$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/052B1D7648C211EE8AAB1160C4F9AE02.roa File: 052B1D7648C211EE8AAB1160C4F9AE02.roa (raw, json) Hash identifier: sY9mplrzmoLWngPsEoKfbcHAx7SGpxBx1pDaiX9uvoY= Subject key identifier: 0F:1D:DA:00:CC:E6:20:E5:9F:51:21:25:F1:D8:1A:32:5C:07:82:4E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7932 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/052B1D7648C211EE8AAB1160C4F9AE02.roa Signing time: Fri 01 Sep 2023 12:21:05 +0000 ROA not before: Fri 01 Sep 2023 12:21:05 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 32787 IP address blocks: 103.167.152.0/24 maxlen: 24 103.167.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31026 (0x7932) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Sep 1 12:21:05 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64f1d730-2665 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e5:f5:d5:5e:44:09:f7:4e:9f:71:9e:34:71: 8d:74:70:0e:90:a8:c4:92:8d:e6:db:58:e0:6e:68: 79:90:dc:62:c8:03:18:a9:29:b6:4f:f6:a5:29:9a: f1:30:fc:d4:76:8f:6a:32:65:20:53:92:6c:86:27: 9a:44:32:23:f4:24:6a:d4:0a:1e:32:20:db:95:5d: 7a:5d:e3:a2:5c:db:8a:70:22:70:21:5a:d7:c5:cb: 17:10:39:15:75:9b:6a:6e:c4:6f:c4:06:14:83:bb: a2:88:0a:be:2d:a3:0f:6f:c5:81:91:3f:79:5e:75: 77:b5:88:b0:7a:4d:11:e2:87:a8:e8:6d:84:3b:f9: 51:88:35:09:4a:0a:24:d0:50:8e:8b:e7:c2:83:6e: 3f:9c:31:df:bb:f8:12:11:bb:9a:3b:61:b4:2e:55: 56:f1:95:1d:b4:77:4c:21:7a:bd:87:97:52:85:08: 96:0b:d8:8d:64:f9:9e:24:bc:06:ed:93:e3:96:df: bf:23:e0:ce:c2:17:d3:65:e0:07:e2:40:a8:96:b7: 2b:e4:c2:78:a9:0c:09:82:39:8d:40:84:b4:c1:55: 43:be:4c:09:79:9e:93:9f:e6:b4:8f:ae:c4:da:70: c1:dd:f7:0a:e9:60:16:02:aa:d2:4a:7a:a1:f1:aa: ec:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:1D:DA:00:CC:E6:20:E5:9F:51:21:25:F1:D8:1A:32:5C:07:82:4E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/052B1D7648C211EE8AAB1160C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.152.0/23 Signature Algorithm: sha256WithRSAEncryption 4b:6d:b0:42:1e:4e:8f:29:36:ff:cc:92:45:c8:8b:41:f7:c7: 36:56:70:d9:2f:6b:3b:c6:5e:38:03:8f:44:9e:70:c3:b2:7f: b5:ab:c4:2f:f3:d4:75:b2:81:e7:c2:76:ad:49:35:b5:fd:29: 75:51:89:32:17:85:66:73:e2:54:0a:2b:a3:6b:a4:16:42:d0: 20:72:f0:29:27:59:d3:d1:85:41:40:af:99:80:3e:2f:1c:ce: 5f:12:ed:39:3d:ed:be:b0:d2:72:e9:aa:e0:50:53:02:7e:1c: 4c:6e:03:31:41:28:1f:92:4a:a3:50:d8:31:37:cc:54:e2:77: d6:04:ef:e7:dc:e6:c9:32:3d:47:a4:06:1a:bb:01:3a:ed:cf: 74:0e:25:74:0b:5e:40:2d:51:0f:ca:fd:88:11:c4:0f:c9:2d: eb:ee:29:a8:8e:6b:4a:54:2c:8f:6a:c4:e1:0c:3c:ce:81:db: 00:11:9d:25:aa:8f:ce:0d:07:dc:3b:68:a9:39:30:92:91:13: 2d:17:1d:05:de:8a:67:f9:93:a3:50:d7:95:49:c5:51:9d:3c: fa:5b:05:2f:dc:2a:0c:30:58:7b:f9:35:1b:a6:75:82:ce:aa: 00:88:f9:92:6b:7c:69:a2:fc:95:fc:34:4a:c9:23:8f:c3:10: ef:24:8f:38 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICeTIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwOTAxMTIyMTA1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYxZDczMC0yNjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsuX11V5ECfdOn3GeNHGNdHAOkKjEko3m21jgbmh5kNxiyAMYqSm2T/alKZrx MPzUdo9qMmUgU5JshieaRDIj9CRq1AoeMiDblV16XeOiXNuKcCJwIVrXxcsXEDkV dZtqbsRvxAYUg7uiiAq+LaMPb8WBkT95XnV3tYiwek0R4oeo6G2EO/lRiDUJSgok 0FCOi+fCg24/nDHfu/gSEbuaO2G0LlVW8ZUdtHdMIXq9h5dShQiWC9iNZPmeJLwG 7ZPjlt+/I+DOwhfTZeAH4kColrcr5MJ4qQwJgjmNQIS0wVVDvkwJeZ6Tn+a0j67E 2nDB3fcK6WAWAqrSSnqh8arsIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFA8d2gDM 5iDln1EhJfHYGjJcB4JOMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMDUyQjFENzY0 OEMyMTFFRThBQUIxMTYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnp5gwDQYJKoZIhvcNAQELBQADggEBAEttsEIeTo8pNv/M kkXIi0H3xzZWcNkvazvGXjgDj0SecMOyf7WrxC/z1HWygefCdq1JNbX9KXVRiTIX hWZz4lQKK6NrpBZC0CBy8CknWdPRhUFAr5mAPi8czl8S7Tk97b6w0nLpquBQUwJ+ HExuAzFBKB+SSqNQ2DE3zFTid9YE7+fc5skyPUekBhq7ATrtz3QOJXQLXkAtUQ/K /YgRxA/JLevuKaiOa0pULI9qxOEMPM6B2wARnSWqj84NB9w7aKk5MJKREy0XHQXe imf5k6NQ15VJxVGdPPpbBS/cKgwwWHv5NRumdYLOqgCI+ZJrfGmi/JX8NErJI4/D EO8kjzg= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:25 2024 by rpki-client on console-ams.rpki-client.org