$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1A65C08E72A811ECA515D152C4F9AE02.roa File: 1A65C08E72A811ECA515D152C4F9AE02.roa (raw, json) Hash identifier: 9YE42W/6wwRmyt6+v1yMprCPqJSO7YLM2LV4Dn5VCW0= Subject key identifier: 20:75:FD:1D:0A:DB:2F:22:D8:0E:9A:A6:BF:D4:FC:91:F3:54:30:5D Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 745A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1A65C08E72A811ECA515D152C4F9AE02.roa Signing time: Thu 22 Jun 2023 08:12:08 +0000 ROA not before: Thu 22 Jun 2023 08:12:08 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141257 IP address blocks: 45.248.175.0/24 maxlen: 24 103.105.94.0/23 maxlen: 24 103.158.94.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29786 (0x745a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jun 22 08:12:08 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64940257-1663 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c7:1e:17:78:49:ba:19:be:13:23:f0:78:db: ba:f6:0e:ea:ba:91:ad:e9:34:21:9f:c1:d0:4e:d8: d4:48:b8:f8:47:b0:95:92:84:4f:cf:99:60:0a:72: e6:a3:3d:77:6a:db:55:89:8c:20:51:94:26:25:fa: 11:0a:26:d0:1c:c4:fe:b5:f0:c0:b9:4d:df:78:7e: 2d:24:73:60:ba:3c:b2:4c:bd:c4:53:8b:c7:b6:58: 92:7d:9c:ba:25:d4:b5:bf:22:a1:12:85:8d:60:7f: 92:7e:34:d9:4a:65:5d:fc:a2:b0:d1:22:9c:05:46: 7f:3b:51:ff:6c:76:49:af:16:a4:45:63:1f:62:1a: 25:16:28:d6:a7:97:82:ec:48:43:48:cd:2d:f8:ec: bc:19:fb:62:1a:10:bd:73:81:e5:6f:f4:77:5f:f3: 23:9e:d7:a7:6b:92:51:e6:4b:d5:ad:37:50:71:15: 89:4c:f4:4c:f7:09:be:2f:f1:8d:a1:6b:8d:dc:7a: f7:48:57:60:59:cc:70:76:9e:63:7d:0a:83:a8:97: 9a:1c:ed:a4:06:7b:92:8b:c5:30:2a:90:5c:04:83: a6:85:ed:cb:55:e5:28:ce:85:ee:e7:00:c9:cb:42: 9a:3d:71:32:c2:3b:f1:5d:4c:72:89:8e:3d:9e:df: 96:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:75:FD:1D:0A:DB:2F:22:D8:0E:9A:A6:BF:D4:FC:91:F3:54:30:5D X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1A65C08E72A811ECA515D152C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.248.175.0/24 103.105.94.0/23 103.158.94.0/23 Signature Algorithm: sha256WithRSAEncryption 64:a0:5a:5d:87:1f:42:f8:2a:7a:b9:d9:25:68:d6:86:9b:28: e2:74:19:17:e9:8b:57:cb:8b:1b:d2:bf:61:da:ce:e0:a0:e1: 60:ad:f0:0a:00:9f:cf:cb:eb:45:7e:5e:d6:90:ab:dc:1c:17: 2f:2c:33:02:d3:66:3e:7e:a6:9f:95:62:7e:c5:c4:2f:dd:af: 60:2c:34:13:a6:11:f2:f4:5b:96:ca:23:1e:88:a5:68:50:21: 67:41:0d:86:2b:2f:8e:95:cd:36:93:4e:b2:86:ba:fb:7d:75: 5d:64:9e:74:94:ab:5b:43:78:68:22:12:17:c4:46:c5:69:8e: 94:60:5c:28:5f:91:e2:5d:d0:48:93:88:ae:a6:bf:73:77:94: 1c:4b:4a:e6:eb:74:f2:b0:ee:8f:bc:60:ee:c7:51:1f:d1:83: a6:a9:16:35:21:f9:f0:25:bc:09:d5:93:c2:bf:57:1d:26:82: 2b:93:3c:fc:07:21:cd:7b:75:ff:89:5b:e3:22:db:c8:83:80: 9d:3f:c1:3e:2c:8c:c1:99:71:e5:77:0a:b1:c6:07:66:6d:99: 59:f4:4d:c0:2e:17:1a:27:d8:b1:d3:16:a1:6e:03:2d:01:d3: 45:b7:7f:20:ef:ff:ec:66:70:ce:88:3e:37:a9:69:bb:6f:99: b7:71:92:91 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICdFowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNjIyMDgxMjA4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDk0MDI1Ny0xNjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs8ceF3hJuhm+EyPweNu69g7qupGt6TQhn8HQTtjUSLj4R7CVkoRPz5lgCnLm oz13attViYwgUZQmJfoRCibQHMT+tfDAuU3feH4tJHNgujyyTL3EU4vHtliSfZy6 JdS1vyKhEoWNYH+SfjTZSmVd/KKw0SKcBUZ/O1H/bHZJrxakRWMfYholFijWp5eC 7EhDSM0t+Oy8GftiGhC9c4Hlb/R3X/Mjntena5JR5kvVrTdQcRWJTPRM9wm+L/GN oWuN3Hr3SFdgWcxwdp5jfQqDqJeaHO2kBnuSi8UwKpBcBIOmhe3LVeUozoXu5wDJ y0KaPXEywjvxXUxyiY49nt+W6QIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFCB1/R0K 2y8i2A6apr/U/JHzVDBdMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMUE2NUMwOEU3 MkE4MTFFQ0E1MTVEMTUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAAt+K8DBAFnaV4DBAFnnl4wDQYJKoZIhvcNAQELBQADggEB AGSgWl2HH0L4Knq52SVo1oabKOJ0GRfpi1fLixvSv2HazuCg4WCt8AoAn8/L60V+ XtaQq9wcFy8sMwLTZj5+pp+VYn7FxC/dr2AsNBOmEfL0W5bKIx6IpWhQIWdBDYYr L46VzTaTTrKGuvt9dV1knnSUq1tDeGgiEhfERsVpjpRgXChfkeJd0EiTiK6mv3N3 lBxLSubrdPKw7o+8YO7HUR/Rg6apFjUh+fAlvAnVk8K/Vx0mgiuTPPwHIc17df+J W+Mi28iDgJ0/wT4sjMGZceV3CrHGB2ZtmVn0TcAuFxon2LHTFqFuAy0B00W3fyDv /+xmcM6IPjepabtvmbdxkpE= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:27 2024 by rpki-client on console-ams.rpki-client.org