$ rpki-client -vvf rpki.apnic.net/member_repository/A918F646/D92DD038F48E11E8B14A341EC4F9AE02/5D5FEDE0D3AE11EB908D6529C4F9AE02.roa File: 5D5FEDE0D3AE11EB908D6529C4F9AE02.roa (raw, json) Hash identifier: xM0SE9z5KPqdffwEGBCF2GJ0F/e0j8kXILwt1Y0ESZ8= Subject key identifier: EE:D3:18:8F:82:6B:45:82:D3:06:17:B5:0D:02:CB:39:C1:05:17:AF Certificate issuer: /CN=A918F646/serialNumber=A17C887EE95A74B3D738C15C708FECFD6BB8C66A Certificate serial: 10FC Authority key identifier: A1:7C:88:7E:E9:5A:74:B3:D7:38:C1:5C:70:8F:EC:FD:6B:B8:C6:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXyIfuladLPXOMFccI_s_Wu4xmo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F646/D92DD038F48E11E8B14A341EC4F9AE02/5D5FEDE0D3AE11EB908D6529C4F9AE02.roa Signing time: Fri 12 Apr 2024 17:55:52 +0000 ROA not before: Fri 12 Apr 2024 17:55:52 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 135273 IP address blocks: 103.211.244.0/22 maxlen: 24 146.196.90.0/24 maxlen: 24 146.196.91.0/24 maxlen: 24 2404:a340::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F646/D92DD038F48E11E8B14A341EC4F9AE02/oXyIfuladLPXOMFccI_s_Wu4xmo.crl rsync://rpki.apnic.net/member_repository/A918F646/D92DD038F48E11E8B14A341EC4F9AE02/oXyIfuladLPXOMFccI_s_Wu4xmo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXyIfuladLPXOMFccI_s_Wu4xmo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 18:08:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4348 (0x10fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F646/serialNumber=A17C887EE95A74B3D738C15C708FECFD6BB8C66A Validity Not Before: Apr 12 17:55:52 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=661975a8-d348 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:26:32:3b:5f:c5:d5:b2:15:93:67:a6:27:90: 16:8d:37:41:11:8f:19:e1:60:58:ae:f8:ef:36:34: c4:1c:bc:de:0a:9d:e3:5d:bf:41:fb:e4:3b:49:10: db:2f:2b:a5:9b:92:22:01:bb:4c:cb:f4:d6:28:eb: 4e:35:e3:82:ec:9b:5f:f4:e0:69:86:28:16:7f:c7: 39:99:05:9e:34:f8:e3:7a:16:62:23:03:84:f9:0e: b1:4a:7c:e8:f4:9d:96:4e:c4:cf:5f:8b:07:f5:d9: 1d:67:dc:fc:0d:60:48:f9:06:f3:ad:e5:79:f1:6d: ae:3f:30:ee:c5:98:36:ee:6c:8c:80:7f:57:d7:9a: b2:06:04:10:cf:0e:b0:e0:82:59:d3:3a:a8:f6:6e: a6:7f:85:16:bf:20:0f:67:27:4d:0a:02:15:c6:f4: c4:1b:1a:cd:3c:6e:1f:20:20:08:ce:52:fd:25:5b: 65:12:34:34:b0:09:60:3a:7d:e1:a7:c8:e1:30:77: 09:3f:03:c0:d5:67:89:bd:90:8c:cf:87:21:1b:86: b8:b8:30:fb:ac:79:43:33:f4:72:da:82:4a:fd:ba: 04:43:fd:2d:af:22:df:3e:d1:e7:72:e6:7d:e0:54: 8b:d1:f1:c1:cb:a3:20:a7:58:a0:eb:1c:52:c3:d6: 1a:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:D3:18:8F:82:6B:45:82:D3:06:17:B5:0D:02:CB:39:C1:05:17:AF X509v3 Authority Key Identifier: