$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0D7F39D8E6C511EA8A7F365CC4F9AE02.roa File: 0D7F39D8E6C511EA8A7F365CC4F9AE02.roa (raw, json) Hash identifier: IWpYkTvMhMRxt/YWSc/VBX4Lk5MceBNE4l3ijUiAtMs= Subject key identifier: D7:DD:75:DA:C2:81:EA:8D:03:3E:3E:C3:09:B1:9A:E7:13:65:7F:D2 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6B51 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0D7F39D8E6C511EA8A7F365CC4F9AE02.roa Signing time: Wed 10 May 2023 16:19:05 +0000 ROA not before: Wed 10 May 2023 16:19:05 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134872 IP address blocks: 103.207.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27473 (0x6b51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:19:05 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc3f9-5bc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:eb:6c:70:2b:c4:ba:4e:6e:eb:2b:ba:87:76: 02:79:21:7d:31:47:39:9f:46:3e:50:e9:40:6e:72: bd:b9:53:43:f5:3a:e2:bc:07:48:78:e6:d8:09:67: 58:e1:f6:82:f2:2f:8b:3a:cc:fc:43:85:c7:40:54: 18:a5:b5:06:b5:a8:d5:94:98:65:42:03:f0:60:b9: 78:a0:10:68:f2:8e:23:c3:46:64:4e:44:39:92:09: 1c:5d:23:49:c9:22:b3:67:52:85:ee:0d:01:fd:1a: 1e:da:4e:ab:ca:fd:aa:9c:94:c4:6e:8c:15:24:99: 54:62:d9:57:f8:72:11:57:d2:27:c7:83:41:03:b5: aa:05:b7:0e:0d:21:3c:56:89:ec:14:f9:d5:4a:f0: 6c:76:de:85:fc:c8:44:99:c3:e8:fa:7c:52:f9:0f: 11:28:d4:28:40:c9:c6:fe:55:f6:a1:6a:8e:8d:40: 54:6b:1a:fd:d0:e0:47:02:78:ca:73:59:1c:bf:19: 9f:9b:0d:dd:af:73:4e:f7:27:6f:67:26:e3:cf:1a: 35:0d:ce:da:42:f1:17:03:a6:4a:f5:ca:1b:c5:c0: a4:9e:11:23:70:ec:06:23:bd:d8:f0:e8:32:f4:b2: 01:66:95:12:71:dd:7a:a1:64:2d:4b:12:bb:25:d5: fd:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:DD:75:DA:C2:81:EA:8D:03:3E:3E:C3:09:B1:9A:E7:13:65:7F:D2 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0D7F39D8E6C511EA8A7F365CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.207.172.0/22 Signature Algorithm: sha256WithRSAEncryption 6f:0c:22:61:b1:10:e3:de:f4:eb:09:79:cb:5c:91:82:14:30: b7:b4:15:9b:02:b1:d2:f8:a3:9c:09:3e:f8:50:34:a4:44:3b: ae:63:b8:5a:11:27:f7:03:87:55:7e:32:4c:7e:f0:ea:e8:ad: 5d:fb:e3:87:7f:fb:69:94:b7:c8:46:54:97:0a:43:19:c4:af: b2:94:c8:4e:70:96:d4:af:88:2b:7f:f1:05:b6:3a:7f:c3:c5: 72:ca:d7:fa:1d:12:b5:c0:b8:c8:bc:5f:88:b3:ad:ff:ac:9b: cd:94:3f:fe:5d:e9:58:e1:d5:06:de:08:14:60:24:55:6d:6b: 70:41:65:39:ee:40:c6:4e:4a:ef:34:2c:74:bb:54:67:2d:20: e5:cf:86:de:fb:1a:74:c7:c6:1a:51:a7:3f:f6:69:f0:26:7d: d2:f6:db:e4:e3:3c:16:19:0b:7d:5e:89:d6:18:1e:80:ca:e0: 26:ce:39:e0:da:aa:37:6c:f2:7e:30:6f:c4:21:99:c1:d8:29: dd:35:91:25:7b:2f:86:56:6c:ae:73:dd:d4:34:45:e0:07:e3: c8:5a:ba:33:3c:7c:6f:5c:d9:d0:6d:3a:ad:e7:1f:80:89:ae: 09:49:36:9d:84:95:fc:d4:de:2d:69:16:07:39:1e:a2:63:42: b8:f9:36:9c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICa1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxOTA1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzNmOS01YmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOtscCvEuk5u6yu6h3YCeSF9MUc5n0Y+UOlAbnK9uVND9TrivAdIeObYCWdY 4faC8i+LOsz8Q4XHQFQYpbUGtajVlJhlQgPwYLl4oBBo8o4jw0ZkTkQ5kgkcXSNJ ySKzZ1KF7g0B/Roe2k6ryv2qnJTEbowVJJlUYtlX+HIRV9Inx4NBA7WqBbcODSE8 VonsFPnVSvBsdt6F/MhEmcPo+nxS+Q8RKNQoQMnG/lX2oWqOjUBUaxr90OBHAnjK c1kcvxmfmw3dr3NO9ydvZybjzxo1Dc7aQvEXA6ZK9cobxcCknhEjcOwGI73Y8Ogy 9LIBZpUScd16oWQtSxK7JdX9rwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNfdddrC geqNAz4+wwmxmucTZX/SMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMEQ3RjM5RDhF NkM1MTFFQThBN0YzNjVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnz6wwDQYJKoZIhvcNAQELBQADggEBAG8MImGxEOPe9OsJ ectckYIUMLe0FZsCsdL4o5wJPvhQNKREO65juFoRJ/cDh1V+Mkx+8OrorV3744d/ +2mUt8hGVJcKQxnEr7KUyE5wltSviCt/8QW2On/DxXLK1/odErXAuMi8X4izrf+s m82UP/5d6Vjh1QbeCBRgJFVta3BBZTnuQMZOSu80LHS7VGctIOXPht77GnTHxhpR pz/2afAmfdL22+TjPBYZC31eidYYHoDK4CbOOeDaqjds8n4wb8QhmcHYKd01kSV7 L4ZWbK5z3dQ0ReAH48haujM8fG9c2dBtOq3nH4CJrglJNp2ElfzU3i1pFgc5HqJj Qrj5Npw= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:26 2024 by rpki-client on console-ams.rpki-client.org