$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C7D0A6A83B1111ED8383933FC4F9AE02.roa File: C7D0A6A83B1111ED8383933FC4F9AE02.roa (raw, json) Hash identifier: MAFu6L79hqDIUE3YsV+7KUqFveQm2WQH/zZDPygcEn4= Subject key identifier: E1:A2:1E:D8:A7:67:CA:65:0B:4C:06:35:6F:50:41:8D:D7:23:F6:F6 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7659 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C7D0A6A83B1111ED8383933FC4F9AE02.roa Signing time: Thu 27 Jul 2023 12:29:40 +0000 ROA not before: Thu 27 Jul 2023 12:29:40 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 150040 IP address blocks: 103.67.97.0/24 maxlen: 24 103.176.116.0/24 maxlen: 24 2001:df1:67c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30297 (0x7659) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jul 27 12:29:40 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64c26334-9bff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:4c:83:3e:47:7b:bb:a1:3c:b6:e1:91:59:01: 47:81:bf:a0:39:28:fd:1f:30:6a:05:dd:2f:eb:6c: d6:44:26:96:57:f6:81:dd:e6:96:3f:15:8c:33:70: ca:7c:8e:49:21:16:2e:a1:73:61:78:83:12:b9:d5: 80:35:4a:b0:10:05:cc:c5:9f:3a:1e:43:e3:0a:0b: 9c:03:64:28:73:3a:f0:f7:86:af:b9:d4:9e:c5:d7: 40:27:c8:4b:78:05:a5:24:fd:ca:e6:ce:d4:c4:21: eb:5e:ec:5f:5c:1e:76:7c:19:4a:70:3a:28:b8:8c: 91:34:d1:11:3b:66:71:52:a8:86:d6:42:bf:fb:a3: 9c:6e:96:36:52:ad:de:97:81:29:13:83:c4:7f:90: 1a:3b:70:a6:01:ba:a9:eb:75:42:eb:0f:32:e1:1e: f6:ab:7c:68:26:1f:7e:2d:01:34:76:65:4b:43:0b: 33:2c:ae:a6:60:f4:8b:e7:c4:dd:fc:33:84:ed:4b: 88:1f:14:e3:fc:e0:a2:e2:2b:e5:62:44:e9:61:b5: 09:92:d9:67:8e:4c:9f:99:19:ca:eb:5e:e6:6d:54: 26:8a:93:25:76:0d:5a:18:a7:fc:0e:f7:ea:a6:2c: c2:69:26:ea:aa:ac:21:43:14:40:31:0c:f5:a1:44: 0d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:A2:1E:D8:A7:67:CA:65:0B:4C:06:35:6F:50:41:8D:D7:23:F6:F6 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C7D0A6A83B1111ED8383933FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.97.0/24 103.176.116.0/24 IPv6: 2001:df1:67c0::/48 Signature Algorithm: sha256WithRSAEncryption 91:d6:be:dc:e4:b7:f2:71:aa:42:37:ce:5a:19:2e:4a:fc:03: 31:11:4e:d6:8c:53:16:3a:83:52:0f:ad:26:90:71:ad:c5:c0: 23:1a:3d:21:14:2f:83:9c:e2:bd:96:9a:97:ce:91:e3:a7:f7: de:39:6d:0c:db:35:22:63:34:d0:19:f4:f2:ce:df:bf:28:b7: d2:9d:98:fc:77:38:25:73:d0:de:72:61:41:cd:62:27:5e:c2: 2c:a0:20:0f:bc:ac:af:85:53:71:46:a5:85:0e:4c:1a:74:fe: 95:38:2f:2a:6e:a1:74:47:55:89:34:40:5a:8a:ee:51:da:b1: 25:38:0c:9b:a7:d8:5f:04:97:bf:f9:3a:52:c9:2d:80:f9:c2: 03:d4:9c:57:a1:b2:de:13:21:f3:ef:91:bd:bb:aa:b5:81:99: f4:c7:ec:fd:2f:24:60:a4:dc:cc:eb:57:0e:78:48:5a:65:71: 16:41:9a:e8:05:6f:ab:0f:37:71:7b:b7:9c:17:bf:9f:1a:c4: a3:ff:e8:a1:d5:a0:99:a9:a6:eb:c5:87:af:5a:a0:c9:e8:e8: 92:24:85:5c:3d:9e:3c:c0:a6:79:1e:d7:6b:d9:55:f8:ff:41: ad:d8:ac:40:b2:00:ca:a1:90:c0:a0:22:04:fe:91:7a:71:3a: 08:20:c4:5d -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICdlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNzI3MTIyOTQwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGMyNjMzNC05YmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0kyDPkd7u6E8tuGRWQFHgb+gOSj9HzBqBd0v62zWRCaWV/aB3eaWPxWMM3DK fI5JIRYuoXNheIMSudWANUqwEAXMxZ86HkPjCgucA2Qoczrw94avudSexddAJ8hL eAWlJP3K5s7UxCHrXuxfXB52fBlKcDoouIyRNNERO2ZxUqiG1kK/+6OcbpY2Uq3e l4EpE4PEf5AaO3CmAbqp63VC6w8y4R72q3xoJh9+LQE0dmVLQwszLK6mYPSL58Td /DOE7UuIHxTj/OCi4ivlYkTpYbUJktlnjkyfmRnK617mbVQmipMldg1aGKf8Dvfq pizCaSbqqqwhQxRAMQz1oUQNSwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFOGiHtin Z8plC0wGNW9QQY3XI/b2MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQzdEMEE2QTgz QjExMTFFRDgzODM5MzNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnQ2EDBABnsHQwDwQCAAIwCQMHACABDfFnwDANBgkqhkiG 9w0BAQsFAAOCAQEAkda+3OS38nGqQjfOWhkuSvwDMRFO1oxTFjqDUg+tJpBxrcXA Ixo9IRQvg5zivZaal86R46f33jltDNs1ImM00Bn08s7fvyi30p2Y/Hc4JXPQ3nJh Qc1iJ17CLKAgD7ysr4VTcUalhQ5MGnT+lTgvKm6hdEdViTRAWoruUdqxJTgMm6fY XwSXv/k6UsktgPnCA9ScV6Gy3hMh8++RvbuqtYGZ9Mfs/S8kYKTczOtXDnhIWmVx FkGa6AVvqw83cXu3nBe/nxrEo//oodWgmamm68WHr1qgyejokiSFXD2ePMCmeR7X a9lV+P9BrdisQLIAyqGQwKAiBP6RenE6CCDEXQ== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:45 2024 by rpki-client on console-ams.rpki-client.org