$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/22A22010931011EDB92FFC5FC4F9AE02.roa File: 22A22010931011EDB92FFC5FC4F9AE02.roa (raw, json) Hash identifier: DYTtaawMHW4WmluSZjVUT2CBNvNU7khBgh2pb6iqlJ4= Subject key identifier: 24:C3:39:0E:94:BE:1B:E0:E6:9C:5C:0A:0D:A6:32:B6:8D:2F:07:2C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6B3F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/22A22010931011EDB92FFC5FC4F9AE02.roa Signing time: Wed 10 May 2023 16:18:44 +0000 ROA not before: Wed 10 May 2023 16:18:44 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134851 IP address blocks: 103.188.114.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27455 (0x6b3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:18:44 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc3e3-6a86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:d2:39:81:b2:3a:a0:45:57:81:c6:8c:0a:3c: 5b:e4:eb:d4:c6:d0:de:32:44:ef:1c:44:7d:47:67: 03:64:12:6d:e2:25:53:28:7d:0e:93:98:79:a8:4e: 38:be:c8:10:f1:1f:32:75:0a:89:75:4c:92:fe:0d: 7e:93:d3:1a:b1:33:de:33:06:8a:7f:af:6a:dc:9c: 8f:8f:99:91:a1:06:67:11:56:90:8a:16:0f:3f:7f: 38:19:39:b0:f8:b9:d4:28:38:47:b8:ee:41:64:bf: 3e:38:94:34:89:af:5c:2e:05:82:76:95:18:1f:87: b6:74:1f:eb:c3:98:c9:4e:4e:66:6b:88:8e:80:a6: 3f:68:7e:49:05:39:90:d0:6e:3e:3f:a8:82:ab:a8: eb:54:bd:9b:b2:ea:72:86:17:80:fd:d9:12:3d:9c: ac:7e:f6:3f:f8:8c:bd:4f:4b:92:00:00:21:65:02: ad:84:d0:5b:d4:6b:04:b7:0e:d2:48:14:d5:70:65: ca:4e:c3:a8:68:05:75:c5:7d:f3:bc:7b:03:e2:dd: c4:97:28:dd:00:25:d6:5c:c4:0c:a6:42:bb:ba:c6: d3:23:8f:8d:d6:18:39:44:c0:6d:7f:12:f2:84:31: ea:1a:b3:ab:f0:29:61:37:1e:3a:44:a8:81:ce:9d: 06:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:C3:39:0E:94:BE:1B:E0:E6:9C:5C:0A:0D:A6:32:B6:8D:2F:07:2C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/22A22010931011EDB92FFC5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.188.114.0/23 Signature Algorithm: sha256WithRSAEncryption 35:25:b2:e4:bb:0d:39:0b:70:e2:60:4e:7a:a4:4a:59:88:d4: 6a:e8:17:ed:6d:62:42:1b:63:53:98:a4:7d:33:23:0d:6f:bf: 80:50:25:d5:ee:64:4e:38:58:56:35:23:fb:0f:0b:f3:75:a0: 3b:12:c5:b7:fa:cc:fe:00:a9:78:07:fc:a6:79:8c:4b:15:2d: 23:45:ed:9e:98:cd:0c:6d:98:89:9f:23:c6:59:66:39:cb:2b: 93:dd:cb:34:a8:6f:3c:b9:c9:25:82:56:2a:29:45:4b:67:e0: f2:e8:db:4b:4c:63:5f:d5:c3:41:6c:21:f5:23:4d:bb:e6:fa: 6b:81:7c:15:5b:66:05:38:c0:6a:29:a1:1b:3b:91:a3:e5:95: 8c:26:f3:34:81:86:3e:26:8b:b4:fd:c3:3c:7f:4b:dd:5e:21: 7a:b3:7c:e4:08:25:6e:c1:1d:17:19:d7:67:ac:04:a0:86:19: d7:73:b6:ea:ba:33:7d:c3:9c:74:ab:40:d1:fc:d6:f2:d0:8a: 8b:d9:24:4d:89:2c:ec:ac:6b:a5:73:93:c2:f4:78:21:61:14: d2:07:85:b8:0c:1b:aa:9b:64:54:e1:44:e2:a4:df:eb:d2:e5: e4:2b:28:13:d5:82:70:08:7e:77:ca:ac:38:67:86:b7:62:90: a4:4d:c4:d6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICaz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxODQ0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzNlMy02YTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAldI5gbI6oEVXgcaMCjxb5OvUxtDeMkTvHER9R2cDZBJt4iVTKH0Ok5h5qE44 vsgQ8R8ydQqJdUyS/g1+k9MasTPeMwaKf69q3JyPj5mRoQZnEVaQihYPP384GTmw +LnUKDhHuO5BZL8+OJQ0ia9cLgWCdpUYH4e2dB/rw5jJTk5ma4iOgKY/aH5JBTmQ 0G4+P6iCq6jrVL2bsupyhheA/dkSPZysfvY/+Iy9T0uSAAAhZQKthNBb1GsEtw7S SBTVcGXKTsOoaAV1xX3zvHsD4t3ElyjdACXWXMQMpkK7usbTI4+N1hg5RMBtfxLy hDHqGrOr8ClhNx46RKiBzp0GbQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCTDOQ6U vhvg5pxcCg2mMraNLwcsMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMjJBMjIwMTA5 MzEwMTFFREI5MkZGQzVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnvHIwDQYJKoZIhvcNAQELBQADggEBADUlsuS7DTkLcOJg TnqkSlmI1GroF+1tYkIbY1OYpH0zIw1vv4BQJdXuZE44WFY1I/sPC/N1oDsSxbf6 zP4AqXgH/KZ5jEsVLSNF7Z6YzQxtmImfI8ZZZjnLK5PdyzSobzy5ySWCViopRUtn 4PLo20tMY1/Vw0FsIfUjTbvm+muBfBVbZgU4wGopoRs7kaPllYwm8zSBhj4mi7T9 wzx/S91eIXqzfOQIJW7BHRcZ12esBKCGGddztuq6M33DnHSrQNH81vLQiovZJE2J LOysa6Vzk8L0eCFhFNIHhbgMG6qbZFThROKk3+vS5eQrKBPVgnAIfnfKrDhnhrdi kKRNxNY= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:28 2024 by rpki-client on console-ams.rpki-client.org