$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/251361A4E2F111EB8C6B4E40C4F9AE02.roa File: 251361A4E2F111EB8C6B4E40C4F9AE02.roa (raw, json) Hash identifier: 7EhH+DKgZ9CV++wva5Pzqn60DiwgyDoLylN4XpXEl1Y= Subject key identifier: 7C:FC:82:B2:C5:26:A3:49:1A:5A:53:97:B6:15:45:5E:01:2D:64:09 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6A2F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/251361A4E2F111EB8C6B4E40C4F9AE02.roa Signing time: Wed 10 May 2023 16:13:31 +0000 ROA not before: Wed 10 May 2023 16:13:31 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 132956 IP address blocks: 103.212.16.0/24 maxlen: 24 103.212.17.0/24 maxlen: 24 103.212.18.0/24 maxlen: 24 103.212.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27183 (0x6a2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:13:31 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc2ab-a675 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ea:df:85:86:42:cc:47:64:9b:eb:89:e4:dd: eb:af:d6:01:f9:6f:2b:32:bc:26:3f:21:79:f8:19: d6:02:ce:0c:34:28:e8:e4:1b:7a:7e:47:e1:b6:24: 5f:a9:aa:58:70:f3:17:e8:00:64:49:89:e6:3c:f9: 3a:88:ee:48:d8:f0:91:7c:fd:b1:02:f2:8f:23:6c: 3d:51:e8:6d:e4:47:df:0e:1f:51:03:1a:12:cb:66: a7:75:cd:9e:3f:ca:2c:16:44:6b:65:6e:b9:9e:d7: 8c:a5:ab:70:6f:45:fa:ef:0e:63:71:4c:89:e4:42: 07:94:d7:d1:ba:41:15:2d:18:f2:3e:ad:53:a0:de: ae:4f:46:48:1e:9b:bd:53:d5:13:ba:02:3b:b0:71: 75:f8:f3:f2:d6:64:5a:9f:c4:d9:f8:bc:18:10:5a: 97:44:9f:22:dc:e8:a0:31:76:c2:81:13:8e:c2:03: 9f:e9:81:17:0b:8d:2f:79:a8:16:d7:18:db:f4:e5: 49:cb:26:0c:27:a0:e0:98:c2:8d:ab:30:15:27:13: 20:03:86:32:62:c1:38:6c:5a:b5:9b:4d:58:62:17: ab:80:ec:1c:a1:6a:51:1b:a5:14:04:ac:7c:38:ec: 29:f8:4d:19:49:c5:ff:09:76:4f:46:b1:ab:7f:48: d2:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:FC:82:B2:C5:26:A3:49:1A:5A:53:97:B6:15:45:5E:01:2D:64:09 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/251361A4E2F111EB8C6B4E40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.212.16.0/22 Signature Algorithm: sha256WithRSAEncryption 35:6c:73:39:87:e8:f5:95:a3:66:10:ef:36:d9:c9:cb:9e:25: 43:6e:7b:c1:60:0c:d8:12:80:da:ea:a8:1c:b2:8b:f6:f4:c5: f1:70:eb:4e:f3:f7:16:88:5e:d1:60:e9:c4:50:82:73:dd:8a: 06:32:19:03:1e:7e:ba:49:1e:ff:13:d5:c2:d6:c6:51:89:f1: e8:e5:2f:7d:58:dc:d9:ba:18:5a:ba:2a:24:34:fa:91:f7:24: c5:0b:38:d7:9d:6e:cc:22:51:70:80:81:eb:75:67:10:06:8b: 60:06:51:80:fc:9a:c2:8e:ad:72:3d:43:40:0b:85:10:1a:fe: fe:71:66:a5:79:49:77:5a:fb:d5:a9:3d:1a:a5:9d:40:9e:95: 48:f3:54:c7:5e:30:23:40:11:82:d2:8a:39:2d:4b:ec:30:19: b6:de:6c:fc:ba:f7:4a:a2:5f:eb:a5:6c:4c:61:69:db:d7:19: 1a:e9:91:78:33:49:15:99:32:76:6d:03:bc:8d:a5:bb:fa:3f: d6:93:ef:96:06:21:e0:26:00:f0:82:7a:d6:53:1f:08:ad:92: b3:80:5a:01:8b:82:4e:e3:f1:6b:60:0a:48:7d:4c:13:0e:6f: 05:d6:af:d0:99:72:b2:ba:4a:26:8f:d9:cf:46:34:b5:48:b0: e5:d5:2e:8a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICai8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxMzMxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzJhYi1hNjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1OrfhYZCzEdkm+uJ5N3rr9YB+W8rMrwmPyF5+BnWAs4MNCjo5Bt6fkfhtiRf qapYcPMX6ABkSYnmPPk6iO5I2PCRfP2xAvKPI2w9Ueht5EffDh9RAxoSy2andc2e P8osFkRrZW65nteMpatwb0X67w5jcUyJ5EIHlNfRukEVLRjyPq1ToN6uT0ZIHpu9 U9UTugI7sHF1+PPy1mRan8TZ+LwYEFqXRJ8i3OigMXbCgROOwgOf6YEXC40veagW 1xjb9OVJyyYMJ6DgmMKNqzAVJxMgA4YyYsE4bFq1m01YYhergOwcoWpRG6UUBKx8 OOwp+E0ZScX/CXZPRrGrf0jSpwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHz8grLF JqNJGlpTl7YVRV4BLWQJMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMjUxMzYxQTRF MkYxMTFFQjhDNkI0RTQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn1BAwDQYJKoZIhvcNAQELBQADggEBADVsczmH6PWVo2YQ 7zbZycueJUNue8FgDNgSgNrqqByyi/b0xfFw607z9xaIXtFg6cRQgnPdigYyGQMe frpJHv8T1cLWxlGJ8ejlL31Y3Nm6GFq6KiQ0+pH3JMULONedbswiUXCAget1ZxAG i2AGUYD8msKOrXI9Q0ALhRAa/v5xZqV5SXda+9WpPRqlnUCelUjzVMdeMCNAEYLS ijktS+wwGbbebPy690qiX+ulbExhadvXGRrpkXgzSRWZMnZtA7yNpbv6P9aT75YG IeAmAPCCetZTHwitkrOAWgGLgk7j8WtgCkh9TBMObwXWr9CZcrK6SiaP2c9GNLVI sOXVLoo= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:28 2024 by rpki-client on console-ams.rpki-client.org