$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/074BDC5EB3F311ECBCB2F130C4F9AE02.roa File: 074BDC5EB3F311ECBCB2F130C4F9AE02.roa (raw, json) Hash identifier: Q6jtzeFP/DuIR55efEP3rpN9Dr0RWxHM6eQdBWgyNEo= Subject key identifier: 5C:03:1E:39:E6:01:01:5A:EE:2F:79:D8:62:A7:EC:21:A0:64:94:0F Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6C97 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/074BDC5EB3F311ECBCB2F130C4F9AE02.roa Signing time: Wed 10 May 2023 16:25:16 +0000 ROA not before: Wed 10 May 2023 16:25:16 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136659 IP address blocks: 103.122.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27799 (0x6c97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:25:16 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc56c-8131 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:26:9b:f5:3b:e1:79:9f:18:b9:c5:c7:01:e6: b5:68:e3:b4:2a:b2:a5:e1:5f:82:e4:d6:48:c7:ce: 1a:d2:11:bb:cf:33:69:4e:fd:09:fb:8b:62:5e:dc: db:3d:f3:64:13:4c:ce:3a:8e:ae:aa:b2:6e:f2:95: 54:43:77:c8:e8:bc:d7:42:2d:60:42:b7:4f:b0:78: ce:99:df:94:34:23:dd:46:89:f1:e0:7e:e0:ca:63: 54:87:f5:f0:aa:f2:dd:ac:6f:3a:09:cc:63:bf:bb: f8:ac:3b:a4:8f:5a:a2:0b:08:8a:d0:54:97:d4:2e: df:79:8c:f8:b3:b9:4b:67:72:43:c8:f8:ef:e6:fc: 93:4b:95:8a:d4:47:5a:23:15:bb:bb:06:5c:40:00: 67:91:fb:23:a4:51:ba:a9:d2:a8:dc:86:62:e7:2f: da:b2:7d:63:6b:19:14:34:fc:8f:2a:14:92:14:cc: 30:82:02:45:cd:42:bc:1e:41:89:b3:41:7b:12:a6: 72:18:f1:86:b8:37:99:74:b9:7d:28:bb:3e:c4:35: 42:82:f7:7d:b6:ed:99:fa:0c:42:63:f2:11:69:f5: 75:8f:9a:17:3e:ab:5a:37:14:cb:e7:c4:d3:9d:c3: e6:91:c0:14:85:79:04:d7:81:b8:7d:02:e2:d3:2d: e8:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:03:1E:39:E6:01:01:5A:EE:2F:79:D8:62:A7:EC:21:A0:64:94:0F X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/074BDC5EB3F311ECBCB2F130C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.122.128.0/22 Signature Algorithm: sha256WithRSAEncryption 48:37:af:9f:00:77:ea:79:66:54:df:26:fd:10:8d:49:c9:1f: a3:d4:ca:ab:75:48:3c:fb:de:b8:a3:2d:f2:f7:ef:b7:e5:83: b1:2a:ea:59:5c:08:70:83:70:4a:0a:c2:a0:c1:b8:38:bc:1d: ed:2b:05:dc:0a:03:b9:1a:30:7c:b6:8a:e0:dd:54:55:88:b3: db:9f:9b:be:5a:7a:12:b3:8d:98:04:1c:73:99:b3:4f:a4:95: 29:9b:51:2e:e1:d3:db:49:1d:cb:46:78:98:f3:04:6a:76:83: 8e:68:d3:31:e9:ad:e6:90:e1:74:ed:58:6f:8e:bf:7c:a8:fb: 6f:10:4c:a4:cc:0f:90:fb:af:35:bc:c8:1b:d8:db:8b:06:7d: 39:09:ce:9f:70:cc:19:aa:4c:b8:53:9c:93:5c:c8:59:8e:81: 84:82:6d:82:06:e5:17:c6:ca:81:25:7b:74:e8:da:40:1c:c1: eb:d3:77:49:53:bc:64:99:be:ef:6c:45:08:e0:73:09:73:58: 64:26:ee:d7:c5:0a:34:71:25:0c:d6:71:8c:a1:fe:02:bc:4a: 6a:97:69:2d:f3:6c:d5:64:52:03:d0:5c:91:ba:aa:ad:8f:f1: 3f:d4:8d:fb:65:c7:f9:b2:5a:49:52:ad:15:81:2a:68:af:de: 8f:e2:5c:7e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNTE2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzU2Yy04MTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSab9TvheZ8YucXHAea1aOO0KrKl4V+C5NZIx84a0hG7zzNpTv0J+4tiXtzb PfNkE0zOOo6uqrJu8pVUQ3fI6LzXQi1gQrdPsHjOmd+UNCPdRonx4H7gymNUh/Xw qvLdrG86Ccxjv7v4rDukj1qiCwiK0FSX1C7feYz4s7lLZ3JDyPjv5vyTS5WK1Eda IxW7uwZcQABnkfsjpFG6qdKo3IZi5y/asn1jaxkUNPyPKhSSFMwwggJFzUK8HkGJ s0F7EqZyGPGGuDeZdLl9KLs+xDVCgvd9tu2Z+gxCY/IRafV1j5oXPqtaNxTL58TT ncPmkcAUhXkE14G4fQLi0y3oBQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFwDHjnm AQFa7i952GKn7CGgZJQPMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMDc0QkRDNUVC M0YzMTFFQ0JDQjJGMTMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJneoAwDQYJKoZIhvcNAQELBQADggEBAEg3r58Ad+p5ZlTf Jv0QjUnJH6PUyqt1SDz73rijLfL377flg7Eq6llcCHCDcEoKwqDBuDi8He0rBdwK A7kaMHy2iuDdVFWIs9ufm75aehKzjZgEHHOZs0+klSmbUS7h09tJHctGeJjzBGp2 g45o0zHpreaQ4XTtWG+Ov3yo+28QTKTMD5D7rzW8yBvY24sGfTkJzp9wzBmqTLhT nJNcyFmOgYSCbYIG5RfGyoEle3To2kAcwevTd0lTvGSZvu9sRQjgcwlzWGQm7tfF CjRxJQzWcYyh/gK8SmqXaS3zbNVkUgPQXJG6qq2P8T/Ujftlx/myWklSrRWBKmiv 3o/iXH4= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:26 2024 by rpki-client on console-ams.rpki-client.org