$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FFF46604DBBA11EA9B1B9F48C4F9AE02.roa File: FFF46604DBBA11EA9B1B9F48C4F9AE02.roa (raw, json) Hash identifier: 6wmykmQy99zgObN8q/ZfznZl+D1vfpm4uvkcUIZV1xA= Subject key identifier: 22:69:B1:61:DC:D7:92:C0:E7:A7:9F:50:4E:92:0C:07:98:EE:59:85 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 837C Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FFF46604DBBA11EA9B1B9F48C4F9AE02.roa Signing time: Fri 23 Feb 2024 11:59:46 +0000 ROA not before: Fri 23 Feb 2024 11:59:46 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 58971 IP address blocks: 103.83.244.0/22 maxlen: 24 103.134.134.0/23 maxlen: 24 103.158.218.0/23 maxlen: 24 2405:e5c0::/32 maxlen: 32 2405:e5c0::/34 maxlen: 34 2405:e5c0:8000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33660 (0x837c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Feb 23 11:59:46 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65d888b2-b1fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e8:06:4c:4e:8e:86:1c:99:27:01:cb:d5:d8: 93:3a:9d:8f:c6:0a:f6:39:c2:87:ba:fa:88:49:71: 5d:6a:43:c0:84:68:c0:25:46:ff:24:45:5b:9d:81: 62:03:99:f8:b0:96:3b:91:4b:14:c9:63:e6:0e:e3: 04:72:89:4d:1f:df:ce:47:63:54:47:1a:e7:ba:13: b7:8a:e5:aa:d7:13:03:6c:e9:d2:f6:3d:fc:07:d9: ee:eb:54:05:d3:cf:dd:f6:cb:98:bf:ce:09:a0:67: 3c:41:6a:f7:ef:e9:53:2f:74:3f:5c:89:13:a8:d4: 24:ae:b3:b8:9f:f3:5d:0a:e1:21:e4:d1:6c:e9:c7: fb:45:ea:45:10:bc:3b:27:ab:6a:1c:87:5a:5d:a6: c8:ba:fa:36:67:ba:1f:28:01:8b:e1:fa:94:3e:9d: 49:ab:9a:99:15:8d:cf:d9:36:20:c6:88:bc:17:5b: e0:ac:02:e8:52:5a:ff:f8:e4:f6:60:b3:e0:ed:d5: d2:21:82:f6:9f:3f:dd:7b:c2:5f:2b:16:a9:16:37: 06:cb:dd:cf:97:6d:eb:35:ee:c5:a2:49:6e:56:45: a9:74:f7:40:a6:58:ec:24:b9:f7:fe:e7:fe:45:bb: 36:0d:e9:2f:af:c7:2c:9c:58:fc:28:c3:4b:a6:94: 1b:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:69:B1:61:DC:D7:92:C0:E7:A7:9F:50:4E:92:0C:07:98:EE:59:85 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FFF46604DBBA11EA9B1B9F48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.83.244.0/22 103.134.134.0/23 103.158.218.0/23 IPv6: 2405:e5c0::/32 Signature Algorithm: sha256WithRSAEncryption 3b:b5:42:14:ae:d1:d1:a7:52:69:ef:35:95:38:16:4f:0c:af: d5:37:8d:81:e0:0c:8b:22:52:bf:67:d3:c9:3a:2d:d7:f9:4d: 8a:5b:20:04:e2:b6:03:32:59:0b:c8:25:c0:84:6c:af:a7:de: f8:3e:56:77:e0:4d:0a:ef:ec:5f:b2:f9:ce:15:a7:1b:c1:cf: 31:03:e3:43:62:c9:9e:08:ee:20:e9:7e:23:8a:7c:f4:7f:88: 5d:a5:fc:87:76:c5:88:27:1a:38:66:1e:36:55:a2:c2:e3:05: 8b:1d:32:c6:35:7f:66:4c:65:27:56:be:9b:ed:65:94:ed:9b: 25:c0:a3:a8:24:d2:be:6c:7e:29:8c:72:84:53:87:5f:f1:6a: 2d:27:b6:16:70:82:fa:a5:95:7d:1f:b6:b1:e0:35:75:53:e4: 61:22:a5:14:7f:da:c7:72:bd:d5:44:54:89:27:a8:e9:aa:6f: 0c:58:b1:45:bd:df:b1:80:69:1b:79:91:0a:a9:82:a4:6f:1c: 6b:62:94:b0:22:ae:40:87:39:fa:55:bb:a5:fe:c7:32:a6:ad: b5:b1:42:93:71:ae:48:16:b5:d5:ab:27:c8:e6:07:4d:80:51: 5a:17:7a:fa:3c:ce:b3:65:00:01:65:4e:16:44:46:5d:d7:11: 59:d8:1b:7c -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgIDAIN8MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDIyMzExNTk0NloXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjVkODg4YjItYjFmYjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALzoBkxOjoYcmScBy9XYkzqdj8YK9jnCh7r6iElxXWpDwIRowCVG/yRFW52B YgOZ+LCWO5FLFMlj5g7jBHKJTR/fzkdjVEca57oTt4rlqtcTA2zp0vY9/AfZ7utU BdPP3fbLmL/OCaBnPEFq9+/pUy90P1yJE6jUJK6zuJ/zXQrhIeTRbOnH+0XqRRC8 OyerahyHWl2myLr6Nme6HygBi+H6lD6dSauamRWNz9k2IMaIvBdb4KwC6FJa//jk 9mCz4O3V0iGC9p8/3XvCXysWqRY3Bsvdz5dt6zXuxaJJblZFqXT3QKZY7CS59/7n /kW7Ng3pL6/HLJxY/CjDS6aUG98CAwEAAaOCArAwggKsMB0GA1UdDgQWBBQiabFh 3NeSwOenn1BOkgwHmO5ZhTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0ZGRjQ2NjA0 REJCQTExRUE5QjFCOUY0OEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDoGCCsGAQUFBwEHAQH/ BCswKTAYBAIAATASAwQCZ1P0AwQBZ4aGAwQBZ57aMA0EAgACMAcDBQAkBeXAMA0G CSqGSIb3DQEBCwUAA4IBAQA7tUIUrtHRp1Jp7zWVOBZPDK/VN42B4AyLIlK/Z9PJ Oi3X+U2KWyAE4rYDMlkLyCXAhGyvp974PlZ34E0K7+xfsvnOFacbwc8xA+NDYsme CO4g6X4jinz0f4hdpfyHdsWIJxo4Zh42VaLC4wWLHTLGNX9mTGUnVr6b7WWU7Zsl wKOoJNK+bH4pjHKEU4df8WotJ7YWcIL6pZV9H7ax4DV1U+RhIqUUf9rHcr3VRFSJ J6jpqm8MWLFFvd+xgGkbeZEKqYKkbxxrYpSwIq5Ahzn6Vbul/scypq21sUKTca5I FrXVqyfI5gdNgFFaF3r6PM6zZQABZU4WREZd1xFZ2Bt8 -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:51 2024 by rpki-client on console-ams.rpki-client.org