$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D306A07085DC11ED8D87B76CC4F9AE02.roa File: D306A07085DC11ED8D87B76CC4F9AE02.roa (raw, json) Hash identifier: w0bEB05X1Mut360fvZQuum1vgSr5eF1dPCYcUB4oOm8= Subject key identifier: EE:51:BC:53:8A:7C:C5:06:79:94:0B:2F:75:4A:0C:06:E6:5C:5D:98 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 83ED Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D306A07085DC11ED8D87B76CC4F9AE02.roa Signing time: Fri 01 Mar 2024 10:32:49 +0000 ROA not before: Fri 01 Mar 2024 10:32:49 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 137083 IP address blocks: 103.57.96.0/24 maxlen: 24 103.57.97.0/24 maxlen: 24 103.105.228.0/24 maxlen: 24 103.105.229.0/24 maxlen: 24 103.105.230.0/24 maxlen: 24 103.105.231.0/24 maxlen: 24 103.108.73.0/24 maxlen: 24 103.157.8.0/24 maxlen: 24 103.157.9.0/24 maxlen: 24 103.175.116.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33773 (0x83ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Mar 1 10:32:49 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65e1aed1-1723 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3c:24:4a:19:70:9b:65:23:1f:78:e8:1d:13: 36:44:64:7f:12:0e:06:60:46:75:ae:c3:d7:ab:6d: ff:c9:84:bb:90:7b:76:92:a5:cd:bb:2a:c2:95:82: e2:83:14:d0:c7:6f:f2:0f:f5:c8:88:c4:21:67:d0: f3:88:48:62:e1:79:22:5d:12:3f:91:f7:f6:a5:79: c3:bc:29:3b:36:ad:bb:7a:9c:97:f6:d1:bc:ac:67: 47:3b:5a:a0:4e:9f:08:d0:34:84:88:1e:d0:ec:76: 98:47:ab:80:56:9a:8c:91:32:cc:1b:33:8b:67:a5: 87:b3:3d:66:ed:e9:a5:ee:70:6d:7c:40:b2:71:f3: 09:1b:f4:90:b5:31:ef:21:03:dd:81:bc:52:19:87: 33:d5:0d:bc:dd:61:d9:fe:84:af:e0:aa:0f:a9:d4: 70:41:f5:e8:ef:2c:20:a8:04:ce:a3:d1:98:c5:88: 07:7f:2e:46:9e:7d:f3:71:29:d9:a8:fb:55:93:4c: 55:92:fd:12:e0:01:78:8e:11:96:b5:06:04:dc:ad: 22:a8:77:16:f0:62:49:f7:4c:26:ec:ac:14:3a:04: 27:70:04:0c:7e:52:2d:0c:cf:72:c8:01:45:7a:c2: d3:3b:dc:b5:20:9a:f7:73:d3:8b:d6:4f:e6:f7:1d: fc:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:51:BC:53:8A:7C:C5:06:79:94:0B:2F:75:4A:0C:06:E6:5C:5D:98 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D306A07085DC11ED8D87B76CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.57.96.0/23 103.105.228.0/22 103.108.73.0/24 103.157.8.0/23 103.175.116.0/23 Signature Algorithm: sha256WithRSAEncryption 62:97:0f:71:c9:4b:3d:7d:0e:9c:5b:e2:78:58:54:0c:9a:8a: 72:2f:6c:ae:52:00:33:9d:27:f1:80:d7:cd:bf:ca:58:a6:1d: e9:61:86:47:de:c5:18:96:07:86:d7:d8:46:ad:f4:89:09:a2: 6f:49:5d:f7:23:7b:4f:cc:8c:1d:34:b4:ec:96:f6:33:ac:4c: 12:32:d3:77:05:05:a0:33:47:cb:e4:c9:c4:2b:0f:d0:ab:19: 4b:f2:5f:f9:34:75:7e:64:e7:21:48:ce:ac:1d:55:fc:e8:1d: 43:92:76:38:a2:ef:b8:56:bd:f3:39:92:cc:b8:7e:eb:cc:6c: b5:6b:ab:65:4e:18:56:40:74:e1:c9:0a:28:c5:85:e8:cf:8d: 3e:dc:c2:ea:15:2f:a0:67:a8:84:90:ac:98:63:55:f7:6d:ac: ea:bf:62:bd:86:a6:26:5d:9c:90:ce:a7:a7:5f:2e:be:48:6b: 3e:e1:a3:41:3a:0e:d4:43:77:5b:94:d7:88:ac:76:dc:a3:6a: f1:b0:3c:ff:b7:13:22:37:b8:af:8c:e8:7b:f7:11:fd:14:0f: b7:f7:43:d2:45:bb:92:88:e8:f9:c5:9c:00:e4:f2:ce:f5:c7: 3e:e0:d4:92:4a:87:d1:4f:e0:d8:70:62:ad:fe:34:ae:13:31: af:39:0b:50 -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgIDAIPtMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDMwMTEwMzI0OVoXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjVlMWFlZDEtMTcyMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL08JEoZcJtlIx946B0TNkRkfxIOBmBGda7D16tt/8mEu5B7dpKlzbsqwpWC 4oMU0Mdv8g/1yIjEIWfQ84hIYuF5Il0SP5H39qV5w7wpOzatu3qcl/bRvKxnRzta oE6fCNA0hIge0Ox2mEergFaajJEyzBszi2elh7M9Zu3ppe5wbXxAsnHzCRv0kLUx 7yED3YG8UhmHM9UNvN1h2f6Er+CqD6nUcEH16O8sIKgEzqPRmMWIB38uRp5983Ep 2aj7VZNMVZL9EuABeI4RlrUGBNytIqh3FvBiSfdMJuysFDoEJ3AEDH5SLQzPcsgB RXrC0zvctSCa93PTi9ZP5vcd/PECAwEAAaOCAq0wggKpMB0GA1UdDgQWBBTuUbxT inzFBnmUCy91SgwG5lxdmDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0QzMDZBMDcw ODVEQzExRUQ4RDg3Qjc2Q0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDcGCCsGAQUFBwEHAQH/ BCgwJjAkBAIAATAeAwQBZzlgAwQCZ2nkAwQAZ2xJAwQBZ50IAwQBZ690MA0GCSqG SIb3DQEBCwUAA4IBAQBilw9xyUs9fQ6cW+J4WFQMmopyL2yuUgAznSfxgNfNv8pY ph3pYYZH3sUYlgeG19hGrfSJCaJvSV33I3tPzIwdNLTslvYzrEwSMtN3BQWgM0fL 5MnEKw/QqxlL8l/5NHV+ZOchSM6sHVX86B1DknY4ou+4Vr3zOZLMuH7rzGy1a6tl ThhWQHThyQooxYXoz40+3MLqFS+gZ6iEkKyYY1X3bazqv2K9hqYmXZyQzqenXy6+ SGs+4aNBOg7UQ3dblNeIrHbco2rxsDz/txMiN7ivjOh79xH9FA+390PSRbuSiOj5 xZwA5PLO9cc+4NSSSofRT+DYcGKt/jSuEzGvOQtQ -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:46 2024 by rpki-client on console-ams.rpki-client.org