$ rpki-client -vvf rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/F48207E6DB8711EAA446B360C4F9AE02.roa File: F48207E6DB8711EAA446B360C4F9AE02.roa (raw, json) Hash identifier: Fqx2jGB1eq9bRLPpOYwztJv7iYCvwuhl3LNyP9sYVd8= Subject key identifier: 08:57:95:EF:60:93:D7:7C:83:3C:64:7F:66:E1:35:CB:15:AF:91:D1 Certificate issuer: /CN=A919ACF6/serialNumber=A3511718B429A2B043E645BFB1650EE6777E4172 Certificate serial: 06AD Authority key identifier: A3:51:17:18:B4:29:A2:B0:43:E6:45:BF:B1:65:0E:E6:77:7E:41:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/F48207E6DB8711EAA446B360C4F9AE02.roa Signing time: Tue 18 Jul 2023 21:38:25 +0000 ROA not before: Tue 18 Jul 2023 21:38:25 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 134152 IP address blocks: 103.118.20.0/22 maxlen: 22 103.118.20.0/24 maxlen: 24 103.118.21.0/24 maxlen: 24 103.118.22.0/24 maxlen: 24 103.118.23.0/24 maxlen: 24 2403:2540::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.crl rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 21:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1709 (0x6ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919ACF6/serialNumber=A3511718B429A2B043E645BFB1650EE6777E4172 Validity Not Before: Jul 18 21:38:25 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64b70651-628e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2e:59:55:4c:ae:b8:b5:4c:b7:bc:99:42:64: b1:91:8b:75:47:ee:17:78:0f:d7:81:27:c8:a6:7c: 5e:26:8e:f5:44:b5:dd:00:70:42:19:2a:61:ef:73: 72:67:29:5e:a6:ad:f1:23:c5:c8:33:1d:9c:f2:c7: 55:ef:c5:a8:98:88:66:3e:ca:90:a5:08:99:0b:9a: 0c:ef:5a:d7:e2:7f:37:46:a6:b5:d8:3b:43:fe:ce: 61:52:9a:7b:fc:d1:a1:47:0a:f5:95:24:d0:77:c7: b6:28:71:68:15:90:03:d3:6b:51:15:8c:9e:ad:7f: b6:4e:56:87:36:18:96:47:47:94:c3:f6:db:b1:3d: e8:04:ad:86:36:d7:59:ca:6a:79:58:ba:cb:f6:ee: b4:7d:b3:1a:d8:14:18:a1:6a:2d:75:6d:d4:00:72: 6c:76:3d:b9:9f:5e:89:9f:9c:42:39:56:ec:d2:3d: 44:af:2b:eb:bb:f9:4a:63:3c:d8:02:96:77:60:c4: 47:ed:5e:d6:e8:c8:7b:b7:0d:7c:be:80:9f:47:0b: a0:57:a3:d2:54:31:a5:1c:23:cb:e8:a3:3c:77:12: 75:d6:b9:b2:2c:5d:61:08:1d:a2:6a:f8:a6:af:16: d5:49:08:68:aa:b9:e2:87:3d:21:ae:d3:5c:89:e8: 44:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:57:95:EF:60:93:D7:7C:83:3C:64:7F:66:E1:35:CB:15:AF:91:D1 X509v3 Authority Key Identifier: keyid:A3:51:17:18:B4:29:A2:B0:43:E6:45:BF:B1:65:0E:E6:77:7E:41:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/F48207E6DB8711EAA446B360C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.118.20.0/22 IPv6: 