$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1E21CB1613F911EEAD14AF35C4F9AE02.roa File: 1E21CB1613F911EEAD14AF35C4F9AE02.roa (raw, json) Hash identifier: U1at3e6BuUvT020qUPV2RiOaNtFnePiGRLuJ2sHDugA= Subject key identifier: DF:15:74:AD:98:91:FE:09:BE:06:DF:9A:D0:A2:13:77:B3:20:8F:3E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 747D Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1E21CB1613F911EEAD14AF35C4F9AE02.roa Signing time: Mon 26 Jun 2023 08:11:57 +0000 ROA not before: Mon 26 Jun 2023 08:11:57 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136297 IP address blocks: 103.90.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29821 (0x747d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jun 26 08:11:57 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=6499484d-8f08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ea:c3:7d:fe:fd:af:db:b6:2b:d8:a2:c8:0d: 05:a0:5f:2a:80:d5:32:82:c6:ca:4d:d1:52:93:d2: 50:60:a6:81:8a:da:b7:ac:a3:ea:f0:ca:ac:a6:76: df:92:6a:1c:f3:e7:4b:77:6d:3c:b8:d3:68:56:9c: b1:13:90:1c:7d:9f:97:93:a5:57:9a:96:db:40:05: f9:67:43:56:2c:e1:37:51:05:f8:23:d3:31:6a:0b: b2:71:4b:de:cd:f7:e5:8d:41:a8:c2:68:81:80:33: d8:b9:f6:55:61:e2:16:69:3a:ea:f6:56:e6:1c:46: 78:57:a4:64:2e:d3:d0:b6:5f:d7:23:0d:9a:a8:14: 2f:66:d1:50:5a:ab:e9:14:53:66:3e:a6:d1:23:1c: 7f:0d:97:40:e7:e4:a8:54:2e:e3:9a:5c:46:b0:70: 17:a7:b4:bb:e8:94:1d:8f:92:35:0d:f2:1b:ad:e3: cd:a0:43:f8:6f:42:44:8e:a6:39:1f:b2:cc:3d:b9: 1c:f7:16:62:dd:95:2a:6d:be:7d:ea:57:d8:d6:6e: 8b:a3:88:54:87:e1:08:ff:51:68:dd:7f:c0:ab:d9: 93:03:24:fd:53:77:bd:5f:b7:19:c2:e6:02:84:47: 96:f4:d7:b2:f6:ed:28:17:64:2e:d5:83:47:34:37: 69:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:15:74:AD:98:91:FE:09:BE:06:DF:9A:D0:A2:13:77:B3:20:8F:3E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1E21CB1613F911EEAD14AF35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.90.44.0/22 Signature Algorithm: sha256WithRSAEncryption 3f:ec:6a:bf:f2:fc:f8:df:1d:1f:6e:ca:44:61:82:9b:bf:39: a6:02:e8:14:f4:89:1c:0a:e3:87:dc:c8:40:4f:b1:44:3e:35: 1e:af:00:08:28:b7:e1:7d:93:30:6d:8a:cc:e1:5f:5e:14:1d: cf:4e:f6:32:89:86:8b:9c:85:df:55:4f:2d:a4:bd:b1:13:1c: 3f:a5:ec:e1:63:74:ee:0b:e2:08:88:77:c0:a2:0e:6c:29:fb: a5:9a:4d:9b:39:9b:7f:59:ad:06:d2:8f:79:ec:f7:e2:fd:ba: 5f:ba:24:f1:34:db:19:49:fd:4a:59:58:fb:87:b8:f6:14:6c: a1:82:cd:d9:64:83:97:b2:8c:25:e2:c0:59:6b:8a:47:9c:4a: 9b:b7:88:a7:47:8f:78:c0:49:6a:17:98:65:b6:ef:0c:2b:03: 14:9b:82:8c:cd:bb:f7:92:b9:f5:45:1d:cb:14:86:fa:ed:4c: b2:43:9e:5c:3a:49:54:b6:f8:b6:c6:a1:c7:c0:cf:8c:03:83: 1a:8b:ec:fd:92:43:3d:6e:7b:e3:4f:0e:62:d0:32:9a:54:c5: 03:68:45:5e:d6:d1:1f:d9:9f:57:1d:83:3f:ba:4d:c1:0e:d3: 45:f0:96:b7:c1:ba:9b:5e:ec:46:ae:93:65:eb:17:31:71:c4: 6f:be:15:30 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICdH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNjI2MDgxMTU3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDk5NDg0ZC04ZjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvurDff79r9u2K9iiyA0FoF8qgNUygsbKTdFSk9JQYKaBitq3rKPq8Mqspnbf kmoc8+dLd208uNNoVpyxE5AcfZ+Xk6VXmpbbQAX5Z0NWLOE3UQX4I9MxaguycUve zffljUGowmiBgDPYufZVYeIWaTrq9lbmHEZ4V6RkLtPQtl/XIw2aqBQvZtFQWqvp FFNmPqbRIxx/DZdA5+SoVC7jmlxGsHAXp7S76JQdj5I1DfIbrePNoEP4b0JEjqY5 H7LMPbkc9xZi3ZUqbb596lfY1m6Lo4hUh+EI/1Fo3X/Aq9mTAyT9U3e9X7cZwuYC hEeW9Ney9u0oF2Qu1YNHNDdp7wIDAQABo4IClTCCApEwHQYDVR0OBBYEFN8VdK2Y kf4JvgbfmtCiE3ezII8+MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMUUyMUNCMTYx M0Y5MTFFRUFEMTRBRjM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnWiwwDQYJKoZIhvcNAQELBQADggEBAD/sar/y/PjfHR9u ykRhgpu/OaYC6BT0iRwK44fcyEBPsUQ+NR6vAAgot+F9kzBtiszhX14UHc9O9jKJ houchd9VTy2kvbETHD+l7OFjdO4L4giId8CiDmwp+6WaTZs5m39ZrQbSj3ns9+L9 ul+6JPE02xlJ/UpZWPuHuPYUbKGCzdlkg5eyjCXiwFlrikecSpu3iKdHj3jASWoX mGW27wwrAxSbgozNu/eSufVFHcsUhvrtTLJDnlw6SVS2+LbGocfAz4wDgxqL7P2S Qz1ue+NPDmLQMppUxQNoRV7W0R/Zn1cdgz+6TcEO00XwlrfBupte7Eauk2XrFzFx xG++FTA= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:27 2024 by rpki-client on console-ams.rpki-client.org