$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/45BC5258C6F711ED9BD6E476C4F9AE02.roa File: 45BC5258C6F711ED9BD6E476C4F9AE02.roa (raw, json) Hash identifier: U3oumhU6T0BmIq3jlCm/1cAUinPeMctGSUrsC85XUNQ= Subject key identifier: 02:30:A6:4B:72:54:6D:33:96:89:5A:85:ED:01:4A:C8:07:F4:BB:E0 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 025B Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/45BC5258C6F711ED9BD6E476C4F9AE02.roa Signing time: Thu 07 Dec 2023 03:14:14 +0000 ROA not before: Thu 07 Dec 2023 03:14:14 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 147002 IP address blocks: 103.235.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 03:44:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 603 (0x25b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: Dec 7 03:14:14 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65713886-cfd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ef:26:c5:f2:9f:34:ad:cc:f4:cc:16:2c:a9: 86:d8:7e:81:5f:1f:e4:34:de:e0:58:24:69:6f:99: d6:14:c8:80:df:ae:73:60:36:d3:73:9a:27:54:3d: 04:80:5a:4d:04:09:ea:1e:16:8b:32:24:b2:9d:ba: 19:17:7c:5e:90:a9:70:0b:14:8f:c8:e7:88:21:f2: 8a:4b:b6:28:a3:55:43:15:36:bf:f2:86:b9:09:fb: f0:df:fd:a9:8d:bc:7e:ca:97:61:5e:4e:b9:c1:4f: b5:6c:cf:11:5a:40:33:6f:9a:06:e4:f8:86:76:89: 32:64:31:dc:5b:a1:f8:58:6f:88:c1:c7:fe:76:f0: 7c:87:f5:24:80:59:8c:31:1d:46:89:82:6b:98:16: 72:a8:af:44:1c:c8:97:91:61:76:55:ba:9b:46:d6: c7:08:4f:65:a2:2d:f6:aa:1e:c8:7c:78:b3:71:51: 78:3f:f7:eb:a6:9c:f2:13:1f:b2:da:ab:32:c1:44: fb:2c:57:e4:db:b9:6d:63:03:e7:be:a4:71:ae:57: cd:fb:83:af:b7:f8:72:bb:bd:bb:25:1c:5b:4c:63: ab:ed:40:33:e0:8d:65:d9:6f:56:96:50:9b:72:b9: 91:dd:f5:0c:b1:e0:2c:2d:a7:e9:ce:23:fa:bd:75: 2d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:30:A6:4B:72:54:6D:33:96:89:5A:85:ED:01:4A:C8:07:F4:BB:E0 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/45BC5258C6F711ED9BD6E476C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.235.18.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:ba:bd:b7:ed:df:9c:dd:d0:82:63:89:95:a9:41:c5:c5:b2: 8d:f2:9f:82:44:44:3a:d0:c0:13:75:e2:b6:25:4f:03:70:b9: 0f:13:41:0e:fe:13:eb:0a:c0:9b:a1:4f:8c:b0:66:de:10:21: 31:75:91:6e:37:55:66:2a:70:c1:43:ba:bf:fd:3f:d3:31:6e: 9a:15:d7:57:c1:2e:6f:35:c6:48:bc:17:f9:29:38:84:6c:3c: 15:92:c2:a3:85:5e:19:b8:2c:df:52:93:b3:62:7c:2d:11:5c: e2:65:1b:d4:b6:d9:c4:9a:1a:5d:cc:ce:19:23:e5:21:8b:b0: cd:9e:2b:3c:d4:01:46:a1:b1:ff:f2:23:5a:ec:53:58:16:38: 1f:05:09:6a:82:28:eb:b9:bd:00:2b:d2:8e:99:01:34:9c:9b: dc:3b:89:66:73:d8:cb:76:1b:92:48:25:29:1c:fd:81:2b:37: 50:ba:fa:af:14:8f:8c:f4:f4:5d:cd:7f:52:7d:ed:e3:fd:12: 48:16:7e:94:6a:77:e4:cb:e8:99:5c:2e:da:54:e3:c2:c2:ed: 02:ff:b8:89:b5:5a:5a:b7:08:8d:73:c8:ae:57:77:73:a6:84: c2:d9:24:2f:8e:e7:a2:03:8a:f9:77:36:53:98:dc:c7:58:ec: fd:b6:ec:95 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjMxMjA3MDMxNDE0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTcxMzg4Ni1jZmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAre8mxfKfNK3M9MwWLKmG2H6BXx/kNN7gWCRpb5nWFMiA365zYDbTc5onVD0E gFpNBAnqHhaLMiSynboZF3xekKlwCxSPyOeIIfKKS7Yoo1VDFTa/8oa5Cfvw3/2p jbx+ypdhXk65wU+1bM8RWkAzb5oG5PiGdokyZDHcW6H4WG+Iwcf+dvB8h/UkgFmM MR1GiYJrmBZyqK9EHMiXkWF2VbqbRtbHCE9loi32qh7IfHizcVF4P/frppzyEx+y 2qsywUT7LFfk27ltYwPnvqRxrlfN+4Ovt/hyu727JRxbTGOr7UAz4I1l2W9WllCb crmR3fUMseAsLafpziP6vXUtHwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAIwpkty VG0zlolahe0BSsgH9LvgMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU1N0IvOERBNzI2NDBDMUZBMTFFQ0IzMEVFMjFBQzRGOUFFMDIvNDVCQzUyNThD NkY3MTFFRDlCRDZFNDc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn6xIwDQYJKoZIhvcNAQELBQADggEBAAy6vbft35zd0IJj iZWpQcXFso3yn4JERDrQwBN14rYlTwNwuQ8TQQ7+E+sKwJuhT4ywZt4QITF1kW43 VWYqcMFDur/9P9MxbpoV11fBLm81xki8F/kpOIRsPBWSwqOFXhm4LN9Sk7NifC0R XOJlG9S22cSaGl3Mzhkj5SGLsM2eKzzUAUahsf/yI1rsU1gWOB8FCWqCKOu5vQAr 0o6ZATScm9w7iWZz2Mt2G5JIJSkc/YErN1C6+q8Uj4z09F3Nf1J97eP9EkgWfpRq d+TL6JlcLtpU48LC7QL/uIm1Wlq3CI1zyK5Xd3OmhMLZJC+O56IDivl3NlOY3MdY 7P227JU= -----END CERTIFICATE-----Generated at Tue May 7 04:34:49 2024 by rpki-client on console-fra.rpki-client.org