$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1D4C5F061E2E11EDB2F1F03FC4F9AE02.roa File: 1D4C5F061E2E11EDB2F1F03FC4F9AE02.roa (raw, json) Hash identifier: t80ragugiSJK++5Xyz0uWhNQasmnyFdk7XHr7Jzd5aI= Subject key identifier: 1A:39:56:7D:C6:C9:B0:30:C3:8F:59:FA:26:2B:BF:C0:CE:1E:0E:2D Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 70B8 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1D4C5F061E2E11EDB2F1F03FC4F9AE02.roa Signing time: Wed 10 May 2023 16:44:52 +0000 ROA not before: Wed 10 May 2023 16:44:52 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 150028 IP address blocks: 103.191.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28856 (0x70b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:44:52 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bca04-bd7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:55:d2:cb:cd:a4:f1:d7:78:14:74:3f:5d:ca: e4:b2:9b:67:e9:e8:96:bf:dd:6d:80:82:1b:67:e9: b9:51:3b:de:ee:f2:68:59:b9:ee:17:a8:6f:57:2b: a2:a1:9e:01:fa:2b:64:0e:69:e2:8b:74:48:42:52: 93:e9:43:12:7e:46:32:cf:8c:70:8c:7a:86:5f:24: 0b:37:f0:08:97:98:50:a9:3d:29:e8:04:e8:35:4d: 47:ce:5a:cf:37:e3:7b:79:df:ba:94:98:7a:9d:33: fd:b5:56:51:e9:06:04:e5:c7:12:0a:f5:1e:08:d3: f7:67:1a:cd:ed:68:a9:a2:e1:28:c2:ac:26:b1:82: 7d:e5:6e:95:c5:e7:e5:e7:ec:19:24:d2:7d:44:97: 23:b8:2a:00:e5:c1:9a:35:d7:95:36:80:3c:c2:76: 3f:c8:d2:81:e1:a2:6b:8a:31:4e:a6:24:ce:13:f8: 6b:da:23:ed:53:36:e6:f4:9b:e6:f9:f6:5e:da:ee: 88:9c:24:7b:cb:95:c9:3e:24:1e:35:bd:67:35:7d: fb:b4:04:17:7d:ee:1d:45:cc:a0:ab:6c:31:f1:22: 22:21:cf:78:e6:6f:e9:6e:17:09:a4:a8:40:4c:4c: 5a:f4:65:8a:b6:96:15:8c:70:28:1a:f5:55:f0:3d: 7f:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:39:56:7D:C6:C9:B0:30:C3:8F:59:FA:26:2B:BF:C0:CE:1E:0E:2D X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1D4C5F061E2E11EDB2F1F03FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.191.136.0/23 Signature Algorithm: sha256WithRSAEncryption a8:e3:2f:99:80:9e:fc:77:ce:90:34:5b:36:b6:af:01:79:04: aa:83:db:7b:70:09:0a:ce:1a:b7:f7:d0:59:21:b9:4a:4d:1e: 69:ca:be:f6:fb:81:c4:b1:a2:8e:7f:0b:18:d8:c1:d9:cc:12: 23:55:27:86:8b:a5:3c:af:5c:ed:60:2b:c2:62:31:d7:1e:6a: 8c:35:68:82:28:dd:b2:e2:b3:3f:89:66:0e:42:4a:2f:b8:69: 78:b1:f2:e8:2d:b7:33:54:ff:35:80:c1:8c:07:a6:8a:f4:39: d2:82:51:3a:ef:9c:82:09:1d:a2:55:e8:d8:2f:91:81:f7:62: d1:73:4e:67:17:aa:15:8b:05:18:b1:85:b9:46:73:7a:f5:dd: 55:30:ad:0a:97:aa:54:e9:95:4c:4e:b0:5f:19:f6:b2:0b:f0: b1:a9:bb:3a:89:55:a5:f8:9d:46:91:07:61:f8:21:e4:32:41: 9b:ce:43:20:81:1f:c3:03:4b:ad:a3:41:17:2b:1b:59:fa:df: 6c:78:c3:89:48:ea:3a:6d:fc:6e:e4:91:52:12:b9:80:7f:42: 58:81:47:f7:ae:dd:b1:cf:12:13:15:f3:a5:ce:f5:16:73:39: b9:69:82:bf:96:37:c4:77:5c:71:4b:0f:cf:9d:20:17:8b:e9: 5e:f3:f4:aa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICcLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0NDUyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViY2EwNC1iZDdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA11XSy82k8dd4FHQ/Xcrksptn6eiWv91tgIIbZ+m5UTve7vJoWbnuF6hvVyui oZ4B+itkDmnii3RIQlKT6UMSfkYyz4xwjHqGXyQLN/AIl5hQqT0p6AToNU1HzlrP N+N7ed+6lJh6nTP9tVZR6QYE5ccSCvUeCNP3ZxrN7WipouEowqwmsYJ95W6Vxefl 5+wZJNJ9RJcjuCoA5cGaNdeVNoA8wnY/yNKB4aJrijFOpiTOE/hr2iPtUzbm9Jvm +fZe2u6InCR7y5XJPiQeNb1nNX37tAQXfe4dRcygq2wx8SIiIc945m/pbhcJpKhA TExa9GWKtpYVjHAoGvVV8D1/fQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBo5Vn3G ybAww49Z+iYrv8DOHg4tMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMUQ0QzVGMDYx RTJFMTFFREIyRjFGMDNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnv4gwDQYJKoZIhvcNAQELBQADggEBAKjjL5mAnvx3zpA0 Wza2rwF5BKqD23twCQrOGrf30FkhuUpNHmnKvvb7gcSxoo5/CxjYwdnMEiNVJ4aL pTyvXO1gK8JiMdceaow1aIIo3bLisz+JZg5CSi+4aXix8ugttzNU/zWAwYwHpor0 OdKCUTrvnIIJHaJV6NgvkYH3YtFzTmcXqhWLBRixhblGc3r13VUwrQqXqlTplUxO sF8Z9rIL8LGpuzqJVaX4nUaRB2H4IeQyQZvOQyCBH8MDS62jQRcrG1n632x4w4lI 6jpt/G7kkVISuYB/QliBR/eu3bHPEhMV86XO9RZzOblpgr+WN8R3XHFLD8+dIBeL 6V7z9Ko= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:27 2024 by rpki-client on console-ams.rpki-client.org