$ rpki-client -vvf rpki.apnic.net/member_repository/A918F0F7/CB78B7C87F1A11EB92FE980DC4F9AE02/365255DA7F1C11EB9D057A0EC4F9AE02.roa File: 365255DA7F1C11EB9D057A0EC4F9AE02.roa (raw, json) Hash identifier: jBo3dS50uYqDBlTrTHHC+4gN8loyhHwYkoSkPTaw0cg= Subject key identifier: 61:BB:A6:CF:50:33:EA:3C:59:93:EC:8A:A3:EB:71:17:5B:71:4F:FC Certificate issuer: /CN=A918F0F7/serialNumber=50D594D518F1D6C0ACB5009B570778F6F106D5DE Certificate serial: 0542 Authority key identifier: 50:D5:94:D5:18:F1:D6:C0:AC:B5:00:9B:57:07:78:F6:F1:06:D5:DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UNWU1Rjx1sCstQCbVwd49vEG1d4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F0F7/CB78B7C87F1A11EB92FE980DC4F9AE02/365255DA7F1C11EB9D057A0EC4F9AE02.roa Signing time: Mon 02 Oct 2023 23:41:06 +0000 ROA not before: Mon 02 Oct 2023 23:41:06 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 45230 IP address blocks: 103.8.16.0/24 maxlen: 24 103.8.17.0/24 maxlen: 24 103.8.18.0/24 maxlen: 24 103.8.19.0/24 maxlen: 24 163.47.184.0/24 maxlen: 24 163.47.185.0/24 maxlen: 24 163.47.186.0/24 maxlen: 24 163.47.187.0/24 maxlen: 24 180.222.64.0/24 maxlen: 24 180.222.65.0/24 maxlen: 24 180.222.66.0/24 maxlen: 24 180.222.67.0/24 maxlen: 24 180.222.68.0/24 maxlen: 24 180.222.69.0/24 maxlen: 24 180.222.70.0/24 maxlen: 24 180.222.71.0/24 maxlen: 24 2403:d200::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F0F7/CB78B7C87F1A11EB92FE980DC4F9AE02/UNWU1Rjx1sCstQCbVwd49vEG1d4.crl rsync://rpki.apnic.net/member_repository/A918F0F7/CB78B7C87F1A11EB92FE980DC4F9AE02/UNWU1Rjx1sCstQCbVwd49vEG1d4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UNWU1Rjx1sCstQCbVwd49vEG1d4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1346 (0x542) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F0F7/serialNumber=50D594D518F1D6C0ACB5009B570778F6F106D5DE Validity Not Before: Oct 2 23:41:06 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=651b5512-f271 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:bf:4c:14:09:bd:61:1b:bd:d7:0c:fd:0b:2c: cb:18:85:cf:06:e7:9e:db:85:9e:ad:6c:cf:c4:36: e6:08:c8:9e:13:4b:29:a1:cc:25:dd:d6:2b:f8:09: 83:77:d1:c5:d9:31:ec:e8:dc:87:7c:33:2b:43:f5: 36:84:a7:2d:af:8d:9c:c3:43:65:a2:c4:26:13:71: aa:fc:96:6a:ca:af:b7:a5:ad:25:51:fd:d4:eb:aa: 86:95:f3:f1:22:22:08:20:a7:d3:1a:33:e4:19:69: 2f:3f:52:83:2d:7b:a7:a9:56:0e:46:1a:e5:15:62: 2c:97:69:00:ce:27:76:32:d4:15:76:21:2a:3c:e2: 6b:e4:bf:16:56:b2:e6:08:19:93:35:73:33:f1:c8: 7f:10:7c:d0:24:69:19:da:6c:6f:ef:75:2b:0b:43: 29:39:53:03:a0:23:c9:1b:16:75:40:a2:29:33:f8: 24:49:c9:56:8d:f5:24:68:ca:6a:32:1f:d5:51:62: a2:1a:6e:3a:4c:87:1a:15:dd:9a:20:fa:3c:1c:06: 5f:a4:a7:91:59:24:e2:0a:52:97:97:da:39:41:24: df:c9:d2:6a:fb:7a:f1:9f:8d:91:a4:a7:64:85:3f: 77:b9:fe:a8:ff:54:04:37:a4:56:cb:47:41:67:39: 3f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:BB:A6:CF:50:33:EA:3C:59:93:EC:8A:A3:EB:71:17:5B:71:4F:FC X509v3 Authority Key Identifier: