$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1A63AA92387A11EB89A0676AC4F9AE02.roa File: 1A63AA92387A11EB89A0676AC4F9AE02.roa (raw, json) Hash identifier: pKSbsQrXGe7ltrxKyZfcusgMEb15UL+TjdL2Am1+9mw= Subject key identifier: 70:44:B3:E4:3D:BE:ED:18:DA:8E:B7:D4:52:4C:27:38:C6:B7:67:86 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6E81 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1A63AA92387A11EB89A0676AC4F9AE02.roa Signing time: Wed 10 May 2023 16:34:22 +0000 ROA not before: Wed 10 May 2023 16:34:22 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141296 IP address blocks: 103.159.156.0/23 maxlen: 24 2001:df0:37c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28289 (0x6e81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:34:22 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc78e-77a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:43:2b:7b:ad:2b:26:ce:e6:7e:44:0a:84:8a: f4:b1:fc:0b:3a:4a:fe:cf:9c:9c:73:46:38:59:46: 23:ed:d6:1b:3d:0b:e7:2b:d9:b1:87:69:ef:4f:cf: 5a:54:0b:a4:84:af:83:4d:02:52:f1:6e:09:fc:53: 12:fd:bd:bd:7b:df:69:d8:b1:7d:69:bf:2d:1a:31: 3a:d7:f1:a8:ce:46:06:34:6f:c8:f4:05:dd:8f:3b: 70:44:24:62:27:c8:0b:a8:8b:87:5d:5a:cc:eb:0d: 8e:fe:5e:24:9f:bc:ef:a3:11:3a:5e:52:76:c2:e0: 9e:68:f8:02:f7:d3:38:bc:21:34:f3:28:84:0d:15: dd:b9:78:01:b6:43:95:f7:75:7e:6b:a3:8f:e8:50: 42:e4:cd:10:2d:d5:ef:6f:d0:15:ce:7e:33:f0:e7: e8:6e:bb:b3:3b:09:0e:ac:81:f6:69:0f:0c:3b:20: 56:a6:c6:bf:11:a4:1c:59:b7:83:79:8d:9d:6b:19: 18:56:08:75:9a:b6:7a:5c:a4:31:45:8e:7f:3f:f3: df:e1:8a:17:ba:a8:85:b2:53:25:f5:fd:9d:16:ba: d7:0e:81:7a:5c:2c:09:fe:1f:23:08:78:d9:0e:11: db:45:f9:58:05:33:e4:48:55:1a:62:8f:92:32:b3: 96:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:44:B3:E4:3D:BE:ED:18:DA:8E:B7:D4:52:4C:27:38:C6:B7:67:86 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1A63AA92387A11EB89A0676AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.156.0/23 IPv6: 2001:df0:37c0::/48 Signature Algorithm: sha256WithRSAEncryption 18:72:e9:29:c5:b8:0b:67:0e:32:3d:51:36:f3:46:df:5a:3e: d4:32:92:53:9a:5b:81:9b:55:6e:5a:84:2c:1d:ec:5c:3e:1d: 2c:d7:ff:ad:0c:51:36:0c:43:60:c1:ae:88:cb:d7:76:87:c9: 9d:09:cb:f9:7f:95:24:1d:1f:43:fa:8e:f5:2d:c8:ad:36:d6: 5b:fc:50:54:59:20:af:2d:cb:43:c7:d6:f2:02:79:96:a1:1c: c5:ad:ae:d7:78:76:c0:c3:22:fc:16:3e:ff:20:e1:6a:b3:91: f8:09:23:fd:38:3e:7d:13:93:90:44:79:32:96:03:6d:54:6d: 66:2f:54:7d:99:7d:85:ae:f6:ea:14:8b:54:d6:cb:2a:2c:d9: 35:ff:26:36:69:b0:3d:d5:f7:b2:1e:6b:19:a9:88:72:0f:54: a7:ce:05:14:4a:e4:d9:d7:c4:ef:5f:2d:74:f4:e5:d7:7d:aa: f2:ad:a0:70:29:85:57:d3:94:fb:80:2c:08:96:68:77:8f:23: 0f:95:dd:d7:d5:9c:b1:7c:bf:c4:e3:8b:48:75:a8:27:50:b6: eb:aa:71:61:73:93:44:34:6c:f0:1d:87:cf:61:51:8e:92:20: f3:76:94:b6:12:30:20:21:d0:02:50:d7:e7:01:57:81:99:cf: 5b:81:0b:20 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICboEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzNDIyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzc4ZS03N2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0UMre60rJs7mfkQKhIr0sfwLOkr+z5ycc0Y4WUYj7dYbPQvnK9mxh2nvT89a VAukhK+DTQJS8W4J/FMS/b29e99p2LF9ab8tGjE61/GozkYGNG/I9AXdjztwRCRi J8gLqIuHXVrM6w2O/l4kn7zvoxE6XlJ2wuCeaPgC99M4vCE08yiEDRXduXgBtkOV 93V+a6OP6FBC5M0QLdXvb9AVzn4z8OfobruzOwkOrIH2aQ8MOyBWpsa/EaQcWbeD eY2daxkYVgh1mrZ6XKQxRY5/P/Pf4YoXuqiFslMl9f2dFrrXDoF6XCwJ/h8jCHjZ DhHbRflYBTPkSFUaYo+SMrOW8wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHBEs+Q9 vu0Y2o631FJMJzjGt2eGMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMUE2M0FBOTIz ODdBMTFFQjg5QTA2NzZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnn5wwDwQCAAIwCQMHACABDfA3wDANBgkqhkiG9w0BAQsF AAOCAQEAGHLpKcW4C2cOMj1RNvNG31o+1DKSU5pbgZtVblqELB3sXD4dLNf/rQxR NgxDYMGuiMvXdofJnQnL+X+VJB0fQ/qO9S3IrTbWW/xQVFkgry3LQ8fW8gJ5lqEc xa2u13h2wMMi/BY+/yDharOR+Akj/Tg+fROTkER5MpYDbVRtZi9UfZl9ha726hSL VNbLKizZNf8mNmmwPdX3sh5rGamIcg9Up84FFErk2dfE718tdPTl132q8q2gcCmF V9OU+4AsCJZod48jD5Xd19WcsXy/xOOLSHWoJ1C266pxYXOTRDRs8B2Hz2FRjpIg 83aUthIwICHQAlDX5wFXgZnPW4ELIA== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:27 2024 by rpki-client on console-ams.rpki-client.org