$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A73F2FCA710C11EB94489765C4F9AE02.roa File: A73F2FCA710C11EB94489765C4F9AE02.roa (raw, json) Hash identifier: KcAr7izBmdFCO7/uH4iK2naO38W5YJ5qi6ttXY2VNHU= Subject key identifier: D6:72:C9:12:C6:13:F4:DC:A5:DC:84:58:EB:90:DD:7F:E9:44:78:06 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6BB0 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A73F2FCA710C11EB94489765C4F9AE02.roa Signing time: Wed 10 May 2023 16:20:54 +0000 ROA not before: Wed 10 May 2023 16:20:54 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 135244 IP address blocks: 43.226.2.0/23 maxlen: 24 45.113.62.0/23 maxlen: 24 45.251.68.0/22 maxlen: 24 103.42.16.0/23 maxlen: 24 103.220.24.0/22 maxlen: 24 103.235.23.0/24 maxlen: 24 103.254.27.0/24 maxlen: 24 2403:73c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27568 (0x6bb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:20:54 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc465-08a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e1:6a:26:3e:3c:1c:46:65:c6:50:23:14:72: ef:9a:a2:2d:49:bb:33:d0:eb:e4:5d:58:ae:a0:54: 4e:71:c9:86:7a:5e:a2:1c:81:71:34:a6:da:04:9f: 3e:68:d7:28:39:9a:ee:d8:54:58:4b:38:8f:03:1c: 8d:4c:18:96:11:64:6c:e8:de:00:ff:db:2a:63:48: ea:17:5a:e5:59:5f:05:69:d4:76:93:31:95:7c:ce: 3a:66:56:fe:85:9f:7e:aa:12:3b:fc:e4:b3:bd:2f: 04:58:01:9d:f6:45:34:5a:82:01:7f:26:8c:e5:aa: aa:56:5e:ee:d7:64:b8:3c:87:f1:be:31:08:d2:22: 2f:47:0c:7a:a9:b6:a1:d5:c1:5e:50:6b:bf:23:06: fd:64:5c:63:56:4b:72:40:cf:35:04:df:36:eb:bc: 1a:11:01:ff:ca:3e:71:68:97:07:44:26:a1:6d:0b: 16:7a:2e:33:76:43:00:61:e8:81:72:58:47:d5:a3: 2d:13:0d:97:98:a9:9a:70:e2:dd:01:b3:a6:21:ad: 0b:e1:c4:c3:32:12:11:0a:ca:82:d0:ff:35:60:45: 61:eb:76:6d:b9:01:64:43:3f:5f:bd:92:36:5e:e6: 47:24:86:9d:9b:de:c3:6b:ac:9a:2d:d0:b0:74:86: 77:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:72:C9:12:C6:13:F4:DC:A5:DC:84:58:EB:90:DD:7F:E9:44:78:06 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A73F2FCA710C11EB94489765C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.226.2.0/23 45.113.62.0/23 45.251.68.0/22 103.42.16.0/23 103.220.24.0/22 103.235.23.0/24 103.254.27.0/24 IPv6: 2403:73c0::/32 Signature Algorithm: sha256WithRSAEncryption 1f:79:eb:5d:d1:8f:7e:1e:f2:af:8c:7b:8f:21:c5:0d:c3:57: 1b:94:2f:46:2f:23:bb:8a:eb:e9:e3:12:83:b4:97:d4:7e:43: 1f:bd:93:08:52:be:a7:4f:97:a0:58:58:87:0b:c1:36:ee:9a: 35:93:1e:46:9d:c7:82:0c:0e:51:fd:7e:c3:c3:e4:5b:c5:d1: ef:b1:4d:e3:56:f0:66:ad:14:9b:79:b6:b7:b1:01:15:5a:17: c1:1b:a9:07:13:e5:2a:f0:51:90:4f:a1:f2:bf:5f:39:06:62: 59:8b:12:f9:0f:ef:bc:85:ae:c3:59:83:8f:1d:8a:94:85:73: 4f:13:28:8b:20:70:5d:b2:dd:e0:f8:73:1e:f2:a3:fe:da:7e: d2:f2:e7:8a:63:3c:aa:35:2c:49:10:c8:d5:db:42:3c:7c:c5: 38:33:f3:53:7c:a7:23:00:63:a9:e7:af:e5:31:d8:ac:e4:e2: b2:79:fd:c6:83:da:40:ef:94:ea:98:26:aa:05:c0:80:dd:25: 02:1f:49:56:ba:04:2e:48:d6:64:bd:2f:1d:97:b5:9c:56:3c: 0c:d3:9f:fc:5c:c3:fb:52:bb:b9:6f:e5:e4:80:0b:69:b2:22: cf:a8:d8:05:e1:80:ab:4d:8f:a6:0c:0a:9e:97:1d:12:89:ca: ee:03:e0:59 -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICa7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyMDU0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzQ2NS0wOGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyeFqJj48HEZlxlAjFHLvmqItSbsz0OvkXViuoFROccmGel6iHIFxNKbaBJ8+ aNcoOZru2FRYSziPAxyNTBiWEWRs6N4A/9sqY0jqF1rlWV8FadR2kzGVfM46Zlb+ hZ9+qhI7/OSzvS8EWAGd9kU0WoIBfyaM5aqqVl7u12S4PIfxvjEI0iIvRwx6qbah 1cFeUGu/Iwb9ZFxjVktyQM81BN8267waEQH/yj5xaJcHRCahbQsWei4zdkMAYeiB clhH1aMtEw2XmKmacOLdAbOmIa0L4cTDMhIRCsqC0P81YEVh63ZtuQFkQz9fvZI2 XuZHJIadm97Da6yaLdCwdIZ3YQIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFNZyyRLG E/TcpdyEWOuQ3X/pRHgGMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQTczRjJGQ0E3 MTBDMTFFQjk0NDg5NzY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMDAEAgABMCoDBAEr4gIDBAEtcT4DBAIt+0QDBAFnKhADBAJn3BgDBABn6xcD BABn/hswDQQCAAIwBwMFACQDc8AwDQYJKoZIhvcNAQELBQADggEBAB95613Rj34e 8q+Me48hxQ3DVxuUL0YvI7uK6+njEoO0l9R+Qx+9kwhSvqdPl6BYWIcLwTbumjWT Hkadx4IMDlH9fsPD5FvF0e+xTeNW8GatFJt5trexARVaF8EbqQcT5SrwUZBPofK/ XzkGYlmLEvkP77yFrsNZg48dipSFc08TKIsgcF2y3eD4cx7yo/7aftLy54pjPKo1 LEkQyNXbQjx8xTgz81N8pyMAY6nnr+Ux2Kzk4rJ5/caD2kDvlOqYJqoFwIDdJQIf SVa6BC5I1mS9Lx2XtZxWPAzTn/xcw/tSu7lv5eSAC2myIs+o2AXhgKtNj6YMCp6X HRKJyu4D4Fk= -----END CERTIFICATE-----Generated at Sun Apr 28 15:51:31 2024 by rpki-client on console-fra.rpki-client.org