$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/110CAD0291FA11EB890A510AC4F9AE02.roa File: 110CAD0291FA11EB890A510AC4F9AE02.roa (raw, json) Hash identifier: J8LbiEB+DC6IpPf9B7eXqTSLUtX6+2Es17ZL7VA3oFA= Subject key identifier: D9:42:60:87:27:CA:3E:5E:D4:D6:FA:BE:D7:12:B7:16:49:75:9A:29 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 71CB Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/110CAD0291FA11EB890A510AC4F9AE02.roa Signing time: Wed 10 May 2023 16:49:59 +0000 ROA not before: Wed 10 May 2023 16:49:59 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 59163 IP address blocks: 45.127.224.0/22 maxlen: 24 103.196.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29131 (0x71cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:49:59 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bcb37-f24f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:54:38:10:d4:41:6d:d3:0f:e9:c1:76:2d:b5: a0:c1:24:7e:5c:14:f8:cf:cf:58:fe:42:ce:41:5d: a8:50:b8:f7:ae:3b:c4:61:3d:3c:55:e6:77:7f:5d: 81:4c:b7:55:17:24:7c:57:16:03:48:2c:cd:be:05: 3b:c1:e1:fb:f4:86:36:d1:90:62:1d:b4:53:51:73: d8:a0:26:85:d5:bd:d5:e3:45:c2:9d:e5:bd:08:4d: 2c:b0:99:ff:f3:ab:f6:6b:41:82:76:e6:bf:92:91: c6:da:37:32:d6:c6:81:3c:69:91:dc:df:ee:46:78: 93:7f:ca:ef:8f:ce:6d:94:5c:55:8d:0f:bc:87:a8: 7e:fe:47:37:de:93:c6:3f:37:da:62:2c:04:99:12: f2:ca:3a:5a:fb:6d:e3:46:2c:87:8e:13:0d:80:7c: 4b:be:20:5d:66:64:91:24:88:ca:66:17:5c:97:dd: 5c:25:32:90:58:bb:b2:dd:9f:09:5e:b2:28:e2:43: f9:3b:d8:4d:01:b3:a6:89:66:6b:11:78:fd:d2:0a: 24:69:bb:b3:d0:aa:df:f3:d8:9a:55:15:d4:e9:8d: 3f:6c:80:08:89:8a:a4:a5:11:42:3c:3a:f5:67:ad: 29:3c:6d:b2:1b:25:30:be:ec:30:a8:9d:3a:98:c7: 83:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:42:60:87:27:CA:3E:5E:D4:D6:FA:BE:D7:12:B7:16:49:75:9A:29 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/110CAD0291FA11EB890A510AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.127.224.0/22 103.196.212.0/22 Signature Algorithm: sha256WithRSAEncryption 9b:11:80:24:ef:2b:4f:37:bf:35:66:22:51:76:d4:ae:0c:2c: 74:cc:65:94:8e:48:89:1e:a0:ae:c5:21:2d:ab:7b:38:9a:7a: 37:c7:76:83:9e:a2:74:ec:76:fe:ac:19:e4:be:b1:1c:83:63: c6:33:c3:a6:8c:5e:03:93:60:72:06:51:f7:54:48:06:a1:a9: 07:ac:fb:75:fc:83:c0:60:35:10:84:38:88:ce:f5:d8:73:a8: 14:49:e0:84:3d:e3:0d:31:53:b0:d4:e7:30:20:e5:70:53:e9: 72:17:39:ab:30:cd:e9:36:26:90:40:ea:85:6f:fb:6d:74:2e: 6a:a3:b0:38:d9:9d:6b:e3:e9:6b:16:ea:34:f0:3a:b3:41:96: cd:11:c7:8b:72:10:9b:d9:e5:91:d3:5f:dd:dc:a6:61:5b:77: 98:99:83:e1:75:de:04:ff:46:12:55:5d:d8:42:d4:62:a7:c1: 54:18:1b:60:33:e0:71:82:46:c5:0a:36:ad:a0:08:ed:79:8b: aa:78:bc:8b:56:ba:40:01:0f:db:9b:f4:7d:62:a1:3f:ec:16: 5c:99:97:ac:01:54:6b:a3:b3:4b:1c:08:91:72:34:06:58:e4: 93:bc:a1:c6:ee:d5:94:8e:ca:fe:42:97:1a:00:e9:b1:b5:32: 85:43:95:3f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICccswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0OTU5WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViY2IzNy1mMjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoFQ4ENRBbdMP6cF2LbWgwSR+XBT4z89Y/kLOQV2oULj3rjvEYT08VeZ3f12B TLdVFyR8VxYDSCzNvgU7weH79IY20ZBiHbRTUXPYoCaF1b3V40XCneW9CE0ssJn/ 86v2a0GCdua/kpHG2jcy1saBPGmR3N/uRniTf8rvj85tlFxVjQ+8h6h+/kc33pPG PzfaYiwEmRLyyjpa+23jRiyHjhMNgHxLviBdZmSRJIjKZhdcl91cJTKQWLuy3Z8J XrIo4kP5O9hNAbOmiWZrEXj90gokabuz0Krf89iaVRXU6Y0/bIAIiYqkpRFCPDr1 Z60pPG2yGyUwvuwwqJ06mMeD4wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNlCYIcn yj5e1Nb6vtcStxZJdZopMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMTEwQ0FEMDI5 MUZBMTFFQjg5MEE1MTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAItf+ADBAJnxNQwDQYJKoZIhvcNAQELBQADggEBAJsRgCTv K083vzVmIlF21K4MLHTMZZSOSIkeoK7FIS2reziaejfHdoOeonTsdv6sGeS+sRyD Y8Yzw6aMXgOTYHIGUfdUSAahqQes+3X8g8BgNRCEOIjO9dhzqBRJ4IQ94w0xU7DU 5zAg5XBT6XIXOaswzek2JpBA6oVv+210LmqjsDjZnWvj6WsW6jTwOrNBls0Rx4ty EJvZ5ZHTX93cpmFbd5iZg+F13gT/RhJVXdhC1GKnwVQYG2Az4HGCRsUKNq2gCO15 i6p4vItWukABD9ub9H1ioT/sFlyZl6wBVGujs0scCJFyNAZY5JO8ocbu1ZSOyv5C lxoA6bG1MoVDlT8= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:26 2024 by rpki-client on console-ams.rpki-client.org