$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/10BD3660FDAF11ECAC854871C4F9AE02.roa File: 10BD3660FDAF11ECAC854871C4F9AE02.roa (raw, json) Hash identifier: dUn2fthG6s5eaUcFn+18ziBNSCTDEDljwx59cDMkJf4= Subject key identifier: 39:39:00:49:21:A3:58:57:49:BA:F7:1D:C8:E0:5F:87:85:02:69:49 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7075 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/10BD3660FDAF11ECAC854871C4F9AE02.roa Signing time: Wed 10 May 2023 16:43:41 +0000 ROA not before: Wed 10 May 2023 16:43:41 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 149554 IP address blocks: 103.189.48.0/24 maxlen: 24 2400:d920::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28789 (0x7075) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:43:41 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc9bc-80fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ee:bd:0f:42:67:92:f8:a8:2b:0d:02:4c:8f: e6:c5:94:ab:14:50:55:96:a1:57:6e:35:5c:59:00: e0:0a:c7:40:63:ad:84:8b:df:66:e5:b1:02:d3:07: 18:3c:a8:64:40:b0:77:64:aa:b1:37:8b:64:4e:fb: d6:bb:58:01:f6:21:0d:5b:69:37:09:03:7e:9f:ac: b6:02:0e:dc:5e:4a:bc:ed:07:e4:b7:a4:f2:20:43: 9c:8f:d8:6c:f5:80:ed:10:0f:cb:90:e0:21:2e:ab: 3e:5b:8e:f8:32:09:90:d7:f9:94:71:71:46:90:e5: e6:97:79:a4:8e:ca:eb:fc:f2:e5:8b:b7:96:40:c9: f9:cf:a5:87:f5:94:9a:8c:02:0a:3f:5b:77:08:04: 48:b3:cc:b9:f6:8f:a2:dc:60:58:08:f0:10:7f:b0: 61:52:c7:78:61:4e:70:b8:03:ae:e8:c5:af:16:42: e4:f3:3d:97:25:e7:b0:b0:4c:74:64:94:36:cc:cb: 87:33:7e:49:c7:40:92:2d:16:62:95:78:20:63:eb: 9c:27:4b:00:5f:9e:03:34:b1:41:99:fb:ca:c3:5c: ad:f9:6d:4b:e1:71:a9:44:29:b0:2a:02:d8:da:26: 5b:c0:59:a1:8f:c0:6f:b8:61:3a:93:f8:ec:1e:44: ae:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:39:00:49:21:A3:58:57:49:BA:F7:1D:C8:E0:5F:87:85:02:69:49 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/10BD3660FDAF11ECAC854871C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.48.0/24 IPv6: 2400:d920::/32 Signature Algorithm: sha256WithRSAEncryption 43:cb:ec:16:49:34:9d:6b:ab:54:2d:6b:88:71:26:8f:96:91: 14:06:06:26:6e:af:3d:8b:9e:f3:28:2f:30:b6:9b:0c:27:c4: ca:0c:a0:14:7a:1b:88:4b:5f:74:b9:ee:14:ae:59:6b:21:27: e5:d9:4f:43:a3:25:03:da:e3:1b:b6:f7:6e:9c:c5:47:0f:6e: 50:f8:b5:65:b8:b6:57:7e:ce:d7:20:e1:ae:08:7e:08:ed:bd: b8:1f:93:c1:c7:99:5e:66:f2:e8:90:46:89:e0:98:3c:c2:8f: e3:18:56:5e:7e:50:0f:52:a9:16:ce:11:82:fc:e0:30:8f:76: 5a:64:db:ea:27:96:da:74:56:d8:23:c6:d0:8c:43:d1:a1:a6: 70:28:f6:42:60:0e:74:09:f5:0a:e7:f3:32:07:57:d0:de:3c: a4:88:c3:00:88:f9:a1:e0:f9:9e:78:42:0b:c9:96:92:f2:56: 33:41:56:5f:c8:83:5d:bd:71:a9:a7:8c:f1:3a:0e:5a:e8:eb: 28:98:b7:be:30:71:31:00:c0:0c:24:7a:88:6f:8b:7b:b4:c2: c5:31:45:18:a9:21:36:ca:09:2c:2f:87:77:16:e6:f9:31:d4: 44:2e:14:40:cf:23:e8:ef:88:00:00:2f:28:18:61:71:35:1e: a8:32:d5:a0 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICcHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0MzQxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzliYy04MGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAye69D0JnkvioKw0CTI/mxZSrFFBVlqFXbjVcWQDgCsdAY62Ei99m5bEC0wcY PKhkQLB3ZKqxN4tkTvvWu1gB9iENW2k3CQN+n6y2Ag7cXkq87Qfkt6TyIEOcj9hs 9YDtEA/LkOAhLqs+W474MgmQ1/mUcXFGkOXml3mkjsrr/PLli7eWQMn5z6WH9ZSa jAIKP1t3CARIs8y59o+i3GBYCPAQf7BhUsd4YU5wuAOu6MWvFkLk8z2XJeewsEx0 ZJQ2zMuHM35Jx0CSLRZilXggY+ucJ0sAX54DNLFBmfvKw1yt+W1L4XGpRCmwKgLY 2iZbwFmhj8BvuGE6k/jsHkSuLwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFDk5AEkh o1hXSbr3HcjgX4eFAmlJMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMTBCRDM2NjBG REFGMTFFQ0FDODU0ODcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABnvTAwDQQCAAIwBwMFACQA2SAwDQYJKoZIhvcNAQELBQAD ggEBAEPL7BZJNJ1rq1Qta4hxJo+WkRQGBiZurz2LnvMoLzC2mwwnxMoMoBR6G4hL X3S57hSuWWshJ+XZT0OjJQPa4xu2926cxUcPblD4tWW4tld+ztcg4a4Ifgjtvbgf k8HHmV5m8uiQRongmDzCj+MYVl5+UA9SqRbOEYL84DCPdlpk2+onltp0VtgjxtCM Q9GhpnAo9kJgDnQJ9Qrn8zIHV9DePKSIwwCI+aHg+Z54QgvJlpLyVjNBVl/Ig129 camnjPE6Dlro6yiYt74wcTEAwAwkeohvi3u0wsUxRRipITbKCSwvh3cW5vkx1EQu FEDPI+jviAAALygYYXE1Hqgy1aA= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:26 2024 by rpki-client on console-ams.rpki-client.org