$ rpki-client -vvf rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/BED54F1A9B1611EA939F5A3FC4F9AE02.roa File: BED54F1A9B1611EA939F5A3FC4F9AE02.roa (raw, json) Hash identifier: X0aJDOugxZhuFpWOjvY74xFv7C2NTkdzKllv+3pNPOw= Subject key identifier: 85:3F:C6:16:1C:1C:EA:BA:32:29:50:5A:53:C0:58:99:29:E8:FA:43 Certificate issuer: /CN=A918B0B9/serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Certificate serial: 0837 Authority key identifier: 5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/BED54F1A9B1611EA939F5A3FC4F9AE02.roa Signing time: Mon 10 Jul 2023 20:57:27 +0000 ROA not before: Mon 10 Jul 2023 20:57:27 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 45750 IP address blocks: 43.242.236.0/22 maxlen: 22 103.1.32.0/22 maxlen: 22 103.9.244.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2103 (0x837) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B0B9/serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Validity Not Before: Jul 10 20:57:27 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64ac70b6-994d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:79:4d:7a:bb:6d:bf:d1:78:d6:80:9f:a5:8d: ed:33:55:2d:73:e4:09:bb:b2:ed:7f:29:17:ff:a8: db:86:1d:2b:e8:36:7e:ca:b9:99:8b:82:c1:38:56: 29:5f:3b:cc:ad:5a:e0:a8:98:05:5d:4f:ad:e0:d9: 02:fb:ed:01:57:16:5e:9e:e6:4a:7d:9e:3b:d6:64: 22:0d:c0:30:97:ce:3e:d7:4e:c2:e6:a7:35:97:0c: 8f:80:af:c0:02:d4:fa:43:97:14:31:55:e2:f6:ef: c3:d6:e0:33:fd:5b:6f:c5:43:93:cd:46:f4:21:21: 54:82:cb:a2:58:99:a4:09:b3:7c:8d:cc:49:e8:0e: 57:7d:57:c8:cd:cb:93:a0:4f:b0:1e:dc:94:7e:d9: 63:e5:a0:47:47:58:51:18:e4:f9:2f:19:54:4a:8a: 76:8b:0e:fd:51:7a:75:21:d6:13:4e:39:63:56:ba: a9:ea:08:e7:8c:b5:99:08:00:35:c9:8f:c4:1a:de: b6:12:22:90:6f:da:03:fc:29:33:ce:34:fd:88:3f: c0:5a:d9:5c:cc:ef:39:33:93:dc:ab:ec:07:3a:41: 1c:16:31:b0:ff:f9:20:e1:d0:70:e5:45:0b:99:89: 87:c0:ac:e0:d2:25:44:5a:67:b5:52:01:f1:63:cc: 9e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:3F:C6:16:1C:1C:EA:BA:32:29:50:5A:53:C0:58:99:29:E8:FA:43 X509v3 Authority Key Identifier: keyid:5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/BED54F1A9B1611EA939F5A3FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.242.236.0/22 103.1.32.0/22 103.9.244.0/22 Signature Algorithm: sha256WithRSAEncryption 0c:a7:b7:76:ac:17:ad:ac:b6:1d:9d:14:f7:5c:32:c4:b2:92: 6e:73:f2:14:f9:37:e3:98:f3:11:6a:70:dc:6d:85:aa:a3:f0: 07:7c:16:ff:e2:8b:54:c5:b0:7b:68:11:1a:e9:85:56:b0:dc: 29:ac:35:d4:05:ad:31:1c:02:36:bd:7e:75:56:2d:69:80:07: b2:aa:0b:25:c9:35:7e:cc:c4:da:5e:6b:3e:43:d3:97:dc:15: 87:ab:b5:d5:3c:0d:ba:86:e6:50:c1:0e:ad:12:2e:7c:a7:d6: 7a:eb:36:5d:69:9b:17:30:d2:59:50:db:28:6c:c2:8f:f5:6e: 29:dd:ea:ac:0e:f1:c2:dc:47:00:78:b8:89:f7:59:75:83:8c: e0:ac:cc:2c:6d:a9:51:c6:3d:d7:ba:ae:ac:61:f0:1f:29:db: 6e:c3:b4:52:95:ab:42:74:f2:de:a1:36:61:6e:af:06:42:63: f9:73:c7:ee:9d:c8:2e:9e:41:13:70:d2:71:dc:8c:29:39:b7: fb:b9:95:b4:7f:11:b5:c0:38:13:5c:75:00:8a:7d:ed:b9:61: 19:d0:b6:13:91:d3:90:d8:d5:2c:62:8f:42:34:fb:25:45:67: 25:99:7d:ea:0e:cd:66:77:d1:39:74:eb:7c:f8:74:f0:a0:2f: 68:1f:61:50 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEIwQjkxMTAvBgNVBAUTKDVDNUE0RkFFNEFGMDFGRkRDOTI3NTM1NUNDQkFCOEM4 MTAxODlGNTQwHhcNMjMwNzEwMjA1NzI3WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGFjNzBiNi05OTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3nlNerttv9F41oCfpY3tM1Utc+QJu7LtfykX/6jbhh0r6DZ+yrmZi4LBOFYp XzvMrVrgqJgFXU+t4NkC++0BVxZenuZKfZ471mQiDcAwl84+107C5qc1lwyPgK/A AtT6Q5cUMVXi9u/D1uAz/VtvxUOTzUb0ISFUgsuiWJmkCbN8jcxJ6A5XfVfIzcuT oE+wHtyUftlj5aBHR1hRGOT5LxlUSop2iw79UXp1IdYTTjljVrqp6gjnjLWZCAA1 yY/EGt62EiKQb9oD/CkzzjT9iD/AWtlczO85M5Pcq+wHOkEcFjGw//kg4dBw5UUL mYmHwKzg0iVEWme1UgHxY8ye8wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFIU/xhYc HOq6MilQWlPAWJkp6PpDMB8GA1UdIwQYMBaAFFxaT65K8B/9ySdTVcy6uMgQGJ9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjBCOS85Q0JGM0Q5MDhG QTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hfM0pKMU5WekxxNHlCQVlu MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hGcFBya3J3SF8zSkoxTlZ6THE0eUJBWW4xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEIwQjkvOUNCRjNEOTA4RkEwMTFFQUFBOUJCQTE4QzRGOUFFMDIvQkVENTRGMUE5 QjE2MTFFQTkzOUY1QTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAIr8uwDBAJnASADBAJnCfQwDQYJKoZIhvcNAQELBQADggEB AAynt3asF62sth2dFPdcMsSykm5z8hT5N+OY8xFqcNxthaqj8Ad8Fv/ii1TFsHto ERrphVaw3CmsNdQFrTEcAja9fnVWLWmAB7KqCyXJNX7MxNpeaz5D05fcFYertdU8 DbqG5lDBDq0SLnyn1nrrNl1pmxcw0llQ2yhswo/1bind6qwO8cLcRwB4uIn3WXWD jOCszCxtqVHGPde6rqxh8B8p227DtFKVq0J08t6hNmFurwZCY/lzx+6dyC6eQRNw 0nHcjCk5t/u5lbR/EbXAOBNcdQCKfe25YRnQthOR05DY1Sxij0I0+yVFZyWZfeoO zWZ30Tl063z4dPCgL2gfYVA= -----END CERTIFICATE-----Generated at Sat May 18 22:27:56 2024 by rpki-client on console-ams.rpki-client.org