$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A9717458BED411ECBA66025BC4F9AE02.roa File: A9717458BED411ECBA66025BC4F9AE02.roa (raw, json) Hash identifier: GyXAvCfPO4egxm9FG46VBy63GPiL0EQNa+fFgtxkdjU= Subject key identifier: 1C:A4:D0:D7:06:DA:5E:AA:DA:F2:E6:F7:BC:A3:5B:32:1C:CF:E4:32 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 705D Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A9717458BED411ECBA66025BC4F9AE02.roa Signing time: Wed 10 May 2023 16:43:15 +0000 ROA not before: Wed 10 May 2023 16:43:14 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 149528 IP address blocks: 103.183.72.0/23 maxlen: 24 2400:60e0::/34 maxlen: 34 2400:60e0:4000::/34 maxlen: 34 2400:60e0:8000::/34 maxlen: 34 2400:60e0:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28765 (0x705d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:43:14 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc9a2-5204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ed:62:50:8d:f1:4a:a0:bc:26:ab:3d:ea:bc: 09:99:be:18:68:bd:56:00:b3:99:d6:6a:3d:c8:30: 54:7a:5e:72:d6:8b:b5:7b:7b:82:bd:b9:4d:ad:fa: b0:e1:64:91:70:38:80:5e:f4:54:e6:24:bb:ad:6c: 3f:1c:b9:4f:09:98:29:ba:14:79:3e:6c:1f:3d:f6: 02:3b:70:42:89:16:c3:43:9c:aa:36:bb:b0:69:06: fc:e5:91:f9:e5:d5:96:14:7c:c3:e8:be:24:f2:a7: bf:7c:df:b8:61:c3:aa:76:aa:07:27:02:01:94:4e: e2:18:ee:8a:aa:84:13:7b:2e:7a:55:1c:c3:c3:5e: 45:b8:c1:9e:31:35:f4:7b:18:1d:64:9f:70:88:97: c4:54:9a:77:2a:82:02:4b:7e:37:97:47:aa:0e:0f: a8:00:f3:db:9a:37:82:c4:79:e7:26:66:19:0c:ed: 5c:4b:69:06:d8:e0:f7:13:5c:a7:39:15:1e:9f:72: 8a:6c:1e:2c:d6:e8:92:a5:54:0f:b0:12:6e:e0:9d: ca:36:3c:d0:cb:ee:95:75:c0:43:6a:4c:70:f8:a9: d7:02:b4:4b:bb:2f:8a:02:d8:71:10:d3:98:dc:a9: 22:7f:aa:0d:52:6b:75:bf:78:b1:cc:ba:4b:fe:68: 13:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:A4:D0:D7:06:DA:5E:AA:DA:F2:E6:F7:BC:A3:5B:32:1C:CF:E4:32 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A9717458BED411ECBA66025BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.183.72.0/23 IPv6: 2400:60e0::/32 Signature Algorithm: sha256WithRSAEncryption 0c:21:69:f0:e1:f2:d9:01:c4:4d:df:d8:0f:fa:10:24:7f:5a: 57:82:2f:7e:07:dc:4d:b0:f1:15:fa:28:84:a7:b6:23:4b:ac: c8:de:8b:54:99:9b:f5:61:13:cc:4b:b8:1d:4f:e1:c0:95:6e: 86:4b:56:ae:18:96:6b:fc:90:e3:9b:29:0f:d9:38:2a:c2:f4: d7:fc:d0:cf:95:3a:2d:2c:03:1f:e4:5d:dd:73:1f:ad:d1:1d: 04:77:4c:53:b8:c8:b9:52:8b:5a:e9:39:c8:44:ac:ce:ee:1a: 96:94:11:ec:02:d6:b4:d8:07:b3:9b:c5:4a:79:31:b4:a8:7e: a8:de:0c:1f:61:be:f6:9e:a6:d4:5d:4c:3a:9b:cb:b9:1a:b5: 80:15:48:03:53:ad:89:1d:e3:db:3c:e7:da:5f:e0:18:1d:62: eb:10:32:6e:38:3f:e8:b7:c0:96:60:bd:0b:32:f8:02:4c:85: fe:e3:bd:4b:27:cb:84:c4:ce:b3:a0:bf:86:41:91:86:59:46: c3:e5:98:cd:ff:48:53:b2:92:9e:fb:f1:ce:52:8e:a6:fc:c0: 1d:e3:4e:6d:42:68:ad:3f:df:ae:5f:64:89:e3:f4:6a:cc:e8: 3c:98:23:fe:96:7e:cb:e0:37:13:b6:02:58:e9:3b:71:cd:2d: 16:64:d6:e6 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICcF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0MzE0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzlhMi01MjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu+1iUI3xSqC8Jqs96rwJmb4YaL1WALOZ1mo9yDBUel5y1ou1e3uCvblNrfqw 4WSRcDiAXvRU5iS7rWw/HLlPCZgpuhR5PmwfPfYCO3BCiRbDQ5yqNruwaQb85ZH5 5dWWFHzD6L4k8qe/fN+4YcOqdqoHJwIBlE7iGO6KqoQTey56VRzDw15FuMGeMTX0 exgdZJ9wiJfEVJp3KoICS343l0eqDg+oAPPbmjeCxHnnJmYZDO1cS2kG2OD3E1yn ORUen3KKbB4s1uiSpVQPsBJu4J3KNjzQy+6VdcBDakxw+KnXArRLuy+KAthxENOY 3Kkif6oNUmt1v3ixzLpL/mgTzwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFByk0NcG 2l6q2vLm97yjWzIcz+QyMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQTk3MTc0NThC RUQ0MTFFQ0JBNjYwMjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnt0gwDQQCAAIwBwMFACQAYOAwDQYJKoZIhvcNAQELBQAD ggEBAAwhafDh8tkBxE3f2A/6ECR/WleCL34H3E2w8RX6KISntiNLrMjei1SZm/Vh E8xLuB1P4cCVboZLVq4Ylmv8kOObKQ/ZOCrC9Nf80M+VOi0sAx/kXd1zH63RHQR3 TFO4yLlSi1rpOchErM7uGpaUEewC1rTYB7ObxUp5MbSofqjeDB9hvvaeptRdTDqb y7katYAVSANTrYkd49s859pf4BgdYusQMm44P+i3wJZgvQsy+AJMhf7jvUsny4TE zrOgv4ZBkYZZRsPlmM3/SFOykp778c5Sjqb8wB3jTm1CaK0/365fZInj9GrM6DyY I/6WfsvgNxO2AljpO3HNLRZk1uY= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:41 2024 by rpki-client on console-ams.rpki-client.org