$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E671ACBC036E11EE9E15EE32C4F9AE02.roa File: E671ACBC036E11EE9E15EE32C4F9AE02.roa (raw, json) Hash identifier: /Te3prgFyaxw5aZy3dmliVtSgDF4MXSdHmf8KBsovms= Subject key identifier: EA:00:43:EB:B1:1E:42:BB:3A:3C:85:5A:DF:AE:DC:3A:5F:3B:2F:68 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7349 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E671ACBC036E11EE9E15EE32C4F9AE02.roa Signing time: Mon 05 Jun 2023 07:02:14 +0000 ROA not before: Mon 05 Jun 2023 07:02:14 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 138795 IP address blocks: 103.136.64.0/24 maxlen: 24 103.136.65.0/24 maxlen: 24 103.136.66.0/24 maxlen: 24 103.136.67.0/24 maxlen: 24 2001:df2:7040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29513 (0x7349) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jun 5 07:02:14 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=647d8876-a589 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:8a:61:61:8b:be:f9:68:f0:78:c2:9a:61:f1: 29:3e:72:bc:a1:03:b5:6d:a3:9f:35:d7:cd:5a:64: ea:74:0b:71:2e:b9:24:f7:6b:86:d0:f9:f2:62:af: e6:f0:81:77:16:68:c6:22:4b:95:61:f8:43:aa:ad: c6:b3:bb:c2:ba:d0:03:ac:d2:e4:41:86:f4:6d:ab: f2:00:24:c9:85:58:93:89:4c:e8:e0:06:8d:ef:7a: 47:e7:42:da:87:3d:53:ce:89:49:e4:65:3e:65:2b: 58:b0:28:c6:c9:c9:9f:e1:60:55:41:15:92:35:12: 8d:a4:49:45:48:bf:b8:9e:57:0d:35:0e:ff:55:6c: d9:db:70:b2:cd:d2:42:78:06:1e:16:55:a5:8e:de: 9c:a2:19:c1:96:32:e6:bf:b5:fb:ee:3d:95:85:58: a0:6c:e9:22:1c:35:84:8e:ef:e7:0c:17:bf:0b:dd: dd:56:66:34:39:ed:cc:3e:55:59:96:2f:89:c5:30: 6a:b1:03:da:6c:33:a3:99:6f:6c:82:fc:de:72:8a: 7f:4b:34:69:af:08:60:af:47:b9:22:e6:e2:dc:57: 3c:93:8a:c1:87:11:b1:c1:29:c3:ea:88:07:15:34: f0:67:ea:68:f1:80:a3:4f:c2:59:ed:23:a9:d0:ef: 7d:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:00:43:EB:B1:1E:42:BB:3A:3C:85:5A:DF:AE:DC:3A:5F:3B:2F:68 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E671ACBC036E11EE9E15EE32C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.64.0/22 IPv6: 2001:df2:7040::/48 Signature Algorithm: sha256WithRSAEncryption 94:86:2e:19:11:5e:26:0d:11:09:b3:28:df:6a:a8:01:87:74: 55:b8:23:90:e8:95:68:f3:45:f6:0a:41:50:72:fa:99:63:dc: df:89:cf:9e:e0:68:c8:9d:26:45:c0:6d:43:a9:fa:75:3e:c0: fd:60:12:a1:26:09:77:ed:09:73:6b:34:0c:ad:7a:b1:c0:99: 9b:c3:9e:01:e5:a0:08:5e:7d:3d:7b:d3:c8:dd:34:7c:51:4a: fa:8a:9e:1a:ed:f5:b0:5c:3e:c2:5e:76:63:f8:cd:2d:37:8b: 04:a7:0e:f1:e1:1f:3d:a4:3e:a7:a7:4f:cf:17:f4:65:ec:b5: 2a:11:f4:a4:3a:c0:68:ce:84:91:74:35:19:50:97:90:fb:c8: 6d:e4:af:e8:39:d1:08:d8:d5:85:43:b5:33:76:3f:02:96:8b: 46:da:d5:07:a0:88:7d:75:18:e2:3f:47:04:67:27:6a:02:3d: cc:dc:ab:5f:81:75:0b:9c:99:10:c2:16:0e:da:e0:91:51:50: 80:df:0b:ca:30:78:2f:04:2c:db:ab:b7:46:81:21:f4:9b:0a: 9c:7a:94:fb:60:3c:3d:e2:dc:2a:77:87:8b:57:db:a3:f8:ff: eb:3d:e4:dc:6e:05:8c:75:f4:ff:b7:68:f6:ce:8c:6f:f8:f8: ea:b4:3f:40 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICc0kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNjA1MDcwMjE0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdkODg3Ni1hNTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArYphYYu++WjweMKaYfEpPnK8oQO1baOfNdfNWmTqdAtxLrkk92uG0PnyYq/m 8IF3FmjGIkuVYfhDqq3Gs7vCutADrNLkQYb0bavyACTJhViTiUzo4AaN73pH50La hz1TzolJ5GU+ZStYsCjGycmf4WBVQRWSNRKNpElFSL+4nlcNNQ7/VWzZ23CyzdJC eAYeFlWljt6cohnBljLmv7X77j2VhVigbOkiHDWEju/nDBe/C93dVmY0Oe3MPlVZ li+JxTBqsQPabDOjmW9sgvzecop/SzRprwhgr0e5Iubi3Fc8k4rBhxGxwSnD6ogH FTTwZ+po8YCjT8JZ7SOp0O99qQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOoAQ+ux HkK7OjyFWt+u3DpfOy9oMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRTY3MUFDQkMw MzZFMTFFRTlFMTVFRTMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJniEAwDwQCAAIwCQMHACABDfJwQDANBgkqhkiG9w0BAQsF AAOCAQEAlIYuGRFeJg0RCbMo32qoAYd0VbgjkOiVaPNF9gpBUHL6mWPc34nPnuBo yJ0mRcBtQ6n6dT7A/WASoSYJd+0Jc2s0DK16scCZm8OeAeWgCF59PXvTyN00fFFK +oqeGu31sFw+wl52Y/jNLTeLBKcO8eEfPaQ+p6dPzxf0Zey1KhH0pDrAaM6EkXQ1 GVCXkPvIbeSv6DnRCNjVhUO1M3Y/ApaLRtrVB6CIfXUY4j9HBGcnagI9zNyrX4F1 C5yZEMIWDtrgkVFQgN8LyjB4LwQs26u3RoEh9JsKnHqU+2A8PeLcKneHi1fbo/j/ 6z3k3G4FjHX0/7do9s6Mb/j46rQ/QA== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:48 2024 by rpki-client on console-ams.rpki-client.org