$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B1AB953E745C11EDAA779675C4F9AE02.roa File: B1AB953E745C11EDAA779675C4F9AE02.roa (raw, json) Hash identifier: rnfY2raVpAg+Vo3KhRTtlPIXrQGDDauy/LceT9Db89c= Subject key identifier: D4:94:B8:45:A1:04:66:A3:B5:D0:A9:88:F6:92:6C:8B:48:D6:64:2F Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 719B Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B1AB953E745C11EDAA779675C4F9AE02.roa Signing time: Wed 10 May 2023 16:49:04 +0000 ROA not before: Wed 10 May 2023 16:49:04 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 45954 IP address blocks: 103.7.80.0/22 maxlen: 22 103.7.80.0/23 maxlen: 24 103.235.68.0/24 maxlen: 24 103.235.69.0/24 maxlen: 24 103.235.70.0/24 maxlen: 24 103.235.71.0/24 maxlen: 24 150.107.100.0/22 maxlen: 22 150.107.100.0/23 maxlen: 23 150.107.101.0/24 maxlen: 24 180.150.240.0/24 maxlen: 24 223.255.244.0/22 maxlen: 23 223.255.244.0/24 maxlen: 24 223.255.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29083 (0x719b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:49:04 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bcb00-3eff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:6b:6f:aa:6c:73:e9:eb:8f:c4:2f:d7:5a:f7: 65:a8:d1:6d:92:73:75:f1:db:91:06:71:da:c6:b2: 07:13:25:37:a9:20:cf:b5:4c:7b:6d:5a:90:02:66: 3a:ba:65:5b:07:ad:d6:c5:63:c2:b9:5d:90:89:d0: 8c:59:08:78:92:a5:73:8c:0c:20:35:d7:cb:ad:d8: c1:7e:8f:80:41:de:5c:bf:12:c4:53:5b:e5:9d:00: ea:88:e1:e8:4b:de:e4:09:6d:aa:b6:7b:62:7c:8d: b9:f8:e6:77:8e:9c:52:1a:98:39:77:b5:20:28:5e: c4:61:72:48:62:6f:c1:b4:34:3a:06:0f:6a:32:ad: b1:07:01:07:d2:ef:57:5b:ad:c3:bd:0c:31:1c:f9: 02:45:3d:da:1f:f0:ac:3c:49:55:57:ac:bf:f7:20: b9:a5:b9:43:c6:c6:a2:8d:67:da:7c:ba:02:7e:0f: 1c:30:12:eb:91:3c:be:8a:62:01:6b:42:68:0c:a3: 2f:0c:52:aa:71:ce:0d:db:d5:3f:7f:52:62:19:46: 6c:8c:c7:7a:ab:d8:af:d2:75:8e:8f:5b:40:d3:a9: 6a:a7:23:1d:ee:56:79:86:7f:9d:4e:11:54:10:22: 44:41:ac:1f:8d:42:4b:7c:5e:a9:e2:b4:df:f9:7c: 33:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:94:B8:45:A1:04:66:A3:B5:D0:A9:88:F6:92:6C:8B:48:D6:64:2F X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B1AB953E745C11EDAA779675C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.7.80.0/22 103.235.68.0/22 150.107.100.0/22 180.150.240.0/24 223.255.244.0/22 Signature Algorithm: sha256WithRSAEncryption 96:c2:0f:a9:a9:28:74:87:0b:84:98:0d:85:ff:9b:15:12:72: 5f:bc:2e:0e:3a:2b:a7:f7:63:fa:27:93:8a:9c:b9:4f:ff:14: 61:e7:88:ca:07:d9:88:bf:a6:d3:63:03:a1:32:2c:59:27:0e: 31:c9:6c:a0:43:df:fa:f6:af:6e:48:a4:f0:e5:cf:3a:c8:a7: 3c:97:1b:a8:9e:b5:a4:b9:20:d3:09:26:55:43:e3:44:06:f1: e0:97:9c:b8:35:fd:17:b9:92:2a:5f:f6:06:1d:48:56:5e:98: c6:83:ee:ea:18:20:72:5c:68:55:b9:02:ef:f0:8c:69:e1:2c: f5:af:2a:97:d4:ac:ca:4d:53:aa:40:09:ab:0e:cf:33:bf:b7: 23:9d:dd:48:e2:2d:66:4a:71:24:82:e3:fe:3c:fa:41:6a:3a: 51:cc:5a:75:32:45:f2:cd:8e:8c:19:12:a9:df:0b:d7:1b:c2: 3e:ab:37:14:06:22:2c:9e:12:46:32:fa:c3:0a:28:5f:a4:f8: e8:71:b9:f4:a8:b7:e0:46:2d:17:b0:e1:f7:30:81:b1:a1:f5: ab:02:e9:f3:9b:43:3a:06:3d:e5:c5:20:f1:eb:95:69:e7:c3: a9:ac:4c:51:aa:3c:c5:1a:27:ce:33:39:29:11:c6:50:bd:cc: 7d:5f:e4:7b -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICcZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0OTA0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViY2IwMC0zZWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyWtvqmxz6euPxC/XWvdlqNFtknN18duRBnHaxrIHEyU3qSDPtUx7bVqQAmY6 umVbB63WxWPCuV2QidCMWQh4kqVzjAwgNdfLrdjBfo+AQd5cvxLEU1vlnQDqiOHo S97kCW2qtntifI25+OZ3jpxSGpg5d7UgKF7EYXJIYm/BtDQ6Bg9qMq2xBwEH0u9X W63DvQwxHPkCRT3aH/CsPElVV6y/9yC5pblDxsaijWfafLoCfg8cMBLrkTy+imIB a0JoDKMvDFKqcc4N29U/f1JiGUZsjMd6q9iv0nWOj1tA06lqpyMd7lZ5hn+dThFU ECJEQawfjUJLfF6p4rTf+Xwz3wIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFNSUuEWh BGajtdCpiPaSbItI1mQvMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQjFBQjk1M0U3 NDVDMTFFREFBNzc5Njc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBAJnB1ADBAJn60QDBAKWa2QDBAC0lvADBALf//QwDQYJKoZI hvcNAQELBQADggEBAJbCD6mpKHSHC4SYDYX/mxUScl+8Lg46K6f3Y/onk4qcuU// FGHniMoH2Yi/ptNjA6EyLFknDjHJbKBD3/r2r25IpPDlzzrIpzyXG6ietaS5INMJ JlVD40QG8eCXnLg1/Re5kipf9gYdSFZemMaD7uoYIHJcaFW5Au/wjGnhLPWvKpfU rMpNU6pACasOzzO/tyOd3UjiLWZKcSSC4/48+kFqOlHMWnUyRfLNjowZEqnfC9cb wj6rNxQGIiyeEkYy+sMKKF+k+OhxufSot+BGLRew4fcwgbGh9asC6fObQzoGPeXF IPHrlWnnw6msTFGqPMUaJ84zOSkRxlC9zH1f5Hs= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:42 2024 by rpki-client on console-ams.rpki-client.org