keyid:A1:7C:88:7E:E9:5A:74:B3:D7:38:C1:5C:70:8F:EC:FD:6B:B8:C6:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F646/D92DD038F48E11E8B14A341EC4F9AE02/oXyIfuladLPXOMFccI_s_Wu4xmo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXyIfuladLPXOMFccI_s_Wu4xmo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F646/D92DD038F48E11E8B14A341EC4F9AE02/5D5FEDE0D3AE11EB908D6529C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.211.244.0/22 146.196.90.0/23 IPv6: 2404:a340::/32 Signature Algorithm: sha256WithRSAEncryption 74:8f:2e:8c:84:e3:38:72:59:37:bf:58:18:e8:1f:fa:ae:3e: 72:31:d5:61:ea:aa:66:be:9f:37:ba:f8:ce:07:e1:89:26:b3: d8:0f:ec:26:44:09:df:31:77:20:bf:c3:00:bb:02:d9:82:88: 2e:75:ca:d4:b3:b6:01:41:2c:a8:c1:cf:d6:4c:78:14:1b:00: 2f:12:c9:12:c5:f7:af:03:e4:df:93:ad:9d:27:32:8d:59:48: 50:1c:b5:4e:8b:63:db:61:90:4e:74:4c:ce:3f:3a:ea:7d:8e: f7:c7:b5:85:a4:7d:ab:85:78:a7:99:b1:f0:48:f6:15:37:08: 8d:af:f3:9a:32:ad:ff:30:53:a2:9c:1d:2f:6d:e5:fe:5a:1c: 45:4f:ab:1b:ff:59:3f:f0:93:72:36:24:f0:8e:fd:27:2c:ed: 2a:49:27:e0:00:70:a1:19:30:79:ce:4f:b2:f2:f6:c5:c7:42: 09:a0:e2:7c:79:fd:f9:04:7d:f3:1d:11:32:3e:af:94:1c:78: 15:0e:e8:b9:76:4c:87:12:76:0c:09:c1:84:49:91:d9:f4:56: 72:d4:4b:1f:9e:a3:a4:8b:0f:40:a6:2c:b2:e1:e9:1f:56:ad: 4e:fc:56:07:1c:c2:94:c3:f3:26:50:48:0f:06:6f:14:51:08: 84:85:dd:b1 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICEPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY2NDYxMTAvBgNVBAUTKEExN0M4ODdFRTk1QTc0QjNENzM4QzE1QzcwOEZFQ0ZE NkJCOEM2NkEwHhcNMjQwNDEyMTc1NTUyWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjE5NzVhOC1kMzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtCYyO1/F1bIVk2emJ5AWjTdBEY8Z4WBYrvjvNjTEHLzeCp3jXb9B++Q7SRDb Lyulm5IiAbtMy/TWKOtONeOC7Jtf9OBphigWf8c5mQWeNPjjehZiIwOE+Q6xSnzo 9J2WTsTPX4sH9dkdZ9z8DWBI+QbzreV58W2uPzDuxZg27myMgH9X15qyBgQQzw6w 4IJZ0zqo9m6mf4UWvyAPZydNCgIVxvTEGxrNPG4fICAIzlL9JVtlEjQ0sAlgOn3h p8jhMHcJPwPA1WeJvZCMz4chG4a4uDD7rHlDM/Ry2oJK/boEQ/0tryLfPtHncuZ9 4FSL0fHBy6Mgp1ig6xxSw9YazwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFO7TGI+C a0WC0wYXtQ0CyznBBRevMB8GA1UdIwQYMBaAFKF8iH7pWnSz1zjBXHCP7P1ruMZq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjY0Ni9EOTJERDAzOEY0 OEUxMUU4QjE0QTM0MUVDNEY5QUUwMi9vWHlJZnVsYWRMUFhPTUZjY0lfc19XdTR4 bW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29YeUlmdWxhZExQWE9NRmNjSV9zX1d1NHhtby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEY2NDYvRDkyREQwMzhGNDhFMTFFOEIxNEEzNDFFQzRGOUFFMDIvNUQ1RkVERTBE M0FFMTFFQjkwOEQ2NTI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJn0/QDBAGSxFowDQQCAAIwBwMFACQEo0AwDQYJKoZIhvcN AQELBQADggEBAHSPLoyE4zhyWTe/WBjoH/quPnIx1WHqqma+nze6+M4H4Ykms9gP 7CZECd8xdyC/wwC7AtmCiC51ytSztgFBLKjBz9ZMeBQbAC8SyRLF968D5N+TrZ0n Mo1ZSFActU6LY9thkE50TM4/Oup9jvfHtYWkfauFeKeZsfBI9hU3CI2v85oyrf8w U6KcHS9t5f5aHEVPqxv/WT/wk3I2JPCO/Scs7SpJJ+AAcKEZMHnOT7Ly9sXHQgmg 4nx5/fkEffMdETI+r5QceBUO6Ll2TIcSdgwJwYRJkdn0VnLUSx+eo6SLD0CmLLLh 6R9WrU78VgccwpTD8yZQSA8GbxRRCISF3bE= -----END CERTIFICATE-----Generated at Thu Jun 6 21:11:24 2024 by rpki-client on console-ams.rpki-client.org