$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/ECA9AFA28FDE11EDA9919C57C4F9AE02.roa File: ECA9AFA28FDE11EDA9919C57C4F9AE02.roa (raw, json) Hash identifier: 0WcwYGwEvlWoeEX894WNzlVp7tlblAeCwgNIB2802t4= Subject key identifier: 10:62:F9:65:E0:94:6E:37:6A:E8:A0:55:41:E1:94:C7:2D:18:72:64 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6A61 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/ECA9AFA28FDE11EDA9919C57C4F9AE02.roa Signing time: Wed 10 May 2023 16:14:30 +0000 ROA not before: Wed 10 May 2023 16:14:30 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 133252 IP address blocks: 103.233.120.0/24 maxlen: 24 103.235.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27233 (0x6a61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:14:30 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc2e6-4d0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:30:17:89:7c:df:04:87:4f:4b:c3:ac:ee:68: 88:d4:47:54:7a:38:14:2f:85:04:68:b2:b4:04:aa: 14:92:c7:53:11:c5:f2:4a:e0:a5:d8:5d:01:aa:0f: 07:9c:1b:59:70:65:08:08:dc:02:a2:35:de:36:81: e6:da:2b:28:ec:58:6d:fa:9a:41:a5:ba:b7:74:97: 1a:9f:0e:cd:21:c1:ae:d1:7f:ff:46:ba:35:2e:25: cd:67:24:89:cd:e5:8c:89:f9:9c:cf:08:76:55:5c: d6:e8:bc:9e:02:f4:10:b2:bc:34:91:37:37:1b:cd: 6c:b5:66:9c:21:6f:fe:f7:89:ad:63:d8:fa:c9:9f: 23:5b:28:a8:34:6b:60:74:fd:03:30:c9:f2:73:9a: 24:dc:c5:76:3f:ef:ca:94:d9:5f:3c:0a:2e:21:ca: 4c:77:88:37:0b:22:03:60:85:c2:2f:e8:83:39:f9: 5b:37:49:49:14:99:db:12:77:c0:02:6a:48:8c:56: fe:9f:61:aa:40:8a:c4:1b:b5:5c:40:1c:45:83:de: d6:10:a4:da:96:88:f3:ff:a8:74:36:4c:14:a5:da: 65:7b:61:52:0c:d4:e3:1d:a3:ad:cf:79:a4:3d:b8: 8a:83:a7:98:1d:17:b1:ee:5d:68:6a:4f:7b:be:00: f6:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:62:F9:65:E0:94:6E:37:6A:E8:A0:55:41:E1:94:C7:2D:18:72:64 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/ECA9AFA28FDE11EDA9919C57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.233.120.0/24 103.235.64.0/24 Signature Algorithm: sha256WithRSAEncryption ac:17:2a:6f:10:6a:92:e8:65:6c:cf:89:20:8f:8e:a9:bc:8f: c4:fc:4f:66:62:2f:ef:d6:3b:e4:d9:58:de:f0:af:14:15:3d: a7:07:66:7f:79:8c:21:9a:bb:4b:62:8b:d2:f0:a2:42:e9:e3: 36:7a:e1:82:cb:3d:26:7e:3f:d0:70:83:f5:be:93:f9:91:ff: 5b:ca:58:de:7c:d3:58:a2:a8:f0:b0:e3:fe:e8:ef:4d:e5:7e: f4:9d:28:f5:69:ed:05:d4:fd:de:ba:87:72:8c:0d:f3:39:ae: 1e:92:3d:31:3f:dc:7c:b7:eb:7c:9a:89:45:9a:70:db:50:e1: fe:62:d7:96:58:28:67:be:bf:c4:d4:a4:55:c1:9c:75:8d:d3: 25:43:c6:1a:80:58:6c:3a:d8:04:5b:43:75:72:6c:ab:30:6e: 17:95:85:54:67:e0:23:fc:f2:c6:92:cc:64:35:4b:21:cc:db: 05:8e:59:2e:04:1f:58:e0:7c:79:1c:03:3b:ee:fa:01:46:19: 72:a4:dd:1e:ad:87:3c:d7:05:e4:09:5e:07:ee:14:15:22:e9: 12:e5:f8:55:92:32:42:de:b3:87:c7:18:14:95:b1:12:75:8f: f8:50:64:7f:8f:1a:0e:d5:2b:be:bd:2b:31:35:8a:32:44:40: 44:19:68:03 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICamEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxNDMwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzJlNi00ZDBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArDAXiXzfBIdPS8Os7miI1EdUejgUL4UEaLK0BKoUksdTEcXySuCl2F0Bqg8H nBtZcGUICNwCojXeNoHm2iso7Fht+ppBpbq3dJcanw7NIcGu0X//Rro1LiXNZySJ zeWMifmczwh2VVzW6LyeAvQQsrw0kTc3G81stWacIW/+94mtY9j6yZ8jWyioNGtg dP0DMMnyc5ok3MV2P+/KlNlfPAouIcpMd4g3CyIDYIXCL+iDOflbN0lJFJnbEnfA AmpIjFb+n2GqQIrEG7VcQBxFg97WEKTalojz/6h0NkwUpdple2FSDNTjHaOtz3mk PbiKg6eYHRex7l1oak97vgD2kQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBBi+WXg lG43auigVUHhlMctGHJkMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRUNBOUFGQTI4 RkRFMTFFREE5OTE5QzU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABn6XgDBABn60AwDQYJKoZIhvcNAQELBQADggEBAKwXKm8Q apLoZWzPiSCPjqm8j8T8T2ZiL+/WO+TZWN7wrxQVPacHZn95jCGau0tii9LwokLp 4zZ64YLLPSZ+P9Bwg/W+k/mR/1vKWN5801iiqPCw4/7o703lfvSdKPVp7QXU/d66 h3KMDfM5rh6SPTE/3Hy363yaiUWacNtQ4f5i15ZYKGe+v8TUpFXBnHWN0yVDxhqA WGw62ARbQ3VybKswbheVhVRn4CP88saSzGQ1SyHM2wWOWS4EH1jgfHkcAzvu+gFG GXKk3R6thzzXBeQJXgfuFBUi6RLl+FWSMkLes4fHGBSVsRJ1j/hQZH+PGg7VK769 KzE1ijJEQEQZaAM= -----END CERTIFICATE-----Generated at Sun Apr 28 15:51:42 2024 by rpki-client on console-fra.rpki-client.org