$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/21BF65FC02D711EB99C6AC0FC4F9AE02.roa File: 21BF65FC02D711EB99C6AC0FC4F9AE02.roa (raw, json) Hash identifier: aUeEgjfd2Lx7E8W2y1L6HeT3UC/4XMh/2bxukCWLoP0= Subject key identifier: 20:A2:69:62:D6:92:AE:1D:BE:B8:F3:FE:37:30:42:40:1B:34:A6:4D Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6D1A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/21BF65FC02D711EB99C6AC0FC4F9AE02.roa Signing time: Wed 10 May 2023 16:27:41 +0000 ROA not before: Wed 10 May 2023 16:27:41 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 137608 IP address blocks: 103.113.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27930 (0x6d1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:27:41 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc5fd-3f12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b5:f9:6c:0d:88:35:4f:4f:df:76:c3:a3:f5: 43:b6:40:ea:86:a9:f1:c5:cc:ed:e6:cc:b3:ed:d4: 87:02:58:f5:1f:85:dd:d2:98:a9:35:72:d4:08:bd: 97:6a:c7:97:8a:e0:17:17:d2:88:44:48:71:9f:c2: 47:3e:04:24:86:0e:0e:8e:83:7c:6a:10:a4:f9:2e: 82:12:03:83:68:eb:bf:78:61:20:d1:2b:bf:85:ea: d8:2d:7a:d0:29:28:e5:ea:9e:b7:8d:a4:c2:5a:77: 0a:35:22:f0:a3:f7:d6:01:81:e4:62:79:ad:f0:be: d5:9e:24:69:9a:86:33:50:d6:38:b1:17:ed:c7:83: 6b:23:cb:b6:f7:df:18:e6:70:78:5a:92:a0:a3:38: bc:08:67:5c:01:01:f4:a9:6b:e0:70:60:db:e4:af: 7c:8f:ad:be:65:83:d2:d8:52:6c:02:3c:3e:a0:c8: 8a:c5:0c:ab:f0:03:4b:52:d7:c8:49:bf:12:a4:15: a6:53:d9:e4:bc:62:66:7d:87:4f:e1:85:76:4c:b9: be:ac:86:b1:9e:4b:91:be:e6:4e:cc:61:4f:e1:73: ca:07:86:cb:99:8e:18:e6:09:3c:19:eb:a7:13:15: 23:e6:bf:36:5e:4d:a7:d2:95:69:7f:94:c0:01:cb: de:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:A2:69:62:D6:92:AE:1D:BE:B8:F3:FE:37:30:42:40:1B:34:A6:4D X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/21BF65FC02D711EB99C6AC0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.113.213.0/24 Signature Algorithm: sha256WithRSAEncryption 45:8a:55:ba:23:29:48:9b:31:73:82:c9:0e:6e:c5:7f:5b:7d: 4b:00:f9:84:38:d3:f1:ca:22:40:6e:1d:1d:4a:39:b6:a3:25: 1e:9b:08:35:e5:96:94:01:70:6a:a8:50:a3:3f:48:82:c9:f9: 2b:b7:f9:25:f6:07:8d:a2:58:81:61:57:39:b4:7e:39:17:e1: cb:bf:17:74:27:db:6c:73:63:c4:33:6e:63:f3:89:ba:fb:e1: 6d:49:43:aa:67:bd:9b:4c:02:c9:ec:ce:e9:6b:c6:2f:01:6d: a8:de:0e:1d:61:c4:a2:b3:d8:b0:7d:cb:e3:ea:df:81:a5:4e: 56:4c:99:f0:18:26:0f:e5:40:b3:58:0c:69:6b:67:1b:5c:6e: 3b:e9:3c:f9:39:2c:82:4a:0b:67:87:b4:a6:ff:12:5c:a8:a5: 60:7a:1e:be:86:ec:99:eb:dc:cd:dc:be:8d:ae:99:47:54:3e: ee:df:49:81:88:1f:a5:ca:ed:50:5e:0f:e4:26:49:ab:47:3f: 80:1a:8d:6e:76:be:c0:00:ed:71:78:85:06:0b:c7:36:38:13: 6a:91:99:b5:ea:4a:25:f5:b7:6f:26:ca:da:97:13:2e:a9:c5: b0:40:23:fe:f0:56:b3:02:64:e3:5c:de:9f:eb:a6:21:9c:cb: e3:89:e8:78 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbRowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNzQxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzVmZC0zZjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7X5bA2INU9P33bDo/VDtkDqhqnxxczt5syz7dSHAlj1H4Xd0pipNXLUCL2X aseXiuAXF9KIREhxn8JHPgQkhg4OjoN8ahCk+S6CEgODaOu/eGEg0Su/herYLXrQ KSjl6p63jaTCWncKNSLwo/fWAYHkYnmt8L7VniRpmoYzUNY4sRftx4NrI8u2998Y 5nB4WpKgozi8CGdcAQH0qWvgcGDb5K98j62+ZYPS2FJsAjw+oMiKxQyr8ANLUtfI Sb8SpBWmU9nkvGJmfYdP4YV2TLm+rIaxnkuRvuZOzGFP4XPKB4bLmY4Y5gk8Geun ExUj5r82Xk2n0pVpf5TAAcvevQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCCiaWLW kq4dvrjz/jcwQkAbNKZNMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMjFCRjY1RkMw MkQ3MTFFQjk5QzZBQzBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABncdUwDQYJKoZIhvcNAQELBQADggEBAEWKVbojKUibMXOC yQ5uxX9bfUsA+YQ40/HKIkBuHR1KObajJR6bCDXllpQBcGqoUKM/SILJ+Su3+SX2 B42iWIFhVzm0fjkX4cu/F3Qn22xzY8QzbmPzibr74W1JQ6pnvZtMAsnszulrxi8B bajeDh1hxKKz2LB9y+Pq34GlTlZMmfAYJg/lQLNYDGlrZxtcbjvpPPk5LIJKC2eH tKb/ElyopWB6Hr6G7Jnr3M3cvo2umUdUPu7fSYGIH6XK7VBeD+QmSatHP4AajW52 vsAA7XF4hQYLxzY4E2qRmbXqSiX1t28mytqXEy6pxbBAI/7wVrMCZONc3p/rpiGc y+OJ6Hg= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:28 2024 by rpki-client on console-ams.rpki-client.org