$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/28562EF62FE411EC82076515C4F9AE02.roa File: 28562EF62FE411EC82076515C4F9AE02.roa (raw, json) Hash identifier: aURL9BehJDRMGewc6eCsLUqAeriRMNDaIR9pcTAHLkc= Subject key identifier: 14:39:4D:4B:87:FE:46:42:13:F0:79:A9:C0:35:B1:29:CE:C2:86:91 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6FBB Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/28562EF62FE411EC82076515C4F9AE02.roa Signing time: Wed 10 May 2023 16:40:13 +0000 ROA not before: Wed 10 May 2023 16:40:13 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 146911 IP address blocks: 103.173.222.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28603 (0x6fbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:40:13 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc8ec-cd04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:aa:62:b1:63:04:1c:dd:ea:4f:4b:53:25:08: 2e:87:d1:9c:97:f1:87:4f:b7:5d:61:b9:27:6b:6c: fe:1a:81:f0:cd:2f:e4:98:1a:fd:4c:f0:af:a7:a4: fd:42:88:fc:68:bc:a9:de:a2:97:5a:e8:51:f7:6a: 3a:e5:ff:a9:59:55:50:39:60:ee:15:90:f7:f1:db: d7:f1:60:2b:8f:14:93:48:e8:f4:f4:7b:85:bb:34: 71:33:ee:a6:64:ed:9d:49:13:31:0c:30:9a:43:be: b6:09:e6:a7:46:6d:0b:6c:de:a2:84:51:7f:2d:93: 0f:4a:dd:ae:de:fd:36:1f:f0:ff:9e:dc:07:dc:03: 2a:d7:fd:ef:9c:31:18:76:80:82:6d:17:2e:76:0a: e5:c9:0d:c8:81:d6:fb:a0:2d:26:f9:42:60:6e:b8: 6b:29:88:0f:55:d8:e5:ce:35:ae:76:21:47:ea:54: 17:6f:b7:dc:00:3a:26:cc:a7:91:e7:24:49:61:dd: 73:00:67:ae:45:ad:49:e3:09:cc:b4:36:36:c8:b6: e6:5a:85:c9:8d:90:ea:d4:84:55:09:f6:d3:e9:7a: 01:92:7a:f5:60:24:22:a2:ff:59:15:b8:a1:1e:ee: 98:0f:50:3d:fc:e6:c4:27:9f:67:6c:3e:f0:d9:33: 76:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:39:4D:4B:87:FE:46:42:13:F0:79:A9:C0:35:B1:29:CE:C2:86:91 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/28562EF62FE411EC82076515C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.222.0/23 Signature Algorithm: sha256WithRSAEncryption 64:b4:6f:50:66:03:96:25:9d:54:25:ba:cd:8a:8d:51:5c:ca: 33:ea:f9:da:2f:88:89:79:49:9a:c1:63:19:87:1f:5b:4a:32: 7a:13:7d:eb:17:93:ff:ad:8f:6e:ce:52:e4:e6:48:42:c1:c1: 78:d7:9b:63:2d:9d:de:64:ac:a2:93:dc:8f:97:4a:f5:5a:86: a1:41:50:69:ed:9f:f3:fc:31:30:89:fe:54:ac:5e:6d:cb:b2: cd:ae:30:cd:42:88:c9:8c:39:67:29:9a:a6:8e:99:6c:23:d8: da:f4:a6:29:6d:4b:db:de:d3:49:2c:d9:23:be:b0:72:02:1a: 5a:5a:a8:de:91:01:f6:3d:6a:42:e1:18:a7:59:f1:59:bd:af: 19:0d:3b:7e:a4:3a:5d:e5:04:91:91:3c:9f:56:c9:11:08:3b: a5:44:a5:1e:ff:13:cd:62:21:b6:a3:57:a6:6e:2a:86:8f:b6: 54:67:45:ee:04:dc:84:4f:30:04:ed:d3:70:c2:7c:72:da:ae: 85:c2:ec:4b:ff:47:62:d0:31:0e:ef:df:6e:f7:14:07:5a:fb: 1c:5e:8b:bf:dc:5a:26:a3:8a:47:76:ca:88:6b:aa:b8:bb:ce: 95:89:fa:22:42:26:8b:d9:15:fc:3f:f4:76:a2:e7:57:38:04: b5:a1:84:4e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICb7swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0MDEzWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzhlYy1jZDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6pisWMEHN3qT0tTJQguh9Gcl/GHT7ddYbkna2z+GoHwzS/kmBr9TPCvp6T9 Qoj8aLyp3qKXWuhR92o65f+pWVVQOWDuFZD38dvX8WArjxSTSOj09HuFuzRxM+6m ZO2dSRMxDDCaQ762CeanRm0LbN6ihFF/LZMPSt2u3v02H/D/ntwH3AMq1/3vnDEY doCCbRcudgrlyQ3Igdb7oC0m+UJgbrhrKYgPVdjlzjWudiFH6lQXb7fcADomzKeR 5yRJYd1zAGeuRa1J4wnMtDY2yLbmWoXJjZDq1IRVCfbT6XoBknr1YCQiov9ZFbih Hu6YD1A9/ObEJ59nbD7w2TN26QIDAQABo4IClTCCApEwHQYDVR0OBBYEFBQ5TUuH /kZCE/B5qcA1sSnOwoaRMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMjg1NjJFRjYy RkU0MTFFQzgyMDc2NTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnrd4wDQYJKoZIhvcNAQELBQADggEBAGS0b1BmA5YlnVQl us2KjVFcyjPq+doviIl5SZrBYxmHH1tKMnoTfesXk/+tj27OUuTmSELBwXjXm2Mt nd5krKKT3I+XSvVahqFBUGntn/P8MTCJ/lSsXm3Lss2uMM1CiMmMOWcpmqaOmWwj 2Nr0piltS9ve00ks2SO+sHICGlpaqN6RAfY9akLhGKdZ8Vm9rxkNO36kOl3lBJGR PJ9WyREIO6VEpR7/E81iIbajV6ZuKoaPtlRnRe4E3IRPMATt03DCfHLaroXC7Ev/ R2LQMQ7v3273FAda+xxei7/cWiajikd2yohrqri7zpWJ+iJCJovZFfw/9Hai51c4 BLWhhE4= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:28 2024 by rpki-client on console-ams.rpki-client.org