$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/069EADD2A7DC11EBB880212EC4F9AE02.roa File: 069EADD2A7DC11EBB880212EC4F9AE02.roa (raw, json) Hash identifier: 6gsSMmFqqJ7xZ8ueG8LOn3uXPfrD/X3rgP7Rpyq6D6o= Subject key identifier: 53:62:7B:C9:48:CB:F1:D1:A4:CE:AF:71:30:E2:80:9C:9A:E7:3D:87 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6C48 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/069EADD2A7DC11EBB880212EC4F9AE02.roa Signing time: Wed 10 May 2023 16:23:47 +0000 ROA not before: Wed 10 May 2023 16:23:47 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136291 IP address blocks: 103.86.26.0/24 maxlen: 24 103.94.204.0/23 maxlen: 24 103.94.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27720 (0x6c48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:23:47 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc512-0c0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:e9:96:a4:4e:06:79:34:a8:0f:c4:5f:80:67: 7c:95:9e:2e:b4:7a:fe:70:11:cc:7a:4e:1a:ba:2b: d9:b9:0d:49:e8:7b:cb:90:06:48:f8:bc:13:aa:96: e8:e5:c0:25:28:6b:2a:a4:31:85:9d:7e:c1:b2:42: ac:fe:50:72:99:2e:71:a5:57:44:dd:99:29:aa:f4: e3:3d:94:47:03:16:3c:60:95:1c:20:2d:6c:6a:6b: 1f:48:b7:b3:63:a1:b4:91:85:3a:90:90:fc:9f:ee: 97:2d:b9:eb:bf:5c:f1:bf:27:02:f7:a2:11:95:ff: 20:70:f0:f2:10:9e:e5:8f:1b:60:3e:86:d0:da:f6: 58:3b:55:f7:cb:ba:9b:1d:19:eb:d2:55:9f:07:c9: 89:e8:02:d0:28:b0:ef:57:88:9c:70:27:b9:de:c6: 0e:e9:ce:f5:13:13:1d:86:b0:58:1d:77:a3:a9:79: d7:d3:e9:1b:e1:aa:64:f9:db:7d:5d:f1:f2:12:be: 7c:00:a9:de:9c:f5:18:53:d3:b1:d8:96:76:e3:e1: ca:c3:ee:07:21:e9:07:c4:d0:69:4f:d1:77:f7:24: 6d:6c:5b:19:80:82:95:3d:44:02:ff:da:65:8a:c7: 1b:6b:91:b8:02:54:20:db:4a:47:74:15:35:e5:48: c6:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:62:7B:C9:48:CB:F1:D1:A4:CE:AF:71:30:E2:80:9C:9A:E7:3D:87 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/069EADD2A7DC11EBB880212EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.86.26.0/24 103.94.204.0-103.94.206.255 Signature Algorithm: sha256WithRSAEncryption 58:2c:1c:d4:92:98:b5:89:94:43:ec:95:80:e4:f3:49:d1:ae: 2d:41:47:05:e9:80:ed:83:cb:36:03:b6:b8:06:3b:e2:61:f9: dd:b6:b6:43:ee:e5:90:43:f6:2a:89:89:c7:e8:1b:6d:14:1e: cf:a3:ad:0b:1b:20:46:b4:29:fa:d5:24:44:a7:b2:b5:d9:f0: 23:94:f4:8c:af:25:34:bb:fe:8c:d4:96:e2:64:a3:32:23:35: df:72:ee:b0:9d:28:19:9b:5d:33:93:21:d7:ae:fc:79:0f:9d: ac:1c:b2:65:7b:92:a6:49:b8:15:e9:0f:08:0d:cb:04:5a:c0: b1:83:4b:90:40:db:9f:94:dd:89:34:d6:4a:78:18:23:1c:12: 8f:b9:a5:6f:bc:3a:28:34:6d:3c:52:69:0c:fb:08:c4:68:ea: 83:16:4b:52:dd:5d:70:84:f8:ed:01:11:50:ac:67:1d:cb:e9: 3d:2f:7a:02:33:da:c3:fe:60:ab:00:a6:e2:b1:1a:5a:14:4f: db:e4:f1:dd:86:44:96:a5:d3:8c:cc:53:24:5c:7b:ac:ef:5b: 2f:13:02:28:32:58:d6:ac:6e:7c:98:21:a1:11:57:e5:da:2a: 37:e6:dc:1b:e6:b4:ad:af:1b:20:7f:84:98:8f:ad:b0:f6:02: 8c:b4:c2:d8 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICbEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyMzQ3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzUxMi0wYzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8emWpE4GeTSoD8RfgGd8lZ4utHr+cBHMek4auivZuQ1J6HvLkAZI+LwTqpbo 5cAlKGsqpDGFnX7BskKs/lBymS5xpVdE3ZkpqvTjPZRHAxY8YJUcIC1samsfSLez Y6G0kYU6kJD8n+6XLbnrv1zxvycC96IRlf8gcPDyEJ7ljxtgPobQ2vZYO1X3y7qb HRnr0lWfB8mJ6ALQKLDvV4iccCe53sYO6c71ExMdhrBYHXejqXnX0+kb4apk+dt9 XfHyEr58AKnenPUYU9Ox2JZ24+HKw+4HIekHxNBpT9F39yRtbFsZgIKVPUQC/9pl iscba5G4AlQg20pHdBU15UjGlQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFFNie8lI y/HRpM6vcTDigJya5z2HMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMDY5RUFERDJB N0RDMTFFQkI4ODAyMTJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBABnVhowDAMEAmdezAMEAGdezjANBgkqhkiG9w0BAQsFAAOC AQEAWCwc1JKYtYmUQ+yVgOTzSdGuLUFHBemA7YPLNgO2uAY74mH53ba2Q+7lkEP2 KomJx+gbbRQez6OtCxsgRrQp+tUkRKeytdnwI5T0jK8lNLv+jNSW4mSjMiM133Lu sJ0oGZtdM5Mh1678eQ+drByyZXuSpkm4FekPCA3LBFrAsYNLkEDbn5TdiTTWSngY IxwSj7mlb7w6KDRtPFJpDPsIxGjqgxZLUt1dcIT47QERUKxnHcvpPS96AjPaw/5g qwCm4rEaWhRP2+Tx3YZElqXTjMxTJFx7rO9bLxMCKDJY1qxufJghoRFX5doqN+bc G+a0ra8bIH+EmI+tsPYCjLTC2A== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:25 2024 by rpki-client on console-ams.rpki-client.org