$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/10F08AB6EB6C11EBAC530B2FC4F9AE02.roa File: 10F08AB6EB6C11EBAC530B2FC4F9AE02.roa (raw, json) Hash identifier: 18JZKIEuZ27mmAwnjYjopXOn662vLxs+2qmexXzBi3g= Subject key identifier: 93:E6:67:85:3F:F7:D6:03:DC:52:C0:25:7C:5A:8D:56:58:2D:C6:A7 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6B75 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/10F08AB6EB6C11EBAC530B2FC4F9AE02.roa Signing time: Wed 10 May 2023 16:19:46 +0000 ROA not before: Wed 10 May 2023 16:19:46 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134933 IP address blocks: 115.42.44.0/23 maxlen: 24 2404:b1c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27509 (0x6b75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:19:46 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc422-7438 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d0:fc:4b:ca:cc:4d:ce:86:22:3b:6c:96:bd: c9:83:3b:1b:91:61:6f:52:77:24:04:f5:c1:d0:ac: c6:c2:14:f6:ad:c7:28:cb:cb:dc:82:14:82:41:98: f6:04:84:d1:4d:2d:3c:9c:09:3d:7b:1f:4d:d2:b3: 1f:19:d7:12:19:9c:39:fe:13:cd:4e:a6:05:7b:15: 73:17:9a:63:dd:75:9b:0a:16:ea:98:99:6b:f4:10: cc:32:0f:6d:38:ac:ce:5a:47:a3:ad:37:84:4d:1a: 9e:a2:26:1e:b7:9c:fb:cc:52:f2:28:e4:c2:23:36: a6:f9:d2:20:fb:02:90:6c:c4:76:73:69:08:b9:35: 67:2f:16:44:d7:9a:85:58:e7:fe:2e:0f:11:26:01: ee:5c:6b:a8:50:6c:98:15:0e:6c:3b:76:a3:97:1f: fb:ad:3e:40:fd:ba:04:14:99:8e:8e:23:d7:f8:10: af:4b:37:ab:2c:23:be:ff:d7:23:cd:42:1b:30:b6: 61:ba:ec:18:4b:f1:f1:ba:cd:4b:b9:c3:4a:dd:aa: c8:41:3c:ea:e1:7f:9c:fc:4f:c8:c6:f3:fb:ca:2d: fc:4d:80:0b:90:ca:7c:f4:0b:dc:53:02:01:5e:00: 6a:24:38:77:e9:c0:33:20:90:41:96:2a:f7:fe:9a: 27:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:E6:67:85:3F:F7:D6:03:DC:52:C0:25:7C:5A:8D:56:58:2D:C6:A7 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/10F08AB6EB6C11EBAC530B2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.42.44.0/23 IPv6: 2404:b1c0::/32 Signature Algorithm: sha256WithRSAEncryption 40:84:3b:c7:68:00:7a:f9:46:1d:b9:c3:c3:bf:60:de:7b:81: ee:6c:83:cb:11:e4:36:ff:4e:0c:ea:39:dd:64:af:d6:f9:03: 93:2b:7e:53:0a:5f:32:9f:69:28:1f:c9:b2:31:76:fc:8d:47: d8:65:6b:10:9f:9a:ec:3c:2d:0d:64:38:74:1f:ca:d5:71:41: ae:71:a9:39:3e:e0:dd:a5:ca:f8:3e:d0:e1:80:ed:81:7d:32: b1:0e:86:ea:95:f6:6f:6f:f7:16:a2:08:df:b4:0d:43:04:1b: b0:d0:13:37:1c:7e:0c:fd:ff:13:47:bf:c6:27:d8:fa:5b:62: 87:25:75:a2:e2:c8:a4:e1:70:09:cf:8d:00:ec:4c:93:1f:54: d9:51:a2:8d:cf:f5:8a:5c:46:a5:1d:70:54:be:5a:e9:9a:3c: 08:a8:d4:8b:4e:a8:58:e2:61:33:be:79:43:39:13:f4:aa:96: f9:5c:89:53:b0:1f:91:c0:5f:a4:a8:35:b3:5f:21:89:79:de: 00:49:cc:28:21:a1:4f:f2:35:14:16:d5:59:cb:c0:b3:b2:fb: 79:90:93:f4:f6:5d:82:85:4e:79:eb:c0:5b:5b:b2:85:09:70: 76:a4:c1:9e:97:eb:5d:1f:45:9f:2a:83:fe:a4:dc:61:f8:5b: 52:3f:5e:82 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICa3UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxOTQ2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzQyMi03NDM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo9D8S8rMTc6GIjtslr3JgzsbkWFvUnckBPXB0KzGwhT2rccoy8vcghSCQZj2 BITRTS08nAk9ex9N0rMfGdcSGZw5/hPNTqYFexVzF5pj3XWbChbqmJlr9BDMMg9t OKzOWkejrTeETRqeoiYet5z7zFLyKOTCIzam+dIg+wKQbMR2c2kIuTVnLxZE15qF WOf+Lg8RJgHuXGuoUGyYFQ5sO3ajlx/7rT5A/boEFJmOjiPX+BCvSzerLCO+/9cj zUIbMLZhuuwYS/Hxus1LucNK3arIQTzq4X+c/E/IxvP7yi38TYALkMp89AvcUwIB XgBqJDh36cAzIJBBlir3/ponNQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJPmZ4U/ 99YD3FLAJXxajVZYLcanMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMTBGMDhBQjZF QjZDMTFFQkFDNTMwQjJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFzKiwwDQQCAAIwBwMFACQEscAwDQYJKoZIhvcNAQELBQAD ggEBAECEO8doAHr5Rh25w8O/YN57ge5sg8sR5Db/TgzqOd1kr9b5A5MrflMKXzKf aSgfybIxdvyNR9hlaxCfmuw8LQ1kOHQfytVxQa5xqTk+4N2lyvg+0OGA7YF9MrEO huqV9m9v9xaiCN+0DUMEG7DQEzccfgz9/xNHv8Yn2PpbYocldaLiyKThcAnPjQDs TJMfVNlRoo3P9YpcRqUdcFS+WumaPAio1ItOqFjiYTO+eUM5E/SqlvlciVOwH5HA X6SoNbNfIYl53gBJzCghoU/yNRQW1VnLwLOy+3mQk/T2XYKFTnnrwFtbsoUJcHak wZ6X610fRZ8qg/6k3GH4W1I/XoI= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:26 2024 by rpki-client on console-ams.rpki-client.org