$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/17342584E87B11EBBAC6315EC4F9AE02.roa File: 17342584E87B11EBBAC6315EC4F9AE02.roa (raw, json) Hash identifier: a21wsqaYOX0nW4JEg+jC0H+ziS0MskhdwIOku/be52Q= Subject key identifier: 7F:48:B1:9C:FF:85:D6:0F:5D:6B:58:F0:DB:9D:D6:32:17:CB:C6:A5 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 747F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/17342584E87B11EBBAC6315EC4F9AE02.roa Signing time: Mon 26 Jun 2023 08:12:02 +0000 ROA not before: Mon 26 Jun 2023 08:12:02 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 142509 IP address blocks: 103.169.170.0/23 maxlen: 24 2001:df1:4ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29823 (0x747f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jun 26 08:12:02 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64994851-303e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d5:8e:2c:e7:82:b3:df:e9:35:10:5a:8b:42: 5c:ad:5f:63:4b:31:98:42:48:b8:6f:06:f5:7a:9f: 4d:e2:40:4e:9f:65:f3:27:ca:e5:fc:d0:c9:40:db: 60:31:e0:5c:51:6d:e2:f0:91:c1:58:21:65:ec:e8: 8c:62:d4:d2:8c:14:87:18:bf:d9:30:de:3c:a0:0c: 9c:ba:9b:46:40:33:a2:00:19:66:e8:7a:06:7b:92: 3c:d1:82:4e:60:f4:0c:c3:7d:41:c8:46:1a:cd:c5: d6:f3:ca:56:78:f4:38:05:5f:2d:f0:c0:c7:7e:4f: 23:8b:39:53:14:30:ed:c3:66:a4:74:b0:db:e2:7d: c0:e6:8f:f4:73:fa:b1:8e:ef:b7:fa:c7:27:07:50: fc:63:0a:09:3b:5b:9c:93:b3:8a:0d:40:a2:29:31: 5b:ba:b1:c9:2d:46:18:fe:b0:98:be:97:87:a9:c8: bb:ce:0b:fc:36:53:e7:21:d5:b9:31:26:1b:1e:ff: 81:ef:be:36:df:f1:d0:be:7f:c9:85:42:d3:06:2f: 5e:95:de:f6:72:97:aa:3f:cb:2d:21:5b:12:b9:5a: 53:c0:87:70:0e:56:c7:07:c3:ed:db:4b:da:21:80: 4e:e4:31:52:4e:c8:b7:5f:72:54:fe:bb:a4:40:a1: 07:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:48:B1:9C:FF:85:D6:0F:5D:6B:58:F0:DB:9D:D6:32:17:CB:C6:A5 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/17342584E87B11EBBAC6315EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.169.170.0/23 IPv6: 2001:df1:4ec0::/48 Signature Algorithm: sha256WithRSAEncryption b8:d8:d7:e0:b7:29:2d:e9:98:47:58:df:73:c1:2b:90:f7:fe: 37:57:3a:84:1d:ca:e3:4d:cb:e9:92:fb:19:3c:7a:aa:5f:37: af:b3:05:68:25:89:69:23:45:6d:18:e7:45:8d:30:fd:d7:f4: 38:ca:be:d3:10:bf:20:1c:d0:e9:25:c5:9c:d5:a0:e7:0d:4f: f3:2c:c9:a3:fc:2c:6f:ee:30:5e:4d:06:b4:39:2b:7c:70:b1: 6f:93:95:15:4e:91:be:9e:4a:ac:40:52:8a:c7:e7:c5:e8:1c: 85:a4:c6:02:00:5b:6e:90:a9:0b:38:e6:5c:d9:1d:38:ba:c5: 57:81:63:2c:80:d7:33:19:db:e1:40:c3:cd:ec:65:aa:6b:fd: 21:29:5b:b6:64:f3:ba:d3:f9:0d:93:30:7f:15:57:f5:fd:6e: c4:25:c8:93:15:ff:f3:f2:30:24:4c:05:c2:37:26:43:9f:05: e7:6b:7e:85:5b:90:d3:b5:d2:1f:10:80:fb:44:41:a1:94:07: 67:ab:ea:0b:93:be:3a:f6:ba:de:c3:35:7e:d8:1a:4b:bc:59: 09:a9:2b:f2:3e:16:9b:a7:58:41:33:3e:92:b2:44:b0:6a:ab: 8b:82:01:cb:07:53:de:b9:cc:b8:86:5a:51:81:b2:8e:3b:50: 27:8b:4c:00 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICdH8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNjI2MDgxMjAyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDk5NDg1MS0zMDNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxtWOLOeCs9/pNRBai0JcrV9jSzGYQki4bwb1ep9N4kBOn2XzJ8rl/NDJQNtg MeBcUW3i8JHBWCFl7OiMYtTSjBSHGL/ZMN48oAycuptGQDOiABlm6HoGe5I80YJO YPQMw31ByEYazcXW88pWePQ4BV8t8MDHfk8jizlTFDDtw2akdLDb4n3A5o/0c/qx ju+3+scnB1D8YwoJO1uck7OKDUCiKTFburHJLUYY/rCYvpeHqci7zgv8NlPnIdW5 MSYbHv+B77423/HQvn/JhULTBi9eld72cpeqP8stIVsSuVpTwIdwDlbHB8Pt20va IYBO5DFSTsi3X3JU/rukQKEHLQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFH9IsZz/ hdYPXWtY8Nud1jIXy8alMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMTczNDI1ODRF ODdCMTFFQkJBQzYzMTVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnqaowDwQCAAIwCQMHACABDfFOwDANBgkqhkiG9w0BAQsF AAOCAQEAuNjX4LcpLemYR1jfc8ErkPf+N1c6hB3K403L6ZL7GTx6ql83r7MFaCWJ aSNFbRjnRY0w/df0OMq+0xC/IBzQ6SXFnNWg5w1P8yzJo/wsb+4wXk0GtDkrfHCx b5OVFU6Rvp5KrEBSisfnxegchaTGAgBbbpCpCzjmXNkdOLrFV4FjLIDXMxnb4UDD zexlqmv9ISlbtmTzutP5DZMwfxVX9f1uxCXIkxX/8/IwJEwFwjcmQ58F52t+hVuQ 07XSHxCA+0RBoZQHZ6vqC5O+Ova63sM1ftgaS7xZCakr8j4Wm6dYQTM+krJEsGqr i4IBywdT3rnMuIZaUYGyjjtQJ4tMAA== -----END CERTIFICATE-----Generated at Sun Apr 28 15:51:13 2024 by rpki-client on console-fra.rpki-client.org