$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0FCDE4EC2FDF11EBBBFD7979C4F9AE02.roa File: 0FCDE4EC2FDF11EBBBFD7979C4F9AE02.roa (raw, json) Hash identifier: WPaGXy0EXgPCxKJ11RMYbuGS8mkkqHbPG8T2lmAZejk= Subject key identifier: ED:11:2A:A0:72:88:37:7C:13:1F:F7:8D:75:D4:98:BA:D6:2B:14:A2 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6A1F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0FCDE4EC2FDF11EBBBFD7979C4F9AE02.roa Signing time: Wed 10 May 2023 16:13:12 +0000 ROA not before: Wed 10 May 2023 16:13:12 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 132926 IP address blocks: 103.157.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27167 (0x6a1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:13:12 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc298-4d68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:76:51:82:79:e1:f0:51:45:db:0a:87:fa:34: 35:66:06:58:ea:ee:53:2b:86:b0:66:1b:ef:cb:4d: e6:1d:52:7b:cc:23:19:bc:31:18:db:fe:1b:a9:76: ea:b2:bc:71:49:0a:e8:d5:05:a6:81:5a:61:3c:c2: d7:6b:e4:8f:07:7b:46:6f:12:df:08:cf:73:20:df: 2c:0a:f0:0c:a9:8e:c4:cc:91:5b:d8:bd:c9:ff:4b: cb:01:cc:00:6d:3f:e6:8f:c6:51:b7:fc:81:48:3f: 2f:e2:9f:aa:41:b5:ea:b3:f3:e5:f0:e7:fb:62:78: 7d:81:7a:ab:1b:4d:29:39:05:5e:43:30:18:22:0e: 01:61:1f:3b:c7:cf:e2:ae:b5:52:4d:d1:36:02:ef: 8a:27:1f:0e:be:d0:60:aa:a2:41:d0:9f:67:91:04: af:04:6b:88:1c:76:a6:5e:01:59:df:e5:03:e1:2b: 3d:b4:75:24:47:0e:b7:1e:a7:0e:9b:ea:9b:06:19: f4:8f:6f:20:a5:44:87:2e:aa:cd:a0:5d:8e:e3:e9: 03:d6:95:51:fb:f0:ed:0e:09:b3:de:41:2b:15:3b: 5c:14:b3:18:75:1a:24:ec:2e:ef:1e:cd:2e:8c:da: 20:ae:33:86:13:41:e9:ab:90:55:a6:82:ab:30:c1: 5c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:11:2A:A0:72:88:37:7C:13:1F:F7:8D:75:D4:98:BA:D6:2B:14:A2 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0FCDE4EC2FDF11EBBBFD7979C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.157.124.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:96:56:8e:07:0f:a6:66:dd:3a:e5:75:7a:38:9e:da:0d:66: 3b:d8:59:99:46:b3:b8:6f:fa:b1:16:01:a3:ee:16:43:e5:41: ed:eb:fe:30:ec:40:a9:38:ec:b0:6e:d3:d2:35:08:d8:16:d5: 01:77:58:aa:3b:28:a2:29:1f:46:5a:6c:e8:6f:b8:54:60:c6: 93:b7:60:cb:13:f5:7e:45:ef:bb:a7:c3:7a:7b:59:08:8f:a4: 4d:f8:ce:29:28:c0:c5:3d:45:3a:7a:d6:57:cd:13:d6:b3:e1: d7:71:2b:bf:45:20:73:24:bf:fe:c4:ff:4f:fd:fe:db:25:1d: 8e:cc:1a:55:ac:e8:fa:7c:b0:d6:93:cd:f4:00:31:47:9c:82: 00:d3:d5:83:a4:f7:f5:5c:b1:51:a4:85:bd:3d:f7:9d:6f:6c: b7:84:ec:bc:f8:4a:5e:80:d6:c9:c9:f5:ea:45:19:f3:c7:94: 9c:6d:e4:51:ad:3d:fb:dc:e6:7e:99:62:76:10:87:1f:ab:6c: 3b:dc:5d:b6:81:2a:f9:ce:28:9b:f3:9f:b7:b8:c2:d3:66:c2: 7c:6c:15:ea:22:84:d0:46:a4:4f:d8:75:15:05:62:e9:5b:92: 4d:43:b7:dd:05:5d:47:ce:10:97:72:33:1b:f8:0a:94:23:b8: 04:0d:d4:69 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICah8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxMzEyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzI5OC00ZDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7HZRgnnh8FFF2wqH+jQ1ZgZY6u5TK4awZhvvy03mHVJ7zCMZvDEY2/4bqXbq srxxSQro1QWmgVphPMLXa+SPB3tGbxLfCM9zIN8sCvAMqY7EzJFb2L3J/0vLAcwA bT/mj8ZRt/yBSD8v4p+qQbXqs/Pl8Of7Ynh9gXqrG00pOQVeQzAYIg4BYR87x8/i rrVSTdE2Au+KJx8OvtBgqqJB0J9nkQSvBGuIHHamXgFZ3+UD4Ss9tHUkRw63HqcO m+qbBhn0j28gpUSHLqrNoF2O4+kD1pVR+/DtDgmz3kErFTtcFLMYdRok7C7vHs0u jNogrjOGE0Hpq5BVpoKrMMFcUwIDAQABo4IClTCCApEwHQYDVR0OBBYEFO0RKqBy iDd8Ex/3jXXUmLrWKxSiMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMEZDREU0RUMy RkRGMTFFQkJCRkQ3OTc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnnXwwDQYJKoZIhvcNAQELBQADggEBACuWVo4HD6Zm3Trl dXo4ntoNZjvYWZlGs7hv+rEWAaPuFkPlQe3r/jDsQKk47LBu09I1CNgW1QF3WKo7 KKIpH0ZabOhvuFRgxpO3YMsT9X5F77unw3p7WQiPpE34zikowMU9RTp61lfNE9az 4ddxK79FIHMkv/7E/0/9/tslHY7MGlWs6Pp8sNaTzfQAMUecggDT1YOk9/VcsVGk hb09951vbLeE7Lz4Sl6A1snJ9epFGfPHlJxt5FGtPfvc5n6ZYnYQhx+rbDvcXbaB KvnOKJvzn7e4wtNmwnxsFeoihNBGpE/YdRUFYulbkk1Dt90FXUfOEJdyMxv4CpQj uAQN1Gk= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:26 2024 by rpki-client on console-ams.rpki-client.org