$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D2C21CB203CD11ECA480B07CC4F9AE02.roa File: D2C21CB203CD11ECA480B07CC4F9AE02.roa (raw, json) Hash identifier: 6CzMF8yncwS874+i4SQosXu51EzwsnkEb2lgejfgE2o= Subject key identifier: 7A:8E:85:A8:46:FA:C3:FC:91:FB:50:AE:95:C2:4F:0D:5D:A7:BE:4E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6B62 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D2C21CB203CD11ECA480B07CC4F9AE02.roa Signing time: Wed 10 May 2023 16:19:24 +0000 ROA not before: Wed 10 May 2023 16:19:24 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134899 IP address blocks: 36.255.248.0/22 maxlen: 24 45.118.216.0/22 maxlen: 24 103.59.4.0/22 maxlen: 24 103.71.192.0/22 maxlen: 24 103.175.250.0/23 maxlen: 24 103.210.64.0/22 maxlen: 24 2404:9fc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27490 (0x6b62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:19:24 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc40c-0d1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:75:14:aa:0f:fa:62:b7:c4:27:e7:97:1f:b4: 01:ae:cf:b4:b0:99:c6:70:90:8e:0a:90:d1:74:a4: 8a:93:8a:20:e4:77:7a:91:46:70:b6:6b:2a:32:19: ad:c9:41:24:4d:d2:40:3e:8d:fa:88:bb:da:60:02: 47:6f:93:a6:6c:d8:4f:e2:5a:fd:55:ca:f5:1d:17: e1:65:e4:3e:6b:a4:f6:0a:c5:8a:20:5a:80:f6:c1: f6:ed:e3:4a:e9:29:65:b9:43:a8:4a:71:72:0c:64: bd:9d:06:bc:f8:3a:cf:a1:1e:23:cd:d9:3f:b7:35: ba:05:6d:f6:f1:bf:f2:1e:04:9d:76:4b:59:50:91: 8d:f8:e6:60:ba:3b:8e:85:38:f4:d3:75:ce:dd:04: 08:15:61:32:19:dd:64:d5:ca:aa:c6:2b:a3:93:90: 45:aa:90:97:92:72:16:85:43:10:80:e6:79:aa:66: 45:5b:7a:78:26:8a:97:65:06:7e:cd:88:31:9b:be: d1:dc:dd:db:13:22:ab:59:a6:d1:b9:df:1d:e9:80: 56:13:d3:9c:7c:5e:f1:c4:a9:ba:81:15:b9:75:2d: a4:ee:50:07:27:23:d4:ff:cd:64:11:e6:6c:c4:be: a8:14:42:02:14:2b:67:c8:ea:17:45:4e:47:1e:31: 4e:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:8E:85:A8:46:FA:C3:FC:91:FB:50:AE:95:C2:4F:0D:5D:A7:BE:4E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D2C21CB203CD11ECA480B07CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.255.248.0/22 45.118.216.0/22 103.59.4.0/22 103.71.192.0/22 103.175.250.0/23 103.210.64.0/22 IPv6: 2404:9fc0::/32 Signature Algorithm: sha256WithRSAEncryption ad:f5:2b:a7:09:44:6a:59:e9:04:03:07:0c:f9:0d:dd:76:0d: 9d:90:f0:ba:51:26:b2:b9:7c:d7:44:7d:e9:3e:54:28:b7:b4: a0:74:fb:21:b8:f1:48:7c:b7:f2:81:19:05:4c:32:d6:31:94: 34:27:00:68:cd:ac:81:c6:25:2d:0d:32:2d:4c:21:19:bd:5f: 0e:84:52:cd:61:ed:64:b5:a3:fc:4b:17:0f:4a:aa:40:bb:ae: bd:22:e9:f4:88:24:cd:f9:96:30:55:a7:da:e6:ba:10:c6:b9: 66:2e:6c:3f:d5:c8:49:76:18:37:23:6c:be:f6:b3:a6:6f:48: c5:a7:cd:04:fb:c9:04:7e:2c:cf:df:e0:3f:48:c2:54:58:7f: b1:7c:85:cd:40:41:25:82:74:a3:f1:80:e8:c6:2f:48:e1:25: d1:35:c1:5c:cc:8f:6d:2b:98:23:49:02:36:2d:a7:0d:99:20: 09:d3:8b:b0:f1:56:87:9f:fb:ce:e5:fd:a9:07:f0:97:92:92: 05:dc:03:e8:ab:2b:bb:22:ff:69:ae:0b:10:dc:60:ed:83:32: dd:94:bc:da:d1:22:e8:4b:f2:5f:69:ec:e8:fc:8b:ab:ca:4b: 73:7e:4e:88:cc:d9:2f:34:42:e9:1a:e6:4d:29:51:c4:ab:be: b8:3c:7a:a4 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICa2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxOTI0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzQwYy0wZDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXUUqg/6YrfEJ+eXH7QBrs+0sJnGcJCOCpDRdKSKk4og5Hd6kUZwtmsqMhmt yUEkTdJAPo36iLvaYAJHb5OmbNhP4lr9Vcr1HRfhZeQ+a6T2CsWKIFqA9sH27eNK 6SlluUOoSnFyDGS9nQa8+DrPoR4jzdk/tzW6BW328b/yHgSddktZUJGN+OZgujuO hTj003XO3QQIFWEyGd1k1cqqxiujk5BFqpCXknIWhUMQgOZ5qmZFW3p4JoqXZQZ+ zYgxm77R3N3bEyKrWabRud8d6YBWE9OcfF7xxKm6gRW5dS2k7lAHJyPU/81kEeZs xL6oFEICFCtnyOoXRU5HHjFOqQIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFHqOhahG +sP8kftQrpXCTw1dp75OMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRDJDMjFDQjIw M0NEMTFFQ0E0ODBCMDdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCoEAgABMCQDBAIk//gDBAItdtgDBAJnOwQDBAJnR8ADBAFnr/oDBAJn0kAw DQQCAAIwBwMFACQEn8AwDQYJKoZIhvcNAQELBQADggEBAK31K6cJRGpZ6QQDBwz5 Dd12DZ2Q8LpRJrK5fNdEfek+VCi3tKB0+yG48Uh8t/KBGQVMMtYxlDQnAGjNrIHG JS0NMi1MIRm9Xw6EUs1h7WS1o/xLFw9KqkC7rr0i6fSIJM35ljBVp9rmuhDGuWYu bD/VyEl2GDcjbL72s6ZvSMWnzQT7yQR+LM/f4D9IwlRYf7F8hc1AQSWCdKPxgOjG L0jhJdE1wVzMj20rmCNJAjYtpw2ZIAnTi7DxVoef+87l/akH8JeSkgXcA+irK7si /2muCxDcYO2DMt2UvNrRIuhL8l9p7Oj8i6vKS3N+TojM2S80Quka5k0pUcSrvrg8 eqQ= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:46 2024 by rpki-client on console-ams.rpki-client.org