$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F741F6F8E29B11ED87D2D639C4F9AE02.roa File: F741F6F8E29B11ED87D2D639C4F9AE02.roa (raw, json) Hash identifier: AKWVUjl/ovBOI63svSH1aIZvA+7HuePYRWrJ+rNRi+Y= Subject key identifier: 18:3F:8A:5D:74:45:BB:B0:30:39:55:5F:4E:6A:E7:39:3E:E1:9C:31 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8338 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F741F6F8E29B11ED87D2D639C4F9AE02.roa Signing time: Tue 20 Feb 2024 06:15:58 +0000 ROA not before: Tue 20 Feb 2024 06:15:58 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 132750 IP address blocks: 43.227.184.0/23 maxlen: 24 103.66.0.0/22 maxlen: 24 103.153.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33592 (0x8338) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Feb 20 06:15:58 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65d4439d-0984 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:b4:83:04:5d:00:f3:65:bd:f9:ab:af:d3:fa: bd:0b:ae:28:6a:2c:2e:e3:8b:6b:c4:39:e8:23:08: 0a:43:8a:5e:cd:32:76:ad:97:60:57:f4:3a:94:f4: a2:62:8f:ec:c1:a7:1f:a7:4e:cd:9c:ee:4f:67:c4: ad:44:cb:82:05:0e:6b:09:1c:f8:61:52:4c:15:b8: 94:dc:c8:36:a1:6a:15:49:85:42:ff:b0:76:0f:ac: 45:f7:0f:08:7f:a5:1d:da:76:1c:eb:66:89:9d:15: c2:f0:62:0a:ce:91:25:44:49:c1:2d:d2:7c:79:62: 2e:7f:ae:53:86:4c:7e:3c:85:4a:e7:99:3d:60:53: 4d:52:d3:28:ac:43:8c:02:bf:49:e6:cb:3d:09:66: aa:0a:d0:5e:01:1f:4b:c5:7c:56:d8:81:02:18:12: 44:ec:36:99:f1:01:78:44:6e:0d:9d:a0:e9:ba:b1: 70:cc:16:8b:ac:1d:8b:63:6a:25:b4:03:58:45:15: 68:88:c4:ec:9e:db:8a:ab:04:9d:d2:42:f4:0a:88: 5a:7b:6c:63:fd:2a:9d:0a:fd:7b:96:83:96:5f:fc: 9a:42:71:ee:4b:e8:45:0b:dd:57:8a:84:67:f8:93: 20:96:50:e2:e0:5a:90:19:7f:75:52:8b:bc:e4:2a: 1e:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:3F:8A:5D:74:45:BB:B0:30:39:55:5F:4E:6A:E7:39:3E:E1:9C:31 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F741F6F8E29B11ED87D2D639C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.227.184.0/23 103.66.0.0/22 103.153.156.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:04:3c:d0:0a:3c:3b:d7:c3:b8:d5:b2:1f:cc:7b:da:4b:dc: 5a:de:a3:87:30:fa:f7:c8:9e:89:be:27:26:e4:09:86:82:bc: a4:8a:8f:37:74:22:23:ef:f1:25:0f:3f:bc:cf:e5:59:18:ba: 08:81:fa:d3:45:22:5b:1d:d6:26:64:d4:2c:d7:af:14:3d:f3: b1:bc:3b:9e:3a:1b:ac:fc:64:c8:17:b8:18:39:cc:1d:a1:e9: 21:96:0b:b1:8c:40:52:29:cf:c2:52:06:66:43:13:68:aa:10: e4:3b:68:7c:79:46:58:94:df:48:6e:f7:cd:b5:1c:a0:08:cd: f9:b1:9d:e0:cf:1d:dc:17:a9:dc:22:67:ce:95:12:02:59:47: 32:84:9e:e5:b9:da:d6:c0:3b:4c:06:6c:9f:b2:fe:0e:06:d0: 0f:24:ac:de:63:00:c2:fc:8c:65:af:a6:10:0e:db:4c:e9:80: 4b:a9:ce:95:4f:5f:05:be:e0:65:dc:9b:3c:f2:02:b3:03:30: 2d:b7:81:30:28:87:87:de:ff:81:f6:e5:27:e2:f7:72:60:d3: 34:5f:5b:79:ea:b3:f2:96:cb:da:0e:b5:4f:fb:89:97:ab:19: 64:48:ec:54:a0:98:63:2a:c2:0a:e1:70:e0:e5:54:f3:36:82: 4e:42:55:71 -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgIDAIM4MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDIyMDA2MTU1OFoXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjVkNDQzOWQtMDk4NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOW0gwRdAPNlvfmrr9P6vQuuKGosLuOLa8Q56CMICkOKXs0ydq2XYFf0OpT0 omKP7MGnH6dOzZzuT2fErUTLggUOawkc+GFSTBW4lNzINqFqFUmFQv+wdg+sRfcP CH+lHdp2HOtmiZ0VwvBiCs6RJURJwS3SfHliLn+uU4ZMfjyFSueZPWBTTVLTKKxD jAK/SebLPQlmqgrQXgEfS8V8VtiBAhgSROw2mfEBeERuDZ2g6bqxcMwWi6wdi2Nq JbQDWEUVaIjE7J7biqsEndJC9AqIWntsY/0qnQr9e5aDll/8mkJx7kvoRQvdV4qE Z/iTIJZQ4uBakBl/dVKLvOQqHtcCAwEAAaOCAqEwggKdMB0GA1UdDgQWBBQYP4pd dEW7sDA5VV9Oauc5PuGcMTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0Y3NDFGNkY4 RTI5QjExRUQ4N0QyRDYzOUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCsGCCsGAQUFBwEHAQH/ BBwwGjAYBAIAATASAwQBK+O4AwQCZ0IAAwQAZ5mcMA0GCSqGSIb3DQEBCwUAA4IB AQAdBDzQCjw718O41bIfzHvaS9xa3qOHMPr3yJ6Jvicm5AmGgrykio83dCIj7/El Dz+8z+VZGLoIgfrTRSJbHdYmZNQs168UPfOxvDueOhus/GTIF7gYOcwdoekhlgux jEBSKc/CUgZmQxNoqhDkO2h8eUZYlN9IbvfNtRygCM35sZ3gzx3cF6ncImfOlRIC WUcyhJ7ludrWwDtMBmyfsv4OBtAPJKzeYwDC/Ixlr6YQDttM6YBLqc6VT18FvuBl 3Js88gKzAzAtt4EwKIeH3v+B9uUn4vdyYNM0X1t56rPylsvaDrVP+4mXqxlkSOxU oJhjKsIK4XDg5VTzNoJOQlVx -----END CERTIFICATE-----Generated at Sun Apr 28 15:51:43 2024 by rpki-client on console-fra.rpki-client.org