$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C9271AC02E3711EBA4D3163FC4F9AE02.roa File: C9271AC02E3711EBA4D3163FC4F9AE02.roa (raw, json) Hash identifier: fMo9tHT0ryssm8PFbKqy4BCT2JeJ/mDJijHBWj1wrds= Subject key identifier: 70:EE:FF:4C:6B:90:79:81:5A:A0:CA:B2:91:23:AA:4A:3A:C1:3F:9D Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6CEA Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C9271AC02E3711EBA4D3163FC4F9AE02.roa Signing time: Wed 10 May 2023 16:26:49 +0000 ROA not before: Wed 10 May 2023 16:26:49 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 137132 IP address blocks: 103.110.168.0/24 maxlen: 24 103.110.169.0/24 maxlen: 24 103.110.170.0/24 maxlen: 24 103.110.171.0/24 maxlen: 24 103.135.168.0/24 maxlen: 24 103.135.169.0/24 maxlen: 24 103.135.170.0/24 maxlen: 24 103.135.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27882 (0x6cea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:26:49 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc5c9-08f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:31:42:0c:d2:7b:a1:db:db:3c:d0:59:91:65: be:cc:87:06:10:7f:49:be:0e:c9:21:96:29:df:d7: 1a:ce:80:8c:b9:b8:b8:64:fd:1f:15:a9:e1:76:2a: 41:21:cc:53:35:ee:2f:9c:ec:17:ca:66:0f:2e:05: 2c:ec:9c:04:3d:50:d6:03:4c:74:f6:f2:32:29:2c: 20:f3:0a:f0:c6:70:0e:f8:4a:32:38:67:e3:78:86: 85:7e:ee:90:1d:1b:e0:f2:82:62:6a:da:ef:ea:e4: c8:54:c5:cc:f8:52:34:23:4a:f1:69:48:d7:a7:79: 0e:16:2e:85:10:15:62:1b:48:bc:db:3c:a1:54:e1: b2:51:6f:80:1d:55:4c:16:eb:37:07:c0:f2:f6:66: ee:69:7e:49:44:b8:24:ae:fa:47:db:8c:36:bc:79: 08:c3:d7:cf:70:69:51:8f:a5:56:7e:63:19:75:05: ea:61:84:a9:d9:b8:f3:21:99:e9:fb:fa:5a:6a:26: c4:5d:7d:ac:99:5d:05:d4:43:b1:1c:79:d3:71:99: 42:b7:84:14:bc:79:b0:47:9c:ff:6d:4b:89:e0:cc: 1e:cc:18:79:da:22:d3:98:80:a4:1b:75:ee:c4:7d: b9:94:b8:81:69:75:76:08:16:11:04:f5:c3:0c:92: 76:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:EE:FF:4C:6B:90:79:81:5A:A0:CA:B2:91:23:AA:4A:3A:C1:3F:9D X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C9271AC02E3711EBA4D3163FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.110.168.0/22 103.135.168.0/22 Signature Algorithm: sha256WithRSAEncryption 37:83:c0:0a:3a:4e:90:f8:d0:10:50:bb:e5:d5:b3:0b:fa:91: dd:cf:ce:c0:8d:61:98:88:ae:4c:72:a8:4b:bc:63:4e:b4:07: 83:48:28:35:c5:6c:f6:2f:d6:be:af:18:e3:b3:9d:9e:f0:42: 96:35:99:e6:a1:e2:4d:5f:35:0c:77:13:d7:cd:5e:63:13:04: f4:c3:be:67:3f:59:9e:49:f4:26:76:9b:4b:9c:2d:e9:37:78: 0d:cb:9a:b8:79:84:cc:46:cc:f5:9f:b3:44:90:47:63:d5:40: 5b:9a:83:31:5c:8e:8e:14:2f:13:68:2d:2a:15:91:9b:aa:a8: 86:08:3a:6d:a1:8d:26:6b:a7:41:d2:84:ef:d0:cf:8e:97:ff: a4:25:e7:48:30:e8:38:82:18:67:be:b5:46:72:5c:b4:92:fe: 1a:ea:33:f1:54:48:cd:f1:ce:d4:cd:3c:05:03:f2:3f:a5:6c: de:21:26:e0:0d:39:26:47:ad:77:08:a2:5e:66:d0:17:c1:0c: 32:a0:7b:3f:d0:5c:30:28:01:e1:91:5d:83:ef:f2:ea:0e:b5: e5:6a:f4:bd:22:3c:83:e0:b0:8b:af:47:a7:c8:90:6e:dd:32: c3:69:13:bf:12:8b:e3:a4:18:fb:66:e8:3b:b8:38:dc:58:47: 02:79:7a:c7 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICbOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNjQ5WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzVjOS0wOGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDFCDNJ7odvbPNBZkWW+zIcGEH9Jvg7JIZYp39cazoCMubi4ZP0fFanhdipB IcxTNe4vnOwXymYPLgUs7JwEPVDWA0x09vIyKSwg8wrwxnAO+EoyOGfjeIaFfu6Q HRvg8oJiatrv6uTIVMXM+FI0I0rxaUjXp3kOFi6FEBViG0i82zyhVOGyUW+AHVVM Fus3B8Dy9mbuaX5JRLgkrvpH24w2vHkIw9fPcGlRj6VWfmMZdQXqYYSp2bjzIZnp +/paaibEXX2smV0F1EOxHHnTcZlCt4QUvHmwR5z/bUuJ4MwezBh52iLTmICkG3Xu xH25lLiBaXV2CBYRBPXDDJJ2VQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHDu/0xr kHmBWqDKspEjqko6wT+dMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQzkyNzFBQzAy RTM3MTFFQkE0RDMxNjNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnbqgDBAJnh6gwDQYJKoZIhvcNAQELBQADggEBADeDwAo6 TpD40BBQu+XVswv6kd3PzsCNYZiIrkxyqEu8Y060B4NIKDXFbPYv1r6vGOOznZ7w QpY1meah4k1fNQx3E9fNXmMTBPTDvmc/WZ5J9CZ2m0ucLek3eA3Lmrh5hMxGzPWf s0SQR2PVQFuagzFcjo4ULxNoLSoVkZuqqIYIOm2hjSZrp0HShO/Qz46X/6Ql50gw 6DiCGGe+tUZyXLSS/hrqM/FUSM3xztTNPAUD8j+lbN4hJuANOSZHrXcIol5m0BfB DDKgez/QXDAoAeGRXYPv8uoOteVq9L0iPIPgsIuvR6fIkG7dMsNpE78Si+OkGPtm 6Du4ONxYRwJ5esc= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:45 2024 by rpki-client on console-ams.rpki-client.org