$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D07E70300DED11EB9DC94950C4F9AE02.roa File: D07E70300DED11EB9DC94950C4F9AE02.roa (raw, json) Hash identifier: 49vV01FyRJ0lOXc8Hrn8QhOzyRHPWMf3w1z6xqiO2IY= Subject key identifier: 8C:78:EE:0A:26:23:D5:AA:07:8F:74:21:54:F1:26:6A:81:E4:17:C7 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 82B3 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D07E70300DED11EB9DC94950C4F9AE02.roa Signing time: Fri 09 Feb 2024 12:14:47 +0000 ROA not before: Fri 09 Feb 2024 12:14:47 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 135738 IP address blocks: 103.107.9.0/24 maxlen: 24 103.155.72.0/23 maxlen: 24 103.158.120.0/24 maxlen: 24 103.159.34.0/23 maxlen: 24 103.176.56.0/23 maxlen: 24 103.178.60.0/23 maxlen: 24 103.179.170.0/23 maxlen: 24 103.236.212.0/23 maxlen: 24 2001:df6:2180::/48 maxlen: 48 2001:df6:2580::/48 maxlen: 48 2001:df6:2a80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33459 (0x82b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Feb 9 12:14:47 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65c61737-dd8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:21:22:7a:34:16:01:54:42:dc:14:92:af:2b: 64:47:e0:d4:3a:4c:70:85:30:b4:31:0f:a1:f1:10: d9:28:8c:be:1e:65:af:6c:ac:5d:2a:99:a2:54:5d: f4:8e:9c:4a:dc:4a:c0:5d:0b:1e:bf:1a:11:66:d3: 4f:e4:7d:ad:1d:ca:b4:66:df:1c:a3:49:cd:70:18: a1:99:2f:b8:e1:33:4e:11:22:48:f4:cd:73:9e:12: 81:a5:f2:61:1a:e3:7e:a3:ee:4e:06:a6:0d:d6:38: cd:1c:1f:cb:02:ec:ff:dd:1f:d3:4f:4a:68:04:a5: c6:4f:7f:90:ba:82:da:34:d8:cd:95:18:48:c2:97: 01:58:ea:f7:d3:86:31:4b:f0:73:a6:3a:4e:21:53: 03:f3:be:35:0a:09:34:0e:bf:ef:50:e1:cf:00:c6: 0a:19:76:95:2b:1a:1e:74:ab:cc:47:75:cc:1c:d3: 35:8a:30:95:8d:83:09:5b:c0:2b:24:54:c8:4e:73: e2:7c:f5:e5:b8:a7:31:c1:1c:07:94:b1:e0:af:8b: 7c:52:8b:18:22:59:ea:f0:37:0b:25:11:58:82:a6: f3:1a:60:76:a5:ea:c3:e9:4f:5d:e8:73:f4:0c:25: 8f:2f:a8:57:a6:9d:6b:2c:df:09:8c:b9:5d:5f:c9: a0:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:78:EE:0A:26:23:D5:AA:07:8F:74:21:54:F1:26:6A:81:E4:17:C7 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D07E70300DED11EB9DC94950C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.107.9.0/24 103.155.72.0/23 103.158.120.0/24 103.159.34.0/23 103.176.56.0/23 103.178.60.0/23 103.179.170.0/23 103.236.212.0/23 IPv6: 2001:df6:2180::/48 2001:df6:2580::/48 2001:df6:2a80::/48 Signature Algorithm: sha256WithRSAEncryption 6d:35:28:05:e5:95:fa:77:6a:89:83:29:bf:51:b6:13:d5:78: c8:72:f0:af:a4:66:1a:d9:5c:e3:26:14:ca:39:ec:a0:dc:68: 88:7e:8f:07:0e:10:91:47:1e:64:2b:fe:b3:b5:1c:51:97:1e: 59:34:c4:31:8a:6d:ff:e6:2f:27:bd:f8:08:c9:0f:b2:5a:8a: 21:e6:cb:a1:a2:d7:b4:ec:99:79:f5:43:79:56:39:60:2e:d5: 17:6d:8c:bb:79:81:c7:54:fe:d9:ad:d2:fe:60:d7:5d:85:7d: 2c:ef:5a:83:77:13:b4:32:f6:dc:44:92:9a:19:17:8d:23:69: 20:e0:03:7f:58:48:55:ef:85:c3:5d:a1:c6:17:08:97:3c:0d: 36:c1:07:a0:72:4f:c2:a3:39:d7:fc:75:74:b6:7c:00:00:00: 7b:fc:bd:5f:4b:52:aa:69:53:96:bf:0e:d0:5d:0f:c5:88:db: 51:e1:93:d6:08:98:ae:87:f8:82:91:79:44:a4:12:82:7f:a9: 9f:48:c8:9d:b7:b6:cb:05:ea:98:0f:2f:06:07:c7:ab:5b:47: 87:1e:6f:58:69:6e:d7:32:93:ab:26:9b:38:b5:40:ea:aa:91: 2a:b1:83:19:05:a1:07:cd:34:60:4d:bb:31:a1:00:28:63:99: 3d:d7:ec:69 -----BEGIN CERTIFICATE----- MIIFvzCCBKegAwIBAgIDAIKzMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDIwOTEyMTQ0N1oXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjVjNjE3MzctZGQ4YjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ8hIno0FgFUQtwUkq8rZEfg1DpMcIUwtDEPofEQ2SiMvh5lr2ysXSqZolRd 9I6cStxKwF0LHr8aEWbTT+R9rR3KtGbfHKNJzXAYoZkvuOEzThEiSPTNc54SgaXy YRrjfqPuTgamDdY4zRwfywLs/90f009KaASlxk9/kLqC2jTYzZUYSMKXAVjq99OG MUvwc6Y6TiFTA/O+NQoJNA6/71DhzwDGChl2lSsaHnSrzEd1zBzTNYowlY2DCVvA KyRUyE5z4nz15binMcEcB5Sx4K+LfFKLGCJZ6vA3CyURWIKm8xpgdqXqw+lPXehz 9Awljy+oV6adayzfCYy5XV/JoB0CAwEAAaOCAuIwggLeMB0GA1UdDgQWBBSMeO4K JiPVqgePdCFU8SZqgeQXxzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0QwN0U3MDMw MERFRDExRUI5REM5NDk1MEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMGwGCCsGAQUFBwEHAQH/ BF0wWzA2BAIAATAwAwQAZ2sJAwQBZ5tIAwQAZ554AwQBZ58iAwQBZ7A4AwQBZ7I8 AwQBZ7OqAwQBZ+zUMCEEAgACMBsDBwAgAQ32IYADBwAgAQ32JYADBwAgAQ32KoAw DQYJKoZIhvcNAQELBQADggEBAG01KAXllfp3aomDKb9RthPVeMhy8K+kZhrZXOMm FMo57KDcaIh+jwcOEJFHHmQr/rO1HFGXHlk0xDGKbf/mLye9+AjJD7JaiiHmy6Gi 17TsmXn1Q3lWOWAu1RdtjLt5gcdU/tmt0v5g112FfSzvWoN3E7Qy9txEkpoZF40j aSDgA39YSFXvhcNdocYXCJc8DTbBB6ByT8KjOdf8dXS2fAAAAHv8vV9LUqppU5a/ DtBdD8WI21Hhk9YImK6H+IKReUSkEoJ/qZ9IyJ23tssF6pgPLwYHx6tbR4ceb1hp btcyk6smmzi1QOqqkSqxgxkFoQfNNGBNuzGhAChjmT3X7Gk= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:46 2024 by rpki-client on console-ams.rpki-client.org