$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E8169C36BDD411EAA2D98325C4F9AE02.roa File: E8169C36BDD411EAA2D98325C4F9AE02.roa (raw, json) Hash identifier: +s7aGIy0F31oJ/ofH15Y22fXWlVckJPhOMEcDYq9Bog= Subject key identifier: 00:5D:02:FA:BB:DE:E4:AA:34:F1:6A:40:F2:71:CF:59:E1:E1:C3:EB Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6D22 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E8169C36BDD411EAA2D98325C4F9AE02.roa Signing time: Wed 10 May 2023 16:27:50 +0000 ROA not before: Wed 10 May 2023 16:27:50 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 137620 IP address blocks: 103.70.188.0/22 maxlen: 22 103.70.188.0/24 maxlen: 24 103.70.189.0/24 maxlen: 24 103.70.190.0/24 maxlen: 24 103.70.191.0/24 maxlen: 24 103.143.214.0/24 maxlen: 24 103.151.114.0/24 maxlen: 24 2001:df5:e480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27938 (0x6d22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:27:50 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc606-f95f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:2f:c5:05:49:87:a6:f3:0a:4f:18:a6:73:9d: f9:08:ba:23:a3:5a:2c:82:fc:2c:53:34:05:3e:cb: 39:bf:fd:14:ff:b2:a2:4d:68:e3:3d:31:7b:81:e6: ef:c2:9d:42:24:e0:5d:5e:31:e9:43:c3:2a:3e:dc: e4:60:43:1c:e9:08:2d:ed:bd:69:40:c7:91:de:7b: d7:94:9e:56:18:78:40:ae:4c:18:a7:c6:e7:df:d4: 09:1f:cd:65:18:3a:a2:67:89:d5:e9:7a:2a:3a:11: 7f:df:4b:91:a2:e9:12:83:5e:a2:a2:88:0a:51:d0: c3:74:73:3e:61:2d:fe:84:67:38:54:c6:7c:c6:e2: a3:d0:99:83:91:ea:71:68:83:d0:cc:30:6a:16:36: 2c:c8:64:24:6a:b9:4d:ed:85:18:2b:d8:ad:98:1a: ed:0f:3e:09:75:9a:6b:c7:37:36:06:73:19:c1:44: d5:e3:2f:90:48:77:fb:a3:d9:1f:9f:e6:7a:1a:04: 87:10:f6:4a:24:c0:5c:b6:10:a7:87:cd:ff:d2:82: 3f:2e:db:ae:6f:05:8d:ae:87:dc:fc:9f:12:8f:14: 09:2c:f8:07:27:a2:c2:0d:9a:07:36:68:4d:fd:d9: 70:75:e1:3e:f4:d9:9e:50:15:61:46:70:fd:2f:9f: 17:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:5D:02:FA:BB:DE:E4:AA:34:F1:6A:40:F2:71:CF:59:E1:E1:C3:EB X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E8169C36BDD411EAA2D98325C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.188.0/22 103.143.214.0/24 103.151.114.0/24 IPv6: 2001:df5:e480::/48 Signature Algorithm: sha256WithRSAEncryption 52:6d:17:84:31:9d:28:ec:d4:c9:cf:86:d0:90:ca:18:ed:65: 07:77:9a:98:86:2c:9f:cb:ef:13:c8:43:1d:12:90:bf:8b:d9: 3a:01:11:4a:1a:e2:02:f5:6e:e8:02:23:bc:4c:48:cd:17:ac: 33:56:3d:57:c8:b7:fa:25:23:79:17:00:db:13:c4:d1:e4:ef: 99:dc:93:5e:1a:70:c5:30:83:e4:49:39:e1:26:0f:0c:29:69: 6c:bd:5a:7e:e9:e3:74:09:44:16:f5:46:0b:1a:e0:dc:a8:57: 56:8b:d1:75:04:44:76:bc:d6:d7:29:32:79:34:7a:bd:50:a7: 08:e6:36:65:91:f6:86:ad:d4:cf:7b:b1:d1:b7:bd:3a:f4:a8: 81:54:bc:65:8c:0c:bd:b3:71:6e:30:82:ad:1b:9c:ac:20:1d: dc:72:2b:c9:ea:0b:43:97:32:a5:45:b4:29:2e:a2:fc:4d:a0: df:20:54:3e:c4:cd:fe:50:26:f3:c5:ba:e9:fd:15:94:70:d6: 20:b0:43:96:c7:0c:e5:a4:16:8f:a1:25:fd:9a:14:02:6f:30: 1a:c1:34:ba:be:7f:b9:dc:4c:70:98:b9:41:59:e6:b1:a6:aa: 34:d8:aa:2b:06:0c:1b:73:42:8e:b9:2a:a3:3d:de:2e:04:ac: 0d:66:20:0d -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICbSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNzUwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzYwNi1mOTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9C/FBUmHpvMKTximc535CLojo1osgvwsUzQFPss5v/0U/7KiTWjjPTF7gebv wp1CJOBdXjHpQ8MqPtzkYEMc6Qgt7b1pQMeR3nvXlJ5WGHhArkwYp8bn39QJH81l GDqiZ4nV6XoqOhF/30uRoukSg16ioogKUdDDdHM+YS3+hGc4VMZ8xuKj0JmDkepx aIPQzDBqFjYsyGQkarlN7YUYK9itmBrtDz4JdZprxzc2BnMZwUTV4y+QSHf7o9kf n+Z6GgSHEPZKJMBcthCnh83/0oI/LtuubwWNrofc/J8SjxQJLPgHJ6LCDZoHNmhN /dlwdeE+9NmeUBVhRnD9L58XzwIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFABdAvq7 3uSqNPFqQPJxz1nh4cPrMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRTgxNjlDMzZC REQ0MTFFQUEyRDk4MzI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBgEAgABMBIDBAJnRrwDBABnj9YDBABnl3IwDwQCAAIwCQMHACABDfXkgDAN BgkqhkiG9w0BAQsFAAOCAQEAUm0XhDGdKOzUyc+G0JDKGO1lB3eamIYsn8vvE8hD HRKQv4vZOgERShriAvVu6AIjvExIzResM1Y9V8i3+iUjeRcA2xPE0eTvmdyTXhpw xTCD5Ek54SYPDClpbL1afunjdAlEFvVGCxrg3KhXVovRdQREdrzW1ykyeTR6vVCn COY2ZZH2hq3Uz3ux0be9OvSogVS8ZYwMvbNxbjCCrRucrCAd3HIryeoLQ5cypUW0 KS6i/E2g3yBUPsTN/lAm88W66f0VlHDWILBDlscM5aQWj6El/ZoUAm8wGsE0ur5/ udxMcJi5QVnmsaaqNNiqKwYMG3NCjrkqoz3eLgSsDWYgDQ== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:48 2024 by rpki-client on console-ams.rpki-client.org