$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B966E6EE8F7611EE96D7BC45C4F9AE02.roa File: B966E6EE8F7611EE96D7BC45C4F9AE02.roa (raw, json) Hash identifier: 2aAidaUM1LNBPWD4PTskmja4FbSbzGV3yOWddhr+gCU= Subject key identifier: AC:FF:63:70:7D:34:E7:3F:28:67:2E:B7:79:5E:D6:3D:01:F7:6E:9E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7F26 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B966E6EE8F7611EE96D7BC45C4F9AE02.roa Signing time: Thu 30 Nov 2023 11:50:57 +0000 ROA not before: Thu 30 Nov 2023 11:50:57 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 55832 IP address blocks: 103.19.136.0/23 maxlen: 24 103.19.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32550 (0x7f26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Nov 30 11:50:57 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65687721-0d84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:36:34:b2:fc:cb:c1:f4:95:56:95:b9:03:93: 7c:33:b7:51:3d:5b:f4:9b:82:62:88:dc:fe:d1:8e: 39:56:46:5e:a3:26:49:89:ad:c5:25:1e:ba:de:49: e0:8c:22:64:40:e9:d1:20:df:c6:ed:31:05:cf:8f: 23:60:be:05:da:a4:b8:80:41:1c:4a:0f:6c:cd:65: 1d:83:57:02:e4:bc:77:b5:8c:cb:54:6f:d7:e1:98: 3b:5b:a3:ab:d5:84:33:30:2e:ef:db:70:7e:c4:10: 37:d3:2b:cf:4e:e5:c2:79:4c:5d:1a:a7:73:76:fc: ff:bd:5c:70:c5:a9:38:73:98:9f:2f:2a:7e:a3:d9: ba:5f:2f:ea:a8:d9:0b:4c:8d:35:57:fa:48:6a:d6: f8:fb:81:55:cb:84:4c:80:09:20:56:e7:04:4d:e6: d2:2d:d2:9e:38:95:df:05:e7:9b:29:a6:aa:5d:09: 7b:04:0f:3b:65:fd:c6:85:a7:36:d5:db:05:89:fb: 60:a4:cb:da:08:93:c5:90:04:83:0b:c7:92:1e:d3: c0:19:27:1f:74:5f:68:80:33:d4:13:57:79:45:dc: 0b:79:72:6b:ae:01:6b:ca:1d:3b:c1:63:d6:ee:7c: c6:cf:c8:de:12:56:48:31:fd:ed:52:e3:df:17:aa: 5c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:FF:63:70:7D:34:E7:3F:28:67:2E:B7:79:5E:D6:3D:01:F7:6E:9E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B966E6EE8F7611EE96D7BC45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.19.136.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:54:0a:a4:11:d2:c0:5b:b5:89:07:bd:dd:ac:b5:9d:d2:98: f6:f0:f7:f5:31:24:1c:d9:4a:da:f6:5c:d6:2f:68:e6:0f:a7: a0:e3:5f:fd:19:ca:3d:e6:b9:b8:87:25:f7:b4:88:7d:f8:91: 80:34:e8:25:9f:a8:52:f6:3a:d1:39:c6:20:7c:cf:01:62:c2: ce:d0:a8:3c:f8:20:81:81:db:5e:90:7c:4f:d9:03:cd:fe:a0: 12:d2:65:10:bb:a5:1a:1e:e5:42:d3:3a:b2:e2:4f:da:09:31: 7a:84:6f:2a:4e:ab:9c:c4:1b:df:b5:99:70:5f:6e:ca:e7:52: ad:ce:67:3d:e5:8e:b6:40:52:18:e0:ba:5b:46:33:5d:d0:b9: 58:2b:5b:93:24:1c:99:6d:5b:ac:67:f0:db:60:ea:a3:f4:78: bf:53:8a:0d:75:dd:05:63:89:a1:e4:4d:c2:4d:c1:ca:0e:69: f4:8c:09:f7:62:f5:be:e3:61:3b:48:ea:4d:2d:b8:ac:30:a9: 13:1a:7e:6f:e5:fc:c9:5b:85:f6:48:3c:a0:4c:d1:4e:cc:2d: 67:e5:61:80:fc:c3:1c:1d:17:68:36:c0:26:13:c4:4b:8b:b9: 74:12:0f:06:54:85:b9:6c:08:66:e3:ef:de:7b:d8:c7:4d:6f: ac:5f:e4:bc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICfyYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMxMTMwMTE1MDU3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY4NzcyMS0wZDg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7zY0svzLwfSVVpW5A5N8M7dRPVv0m4JiiNz+0Y45VkZeoyZJia3FJR663kng jCJkQOnRIN/G7TEFz48jYL4F2qS4gEEcSg9szWUdg1cC5Lx3tYzLVG/X4Zg7W6Or 1YQzMC7v23B+xBA30yvPTuXCeUxdGqdzdvz/vVxwxak4c5ifLyp+o9m6Xy/qqNkL TI01V/pIatb4+4FVy4RMgAkgVucETebSLdKeOJXfBeebKaaqXQl7BA87Zf3Ghac2 1dsFiftgpMvaCJPFkASDC8eSHtPAGScfdF9ogDPUE1d5RdwLeXJrrgFryh07wWPW 7nzGz8jeElZIMf3tUuPfF6pcBQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKz/Y3B9 NOc/KGcut3le1j0B926eMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQjk2NkU2RUU4 Rjc2MTFFRTk2RDdCQzQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnE4gwDQYJKoZIhvcNAQELBQADggEBAH9UCqQR0sBbtYkH vd2stZ3SmPbw9/UxJBzZStr2XNYvaOYPp6DjX/0Zyj3mubiHJfe0iH34kYA06CWf qFL2OtE5xiB8zwFiws7QqDz4IIGB216QfE/ZA83+oBLSZRC7pRoe5ULTOrLiT9oJ MXqEbypOq5zEG9+1mXBfbsrnUq3OZz3ljrZAUhjgultGM13QuVgrW5MkHJltW6xn 8Ntg6qP0eL9Tig113QVjiaHkTcJNwcoOafSMCfdi9b7jYTtI6k0tuKwwqRMafm/l /MlbhfZIPKBM0U7MLWflYYD8wxwdF2g2wCYTxEuLuXQSDwZUhblsCGbj79572MdN b6xf5Lw= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:44 2024 by rpki-client on console-ams.rpki-client.org