2403:2540::/32 Signature Algorithm: sha256WithRSAEncryption 77:02:4c:89:10:e9:ca:55:a7:ab:b2:b7:3f:80:c1:83:87:80: 75:dc:7b:53:1f:8b:7a:bf:2d:d6:7c:19:76:c5:66:21:dc:ef: 49:92:a0:a2:79:a4:72:20:1e:1d:13:45:26:91:f2:9d:49:1c: d5:27:10:f1:94:05:4a:0a:8b:b7:cb:de:50:76:51:98:9b:72: f7:8a:98:e7:d1:a5:88:e0:74:28:b5:40:ec:ef:1f:13:e7:21: 2b:65:46:c6:9c:1e:5e:bf:63:eb:b5:cc:2b:c6:fd:6d:b1:5c: 02:32:7c:c0:af:16:4b:9c:b3:96:38:a4:bc:ec:d8:ef:71:27: 22:8c:21:e4:fd:ef:9a:94:25:29:ce:8d:b0:9a:5c:ea:93:70: ba:83:05:2d:e9:7c:6e:41:c8:8c:16:2d:9b:65:17:8d:5b:1f: cd:d3:1e:be:f7:6d:aa:97:19:8c:cc:01:86:67:10:08:98:b1: 0f:bf:88:ec:86:86:2f:09:96:0c:84:c2:0a:8c:f0:dd:13:fe: ad:05:cb:60:a4:8e:2a:ab:35:57:a5:0c:19:fa:27:75:ce:13: c8:a1:8b:ea:50:b5:05:87:4b:e7:3a:5e:63:3f:68:cf:eb:84: 39:97:cb:b8:70:af:e1:3e:71:c2:c8:85:76:bc:47:27:0e:f5: 92:b3:b2:e0 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFDRjYxMTAvBgNVBAUTKEEzNTExNzE4QjQyOUEyQjA0M0U2NDVCRkIxNjUwRUU2 Nzc3RTQxNzIwHhcNMjMwNzE4MjEzODI1WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGI3MDY1MS02MjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuC5ZVUyuuLVMt7yZQmSxkYt1R+4XeA/XgSfIpnxeJo71RLXdAHBCGSph73Ny Zylepq3xI8XIMx2c8sdV78WomIhmPsqQpQiZC5oM71rX4n83Rqa12DtD/s5hUpp7 /NGhRwr1lSTQd8e2KHFoFZAD02tRFYyerX+2TlaHNhiWR0eUw/bbsT3oBK2GNtdZ ymp5WLrL9u60fbMa2BQYoWotdW3UAHJsdj25n16Jn5xCOVbs0j1Eryvru/lKYzzY ApZ3YMRH7V7W6Mh7tw18voCfRwugV6PSVDGlHCPL6KM8dxJ11rmyLF1hCB2iavim rxbVSQhoqrnihz0hrtNciehE/wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAhXle9g k9d8gzxkf2bhNcsVr5HRMB8GA1UdIwQYMBaAFKNRFxi0KaKwQ+ZFv7FlDuZ3fkFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUNGNi8zNDk3ODNFRURC ODYxMUVBODU1OTQyNUVDNEY5QUUwMi9vMUVYR0xRcG9yQkQ1a1dfc1dVTzVuZC1R WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xRVhHTFFwb3JCRDVrV19zV1VPNW5kLVFYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUFDRjYvMzQ5NzgzRUVEQjg2MTFFQTg1NTk0MjVFQzRGOUFFMDIvRjQ4MjA3RTZE Qjg3MTFFQUE0NDZCMzYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJndhQwDQQCAAIwBwMFACQDJUAwDQYJKoZIhvcNAQELBQAD ggEBAHcCTIkQ6cpVp6uytz+AwYOHgHXce1Mfi3q/LdZ8GXbFZiHc70mSoKJ5pHIg Hh0TRSaR8p1JHNUnEPGUBUoKi7fL3lB2UZibcveKmOfRpYjgdCi1QOzvHxPnIStl RsacHl6/Y+u1zCvG/W2xXAIyfMCvFkucs5Y4pLzs2O9xJyKMIeT975qUJSnOjbCa XOqTcLqDBS3pfG5ByIwWLZtlF41bH83THr73baqXGYzMAYZnEAiYsQ+/iOyGhi8J lgyEwgqM8N0T/q0Fy2CkjiqrNVelDBn6J3XOE8ihi+pQtQWHS+c6XmM/aM/rhDmX y7hwr+E+ccLIhXa8RycO9ZKzsuA= -----END CERTIFICATE-----Generated at Wed May 22 23:39:38 2024 by rpki-client on console-fra.rpki-client.org