$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2282F136830911EB9E1AA743C4F9AE02.roa File: 2282F136830911EB9E1AA743C4F9AE02.roa (raw, json) Hash identifier: xSUN5+6bVC1GAFhkt7ZS/Nu1dl8n0bmCSIdZ+zfSfz0= Subject key identifier: 35:15:09:87:F1:17:89:F6:D1:42:9F:D8:70:56:AC:54:E6:D2:D6:29 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6C9F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2282F136830911EB9E1AA743C4F9AE02.roa Signing time: Wed 10 May 2023 16:25:26 +0000 ROA not before: Wed 10 May 2023 16:25:26 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136677 IP address blocks: 103.86.95.0/24 maxlen: 24 103.94.104.0/24 maxlen: 24 103.94.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27807 (0x6c9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:25:26 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc575-6fbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:42:3f:e6:2a:58:d1:23:db:45:d8:0e:61:1b: d6:04:15:59:76:63:a7:06:31:b7:0d:9b:ee:17:22: 0f:20:04:eb:29:6b:d8:b6:72:07:f8:8a:5a:ca:93: 42:13:82:d4:8c:5a:f8:51:af:34:b7:4a:fd:a3:8f: 04:3f:b6:4f:49:0e:a1:81:aa:1a:f2:f6:1a:a4:ae: b3:df:e9:ff:bc:0f:9d:e3:7e:fd:7b:93:f1:44:8a: 49:f9:db:9b:71:5e:cb:63:37:bf:5c:05:6f:70:26: 27:ea:f8:ba:14:7a:5b:ef:7e:b1:96:0a:b0:fe:38: 8d:40:cb:4a:1e:24:bd:e2:4f:92:58:31:f6:32:a7: a7:16:1a:15:53:45:42:f5:ad:19:c2:a4:3c:24:bd: ab:4a:e1:20:1e:86:2a:2e:3c:d2:a0:ce:5e:4a:2a: d5:36:d3:83:3f:45:c7:9e:4d:eb:ad:ca:5a:b5:44: f4:35:7d:1f:7d:54:4a:37:e4:09:78:38:d8:f8:aa: 5c:4e:b4:db:01:85:65:a8:37:61:dc:c5:f2:04:14: 0d:97:79:28:62:c8:d7:7a:f0:8f:d3:fb:28:e5:b0: 8c:fe:31:90:fb:3f:32:dc:ed:ce:42:29:cf:00:f2: 76:27:ed:68:2a:60:a1:f0:77:d0:5c:bd:fb:ca:c3: 5b:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:15:09:87:F1:17:89:F6:D1:42:9F:D8:70:56:AC:54:E6:D2:D6:29 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2282F136830911EB9E1AA743C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.86.95.0/24 103.94.104.0/24 103.94.107.0/24 Signature Algorithm: sha256WithRSAEncryption b9:d7:0a:50:e1:d3:ba:9c:ad:cb:ab:af:c1:ed:68:2e:20:88: 91:79:d0:59:49:01:09:76:a1:03:9f:2d:71:e9:0d:f6:7d:d2: 59:6e:d4:aa:4a:9f:d1:96:94:85:41:2e:86:aa:de:26:d7:83: 73:70:0f:55:0a:8f:76:d8:5a:33:b7:a6:1c:b1:a6:d1:a2:8b: 9f:16:0c:64:68:bc:ed:bd:2e:30:60:8d:ad:e4:b5:e5:77:cb: 12:b7:ff:8c:32:ca:55:a5:5a:15:74:44:7a:f1:99:a8:d4:e8: 28:9a:25:5f:6d:5a:fa:21:a5:bf:e1:08:63:0d:ab:39:e5:99: dc:f9:d3:23:26:fa:27:f2:67:b2:af:c7:5d:08:01:7a:ef:86: 93:31:21:85:e1:bc:87:93:53:7f:c6:89:97:56:bb:a3:38:e8: 2d:ae:9e:17:22:d5:b7:5f:5b:0a:37:3f:a2:b2:d5:9d:c6:1d: df:09:04:96:bf:5e:81:27:9c:fd:52:f1:a2:39:9e:32:51:88: cd:fe:85:9f:ad:e0:01:d9:02:b3:69:cb:ac:16:15:e8:9c:a9: c7:4c:3c:34:cc:b6:10:0b:b8:4d:2c:c1:5b:b6:ef:05:26:36: 2b:62:0d:7f:8d:63:50:4e:36:2c:99:10:c6:88:f3:8b:ab:bf: b1:e4:8c:1a -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICbJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNTI2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzU3NS02ZmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtkI/5ipY0SPbRdgOYRvWBBVZdmOnBjG3DZvuFyIPIATrKWvYtnIH+IpaypNC E4LUjFr4Ua80t0r9o48EP7ZPSQ6hgaoa8vYapK6z3+n/vA+d4379e5PxRIpJ+dub cV7LYze/XAVvcCYn6vi6FHpb736xlgqw/jiNQMtKHiS94k+SWDH2MqenFhoVU0VC 9a0ZwqQ8JL2rSuEgHoYqLjzSoM5eSirVNtODP0XHnk3rrcpatUT0NX0ffVRKN+QJ eDjY+KpcTrTbAYVlqDdh3MXyBBQNl3koYsjXevCP0/so5bCM/jGQ+z8y3O3OQinP APJ2J+1oKmCh8HfQXL37ysNb2QIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFDUVCYfx F4n20UKf2HBWrFTm0tYpMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMjI4MkYxMzY4 MzA5MTFFQjlFMUFBNzQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnVl8DBABnXmgDBABnXmswDQYJKoZIhvcNAQELBQADggEB ALnXClDh07qcrcurr8HtaC4giJF50FlJAQl2oQOfLXHpDfZ90llu1KpKn9GWlIVB Loaq3ibXg3NwD1UKj3bYWjO3phyxptGii58WDGRovO29LjBgja3kteV3yxK3/4wy ylWlWhV0RHrxmajU6CiaJV9tWvohpb/hCGMNqznlmdz50yMm+ifyZ7Kvx10IAXrv hpMxIYXhvIeTU3/GiZdWu6M46C2unhci1bdfWwo3P6Ky1Z3GHd8JBJa/XoEnnP1S 8aI5njJRiM3+hZ+t4AHZArNpy6wWFeicqcdMPDTMthALuE0swVu27wUmNitiDX+N Y1BONiyZEMaI84urv7HkjBo= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:28 2024 by rpki-client on console-ams.rpki-client.org