$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B4E8C2F89B8B11EC98C88432C4F9AE02.roa File: B4E8C2F89B8B11EC98C88432C4F9AE02.roa (raw, json) Hash identifier: Q/db1Hvm73IZbxW9YW1Ss7wk9+zfL5n2Bn+Gck4Cd4o= Subject key identifier: FA:25:75:A5:2E:2B:9F:35:73:CD:80:C8:DD:C8:1F:E7:97:16:73:16 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6DF8 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B4E8C2F89B8B11EC98C88432C4F9AE02.roa Signing time: Wed 10 May 2023 16:31:55 +0000 ROA not before: Wed 10 May 2023 16:31:55 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 139544 IP address blocks: 103.181.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28152 (0x6df8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:31:55 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc6fa-6650 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:14:90:98:c1:d0:99:56:48:d9:f4:fd:d5:71: d5:88:2a:9d:d1:7d:39:ff:34:59:3b:aa:9b:d0:c0: 19:d1:7b:81:c2:8d:91:2e:98:1c:09:aa:29:9f:bf: 7d:6f:a0:8d:bf:1a:69:cc:40:57:5c:46:ed:27:c5: 38:5b:e0:d9:3c:0e:19:60:fb:55:fb:68:9a:9a:7b: 9a:00:b1:95:46:0e:c8:3c:7e:5a:d6:36:e9:fb:a4: 3c:d3:30:4d:36:5c:f8:5e:23:11:6e:02:dc:ba:c9: 54:cf:96:3f:19:e4:79:be:0b:37:f6:86:1c:26:65: 3b:13:17:50:79:5f:3b:95:bd:10:93:1a:a0:38:f2: 98:9c:99:ca:a7:fc:a0:63:fb:00:00:7f:4a:11:8c: d5:a0:59:05:a5:77:c7:b2:72:ce:70:47:3a:61:91: 6f:8c:98:09:1c:00:b8:e2:ce:e7:52:74:c2:51:22: 56:24:13:44:a2:6a:0f:d1:75:87:30:4b:10:af:6a: 71:71:bc:9c:1f:3f:0b:97:d0:c8:ed:53:9c:75:c1: 0e:26:52:e0:ff:e2:63:18:ec:c5:1a:c0:7b:83:88: 00:77:dd:5b:bc:67:47:56:7f:8e:12:a3:b0:71:e8: 21:27:07:b9:63:d4:89:47:cd:b1:8c:e6:3a:1f:ff: 20:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:25:75:A5:2E:2B:9F:35:73:CD:80:C8:DD:C8:1F:E7:97:16:73:16 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B4E8C2F89B8B11EC98C88432C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.181.19.0/24 Signature Algorithm: sha256WithRSAEncryption 15:b9:4c:6d:77:de:00:87:96:42:e7:95:dc:a3:19:3e:df:8d: fb:03:3a:60:b3:92:99:bc:88:32:ff:d8:b2:5c:39:01:f5:93: ff:03:ed:f5:0b:2e:39:eb:86:4f:e4:85:1e:1a:cd:37:18:c1: 59:9f:fc:cf:19:9d:14:06:eb:d3:5e:7e:f2:22:dc:f5:68:9b: c9:af:26:db:41:6c:33:29:a0:94:bb:fa:dd:8f:e8:fe:6f:f0: ab:21:ef:7d:ab:37:60:76:bd:58:ad:86:9e:98:b2:71:19:49: 7e:ce:09:51:b3:0c:dd:5d:6b:07:e4:d6:80:f6:e4:9a:f1:f2: f3:86:4b:ca:a5:73:ed:bf:eb:81:a7:52:01:ce:eb:20:b8:f6: fa:4f:e0:a8:ad:83:7b:f0:00:05:0e:c5:d8:77:04:d2:31:04: e1:88:bd:af:ab:42:74:15:fa:97:d1:b8:66:3b:ef:04:50:7a: 3e:1d:99:9e:bc:22:92:97:d9:48:19:ea:d5:a2:e4:15:7b:47: 89:be:a2:4b:5a:bf:d1:b1:61:d8:da:4b:17:54:53:96:c2:b0: 3c:51:2e:95:02:c1:03:9b:68:40:83:72:a7:aa:e7:b6:95:b4: 7c:5e:d9:72:50:ee:e1:df:39:10:4b:8a:9d:d7:ce:ca:ca:f7: 71:b8:32:b1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzMTU1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzZmYS02NjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzxSQmMHQmVZI2fT91XHViCqd0X05/zRZO6qb0MAZ0XuBwo2RLpgcCaopn799 b6CNvxppzEBXXEbtJ8U4W+DZPA4ZYPtV+2iamnuaALGVRg7IPH5a1jbp+6Q80zBN Nlz4XiMRbgLcuslUz5Y/GeR5vgs39oYcJmU7ExdQeV87lb0QkxqgOPKYnJnKp/yg Y/sAAH9KEYzVoFkFpXfHsnLOcEc6YZFvjJgJHAC44s7nUnTCUSJWJBNEomoP0XWH MEsQr2pxcbycHz8Ll9DI7VOcdcEOJlLg/+JjGOzFGsB7g4gAd91bvGdHVn+OEqOw ceghJwe5Y9SJR82xjOY6H/8gawIDAQABo4IClTCCApEwHQYDVR0OBBYEFPoldaUu K581c82AyN3IH+eXFnMWMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQjRFOEMyRjg5 QjhCMTFFQzk4Qzg4NDMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABntRMwDQYJKoZIhvcNAQELBQADggEBABW5TG133gCHlkLn ldyjGT7fjfsDOmCzkpm8iDL/2LJcOQH1k/8D7fULLjnrhk/khR4azTcYwVmf/M8Z nRQG69NefvIi3PVom8mvJttBbDMpoJS7+t2P6P5v8Ksh732rN2B2vVithp6YsnEZ SX7OCVGzDN1dawfk1oD25Jrx8vOGS8qlc+2/64GnUgHO6yC49vpP4Kitg3vwAAUO xdh3BNIxBOGIva+rQnQV+pfRuGY77wRQej4dmZ68IpKX2UgZ6tWi5BV7R4m+okta v9GxYdjaSxdUU5bCsDxRLpUCwQObaECDcqeq57aVtHxe2XJQ7uHfORBLip3XzsrK 93G4MrE= -----END CERTIFICATE-----Generated at Sat May 18 17:20:25 2024 by rpki-client on console-ams.rpki-client.org