$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F5839A70BBE911ED9835332EC4F9AE02.roa File: F5839A70BBE911ED9835332EC4F9AE02.roa (raw, json) Hash identifier: i1GCI8qlyLT0Zn42vNTGoh5WxBgkQlWNvxffS+ngx6s= Subject key identifier: 52:1B:E7:CF:5E:D1:A6:D3:1C:66:0B:D3:79:68:BB:D2:64:DF:F9:A6 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6D0E Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F5839A70BBE911ED9835332EC4F9AE02.roa Signing time: Wed 10 May 2023 16:27:29 +0000 ROA not before: Wed 10 May 2023 16:27:29 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 137181 IP address blocks: 103.109.136.0/24 maxlen: 24 103.109.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27918 (0x6d0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:27:29 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc5f0-8f74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:fa:ec:11:68:43:b8:ba:5a:35:05:35:29:74: 88:7b:3f:40:a1:c2:45:03:66:9f:20:c5:94:22:96: ab:91:c8:66:8e:cb:1f:d2:21:8c:44:2a:04:88:c2: a8:8e:7b:14:07:1f:3d:25:00:1b:c0:44:18:9b:26: 9c:97:a2:69:60:fd:26:e2:d3:40:9a:fa:1c:aa:dc: bb:fc:2a:5a:5d:fc:2b:7e:bd:24:71:6a:26:08:34: 5c:1f:79:7c:01:41:25:60:da:4c:53:82:a8:49:df: 8f:d3:d2:03:7c:28:51:63:ca:8a:4b:8d:60:67:60: 32:7f:b1:c0:b3:84:7f:a3:3c:d8:5f:0e:46:0e:96: 0c:7c:0d:d3:92:93:d6:32:c2:fe:e8:81:d8:3f:e3: 22:4a:b3:1f:63:ed:83:7b:d7:19:fd:e0:c6:6b:f0: aa:c7:0e:28:d8:18:9c:a6:ae:e6:22:75:73:dd:31: 5c:ae:eb:2b:c1:5b:5c:a7:72:62:9f:e0:e8:b8:55: 67:0f:1a:cc:ec:9f:4a:52:d5:26:76:01:53:a6:3e: 2f:3e:15:1f:52:5d:9f:78:c9:4a:69:2d:d3:41:a5: 8d:27:38:08:8b:64:e5:93:88:ac:8e:76:69:f1:89: f6:bb:71:08:61:bb:80:c0:a6:91:be:4d:b7:7c:3c: 1c:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:1B:E7:CF:5E:D1:A6:D3:1C:66:0B:D3:79:68:BB:D2:64:DF:F9:A6 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F5839A70BBE911ED9835332EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.109.136.0/24 103.109.139.0/24 Signature Algorithm: sha256WithRSAEncryption 53:3e:0f:ae:3b:1a:b1:85:c6:3a:f8:bc:c5:a0:af:1b:c0:95: 7c:d0:cb:ce:7b:d5:87:bd:18:a7:39:f3:29:ff:2c:25:7c:51: 46:e1:15:4e:1f:4e:7e:f9:b8:49:de:dd:be:f6:46:79:4a:2b: 6a:15:25:79:09:ca:1c:83:44:df:0b:26:7a:60:12:37:3e:a6: 74:e1:27:ce:f6:fe:5d:01:c3:87:2e:e1:de:30:da:6a:b0:7e: 2b:19:82:4c:d8:84:95:d4:93:ca:de:7f:e2:1c:09:90:f7:07: e4:29:62:eb:49:40:9a:2c:a0:20:88:af:48:78:4d:b8:dd:bb: db:91:f4:74:0a:e5:97:aa:cd:07:f1:11:eb:6e:09:3c:2c:b3: 6b:2d:66:b8:62:c3:dc:27:c6:c7:8f:57:5a:9d:0a:00:01:7f: 75:54:bf:a6:95:75:62:0f:a3:55:8f:24:21:6a:0c:51:80:67: 06:7c:aa:d3:d9:f4:a2:6e:58:e8:ca:c7:42:0f:a4:b6:b4:9c: 5b:41:4f:4a:c8:d0:60:5f:5c:04:be:70:ed:0b:66:53:39:e2: 44:b5:26:28:a0:9e:54:a5:b4:c4:00:97:79:22:06:eb:a9:e0: 10:88:88:1b:c0:aa:56:86:62:13:b3:02:7a:19:a5:66:0f:d2: 98:f7:8a:00 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICbQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNzI5WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzVmMC04Zjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5vrsEWhDuLpaNQU1KXSIez9AocJFA2afIMWUIparkchmjssf0iGMRCoEiMKo jnsUBx89JQAbwEQYmyacl6JpYP0m4tNAmvocqty7/CpaXfwrfr0kcWomCDRcH3l8 AUElYNpMU4KoSd+P09IDfChRY8qKS41gZ2Ayf7HAs4R/ozzYXw5GDpYMfA3TkpPW MsL+6IHYP+MiSrMfY+2De9cZ/eDGa/Cqxw4o2Bicpq7mInVz3TFcrusrwVtcp3Ji n+DouFVnDxrM7J9KUtUmdgFTpj4vPhUfUl2feMlKaS3TQaWNJzgIi2Tlk4isjnZp 8Yn2u3EIYbuAwKaRvk23fDwcswIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFIb589e 0abTHGYL03lou9Jk3/mmMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRjU4MzlBNzBC QkU5MTFFRDk4MzUzMzJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnbYgDBABnbYswDQYJKoZIhvcNAQELBQADggEBAFM+D647 GrGFxjr4vMWgrxvAlXzQy8571Ye9GKc58yn/LCV8UUbhFU4fTn75uEne3b72RnlK K2oVJXkJyhyDRN8LJnpgEjc+pnThJ872/l0Bw4cu4d4w2mqwfisZgkzYhJXUk8re f+IcCZD3B+QpYutJQJosoCCIr0h4Tbjdu9uR9HQK5ZeqzQfxEetuCTwss2stZrhi w9wnxsePV1qdCgABf3VUv6aVdWIPo1WPJCFqDFGAZwZ8qtPZ9KJuWOjKx0IPpLa0 nFtBT0rI0GBfXAS+cO0LZlM54kS1JiignlSltMQAl3kiBuup4BCIiBvAqlaGYhOz AnoZpWYP0pj3igA= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:50 2024 by rpki-client on console-ams.rpki-client.org