$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1E55C3FA013211EE81A9F21FC4F9AE02.roa File: 1E55C3FA013211EE81A9F21FC4F9AE02.roa (raw, json) Hash identifier: IFN1FiKuGDNvt0mj3ZnjtD2CyCwTlMpeSbsfC3DR0pY= Subject key identifier: 60:7F:57:E1:EB:92:D9:1A:69:9A:9D:37:33:07:2B:02:AA:D6:B0:A4 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7335 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1E55C3FA013211EE81A9F21FC4F9AE02.roa Signing time: Fri 02 Jun 2023 10:42:06 +0000 ROA not before: Fri 02 Jun 2023 10:42:06 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 151114 IP address blocks: 103.211.168.0/23 maxlen: 24 2001:df2:8340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29493 (0x7335) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jun 2 10:42:06 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=6479c77e-61d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6c:58:55:f8:12:f2:ab:9f:bc:cb:56:0a:f3: 89:c3:76:97:df:7e:a3:9b:4d:32:15:5c:15:27:6d: 48:ae:36:23:f4:f9:2c:ec:a2:61:33:a9:7b:dc:18: 14:4c:6c:3f:6e:08:c5:5f:35:7d:89:21:b7:69:d5: dc:f7:f1:78:62:6e:0a:32:84:11:dd:d7:f4:29:28: 3c:ac:10:fc:05:ff:61:e5:0e:0d:5e:04:12:d0:b9: c4:13:70:71:82:92:27:72:ee:0a:bb:8d:7f:37:d5: de:5c:5b:52:4e:20:93:75:1f:8f:66:1f:21:54:57: 48:fc:86:59:aa:ad:87:d5:22:fc:51:5f:67:ac:c2: e2:5b:d9:07:5a:d3:e4:93:e6:63:99:48:05:51:af: 78:0c:4b:b9:1d:9c:5a:e5:3a:01:b9:7f:1d:15:10: db:96:9f:56:7a:42:22:70:40:6f:2e:45:2c:37:c3: f3:4e:40:03:e1:b9:42:ff:fb:20:64:4c:31:22:e2: 87:65:15:d1:74:86:8b:de:3f:b2:68:1e:4d:56:13: ee:89:31:bc:90:d4:11:cf:fe:a0:c2:dc:8a:cb:38: 95:b9:b8:b7:b6:9f:06:e1:39:0d:54:1b:27:e7:9b: a6:03:bb:b6:30:9b:cb:c1:df:f1:13:7e:b1:c1:22: 90:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:7F:57:E1:EB:92:D9:1A:69:9A:9D:37:33:07:2B:02:AA:D6:B0:A4 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1E55C3FA013211EE81A9F21FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.211.168.0/23 IPv6: 2001:df2:8340::/48 Signature Algorithm: sha256WithRSAEncryption 05:d5:4c:5b:5a:40:6a:95:61:78:61:1c:ef:d3:49:ca:c5:eb: d1:d2:c0:f6:82:85:11:72:19:f5:28:4f:bc:89:7d:0d:d5:3f: 5b:f8:77:a7:8b:d0:c4:ee:e8:78:d3:4c:e5:d8:42:66:14:56: 3d:27:a6:9a:46:6f:0d:37:e0:09:90:d6:eb:de:bc:aa:c8:c9: d6:89:5c:09:1d:1f:4d:95:50:16:69:4e:c5:e2:e0:d3:01:c2: e7:f3:79:48:46:ad:da:2c:36:63:59:4f:97:2b:84:c7:22:f2: 15:ed:2e:b8:26:e2:92:27:6b:3d:b7:82:61:5f:5b:70:7a:6c: e1:63:23:02:dc:d3:30:2e:65:fe:e7:07:bc:25:7d:1c:86:82: de:a2:fe:f1:d2:9b:ab:96:83:82:23:44:b1:eb:f0:12:3b:09: bd:be:f5:e9:80:a8:f4:b2:53:cb:6b:bb:59:8b:69:4b:1d:f0: 9f:08:ae:3a:a3:b4:3d:0d:4b:86:df:fb:15:8c:05:ff:00:b4: a9:a1:3d:2f:93:62:a6:b8:eb:96:92:0a:97:78:f0:4a:27:a5: 92:46:88:18:39:38:90:b0:b7:d1:92:a2:9d:0d:38:51:d1:72: e9:40:ff:b2:93:83:d8:df:42:1a:39:58:7b:ae:ef:e2:19:7d: 4e:96:ae:a6 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICczUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNjAyMTA0MjA2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDc5Yzc3ZS02MWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtGxYVfgS8qufvMtWCvOJw3aX336jm00yFVwVJ21IrjYj9Pks7KJhM6l73BgU TGw/bgjFXzV9iSG3adXc9/F4Ym4KMoQR3df0KSg8rBD8Bf9h5Q4NXgQS0LnEE3Bx gpIncu4Ku41/N9XeXFtSTiCTdR+PZh8hVFdI/IZZqq2H1SL8UV9nrMLiW9kHWtPk k+ZjmUgFUa94DEu5HZxa5ToBuX8dFRDblp9WekIicEBvLkUsN8PzTkAD4blC//sg ZEwxIuKHZRXRdIaL3j+yaB5NVhPuiTG8kNQRz/6gwtyKyziVubi3tp8G4TkNVBsn 55umA7u2MJvLwd/xE36xwSKQbQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGB/V+Hr ktkaaZqdNzMHKwKq1rCkMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMUU1NUMzRkEw MTMyMTFFRTgxQTlGMjFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFn06gwDwQCAAIwCQMHACABDfKDQDANBgkqhkiG9w0BAQsF AAOCAQEABdVMW1pAapVheGEc79NJysXr0dLA9oKFEXIZ9ShPvIl9DdU/W/h3p4vQ xO7oeNNM5dhCZhRWPSemmkZvDTfgCZDW6968qsjJ1olcCR0fTZVQFmlOxeLg0wHC 5/N5SEat2iw2Y1lPlyuExyLyFe0uuCbikidrPbeCYV9bcHps4WMjAtzTMC5l/ucH vCV9HIaC3qL+8dKbq5aDgiNEsevwEjsJvb716YCo9LJTy2u7WYtpSx3wnwiuOqO0 PQ1Lht/7FYwF/wC0qaE9L5NiprjrlpIKl3jwSielkkaIGDk4kLC30ZKinQ04UdFy 6UD/spOD2N9CGjlYe67v4hl9Tpaupg== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:27 2024 by rpki-client on console-ams.rpki-client.org