfAWT6mEPjLc3xQcpFSImj/IRtfWSZUfRVLfYunsSYZxu0XWQWTIrWq+ mweYWWBNUpKP1wTycoieD8fLyRGJSEDirdBKQNs9ihLzUnku6MG9k/HlhIlffDmu 0XXxNfTYAkwQwgUiON8k+ipds0clI2uZrxtup6cbxekxttjoolqDBIltH2EnjSzo hv5fD9RGc9CPzGOa0kAPmnIPzdNEjzkG9QlZ0fcdCo1m2ZnbFFqzVg8JnKFl65KJ TTXMq/qO8KdjP1T8HvPlhjo= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:40 2024 by rpki-client on console-ams.rpki-client.org