$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/ADC71BFABE6111EEA1AAAF3AC4F9AE02.roa File: ADC71BFABE6111EEA1AAAF3AC4F9AE02.roa (raw, json) Hash identifier: 8N1y2F8OBKXxIZp7n8ZbJTuABhQ2kk1AVm43cSx2cHI= Subject key identifier: 09:70:21:20:69:7E:13:E8:0D:DD:BD:B4:21:C0:5F:C2:3F:16:7C:24 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 820D Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/ADC71BFABE6111EEA1AAAF3AC4F9AE02.roa Signing time: Mon 29 Jan 2024 07:43:33 +0000 ROA not before: Mon 29 Jan 2024 07:43:33 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134022 IP address blocks: 45.115.184.0/24 maxlen: 24 45.115.185.0/24 maxlen: 24 45.115.186.0/24 maxlen: 24 45.115.187.0/24 maxlen: 24 103.44.48.0/22 maxlen: 24 103.66.212.0/22 maxlen: 24 103.131.93.0/24 maxlen: 24 103.169.246.0/23 maxlen: 24 103.182.140.0/24 maxlen: 24 103.182.141.0/24 maxlen: 24 2404:d9c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 11:49:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33293 (0x820d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jan 29 07:43:33 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65b75725-9969 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:9a:7b:76:ba:fe:ec:09:ac:f8:2c:a2:cb:fe: 3f:1f:5c:fa:84:81:13:c1:e9:05:5f:d5:30:9c:ee: 2a:f8:7b:4b:6b:39:b7:8e:2b:4a:ae:98:f8:42:1e: 67:e5:f1:cb:89:ba:fc:f0:6d:5d:ad:9f:bb:57:81: d1:d8:69:8b:dc:8a:7a:73:af:06:02:2a:bf:c9:c1: d9:f4:d8:ed:7b:68:2d:8f:1c:79:d1:70:03:b8:1a: db:ae:5e:5b:b2:c8:35:5c:5f:ef:ae:03:b0:c9:e3: bd:17:5f:64:43:e6:89:aa:d8:7d:3a:6a:e7:15:cc: 12:6c:51:00:b0:a6:a1:af:1b:5d:26:5e:02:02:5b: 31:c0:71:05:93:b7:27:f1:ca:c1:f5:6a:ba:e0:44: f1:0a:6a:ff:c3:05:59:b8:6a:96:60:2a:4d:2c:c7: a0:d1:06:b9:76:64:f9:07:99:22:05:81:34:ca:e0: d3:63:1a:ac:5d:ca:6d:f6:d5:04:fd:b0:16:a9:0b: 25:af:87:e3:77:45:10:e7:be:3d:bd:b7:fc:ad:16: 2d:64:0e:a3:02:9b:4f:ff:7d:28:20:3a:a0:66:5a: 92:ee:7a:bd:be:53:ff:5d:a7:d4:14:c1:26:b8:46: e7:02:b9:1c:b3:fc:f7:5a:d6:de:91:e9:a0:3a:fe: dd:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:70:21:20:69:7E:13:E8:0D:DD:BD:B4:21:C0:5F:C2:3F:16:7C:24 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/ADC71BFABE6111EEA1AAAF3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.115.184.0/22 103.44.48.0/22 103.66.212.0/22 103.131.93.0/24 103.169.246.0/23 103.182.140.0/23 IPv6: 2404:d9c0::/32 Signature Algorithm: sha256WithRSAEncryption 1f:2f:1c:be:24:0b:c6:93:6c:8c:c3:68:aa:66:ba:84:8a:3f: c9:e6:5c:c8:75:aa:8b:f0:ca:d1:be:26:70:79:99:78:3a:56: 9f:18:32:4e:59:b6:80:04:0e:bb:e2:33:a9:76:62:28:cc:57: 2b:ff:08:49:3d:3a:20:76:f1:81:e3:23:b2:ef:f4:bd:a1:e7: 8c:a1:71:f0:29:cf:6f:f5:57:d9:27:06:22:0e:cc:09:a1:80: 78:bf:d6:7b:b9:c2:16:3e:67:00:08:12:4b:b7:0d:43:79:c6: 3b:08:9d:4a:fb:4d:10:d8:73:4a:10:3f:d2:98:4c:8e:e8:14: de:7b:3d:27:b3:0e:53:16:5f:98:e5:6a:91:aa:cd:17:8b:11: 1a:74:45:53:07:4b:50:a9:e6:60:b7:7d:f8:38:05:d1:fd:ca: 7d:98:65:42:93:7b:10:9e:50:c8:e3:13:4b:e8:1a:86:40:eb: 70:fa:20:36:19:df:be:c6:72:6f:08:41:23:0e:30:80:c2:2c: 9f:3a:6b:08:bc:0f:3e:77:d1:22:fe:96:68:82:79:1a:25:f4: 46:27:df:b1:39:85:27:19:80:09:a9:ac:93:23:e2:8b:e3:62: b6:70:3f:15:e5:9c:69:bc:e3:21:3e:95:77:f5:42:25:b3:17: 3c:d2:d9:90 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIDAIINMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDEyOTA3NDMzM1oXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjViNzU3MjUtOTk2OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALGae3a6/uwJrPgsosv+Px9c+oSBE8HpBV/VMJzuKvh7S2s5t44rSq6Y+EIe Z+Xxy4m6/PBtXa2fu1eB0dhpi9yKenOvBgIqv8nB2fTY7XtoLY8cedFwA7ga265e W7LINVxf764DsMnjvRdfZEPmiarYfTpq5xXMEmxRALCmoa8bXSZeAgJbMcBxBZO3 J/HKwfVquuBE8Qpq/8MFWbhqlmAqTSzHoNEGuXZk+QeZIgWBNMrg02MarF3KbfbV BP2wFqkLJa+H43dFEOe+Pb23/K0WLWQOowKbT/99KCA6oGZaku56vb5T/12n1BTB JrhG5wK5HLP891rW3pHpoDr+3cUCAwEAAaOCAsIwggK+MB0GA1UdDgQWBBQJcCEg aX4T6A3dvbQhwF/CPxZ8JDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0FEQzcxQkZB QkU2MTExRUVBMUFBQUYzQUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMEwGCCsGAQUFBwEHAQH/ BD0wOzAqBAIAATAkAwQCLXO4AwQCZywwAwQCZ0LUAwQAZ4NdAwQBZ6n2AwQBZ7aM MA0EAgACMAcDBQAkBNnAMA0GCSqGSIb3DQEBCwUAA4IBAQAfLxy+JAvGk2yMw2iq ZrqEij/J5lzIdaqL8MrRviZweZl4OlafGDJOWbaABA674jOpdmIozFcr/whJPTog dvGB4yOy7/S9oeeMoXHwKc9v9VfZJwYiDswJoYB4v9Z7ucIWPmcACBJLtw1DecY7 CJ1K+00Q2HNKED/SmEyO6BTeez0nsw5TFl+Y5WqRqs0XixEadEVTB0tQqeZgt334 OAXR/cp9mGVCk3sQnlDI4xNL6BqGQOtw+iA2Gd++xnJvCEEjDjCAwiyfOmsIvA8+ d9Ei/pZognkaJfRGJ9+xOYUnGYAJqayTI+KL42K2cD8V5ZxpvOMhPpV39UIlsxc8 0tmQ -----END CERTIFICATE-----Generated at Thu Apr 25 22:34:00 2024 by rpki-client on console-fra.rpki-client.org