$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D8982D54056511EC886D271DC4F9AE02.roa File: D8982D54056511EC886D271DC4F9AE02.roa (raw, json) Hash identifier: RH7KZaKrLD2bBQ84GMj4GUq2UDVin+9z8xTpwnJPKjo= Subject key identifier: 70:07:0C:AA:48:03:D4:46:07:CC:4D:33:93:05:31:9D:3D:EE:D8:8A Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6F75 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D8982D54056511EC886D271DC4F9AE02.roa Signing time: Wed 10 May 2023 16:38:55 +0000 ROA not before: Wed 10 May 2023 16:38:55 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 142501 IP address blocks: 43.246.105.0/24 maxlen: 24 103.65.32.0/22 maxlen: 24 103.66.145.0/24 maxlen: 24 103.218.116.0/22 maxlen: 24 103.218.232.0/22 maxlen: 24 103.220.228.0/22 maxlen: 24 103.220.236.0/22 maxlen: 24 121.46.96.0/20 maxlen: 24 160.202.192.0/20 maxlen: 24 2407:e040::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28533 (0x6f75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:38:55 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc89f-08cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:6a:4c:5c:24:a5:16:a0:b9:dc:44:7a:15:34: 81:ce:8f:c7:f9:95:56:b2:8b:38:43:4b:7f:93:23: c5:3d:51:10:41:39:62:39:df:63:3b:e2:4b:9b:9d: 1d:2a:b5:7b:11:d9:0d:1d:7d:15:60:0b:de:24:f1: f6:e7:02:59:c8:85:93:ad:c8:75:41:8f:53:1c:e4: 18:02:25:19:af:69:36:fb:d2:6d:ee:64:ef:bf:10: 6b:a0:a5:dc:77:dd:39:b6:86:ad:ad:e4:aa:cd:82: 41:4e:0c:0e:c4:53:26:fc:f6:27:a3:a6:fd:92:6b: da:32:b9:23:fd:b5:7c:f5:72:d8:b8:5e:57:72:b8: b6:9a:ed:c8:8c:33:e3:b6:dc:d1:4a:d5:3e:ed:50: c1:1c:08:87:f5:85:3b:5a:ad:23:a0:6f:22:34:cf: a5:95:be:3f:65:43:98:24:40:e5:70:ae:1f:6c:70: c5:b2:62:24:3d:aa:3f:ce:74:76:46:b8:68:b7:73: 63:7f:42:4a:23:48:4a:f1:cd:8f:70:5e:4a:d8:c9: f6:ae:99:80:9e:68:8c:63:d1:a6:fc:13:57:a3:38: 57:68:d1:b2:ed:e8:b7:a1:b6:46:b5:5e:28:d4:d0: c0:53:f4:25:c4:48:69:8f:a9:0f:85:07:af:40:b5: c9:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:07:0C:AA:48:03:D4:46:07:CC:4D:33:93:05:31:9D:3D:EE:D8:8A X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D8982D54056511EC886D271DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.246.105.0/24 103.65.32.0/22 103.66.145.0/24 103.218.116.0/22 103.218.232.0/22 103.220.228.0/22 103.220.236.0/22 121.46.96.0/20 160.202.192.0/20 IPv6: 2407:e040::/32 Signature Algorithm: sha256WithRSAEncryption 01:95:65:65:6b:e4:ea:e7:e0:1b:a4:55:b5:79:d9:47:6b:e9: 30:08:3b:83:3d:67:88:a7:73:f4:e3:a3:ea:e6:de:15:f1:e0: d5:2e:2a:ef:6f:6f:eb:60:56:3b:f2:63:c0:26:f9:0f:ab:10: fb:19:1c:6a:2b:a8:00:b5:a7:58:26:e8:a6:ac:40:8f:02:90: da:6d:41:87:dd:71:f3:cc:b6:a4:61:a3:5e:40:77:6d:ba:fa: 03:8e:95:7f:b4:72:01:b1:6a:73:f1:e9:1a:8b:c5:78:9a:67: e1:c9:59:9c:7d:11:26:5d:33:6b:c8:94:92:04:19:4f:17:b4: ac:e1:70:e9:53:48:28:8c:a4:a5:af:9e:c1:a0:83:77:76:0e: 83:ee:2a:40:bd:9e:64:25:6f:3a:c0:77:b4:e6:db:ab:f1:39: e6:7e:c8:e3:e4:69:50:35:13:81:a2:3e:85:7f:75:56:e7:09: e8:86:ad:f4:8b:11:96:18:9a:d7:77:34:7f:a8:4a:56:52:3d: 74:24:80:45:67:4b:21:e6:44:fe:91:30:7d:cb:e1:07:94:f5: 76:7b:d9:57:78:c8:25:b7:7a:ae:34:0e:ca:1d:d7:f1:3b:e3: a1:2c:35:4f:57:b8:64:6d:e6:f9:ff:e2:5c:0e:31:86:10:42: e1:e0:ae:2b -----BEGIN CERTIFICATE----- MIIFsDCCBJigAwIBAgICb3UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzODU1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzg5Zi0wOGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8GpMXCSlFqC53ER6FTSBzo/H+ZVWsos4Q0t/kyPFPVEQQTliOd9jO+JLm50d KrV7EdkNHX0VYAveJPH25wJZyIWTrch1QY9THOQYAiUZr2k2+9Jt7mTvvxBroKXc d905toatreSqzYJBTgwOxFMm/PYno6b9kmvaMrkj/bV89XLYuF5Xcri2mu3IjDPj ttzRStU+7VDBHAiH9YU7Wq0joG8iNM+llb4/ZUOYJEDlcK4fbHDFsmIkPao/znR2 Rrhot3Njf0JKI0hK8c2PcF5K2Mn2rpmAnmiMY9Gm/BNXozhXaNGy7ei3obZGtV4o 1NDAU/QlxEhpj6kPhQevQLXJfQIDAQABo4IC1DCCAtAwHQYDVR0OBBYEFHAHDKpI A9RGB8xNM5MFMZ097tiKMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRDg5ODJENTQw NTY1MTFFQzg4NkQyNzFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXgYIKwYBBQUHAQcBAf8E TzBNMDwEAgABMDYDBAAr9mkDBAJnQSADBABnQpEDBAJn2nQDBAJn2ugDBAJn3OQD BAJn3OwDBAR5LmADBASgysAwDQQCAAIwBwMFACQH4EAwDQYJKoZIhvcNAQELBQAD ggEBAAGVZWVr5Orn4BukVbV52Udr6TAIO4M9Z4inc/Tjo+rm3hXx4NUuKu9vb+tg VjvyY8Am+Q+rEPsZHGorqAC1p1gm6KasQI8CkNptQYfdcfPMtqRho15Ad226+gOO lX+0cgGxanPx6RqLxXiaZ+HJWZx9ESZdM2vIlJIEGU8XtKzhcOlTSCiMpKWvnsGg g3d2DoPuKkC9nmQlbzrAd7Tm26vxOeZ+yOPkaVA1E4GiPoV/dVbnCeiGrfSLEZYY mtd3NH+oSlZSPXQkgEVnSyHmRP6RMH3L4QeU9XZ72Vd4yCW3eq40Dsod1/E746Es NU9XuGRt5vn/4lwOMYYQQuHgris= -----END CERTIFICATE-----Generated at Sun Apr 28 15:51:38 2024 by rpki-client on console-fra.rpki-client.org