$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E35936643C0B11EE9778C87BC4F9AE02.roa File: E35936643C0B11EE9778C87BC4F9AE02.roa (raw, json) Hash identifier: XTZkK1iARofuqD3uCPYOkAkbdtsXVq0xN7pzg7Srja8= Subject key identifier: DC:43:A5:CB:5B:2F:90:CD:E7:31:8F:0A:53:33:5C:92:AB:AD:CC:23 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 779E Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E35936643C0B11EE9778C87BC4F9AE02.roa Signing time: Wed 16 Aug 2023 08:07:05 +0000 ROA not before: Wed 16 Aug 2023 08:07:05 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141324 IP address blocks: 103.50.22.0/23 maxlen: 24 103.157.186.0/23 maxlen: 24 103.167.122.0/23 maxlen: 24 103.171.201.0/24 maxlen: 24 103.173.24.0/23 maxlen: 24 103.175.102.0/23 maxlen: 24 103.180.220.0/23 maxlen: 24 2001:df5:2980::/48 maxlen: 48 2407:6a40::/32 maxlen: 32 2407:dec0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30622 (0x779e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Aug 16 08:07:05 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64dc83a9-af61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:73:6f:6b:4a:4e:77:08:38:49:ae:d3:b7:2b: d4:3e:1c:71:bf:59:29:28:68:36:2c:05:22:e8:41: ad:88:a3:bc:56:e1:08:33:b7:54:f0:aa:60:4a:1b: b6:b5:0f:f2:55:7c:25:c9:b8:79:6c:86:2a:c3:27: 65:29:cb:f8:4a:fa:75:7f:83:7b:bc:15:39:f3:98: 90:f4:f0:de:f9:af:f7:fd:c5:ba:4c:dd:54:f4:80: 47:11:5c:20:36:9a:98:64:b0:0a:b4:24:e3:31:4c: 53:3e:0f:05:d6:d8:1a:a9:de:74:fc:af:d4:0b:cc: ef:71:31:04:a3:54:57:f5:98:7f:a5:b2:e7:65:77: 60:3b:eb:1b:76:06:78:f5:db:56:84:c3:9a:74:a5: 12:7b:89:2a:a6:ea:16:af:52:02:dd:4b:ad:5e:e0: d3:81:3d:da:db:53:99:db:82:3b:bb:06:ba:8d:9a: ad:76:8f:81:fb:43:71:71:b9:99:c6:d0:89:36:2c: 85:96:39:df:83:36:e3:d1:8a:e9:86:7e:55:79:da: 95:00:5f:f8:04:38:2d:6f:d8:6a:bb:4a:e9:95:ba: fb:27:03:ce:d0:a0:36:e9:54:e6:fc:34:94:e7:8a: 27:82:e0:2b:2d:8e:9a:ab:06:a3:d4:13:48:8d:ac: b3:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:43:A5:CB:5B:2F:90:CD:E7:31:8F:0A:53:33:5C:92:AB:AD:CC:23 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E35936643C0B11EE9778C87BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.50.22.0/23 103.157.186.0/23 103.167.122.0/23 103.171.201.0/24 103.173.24.0/23 103.175.102.0/23 103.180.220.0/23 IPv6: 2001:df5:2980::/48 2407:6a40::/32 2407:dec0::/32 Signature Algorithm: sha256WithRSAEncryption 83:4c:f5:2b:e6:cf:51:2d:30:9f:ba:50:13:94:15:10:cd:d5: d3:e6:c7:87:65:25:63:4e:1c:f2:af:90:23:40:84:b7:51:84: 2d:42:f6:9d:44:46:bc:72:9e:b9:ad:d9:20:03:59:f4:b9:bc: b9:dd:c0:ea:70:32:40:ff:7a:26:ec:3b:97:20:e0:5c:1a:46: 73:73:71:06:38:39:99:5a:f2:f0:3e:79:29:c4:7c:63:e7:4e: 81:b2:8e:31:33:ae:2a:e3:29:2d:a5:49:27:b4:0e:c4:ec:0d: 91:98:77:73:79:4f:10:ca:dd:68:1b:fe:ed:70:02:b0:94:38: ca:8a:d1:c2:6c:1c:95:f0:91:c1:73:8b:25:51:14:64:63:83: 47:46:fa:98:0c:7c:81:64:bf:17:e3:05:00:66:7e:ea:e2:30: 0b:52:f6:bf:29:22:9a:da:46:92:74:cd:74:7a:b7:7f:e5:bc: e7:42:8b:7a:b8:ce:bb:32:69:58:8e:40:1a:24:c8:a9:a2:56: 55:2b:1e:29:36:8c:38:11:59:c7:b3:cf:62:06:5f:e5:57:1d: 86:5b:b3:9a:59:08:d5:ea:7f:48:4d:0a:92:e6:ae:d3:f4:94: cd:7c:32:a8:f9:48:6e:59:9b:8c:1a:be:46:b5:af:64:51:f1: 12:5b:d7:8e -----BEGIN CERTIFICATE----- MIIFtDCCBJygAwIBAgICd54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwODE2MDgwNzA1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRjODNhOS1hZjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlXNva0pOdwg4Sa7TtyvUPhxxv1kpKGg2LAUi6EGtiKO8VuEIM7dU8KpgShu2 tQ/yVXwlybh5bIYqwydlKcv4Svp1f4N7vBU585iQ9PDe+a/3/cW6TN1U9IBHEVwg NpqYZLAKtCTjMUxTPg8F1tgaqd50/K/UC8zvcTEEo1RX9Zh/pbLnZXdgO+sbdgZ4 9dtWhMOadKUSe4kqpuoWr1IC3UutXuDTgT3a21OZ24I7uwa6jZqtdo+B+0NxcbmZ xtCJNiyFljnfgzbj0Yrphn5VedqVAF/4BDgtb9hqu0rplbr7JwPO0KA26VTm/DSU 54onguArLY6aqwaj1BNIjayzBQIDAQABo4IC2DCCAtQwHQYDVR0OBBYEFNxDpctb L5DN5zGPClMzXJKrrcwjMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRTM1OTM2NjQz QzBCMTFFRTk3NzhDODdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwYgYIKwYBBQUHAQcBAf8E UzBRMDAEAgABMCoDBAFnMhYDBAFnnboDBAFnp3oDBABnq8kDBAFnrRgDBAFnr2YD BAFntNwwHQQCAAIwFwMHACABDfUpgAMFACQHakADBQAkB97AMA0GCSqGSIb3DQEB CwUAA4IBAQCDTPUr5s9RLTCfulATlBUQzdXT5seHZSVjThzyr5AjQIS3UYQtQvad REa8cp65rdkgA1n0uby53cDqcDJA/3om7DuXIOBcGkZzc3EGODmZWvLwPnkpxHxj 506Bso4xM64q4yktpUkntA7E7A2RmHdzeU8Qyt1oG/7tcAKwlDjKitHCbByV8JHB c4slURRkY4NHRvqYDHyBZL8X4wUAZn7q4jALUva/KSKa2kaSdM10erd/5bznQot6 uM67MmlYjkAaJMipolZVKx4pNow4EVnHs89iBl/lVx2GW7OaWQjV6n9ITQqS5q7T 9JTNfDKo+UhuWZuMGr5Gta9kUfESW9eO -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:48 2024 by rpki-client on console-ams.rpki-client.org