$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F465B1CE0CBB11EDBCE4C427C4F9AE02.roa File: F465B1CE0CBB11EDBCE4C427C4F9AE02.roa (raw, json) Hash identifier: RpmTpCmNz3Zv7uP50tLj+Y6dfhXp++KfL32Bh0Zn21A= Subject key identifier: 64:1F:EB:E4:34:62:4F:CA:C2:FA:43:F5:5E:12:BD:5B:A7:15:E8:0E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 82FE Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F465B1CE0CBB11EDBCE4C427C4F9AE02.roa Signing time: Thu 15 Feb 2024 07:29:29 +0000 ROA not before: Thu 15 Feb 2024 07:29:29 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 150011 IP address blocks: 103.191.134.0/23 maxlen: 24 2001:df3:3a40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33534 (0x82fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Feb 15 07:29:29 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65cdbd59-2722 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1a:da:f0:83:ea:3d:c6:29:1b:b9:31:70:a0: 18:5d:ea:8b:28:47:77:7d:db:ef:00:5a:44:a9:37: 2a:80:ea:d1:37:65:71:d6:0b:34:c5:37:8b:fd:bc: 15:33:1c:51:dd:ea:b9:e2:a6:3f:63:7e:ef:6c:d6: 8d:99:dc:b0:82:72:8a:29:df:4c:59:cb:b5:a2:d8: e9:61:b0:b5:00:35:b1:34:d3:ba:89:b7:fd:ea:00: 51:ff:8d:10:7c:d2:9c:74:02:be:f3:e2:7a:54:be: 3c:90:cb:e2:a2:ec:bc:c0:47:6c:a6:57:cc:ad:81: e7:4d:61:b4:5b:57:08:a4:1e:3b:44:58:2e:6e:cb: 6f:67:1b:8d:13:2d:de:a1:32:74:7f:c6:d1:68:c2: b2:90:f0:16:7a:f0:fc:f4:7d:ce:49:b0:66:19:ed: e8:27:f3:d8:48:dd:55:60:4c:5a:87:7b:94:dc:c7: 57:82:59:e4:64:23:cd:86:09:b7:47:18:66:fd:e0: 72:1c:ab:56:e1:89:8b:53:67:f1:d1:18:35:c2:e6: ff:42:16:bd:3e:eb:b8:ff:cc:df:40:cf:f2:96:90: b1:02:a6:f6:a9:12:fd:5c:7d:b0:e1:f6:6e:a9:29: 90:73:24:15:d4:dd:f3:a1:ce:bb:1d:8f:40:93:d7: 29:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:1F:EB:E4:34:62:4F:CA:C2:FA:43:F5:5E:12:BD:5B:A7:15:E8:0E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F465B1CE0CBB11EDBCE4C427C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.191.134.0/23 IPv6: 2001:df3:3a40::/48 Signature Algorithm: sha256WithRSAEncryption 5f:ae:f8:64:2a:58:37:41:d8:04:ee:ab:86:3e:af:3e:38:2d: 2d:f5:91:c2:85:5d:bd:72:8f:d4:5d:01:2c:49:97:ca:16:6b: 77:89:b6:b5:77:59:06:5d:8b:7d:93:53:3a:c4:61:15:29:aa: dc:e6:da:1e:43:39:2a:d8:0c:21:46:a8:bf:c1:e1:a0:9f:11: 2b:ba:65:89:09:10:68:eb:4b:df:39:32:b4:26:d0:36:d8:cb: 4a:b7:de:b9:44:94:36:be:47:28:7d:5c:9c:26:07:ae:cf:e0: 7d:ef:90:fe:c2:72:99:a0:d1:ce:e2:3f:ba:0f:1d:b8:f0:a8: 3b:1f:db:03:3f:46:d3:f2:c6:9e:01:16:2e:e5:55:07:5d:4c: 23:e6:f9:95:b8:30:7b:f6:83:ba:51:67:e6:53:b3:a0:31:d5: 92:13:a3:0f:ec:94:39:24:38:fc:f4:db:8b:49:5e:96:ab:69: e5:a4:74:d2:ab:6b:4a:cc:0e:bb:09:f6:76:e3:4b:cb:f6:68: 8d:ae:33:3f:c0:b9:14:9b:9c:ef:c0:4a:ee:6c:fd:57:3b:67: 18:79:d0:4b:15:48:66:e3:18:d5:c1:dd:b7:b7:c9:fe:c7:6f: ce:cd:94:c1:4b:cf:70:d7:7d:91:4e:5b:1f:b5:76:66:86:1f: b6:9e:95:fe -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDAIL+MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDIxNTA3MjkyOVoXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjVjZGJkNTktMjcyMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALEa2vCD6j3GKRu5MXCgGF3qiyhHd33b7wBaRKk3KoDq0TdlcdYLNMU3i/28 FTMcUd3queKmP2N+72zWjZncsIJyiinfTFnLtaLY6WGwtQA1sTTTuom3/eoAUf+N EHzSnHQCvvPielS+PJDL4qLsvMBHbKZXzK2B501htFtXCKQeO0RYLm7Lb2cbjRMt 3qEydH/G0WjCspDwFnrw/PR9zkmwZhnt6Cfz2EjdVWBMWod7lNzHV4JZ5GQjzYYJ t0cYZv3gchyrVuGJi1Nn8dEYNcLm/0IWvT7ruP/M30DP8paQsQKm9qkS/Vx9sOH2 bqkpkHMkFdTd86HOux2PQJPXKcECAwEAAaOCAqYwggKiMB0GA1UdDgQWBBRkH+vk NGJPysL6Q/VeEr1bpxXoDjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0Y0NjVCMUNF MENCQjExRURCQ0U0QzQyN0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQBZ7+GMA8EAgACMAkDBwAgAQ3zOkAwDQYJKoZIhvcNAQEL BQADggEBAF+u+GQqWDdB2ATuq4Y+rz44LS31kcKFXb1yj9RdASxJl8oWa3eJtrV3 WQZdi32TUzrEYRUpqtzm2h5DOSrYDCFGqL/B4aCfESu6ZYkJEGjrS985MrQm0DbY y0q33rlElDa+Ryh9XJwmB67P4H3vkP7Ccpmg0c7iP7oPHbjwqDsf2wM/RtPyxp4B Fi7lVQddTCPm+ZW4MHv2g7pRZ+ZTs6Ax1ZITow/slDkkOPz024tJXparaeWkdNKr a0rMDrsJ9nbjS8v2aI2uMz/AuRSbnO/ASu5s/Vc7Zxh50EsVSGbjGNXB3be3yf7H b87NlMFLz3DXfZFOWx+1dmaGH7aelf4= -----END CERTIFICATE-----Generated at Sat May 18 17:20:33 2024 by rpki-client on console-ams.rpki-client.org