$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/11FC797CB75A11EDBC9DED33C4F9AE02.roa File: 11FC797CB75A11EDBC9DED33C4F9AE02.roa (raw, json) Hash identifier: lhkkH2vdyDxfON3Jcs8hULm6S3zPzEP1u5R3/9SgLIw= Subject key identifier: 55:B6:F4:04:72:4A:77:BA:18:46:13:F0:21:64:4C:0D:0A:DF:04:84 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7056 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/11FC797CB75A11EDBC9DED33C4F9AE02.roa Signing time: Wed 10 May 2023 16:43:08 +0000 ROA not before: Wed 10 May 2023 16:43:08 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 149269 IP address blocks: 103.181.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28758 (0x7056) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:43:08 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc99b-5d55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e9:22:ff:8e:28:2c:8d:7d:2b:06:80:59:45: 69:2f:72:e2:4e:aa:9f:e1:8c:b9:71:a5:10:f2:c6: 54:77:25:fd:23:97:dd:da:bc:fd:53:e8:61:6d:a5: 50:1b:ae:a3:13:e3:1e:66:95:dd:c0:40:61:d1:e3: be:2b:fc:37:29:d0:64:98:17:7d:35:1b:12:52:f6: e4:9a:1a:82:a0:61:68:d6:cd:62:15:4a:ac:5c:78: 17:d2:7c:3c:1c:99:27:a4:98:8a:a9:ee:b6:27:c9: cf:ea:87:8b:99:b7:35:cc:41:7b:06:0c:32:3e:b4: 39:9e:f4:2b:96:92:b9:1f:7c:04:ad:5e:06:3e:c3: ec:48:0d:5a:60:60:8b:30:e0:cf:bc:14:dc:dd:06: dd:cd:d7:54:9e:0a:bc:e8:96:06:1a:9e:6f:9b:44: 02:06:63:cf:5b:06:c6:7c:36:1a:45:c2:17:d3:5a: de:de:a9:6c:e0:92:54:d3:70:5a:2f:89:c0:fb:dc: 8b:1a:88:93:5c:14:5d:91:9c:1d:cc:8b:0f:17:51: 64:6c:c2:8a:5b:90:dc:43:ea:ae:3d:03:92:43:ba: 13:60:48:c3:6d:3f:f4:2d:db:90:36:f2:3a:8a:c8: c4:82:4d:60:06:71:61:62:d1:63:de:9b:78:01:02: 95:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:B6:F4:04:72:4A:77:BA:18:46:13:F0:21:64:4C:0D:0A:DF:04:84 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/11FC797CB75A11EDBC9DED33C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.181.59.0/24 Signature Algorithm: sha256WithRSAEncryption a7:68:f7:4e:12:6b:86:0b:cf:b0:e1:d2:2a:21:ac:69:7a:2e: b1:92:ca:97:9f:86:70:7c:2c:85:c5:95:33:28:64:36:6c:14: ef:63:67:73:c1:75:8c:d1:a4:7a:b2:83:9f:b0:d5:8d:d5:ad: e3:06:ff:d3:1e:b6:58:a4:8f:fb:bf:49:3f:d8:88:06:8f:d0: 71:71:20:94:30:9d:f4:f1:d8:b6:85:a7:d9:d4:e2:f5:a7:b5: 3e:21:b4:7a:0b:93:7d:16:19:dd:fd:60:55:ad:88:b1:90:5b: 2f:e5:19:79:a4:03:15:07:35:00:2d:8a:0f:70:15:e4:e3:1a: 16:46:5a:46:68:b2:b1:4a:66:2d:97:bc:55:69:2b:b9:3b:80: 0f:ba:e7:eb:4b:9b:62:4c:28:f2:22:36:c9:13:b0:f8:1d:c0: 23:81:b1:c2:25:c7:60:2d:a9:21:93:62:43:b9:0c:5c:ae:8c: cc:06:af:d0:d4:83:94:1c:61:63:dc:04:bf:ce:34:f3:55:5b: 39:f5:a7:70:1d:c2:3f:f2:cd:62:14:47:1b:e5:17:c5:d6:70: f5:1f:61:aa:e2:3d:61:b3:41:02:c3:03:66:a3:1d:3e:e9:04: 27:a0:e7:c1:d4:27:97:3b:54:53:a8:12:f3:fd:5b:bc:ec:a3: 97:85:eb:bc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICcFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0MzA4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzk5Yi01ZDU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAueki/44oLI19KwaAWUVpL3LiTqqf4Yy5caUQ8sZUdyX9I5fd2rz9U+hhbaVQ G66jE+MeZpXdwEBh0eO+K/w3KdBkmBd9NRsSUvbkmhqCoGFo1s1iFUqsXHgX0nw8 HJknpJiKqe62J8nP6oeLmbc1zEF7BgwyPrQ5nvQrlpK5H3wErV4GPsPsSA1aYGCL MODPvBTc3QbdzddUngq86JYGGp5vm0QCBmPPWwbGfDYaRcIX01re3qls4JJU03Ba L4nA+9yLGoiTXBRdkZwdzIsPF1FkbMKKW5DcQ+quPQOSQ7oTYEjDbT/0LduQNvI6 isjEgk1gBnFhYtFj3pt4AQKV7wIDAQABo4IClTCCApEwHQYDVR0OBBYEFFW29ARy Sne6GEYT8CFkTA0K3wSEMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMTFGQzc5N0NC NzVBMTFFREJDOURFRDMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABntTswDQYJKoZIhvcNAQELBQADggEBAKdo904Sa4YLz7Dh 0iohrGl6LrGSypefhnB8LIXFlTMoZDZsFO9jZ3PBdYzRpHqyg5+w1Y3VreMG/9Me tlikj/u/ST/YiAaP0HFxIJQwnfTx2LaFp9nU4vWntT4htHoLk30WGd39YFWtiLGQ Wy/lGXmkAxUHNQAtig9wFeTjGhZGWkZosrFKZi2XvFVpK7k7gA+65+tLm2JMKPIi NskTsPgdwCOBscIlx2AtqSGTYkO5DFyujMwGr9DUg5QcYWPcBL/ONPNVWzn1p3Ad wj/yzWIURxvlF8XWcPUfYariPWGzQQLDA2ajHT7pBCeg58HUJ5c7VFOoEvP9W7zs o5eF67w= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:26 2024 by rpki-client on console-ams.rpki-client.org