$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D62A660060E911ED84CB5A68C4F9AE02.roa File: D62A660060E911ED84CB5A68C4F9AE02.roa (raw, json) Hash identifier: ST8d+VLBYeMKSbD3NtD8egorLpiY5NW3IVhFszG+JUU= Subject key identifier: F4:4A:35:E6:7E:41:C4:D8:6C:84:A7:BC:F5:52:11:AC:71:30:D7:16 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6F19 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D62A660060E911ED84CB5A68C4F9AE02.roa Signing time: Wed 10 May 2023 16:37:11 +0000 ROA not before: Wed 10 May 2023 16:37:10 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141830 IP address blocks: 45.248.64.0/22 maxlen: 24 103.178.104.0/23 maxlen: 24 103.178.130.0/23 maxlen: 24 103.178.132.0/23 maxlen: 24 103.178.134.0/24 maxlen: 24 103.178.135.0/24 maxlen: 24 103.178.136.0/23 maxlen: 24 103.178.142.0/23 maxlen: 24 103.216.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28441 (0x6f19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:37:10 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc836-d584 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:91:7e:b1:5e:bf:04:e4:d4:b9:24:90:1a:a7: 13:35:a3:f5:2c:35:84:96:49:e1:9f:ab:73:53:0b: 63:a9:0d:8d:2d:9d:56:dc:58:4d:bd:15:49:56:72: bd:ab:f2:ea:92:6a:5a:a9:cb:d2:bb:d3:0e:2a:6c: 7f:26:e4:d1:3f:c4:39:79:6c:b2:70:2f:ac:fc:d0: 4f:b3:f1:86:21:4e:c9:09:4a:49:78:a0:00:cc:95: 6f:4b:55:86:4b:25:84:b2:d3:bb:98:94:0f:9b:7d: 55:41:1e:9c:f6:9d:24:ba:83:65:51:44:29:62:48: c2:1b:2c:67:03:51:4b:24:4b:e1:70:fe:78:6f:b0: a1:52:93:21:76:d0:f6:37:1c:8e:9b:4c:9e:8d:aa: 94:b9:fa:f4:53:7e:a1:b1:34:b8:fd:a9:bd:aa:78: f4:c8:54:62:d3:e9:71:8a:89:4a:8a:2a:73:89:f4: 52:84:fa:8f:0c:bf:02:68:30:e2:bc:ad:05:3e:e7: b3:a3:70:1a:bc:1f:1e:2b:f6:a3:8f:f0:75:75:11: 4a:43:32:aa:5b:5f:af:4d:6e:50:3e:a0:0b:22:92: 12:00:8c:5c:67:a2:f8:ab:27:31:12:a2:79:57:de: 3f:21:f3:65:5e:db:c1:d8:45:86:22:9e:34:4a:9f: e0:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:4A:35:E6:7E:41:C4:D8:6C:84:A7:BC:F5:52:11:AC:71:30:D7:16 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D62A660060E911ED84CB5A68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.248.64.0/22 103.178.104.0/23 103.178.130.0-103.178.137.255 103.178.142.0/23 103.216.212.0/22 Signature Algorithm: sha256WithRSAEncryption af:16:fd:31:4c:a0:6b:9e:1f:db:7d:ff:58:a5:04:41:4d:74: d4:00:81:a1:39:a9:46:55:21:ef:55:1f:6b:c0:58:d2:c4:25: bb:a0:36:5e:03:7f:73:37:a8:a7:6a:04:b1:f9:12:25:d7:df: 7c:fa:fc:32:08:e1:b4:07:43:e0:dd:1a:a2:ed:de:36:eb:88: f1:b9:d2:eb:4b:a7:b0:c3:51:91:e7:2e:82:d6:32:34:61:c9: 53:e9:a9:9b:a2:b0:99:2e:b6:54:f2:1f:2d:44:e3:9d:b0:7e: ac:d9:9c:75:00:0d:20:ff:27:ef:a6:33:47:5d:f8:61:ed:4c: d3:8c:c7:2a:ff:f1:df:d9:47:79:3e:7a:d3:10:f1:d8:ba:d4: ca:94:e0:6f:39:56:2d:69:a1:93:00:53:9a:7b:7c:92:9f:78: 52:0a:e8:37:f8:d1:0c:cc:0f:78:ea:e2:31:00:aa:f2:e6:73: 05:ab:1e:6e:f6:74:cc:60:77:46:40:3d:a2:41:ee:51:2d:15: 60:84:01:dc:bb:2c:cc:b1:ea:7e:5c:a7:e2:eb:e1:b6:9b:72: a3:71:71:f3:64:0e:11:0f:49:f1:c6:5c:8c:41:28:eb:00:d9: 03:86:8c:f4:20:2c:39:88:69:4c:5e:60:b6:4f:a3:39:f6:cb: b7:67:87:fe -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICbxkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzNzEwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzgzNi1kNTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr5F+sV6/BOTUuSSQGqcTNaP1LDWElknhn6tzUwtjqQ2NLZ1W3FhNvRVJVnK9 q/LqkmpaqcvSu9MOKmx/JuTRP8Q5eWyycC+s/NBPs/GGIU7JCUpJeKAAzJVvS1WG SyWEstO7mJQPm31VQR6c9p0kuoNlUUQpYkjCGyxnA1FLJEvhcP54b7ChUpMhdtD2 NxyOm0yejaqUufr0U36hsTS4/am9qnj0yFRi0+lxiolKiipzifRShPqPDL8CaDDi vK0FPuezo3AavB8eK/ajj/B1dRFKQzKqW1+vTW5QPqALIpISAIxcZ6L4qycxEqJ5 V94/IfNlXtvB2EWGIp40Sp/gtwIDAQABo4ICtTCCArEwHQYDVR0OBBYEFPRKNeZ+ QcTYbISnvPVSEaxxMNcWMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRDYyQTY2MDA2 MEU5MTFFRDg0Q0I1QTY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMCwEAgABMCYDBAIt+EADBAFnsmgwDAMEAWeyggMEAWeyiAMEAWeyjgMEAmfY 1DANBgkqhkiG9w0BAQsFAAOCAQEArxb9MUyga54f233/WKUEQU101ACBoTmpRlUh 71Ufa8BY0sQlu6A2XgN/czeop2oEsfkSJdfffPr8MgjhtAdD4N0aou3eNuuI8bnS 60unsMNRkecugtYyNGHJU+mpm6KwmS62VPIfLUTjnbB+rNmcdQANIP8n76YzR134 Ye1M04zHKv/x39lHeT560xDx2LrUypTgbzlWLWmhkwBTmnt8kp94UgroN/jRDMwP eOriMQCq8uZzBasebvZ0zGB3RkA9okHuUS0VYIQB3LsszLHqflyn4uvhtptyo3Fx 82QOEQ9J8cZcjEEo6wDZA4aM9CAsOYhpTF5gtk+jOfbLt2eH/g== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:46 2024 by rpki-client on console-ams.rpki-client.org