$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D750A9BC66DB11EC8A0D0917C4F9AE02.roa File: D750A9BC66DB11EC8A0D0917C4F9AE02.roa (raw, json) Hash identifier: GXKrj4PcW+rNwm2oS7l1B0xMI7aWH9N8iAkYuwz7LEs= Subject key identifier: 63:80:08:53:87:C4:C4:B1:AA:AF:8B:39:57:50:24:2E:E3:17:67:E1 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 80B2 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D750A9BC66DB11EC8A0D0917C4F9AE02.roa Signing time: Tue 26 Dec 2023 11:21:40 +0000 ROA not before: Tue 26 Dec 2023 11:21:40 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136285 IP address blocks: 103.142.10.0/23 maxlen: 24 2405:2740::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32946 (0x80b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Dec 26 11:21:40 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=658ab743-ed12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:63:ee:b0:52:eb:ba:c1:c2:c9:b0:5f:86:4c: 7c:d8:c4:f2:0b:99:74:fd:08:34:23:1b:98:b9:22: c6:63:2d:8d:e3:36:51:f7:70:04:29:0a:0b:7c:5e: c6:13:40:b4:95:00:3e:62:97:9a:01:e9:81:1d:f4: 64:79:7d:37:7b:98:83:8a:26:83:76:d7:ba:8a:35: ca:3b:d8:a9:ae:ec:f1:e1:ab:28:51:96:52:72:34: ee:12:b6:7b:34:7c:8d:8e:3a:47:bf:1f:43:d0:01: 12:67:9c:a0:7f:98:b0:cc:8e:2f:a9:cd:5a:80:0a: 0b:8e:c6:db:54:27:75:ec:39:e5:bc:1f:a4:a3:fd: a8:a8:3f:5e:2e:3d:6a:cc:19:e3:fe:ba:a9:14:4e: bc:54:c5:d7:ac:89:7d:d0:71:2d:bf:e7:cb:b5:ab: 4c:46:64:9d:5d:c6:5c:db:4e:5c:cb:45:b0:87:92: 67:4f:3f:7b:71:0e:0c:b1:1f:9b:16:68:cd:ed:88: 5c:ba:81:08:60:0e:68:fa:53:46:2f:45:9e:74:75: 1c:94:3a:33:5f:e5:9e:a4:6d:08:e5:3d:2c:7a:43: 9e:3f:a0:53:ef:81:8a:7b:75:66:0d:d9:45:d9:73: b1:df:ac:c6:af:f7:f5:01:b5:cd:d2:16:d5:14:43: fa:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:80:08:53:87:C4:C4:B1:AA:AF:8B:39:57:50:24:2E:E3:17:67:E1 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D750A9BC66DB11EC8A0D0917C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.10.0/23 IPv6: 2405:2740::/32 Signature Algorithm: sha256WithRSAEncryption 34:d5:7a:69:80:a2:e4:d1:ea:dd:3c:2f:47:32:bc:23:2e:2d: 3d:cf:c2:c9:39:36:a4:34:9c:ce:18:ed:17:67:47:e5:37:67: 2c:a3:83:ab:f3:ba:68:f0:a1:30:ee:51:4e:33:c5:0e:c9:03: f5:5b:55:41:ff:69:52:68:bc:03:b9:a0:69:d1:64:74:42:f3: e6:cc:c4:ad:0d:f6:aa:6b:e5:87:20:31:61:3b:a0:cb:ba:04: d7:1a:c3:c3:f4:d4:31:fe:45:7c:77:6a:9d:8c:ee:3a:b6:a9: 98:10:79:2d:ed:e6:a2:df:d4:90:01:b9:f1:4b:ac:4d:c5:3b: fa:b1:9c:df:f3:aa:b6:90:35:d6:5f:31:2f:f1:26:49:1b:8b: d6:48:42:0d:1c:cd:63:35:99:d0:fe:71:32:a6:67:ad:0b:a7: 99:d4:e4:3d:05:8b:a2:5a:e3:a4:c1:c6:89:e0:77:d0:b5:41: 6f:fb:76:03:34:76:c6:92:9d:a6:9f:c2:8c:b8:4d:b8:b8:29: 30:98:68:bd:31:41:9a:4c:fd:4f:26:59:09:46:f3:6a:fd:05: d7:a7:29:af:a8:47:10:03:db:bc:68:3c:1a:a4:21:96:f6:13: f9:e8:0c:8a:e3:8a:18:bb:20:25:60:a3:ba:3a:01:62:df:d7: 56:41:f5:17 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIDAICyMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTIzMTIyNjExMjE0MFoXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjU4YWI3NDMtZWQxMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKJj7rBS67rBwsmwX4ZMfNjE8guZdP0INCMbmLkixmMtjeM2UfdwBCkKC3xe xhNAtJUAPmKXmgHpgR30ZHl9N3uYg4omg3bXuoo1yjvYqa7s8eGrKFGWUnI07hK2 ezR8jY46R78fQ9ABEmecoH+YsMyOL6nNWoAKC47G21Qndew55bwfpKP9qKg/Xi49 aswZ4/66qRROvFTF16yJfdBxLb/ny7WrTEZknV3GXNtOXMtFsIeSZ08/e3EODLEf mxZoze2IXLqBCGAOaPpTRi9FnnR1HJQ6M1/lnqRtCOU9LHpDnj+gU++Bint1Zg3Z Rdlzsd+sxq/39QG1zdIW1RRD+v0CAwEAAaOCAqQwggKgMB0GA1UdDgQWBBRjgAhT h8TEsaqvizlXUCQu4xdn4TAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0Q3NTBBOUJD NjZEQjExRUM4QTBEMDkxN0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMC4GCCsGAQUFBwEHAQH/ BB8wHTAMBAIAATAGAwQBZ44KMA0EAgACMAcDBQAkBSdAMA0GCSqGSIb3DQEBCwUA A4IBAQA01XppgKLk0erdPC9HMrwjLi09z8LJOTakNJzOGO0XZ0flN2cso4Or87po 8KEw7lFOM8UOyQP1W1VB/2lSaLwDuaBp0WR0QvPmzMStDfaqa+WHIDFhO6DLugTX GsPD9NQx/kV8d2qdjO46tqmYEHkt7eai39SQAbnxS6xNxTv6sZzf86q2kDXWXzEv 8SZJG4vWSEINHM1jNZnQ/nEypmetC6eZ1OQ9BYuiWuOkwcaJ4HfQtUFv+3YDNHbG kp2mn8KMuE24uCkwmGi9MUGaTP1PJlkJRvNq/QXXpymvqEcQA9u8aDwapCGW9hP5 6AyK44oYuyAlYKO6OgFi39dWQfUX -----END CERTIFICATE-----Generated at Sun Apr 28 15:51:38 2024 by rpki-client on console-fra.rpki-client.org