keyid:50:D5:94:D5:18:F1:D6:C0:AC:B5:00:9B:57:07:78:F6:F1:06:D5:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F0F7/CB78B7C87F1A11EB92FE980DC4F9AE02/UNWU1Rjx1sCstQCbVwd49vEG1d4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UNWU1Rjx1sCstQCbVwd49vEG1d4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F0F7/CB78B7C87F1A11EB92FE980DC4F9AE02/365255DA7F1C11EB9D057A0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.8.16.0/22 163.47.184.0/22 180.222.64.0/21 IPv6: 2403:d200::/32 Signature Algorithm: sha256WithRSAEncryption 4d:c3:3e:6f:7e:cb:ff:c5:26:a6:24:c7:1a:4b:8b:a9:04:b5: 21:c7:e1:c2:6d:0f:e4:90:4f:95:4a:0c:ef:85:6a:ca:1b:54: 7d:43:3f:93:a6:ee:0e:d6:fa:c6:7a:7c:62:4f:4e:0c:c9:7a: df:16:c4:f9:7d:0a:ba:80:a3:b5:79:df:e2:de:d9:7f:3a:35: bc:69:a0:42:0c:42:aa:62:9d:f1:7a:4b:d3:3e:1e:1b:6d:fb: c9:f2:46:84:37:82:b4:1c:cd:16:d6:7a:37:ee:cf:d4:b0:29: ef:15:36:0f:f5:69:00:e0:ea:2e:85:39:c5:06:b5:29:a8:e8: 61:6e:7b:a5:87:0c:c4:0d:bf:5a:bc:d6:d3:0e:ca:35:f7:70: 77:c0:dd:40:4c:5c:c3:7d:fa:b3:a4:b6:75:97:b0:73:58:58: 03:79:08:71:ec:07:b2:c5:2f:eb:28:24:9d:8e:2b:3c:2b:f2: aa:56:0b:8b:3a:2a:e6:93:a2:81:76:b1:9a:0c:f1:69:76:a2: c7:01:26:34:db:23:f7:47:bd:8c:da:b2:94:65:c5:48:7c:da: 89:80:60:91:05:3e:67:7f:ed:b6:e9:2d:16:3d:ae:68:c1:3a: f6:7b:de:8e:b8:8c:e9:a2:2c:ca:2e:68:59:3d:80:d5:a7:82: f5:43:22:3a -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICBUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYwRjcxMTAvBgNVBAUTKDUwRDU5NEQ1MThGMUQ2QzBBQ0I1MDA5QjU3MDc3OEY2 RjEwNkQ1REUwHhcNMjMxMDAyMjM0MTA2WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFiNTUxMi1mMjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy79MFAm9YRu91wz9CyzLGIXPBuee24WerWzPxDbmCMieE0spocwl3dYr+AmD d9HF2THs6NyHfDMrQ/U2hKctr42cw0NlosQmE3Gq/JZqyq+3pa0lUf3U66qGlfPx IiIIIKfTGjPkGWkvP1KDLXunqVYORhrlFWIsl2kAzid2MtQVdiEqPOJr5L8WVrLm CBmTNXMz8ch/EHzQJGkZ2mxv73UrC0MpOVMDoCPJGxZ1QKIpM/gkSclWjfUkaMpq Mh/VUWKiGm46TIcaFd2aIPo8HAZfpKeRWSTiClKXl9o5QSTfydJq+3rxn42RpKdk hT93uf6o/1QEN6RWy0dBZzk/6QIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFGG7ps9Q M+o8WZPsiqPrcRdbcU/8MB8GA1UdIwQYMBaAFFDVlNUY8dbArLUAm1cHePbxBtXe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjBGNy9DQjc4QjdDODdG MUExMUVCOTJGRTk4MERDNEY5QUUwMi9VTldVMVJqeDFzQ3N0UUNiVndkNDl2RUcx ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VOV1UxUmp4MXNDc3RRQ2JWd2Q0OXZFRzFkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEYwRjcvQ0I3OEI3Qzg3RjFBMTFFQjkyRkU5ODBEQzRGOUFFMDIvMzY1MjU1REE3 RjFDMTFFQjlEMDU3QTBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJnCBADBAKjL7gDBAO03kAwDQQCAAIwBwMFACQD0gAwDQYJ KoZIhvcNAQELBQADggEBAE3DPm9+y//FJqYkxxpLi6kEtSHH4cJtD+SQT5VKDO+F asobVH1DP5Om7g7W+sZ6fGJPTgzJet8WxPl9CrqAo7V53+Le2X86NbxpoEIMQqpi nfF6S9M+Hhtt+8nyRoQ3grQczRbWejfuz9SwKe8VNg/1aQDg6i6FOcUGtSmo6GFu e6WHDMQNv1q81tMOyjX3cHfA3UBMXMN9+rOktnWXsHNYWAN5CHHsB7LFL+soJJ2O Kzwr8qpWC4s6KuaTooF2sZoM8Wl2oscBJjTbI/dHvYzaspRlxUh82omAYJEFPmd/ 7bbpLRY9rmjBOvZ73o64jOmiLMouaFk9gNWngvVDIjo= -----END CERTIFICATE-----Generated at Sun May 19 01:47:14 2024 by rpki-client on console-ams.rpki-client.org