$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D8B11E00602B11EDA938E34DC4F9AE02.roa File: D8B11E00602B11EDA938E34DC4F9AE02.roa (raw, json) Hash identifier: BHL86KV/u+B0/M0o/BkngFThaGxb7ci8Kva3rGW8Pow= Subject key identifier: 1E:9B:A3:8C:60:9C:F8:3B:F6:84:55:24:6D:8F:B3:0C:04:65:20:55 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6C9D Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D8B11E00602B11EDA938E34DC4F9AE02.roa Signing time: Wed 10 May 2023 16:25:23 +0000 ROA not before: Wed 10 May 2023 16:25:23 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136674 IP address blocks: 103.117.152.0/24 maxlen: 24 103.117.153.0/24 maxlen: 24 103.117.154.0/24 maxlen: 24 103.117.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27805 (0x6c9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:25:23 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc573-04de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:64:e2:d6:99:fb:46:da:f1:e3:98:fd:36:ba: e3:bb:7a:d1:9d:ec:fc:07:05:1a:bf:3b:eb:42:1a: e8:bb:10:34:a9:b0:e7:dd:94:2d:bc:c9:96:bc:28: 4b:33:9a:d2:21:0f:f8:d4:80:55:33:63:4a:cd:d9: bb:87:d9:28:b2:08:87:2d:df:cb:b8:c6:8c:d9:55: b7:8a:01:24:64:81:c3:43:87:a4:5e:e7:8b:e7:98: c5:03:cb:89:1c:ae:44:28:a5:8d:0f:1f:96:fa:c8: fe:fa:76:35:c8:cf:8f:80:22:0e:71:bc:4b:7b:6b: aa:c0:bb:97:0d:56:7e:66:75:2c:4f:1d:51:a4:f9: 8c:3d:50:93:2b:ed:5b:a0:03:38:42:e9:5e:91:af: 4b:d8:02:1f:d5:04:9b:fe:ae:95:e5:ad:6b:b4:fd: 5f:ae:58:66:98:04:da:59:38:a6:17:45:24:89:54: be:9f:b9:5d:f8:d7:5c:a8:0f:2b:ff:81:1e:5f:90: 7e:ac:69:61:01:a1:c3:c6:e6:20:36:41:6e:bb:5a: e2:b3:3c:62:08:a4:09:d3:ac:f9:ef:ff:41:80:22: be:e9:0a:87:59:a7:40:18:83:e9:d6:65:8f:92:2d: e5:e2:8f:1a:39:1a:19:35:77:52:ae:8d:38:c8:5e: c8:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:9B:A3:8C:60:9C:F8:3B:F6:84:55:24:6D:8F:B3:0C:04:65:20:55 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D8B11E00602B11EDA938E34DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.152.0/22 Signature Algorithm: sha256WithRSAEncryption 89:73:ea:47:4e:7a:cb:65:57:c2:fd:d4:ae:f6:31:48:ac:e3: db:e0:84:42:e1:d9:f6:5a:e2:ce:42:14:6f:34:ed:f1:28:ce: b6:31:04:ce:b5:a8:ef:4e:93:c5:d3:a6:28:81:93:35:bf:13: 5b:d3:14:64:a8:d1:ce:f4:94:89:c7:a2:82:ce:07:fd:94:8a: ad:6c:b3:56:f9:b2:1a:54:86:2a:46:5c:00:4d:4a:fb:42:c9: 9f:0b:96:7f:e1:7a:8f:63:e7:bb:83:aa:4d:7b:fd:35:42:05: 94:1d:81:12:a2:9f:b5:92:c5:f7:ee:c5:9e:0f:5f:d7:46:80: 83:38:7c:08:44:14:1c:5d:8a:18:02:61:b8:f5:24:31:12:73: 90:12:a7:ee:4a:54:53:aa:1c:6e:3b:bd:a7:6d:b9:d4:e1:3b: 42:8a:52:a1:24:2c:e5:a4:ee:7a:8f:b7:15:84:e6:bf:c8:0d: be:e4:8f:9a:8a:af:53:f1:f7:54:ab:06:ba:7a:ad:fb:b2:be: 82:83:62:98:16:3b:e1:7a:b8:aa:ce:30:5f:94:d0:56:b7:2a: 17:c5:d4:36:36:66:87:84:66:be:21:61:e1:8c:43:a2:f1:fd: 72:bd:cd:19:5f:44:5c:51:c7:44:d5:d3:14:5e:11:ca:89:b2: c3:b0:bf:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNTIzWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzU3My0wNGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnWTi1pn7Rtrx45j9Nrrju3rRnez8BwUavzvrQhrouxA0qbDn3ZQtvMmWvChL M5rSIQ/41IBVM2NKzdm7h9kosgiHLd/LuMaM2VW3igEkZIHDQ4ekXueL55jFA8uJ HK5EKKWNDx+W+sj++nY1yM+PgCIOcbxLe2uqwLuXDVZ+ZnUsTx1RpPmMPVCTK+1b oAM4Quleka9L2AIf1QSb/q6V5a1rtP1frlhmmATaWTimF0UkiVS+n7ld+NdcqA8r /4EeX5B+rGlhAaHDxuYgNkFuu1riszxiCKQJ06z57/9BgCK+6QqHWadAGIPp1mWP ki3l4o8aORoZNXdSro04yF7IHQIDAQABo4IClTCCApEwHQYDVR0OBBYEFB6bo4xg nPg79oRVJG2PswwEZSBVMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRDhCMTFFMDA2 MDJCMTFFREE5MzhFMzREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJndZgwDQYJKoZIhvcNAQELBQADggEBAIlz6kdOestlV8L9 1K72MUis49vghELh2fZa4s5CFG807fEozrYxBM61qO9Ok8XTpiiBkzW/E1vTFGSo 0c70lInHooLOB/2Uiq1ss1b5shpUhipGXABNSvtCyZ8Lln/heo9j57uDqk17/TVC BZQdgRKin7WSxffuxZ4PX9dGgIM4fAhEFBxdihgCYbj1JDESc5ASp+5KVFOqHG47 vadtudThO0KKUqEkLOWk7nqPtxWE5r/IDb7kj5qKr1Px91SrBrp6rfuyvoKDYpgW O+F6uKrOMF+U0Fa3KhfF1DY2ZoeEZr4hYeGMQ6Lx/XK9zRlfRFxRx0TV0xReEcqJ ssOwv4Y= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:47 2024 by rpki-client on console-ams.rpki-client.org