$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CE049DA23C2011EE9D70D34FC4F9AE02.roa File: CE049DA23C2011EE9D70D34FC4F9AE02.roa (raw, json) Hash identifier: IsRZflsoyk0KmbICNfThWjapviXU8nElvNgHPLVFmjs= Subject key identifier: 03:75:85:FB:54:4C:65:74:28:3E:AB:BA:D5:4E:AD:DE:15:37:D7:26 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 77CA Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CE049DA23C2011EE9D70D34FC4F9AE02.roa Signing time: Wed 16 Aug 2023 10:36:49 +0000 ROA not before: Wed 16 Aug 2023 10:36:49 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 20473 IP address blocks: 103.181.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30666 (0x77ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Aug 16 10:36:49 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64dca6c1-22b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b4:37:52:8d:10:7f:88:37:0d:6b:5e:ad:00: e3:4e:7a:c9:b4:15:86:8b:51:41:1c:72:00:8b:4a: eb:5e:8b:f3:a4:a0:ff:cd:bf:fa:94:75:4a:e5:d4: 5f:7b:cf:75:72:23:a8:e4:21:d9:86:88:1f:2d:86: 37:81:c6:5e:ca:7b:06:eb:8c:e9:69:67:b5:67:24: f6:7a:e3:65:7b:6a:4f:78:bf:22:61:7d:60:1d:07: 42:b4:63:01:13:0f:92:d9:64:a5:4d:91:90:23:62: 9e:8b:9d:a4:3c:e5:ee:39:f2:04:ef:cf:2d:cb:72: 72:77:18:34:fe:23:eb:81:69:51:79:6a:11:67:7c: fe:00:91:5c:24:74:d5:7a:04:b6:0d:d8:76:36:ae: 65:44:f4:a3:31:34:25:d4:2f:9d:01:3d:00:83:74: 0a:34:39:48:5c:ec:aa:ec:bb:bd:c6:65:66:81:5b: fa:b2:a8:02:ca:fc:95:65:82:f7:03:8d:49:f0:f7: cb:dd:39:27:df:b6:67:04:2c:b7:71:2c:96:48:b5: 5b:42:f0:e8:e3:c3:19:53:04:b5:b7:9a:97:48:f6: 1e:a5:78:3e:be:e6:1b:bd:37:5c:d8:fd:da:22:f4: b6:93:c4:6a:79:41:81:f4:38:9e:fe:2c:d9:69:62: 01:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:75:85:FB:54:4C:65:74:28:3E:AB:BA:D5:4E:AD:DE:15:37:D7:26 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CE049DA23C2011EE9D70D34FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.181.194.0/24 Signature Algorithm: sha256WithRSAEncryption 47:7a:08:ec:78:3b:5a:91:26:56:57:d7:81:dd:4a:cd:8e:5a: 66:69:b7:e2:94:c3:a0:07:d6:bc:00:58:01:24:44:df:c6:69: cf:f1:b9:15:aa:78:0f:ce:bb:25:8f:bb:fb:12:cc:92:92:4a: d4:0f:0e:33:9f:a0:23:fa:e3:5b:99:f4:d1:02:48:ee:85:b5: ad:dc:62:a6:2a:bc:a9:b1:48:75:88:7e:22:63:f0:c0:04:66: db:20:27:27:93:7a:72:f8:99:de:cb:bb:e9:2a:10:e3:da:c1: 8f:ab:67:f0:82:a9:65:43:ea:06:2d:64:e6:81:95:eb:8a:e1: c2:3b:33:ba:54:ba:5d:1a:4b:02:95:0a:7c:c7:1e:88:d8:ee: 5a:db:eb:c7:40:54:22:33:dd:7b:05:85:54:25:91:e6:21:82: d1:c8:37:f6:5b:fa:42:00:7a:30:ce:df:ac:7f:a4:a4:06:5d: c7:33:6f:07:60:56:54:43:1f:92:39:51:ae:33:11:f5:a6:7e: 47:2f:45:3a:10:7b:e1:c0:0a:62:b1:b1:fb:95:e1:13:d6:29: 37:cf:f3:c7:47:29:f3:52:29:a5:e9:79:20:d1:bf:4d:08:41: 2a:14:82:94:42:e0:55:97:fb:c5:28:af:30:30:0d:5e:25:27: 67:83:49:40 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICd8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwODE2MTAzNjQ5WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRjYTZjMS0yMmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo7Q3Uo0Qf4g3DWterQDjTnrJtBWGi1FBHHIAi0rrXovzpKD/zb/6lHVK5dRf e891ciOo5CHZhogfLYY3gcZeynsG64zpaWe1ZyT2euNle2pPeL8iYX1gHQdCtGMB Ew+S2WSlTZGQI2Kei52kPOXuOfIE788ty3Jydxg0/iPrgWlReWoRZ3z+AJFcJHTV egS2Ddh2Nq5lRPSjMTQl1C+dAT0Ag3QKNDlIXOyq7Lu9xmVmgVv6sqgCyvyVZYL3 A41J8PfL3Tkn37ZnBCy3cSyWSLVbQvDo48MZUwS1t5qXSPYepXg+vuYbvTdc2P3a IvS2k8RqeUGB9Die/izZaWIBkwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAN1hftU TGV0KD6rutVOrd4VN9cmMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQ0UwNDlEQTIz QzIwMTFFRTlENzBEMzRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABntcIwDQYJKoZIhvcNAQELBQADggEBAEd6COx4O1qRJlZX 14HdSs2OWmZpt+KUw6AH1rwAWAEkRN/Gac/xuRWqeA/OuyWPu/sSzJKSStQPDjOf oCP641uZ9NECSO6Fta3cYqYqvKmxSHWIfiJj8MAEZtsgJyeTenL4md7Lu+kqEOPa wY+rZ/CCqWVD6gYtZOaBleuK4cI7M7pUul0aSwKVCnzHHojY7lrb68dAVCIz3XsF hVQlkeYhgtHIN/Zb+kIAejDO36x/pKQGXcczbwdgVlRDH5I5Ua4zEfWmfkcvRToQ e+HACmKxsfuV4RPWKTfP88dHKfNSKaXpeSDRv00IQSoUgpRC4FWX+8UorzAwDV4l J2eDSUA= -----END CERTIFICATE-----Generated at Sun Apr 28 15:51:37 2024 by rpki-client on console-fra.rpki-client.org