$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A1C1408AD77D11EE90D4B40AC4F9AE02.roa File: A1C1408AD77D11EE90D4B40AC4F9AE02.roa (raw, json) Hash identifier: lJPsuWViYq7ytGwbgImoljDpzxGJ9dGQEBxT98UgCn8= Subject key identifier: FB:EB:E3:18:F0:EC:8B:F4:94:CF:3D:BF:5D:B3:FC:AD:55:76:55:22 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 83DF Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A1C1408AD77D11EE90D4B40AC4F9AE02.roa Signing time: Fri 01 Mar 2024 03:41:48 +0000 ROA not before: Fri 01 Mar 2024 03:41:48 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 8987 IP address blocks: 103.233.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33759 (0x83df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Mar 1 03:41:48 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65e14e7c-e9c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f1:98:57:ff:ee:e8:7b:07:52:cb:42:3f:17: 88:90:c1:e0:e4:a9:d8:f2:0b:e3:61:3f:37:86:dd: 68:44:0b:14:d4:65:a3:90:34:34:7c:aa:7a:ad:69: 2a:c3:25:95:4b:92:71:b3:40:fc:d6:47:17:41:f4: 9d:d6:73:4e:eb:d5:9d:49:ba:c9:ad:4b:54:06:10: 87:0d:d3:34:ff:9e:83:65:9d:d7:f2:13:14:0b:21: b9:c2:19:8f:1e:bc:4b:9e:9a:2b:1a:c4:f1:9d:6a: b7:02:16:fb:e8:99:29:12:50:dd:64:f5:37:2e:2d: 48:49:44:a7:31:a1:61:1b:27:0d:eb:3d:b6:90:0f: db:85:90:29:a9:ff:5b:e3:33:3b:62:0b:5c:99:4a: d9:8c:c2:7e:2c:2b:f5:2d:44:8e:e2:bf:28:4f:d3: 70:6b:b4:f8:75:5b:3c:68:e7:17:65:0d:dd:9a:49: 71:40:69:35:c8:70:38:2e:70:84:7f:97:a6:e1:a7: c6:49:a3:df:ad:e8:1e:dc:a5:74:4f:52:2f:5d:3e: b8:c2:a4:a2:79:ae:ec:1a:8a:c4:00:ce:ec:05:7a: 9f:a7:69:e2:9e:eb:52:17:4a:ee:fb:ba:04:98:c0: df:ea:05:6d:a2:cb:4f:56:ed:19:3e:6d:66:7c:52: f4:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:EB:E3:18:F0:EC:8B:F4:94:CF:3D:BF:5D:B3:FC:AD:55:76:55:22 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A1C1408AD77D11EE90D4B40AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.233.120.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:22:2a:bb:38:e9:3c:e9:f0:00:7f:92:38:fb:1c:4a:9b:99: 94:78:09:57:92:cb:dd:ba:de:19:63:6a:c5:94:a2:39:df:34: 75:71:08:29:07:90:27:16:c1:30:12:bc:9a:e2:68:10:5d:bb: c6:ca:b8:bd:18:0c:dd:c7:cf:c6:23:b8:58:72:81:27:54:96: ce:45:9d:5d:f3:a7:57:58:c5:f7:0f:a5:3a:a4:4f:c6:dc:f9: ed:54:20:34:8e:48:97:48:2a:36:2f:77:3d:9b:d5:c3:f3:ae: 00:84:6c:72:47:1e:2b:88:1a:6a:ee:f1:10:91:78:c6:69:fa: cc:84:b0:d3:99:1e:c8:85:47:46:ec:40:4d:d7:4b:72:76:56: dd:3c:ee:dd:9e:99:48:d8:b6:82:54:b3:56:88:11:5a:02:89: ad:7b:66:9d:1a:a5:49:a2:cf:b8:b6:ce:aa:3e:cd:5b:b7:d6: 2c:78:40:fd:1c:82:f9:c7:2e:44:f0:f6:fc:f9:7f:2a:dd:69: 73:ed:fb:58:34:17:6c:1a:95:76:0d:5a:a5:b9:cb:5b:ec:49: c7:4d:98:6f:32:7c:51:ee:a5:f1:48:d9:10:fa:73:d3:a5:cd: b2:04:e4:4d:be:46:5e:dd:32:53:82:f4:2d:2c:98:f5:6a:84: f3:17:4f:14 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAIPfMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDMwMTAzNDE0OFoXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjVlMTRlN2MtZTljNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM3xmFf/7uh7B1LLQj8XiJDB4OSp2PIL42E/N4bdaEQLFNRlo5A0NHyqeq1p KsMllUuScbNA/NZHF0H0ndZzTuvVnUm6ya1LVAYQhw3TNP+eg2Wd1/ITFAshucIZ jx68S56aKxrE8Z1qtwIW++iZKRJQ3WT1Ny4tSElEpzGhYRsnDes9tpAP24WQKan/ W+MzO2ILXJlK2YzCfiwr9S1EjuK/KE/TcGu0+HVbPGjnF2UN3ZpJcUBpNchwOC5w hH+XpuGnxkmj363oHtyldE9SL10+uMKkonmu7BqKxADO7AV6n6dp4p7rUhdK7vu6 BJjA3+oFbaLLT1btGT5tZnxS9DUCAwEAAaOCApUwggKRMB0GA1UdDgQWBBT76+MY 8OyL9JTPPb9ds/ytVXZVIjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0ExQzE0MDhB RDc3RDExRUU5MEQ0QjQwQUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ+l4MA0GCSqGSIb3DQEBCwUAA4IBAQBbIiq7OOk86fAA f5I4+xxKm5mUeAlXksvdut4ZY2rFlKI53zR1cQgpB5AnFsEwErya4mgQXbvGyri9 GAzdx8/GI7hYcoEnVJbORZ1d86dXWMX3D6U6pE/G3PntVCA0jkiXSCo2L3c9m9XD 864AhGxyRx4riBpq7vEQkXjGafrMhLDTmR7IhUdG7EBN10tydlbdPO7dnplI2LaC VLNWiBFaAomte2adGqVJos+4ts6qPs1bt9YseED9HIL5xy5E8Pb8+X8q3Wlz7ftY NBdsGpV2DVqluctb7EnHTZhvMnxR7qXxSNkQ+nPTpc2yBORNvkZe3TJTgvQtLJj1 aoTzF08U -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:40 2024 by rpki-client on console-ams.rpki-client.org