$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A2C27C70540211EC81AEB34AC4F9AE02.roa File: A2C27C70540211EC81AEB34AC4F9AE02.roa (raw, json) Hash identifier: ChKeNvWYL1scAW9B84f18qH/6fNqpmMDQGs9KD04inM= Subject key identifier: EE:87:FD:40:DA:A3:7C:0F:BC:7A:0B:A0:70:2C:79:C0:AE:D7:F4:51 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6C65 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A2C27C70540211EC81AEB34AC4F9AE02.roa Signing time: Wed 10 May 2023 16:24:19 +0000 ROA not before: Wed 10 May 2023 16:24:19 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136336 IP address blocks: 103.88.76.0/23 maxlen: 24 103.98.62.0/23 maxlen: 24 103.98.208.0/23 maxlen: 24 103.136.136.0/23 maxlen: 24 103.163.248.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27749 (0x6c65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:24:19 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc533-b7c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:0c:d8:fb:45:a9:45:a3:e9:46:4e:7c:6f:9a: 1f:b2:ac:09:7d:4d:d3:fd:e4:8e:df:bd:2e:57:b4: 49:65:24:59:48:c3:89:d4:9f:a6:45:5d:25:5e:ff: 6d:23:f8:bb:b8:17:55:84:31:59:e0:d8:ed:0e:8d: 1c:5c:7b:80:3a:e8:ba:4e:a2:d1:d9:6a:21:38:19: 37:6c:d6:ff:86:69:f1:78:1c:ad:4c:c5:32:78:14: 5a:c2:45:9e:be:d7:c4:34:ea:25:55:75:4d:a0:8a: 49:30:88:8a:96:93:1d:ba:b1:ff:30:f9:bd:3c:25: d2:fb:27:47:07:46:e7:12:99:0e:89:60:91:8d:06: af:96:a7:47:3f:fd:88:6e:65:a4:d4:99:a4:d5:02: bc:a5:9b:5b:2f:70:83:a3:0b:93:e0:ef:7f:03:d3: c4:1d:f5:a1:7d:fa:d7:9f:88:a7:05:2f:55:6a:f7: 63:85:13:fc:92:7a:88:3a:b4:f9:4d:3a:66:7a:a5: 61:d2:a0:5f:bb:58:dd:df:f9:18:a0:bc:71:ef:1e: d2:f9:fc:59:da:cc:9a:74:60:86:22:62:4c:bf:06: 54:15:e2:f5:f1:79:d9:29:05:14:56:12:74:01:a6: dd:99:cc:c1:86:2e:e5:a5:ea:a7:e2:bc:9b:c4:c5: f2:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:87:FD:40:DA:A3:7C:0F:BC:7A:0B:A0:70:2C:79:C0:AE:D7:F4:51 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A2C27C70540211EC81AEB34AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.76.0/23 103.98.62.0/23 103.98.208.0/23 103.136.136.0/23 103.163.248.0/23 Signature Algorithm: sha256WithRSAEncryption 96:46:37:6f:49:ae:a4:88:30:bc:30:9f:ff:b5:75:7b:78:38: 37:84:21:08:ec:f0:e3:ec:97:44:f4:78:52:94:d5:83:cc:2f: ce:ce:f6:f4:29:67:0a:59:d8:4a:37:c6:c7:c4:a3:83:22:87: 40:95:65:56:b1:77:b0:49:9c:8b:99:7e:ed:d1:ec:9b:0a:35: bb:2e:a8:b8:a9:d9:db:9f:72:d8:b0:ff:f5:86:80:5b:bd:23: 20:6e:7a:a0:87:5f:ab:fd:d2:17:f5:29:e4:32:c2:f6:8b:60: a1:c1:84:5a:f1:f7:ef:03:e1:b6:3d:e0:f8:92:63:71:d4:74: 46:c0:54:a4:5a:e5:40:83:ba:22:05:5f:fe:c3:fe:dd:f9:9e: 60:18:f6:7f:6a:7b:b0:fa:c9:2c:47:9e:62:44:2d:b6:ed:59: 1b:26:66:25:16:06:9e:09:fc:a5:ec:db:d5:32:da:fe:e6:57: 07:f3:a8:45:67:bf:39:fe:cd:45:8e:df:da:73:2e:52:e6:e8: ba:68:9d:32:fc:fa:30:cc:ef:c5:97:3a:5f:eb:e4:5a:dc:77: 28:25:31:9b:d8:70:8c:f3:5e:ed:db:55:05:f0:e8:db:29:95: 90:fb:0e:82:cf:d4:92:1c:3e:aa:45:e2:a2:f8:ba:be:bd:4b: a8:56:46:c6 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICbGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNDE5WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzUzMy1iN2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0gzY+0WpRaPpRk58b5ofsqwJfU3T/eSO370uV7RJZSRZSMOJ1J+mRV0lXv9t I/i7uBdVhDFZ4NjtDo0cXHuAOui6TqLR2WohOBk3bNb/hmnxeBytTMUyeBRawkWe vtfENOolVXVNoIpJMIiKlpMdurH/MPm9PCXS+ydHB0bnEpkOiWCRjQavlqdHP/2I bmWk1Jmk1QK8pZtbL3CDowuT4O9/A9PEHfWhffrXn4inBS9VavdjhRP8knqIOrT5 TTpmeqVh0qBfu1jd3/kYoLxx7x7S+fxZ2syadGCGImJMvwZUFeL18XnZKQUUVhJ0 AabdmczBhi7lpeqn4rybxMXyMwIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFO6H/UDa o3wPvHoLoHAsecCu1/RRMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQTJDMjdDNzA1 NDAyMTFFQzgxQUVCMzRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBAFnWEwDBAFnYj4DBAFnYtADBAFniIgDBAFno/gwDQYJKoZI hvcNAQELBQADggEBAJZGN29JrqSIMLwwn/+1dXt4ODeEIQjs8OPsl0T0eFKU1YPM L87O9vQpZwpZ2Eo3xsfEo4Mih0CVZVaxd7BJnIuZfu3R7JsKNbsuqLip2dufctiw //WGgFu9IyBueqCHX6v90hf1KeQywvaLYKHBhFrx9+8D4bY94PiSY3HUdEbAVKRa 5UCDuiIFX/7D/t35nmAY9n9qe7D6ySxHnmJELbbtWRsmZiUWBp4J/KXs29Uy2v7m VwfzqEVnvzn+zUWO39pzLlLm6LponTL8+jDM78WXOl/r5FrcdyglMZvYcIzzXu3b VQXw6NsplZD7DoLP1JIcPqpF4qL4ur69S6hWRsY= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:40 2024 by rpki-client on console-ams.rpki-client.org