$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/18906FC0409D11ED95A1E456C4F9AE02.roa File: 18906FC0409D11ED95A1E456C4F9AE02.roa (raw, json) Hash identifier: 03y3AXW+NFz255fqnkNi7RnpRrWZbRSq7cQen/IyEhs= Subject key identifier: 7C:CB:84:D3:C8:D6:32:5C:6C:B5:64:14:D3:A6:83:00:5B:59:9E:B2 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6ED8 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/18906FC0409D11ED95A1E456C4F9AE02.roa Signing time: Wed 10 May 2023 16:35:58 +0000 ROA not before: Wed 10 May 2023 16:35:58 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141541 IP address blocks: 103.163.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28376 (0x6ed8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:35:58 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc7ee-116d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e0:2d:18:ac:64:92:20:e2:1f:93:20:28:71: 65:ed:fe:43:df:3d:5f:fb:e2:e4:68:4a:ed:cf:41: cb:92:26:b8:f0:f5:6e:bd:57:49:18:48:3b:22:09: c9:1b:79:15:f4:8c:d8:f7:39:1f:c2:80:ea:30:15: 1c:ba:0c:05:c9:6b:1c:f9:6d:26:10:f0:b7:25:f9: 05:d2:e1:08:fa:f2:d4:72:87:0a:4c:e8:46:42:a2: 66:b8:59:0c:86:bc:7a:cb:8c:db:b0:6a:1a:c6:a0: 4f:de:16:4b:bb:0b:45:50:7f:c7:17:1e:5c:1b:e4: 8e:3c:5a:15:cd:87:fb:48:52:14:30:f1:48:d4:a4: b6:6c:ba:57:2a:dd:79:cf:5f:80:fc:5e:e9:77:10: 8e:a3:bd:08:91:56:2a:54:e3:b3:77:eb:fc:9a:cc: f9:11:8e:5b:02:35:cb:5d:66:d8:5e:67:ad:80:2e: 09:80:f8:2a:41:2b:14:de:44:4d:e9:56:2e:4c:9b: 66:61:14:f5:01:2c:3d:87:fe:f5:24:8b:d5:9c:0c: 56:9c:65:93:c2:eb:d8:0f:e7:bf:8e:d3:f3:4d:7f: bc:27:6f:97:16:d0:e0:84:df:54:d3:1f:fa:ef:35: ba:89:90:9f:3d:d6:fb:55:cc:a2:64:dc:64:c2:dc: e4:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:CB:84:D3:C8:D6:32:5C:6C:B5:64:14:D3:A6:83:00:5B:59:9E:B2 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/18906FC0409D11ED95A1E456C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.8.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:bc:69:0c:e7:b5:3a:44:c8:e3:b9:9b:c9:18:89:c0:33:67: 42:c3:76:c7:d7:47:e6:b0:c3:15:fb:12:38:d2:5e:9d:76:09: 80:28:08:ed:e4:9d:49:f4:ae:8e:39:5e:cc:cf:c2:58:aa:35: 3d:b5:ab:18:bf:3d:a4:67:5e:5f:18:3b:9c:96:22:df:90:fe: 6c:bd:2e:c8:ba:6f:6c:d8:9d:5d:5f:b5:ea:ad:69:cc:19:28: 7e:68:86:03:0a:bd:21:58:35:b6:7b:20:4e:8f:cf:cf:8b:83: 01:3b:e0:16:39:1d:e8:f7:94:71:03:77:af:9c:91:20:91:37: ad:e9:46:b0:df:ac:4f:a3:d9:15:61:35:92:3e:ab:39:aa:97: c9:8b:b7:9b:c7:8d:18:f5:be:bf:a3:a7:2f:ee:3a:70:66:12: 39:7f:15:d0:2f:45:12:ad:65:17:d3:6a:d0:71:90:7e:f3:4a: b1:e2:13:cc:d1:c9:1c:db:0a:26:95:09:43:10:64:04:34:49: a5:e1:0d:02:04:e0:a5:9b:46:be:bc:64:a3:75:1a:d7:a6:7c: 7d:34:4b:5b:34:c7:8b:02:7a:b7:d4:d7:66:18:0d:96:7c:5f: 6c:b0:e9:c6:bc:5c:d9:4a:b1:17:43:61:75:20:4c:73:49:03: 3f:c2:fa:28 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzNTU4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzdlZS0xMTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvuAtGKxkkiDiH5MgKHFl7f5D3z1f++LkaErtz0HLkia48PVuvVdJGEg7IgnJ G3kV9IzY9zkfwoDqMBUcugwFyWsc+W0mEPC3JfkF0uEI+vLUcocKTOhGQqJmuFkM hrx6y4zbsGoaxqBP3hZLuwtFUH/HFx5cG+SOPFoVzYf7SFIUMPFI1KS2bLpXKt15 z1+A/F7pdxCOo70IkVYqVOOzd+v8msz5EY5bAjXLXWbYXmetgC4JgPgqQSsU3kRN 6VYuTJtmYRT1ASw9h/71JIvVnAxWnGWTwuvYD+e/jtPzTX+8J2+XFtDghN9U0x/6 7zW6iZCfPdb7VcyiZNxkwtzkoQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHzLhNPI 1jJcbLVkFNOmgwBbWZ6yMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMTg5MDZGQzA0 MDlEMTFFRDk1QTFFNDU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnowgwDQYJKoZIhvcNAQELBQADggEBACu8aQzntTpEyOO5 m8kYicAzZ0LDdsfXR+awwxX7EjjSXp12CYAoCO3knUn0ro45XszPwliqNT21qxi/ PaRnXl8YO5yWIt+Q/my9Lsi6b2zYnV1fteqtacwZKH5ohgMKvSFYNbZ7IE6Pz8+L gwE74BY5Hej3lHEDd6+ckSCRN63pRrDfrE+j2RVhNZI+qzmql8mLt5vHjRj1vr+j py/uOnBmEjl/FdAvRRKtZRfTatBxkH7zSrHiE8zRyRzbCiaVCUMQZAQ0SaXhDQIE 4KWbRr68ZKN1GtemfH00S1s0x4sCerfU12YYDZZ8X2yw6ca8XNlKsRdDYXUgTHNJ Az/C+ig= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:27 2024 by rpki-client on console-ams.rpki-client.org