$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2AE987BA0E0411EB82870234C4F9AE02.roa File: 2AE987BA0E0411EB82870234C4F9AE02.roa (raw, json) Hash identifier: 0pcHr+LtkQLKLdNcqnDP/q+3U5YVJccbmRE01fWdiy0= Subject key identifier: 1A:D9:C3:E0:B9:C2:A5:4E:78:26:FE:ED:6F:BB:E9:B0:A4:23:3D:9D Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6AB5 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2AE987BA0E0411EB82870234C4F9AE02.roa Signing time: Wed 10 May 2023 16:16:05 +0000 ROA not before: Wed 10 May 2023 16:16:05 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 133708 IP address blocks: 43.228.176.0/22 maxlen: 24 103.47.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27317 (0x6ab5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:16:05 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc345-cc15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:cd:67:50:4c:64:42:21:b2:3c:e5:82:a9:75: 12:db:40:d9:bd:15:6e:dd:66:fa:fe:6f:48:ba:7f: 0c:e2:22:02:32:d5:5a:24:95:07:4c:02:7b:99:80: 30:3b:41:5c:9b:37:6c:7f:83:36:83:8c:bc:6e:56: 58:8f:31:e1:e3:c4:22:6a:1c:c7:33:08:c9:c0:5f: 39:6d:38:42:39:ee:27:c6:e4:07:da:3b:d7:f5:f1: 36:69:9b:36:ad:4b:52:24:15:44:4c:77:69:05:91: 55:da:89:8a:9f:7c:29:21:3b:68:c9:90:df:69:19: 6d:57:e8:52:2d:32:8f:89:cc:eb:4b:0e:de:ce:cd: 48:1c:01:1b:6c:ec:f1:11:d9:d5:7e:0c:ab:e6:d5: ce:d1:0c:53:1a:09:5b:94:b2:0f:f8:4a:c7:cd:3d: 17:79:c4:87:ba:67:14:f7:ac:ac:6f:fb:15:ff:3d: 79:5a:58:b2:b5:7a:36:6b:71:f7:43:e9:20:55:1e: 66:32:5f:bf:9d:66:55:18:9a:65:fb:7c:53:8a:cd: 0b:eb:c6:64:d3:64:c4:8f:8e:f5:b8:35:e4:b0:60: cc:51:6c:7d:d8:f5:db:b2:4e:b8:e7:7d:23:63:82: d4:c7:aa:c4:f8:cb:08:b5:8e:cb:b4:e2:49:e5:2a: 6e:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:D9:C3:E0:B9:C2:A5:4E:78:26:FE:ED:6F:BB:E9:B0:A4:23:3D:9D X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2AE987BA0E0411EB82870234C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.228.176.0/22 103.47.196.0/22 Signature Algorithm: sha256WithRSAEncryption b4:3a:1a:52:6b:73:1b:12:14:3d:e2:20:1e:d2:cc:ee:03:1c: 05:25:ae:0a:78:b0:4c:b4:61:a2:39:e5:e4:08:4c:84:cb:a4: ad:04:6c:c2:79:d7:26:2b:5a:63:51:da:f9:79:92:d7:71:eb: 53:6d:7d:6f:ed:0f:24:fd:32:a5:ff:b0:cc:7e:97:22:e7:08: 79:55:c0:8f:14:7a:9e:e9:c9:d1:0c:20:7e:ad:c7:2b:20:2f: fa:ca:42:ba:13:a9:ea:90:b5:70:d5:f6:78:f1:41:c5:03:9e: f2:93:30:05:9f:fa:40:43:f2:b2:8b:d5:c3:13:19:62:f2:07: 48:ca:6c:45:06:6b:90:90:f8:b3:e8:be:d6:e0:41:fa:aa:4f: 7c:6c:26:97:ab:64:eb:c7:cd:0c:d9:44:61:e6:f1:fa:04:80: e6:01:15:0f:16:bc:90:ea:46:89:8e:19:5d:85:56:42:2f:d4: 90:bb:0b:d7:26:d1:b0:49:95:b5:5e:d4:30:b1:2f:dc:ad:1d: 8e:2c:64:f3:42:23:fd:0c:01:d3:f1:3d:23:d9:ec:d1:3c:4e: 95:06:6a:e2:58:39:60:7a:cf:84:6d:6d:ad:03:70:36:c5:cd: 20:1d:e8:2a:15:92:3e:a7:43:ee:e2:c9:99:fd:4f:d1:7f:61: ab:68:77:fa -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICarUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxNjA1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzM0NS1jYzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+81nUExkQiGyPOWCqXUS20DZvRVu3Wb6/m9Iun8M4iICMtVaJJUHTAJ7mYAw O0Fcmzdsf4M2g4y8blZYjzHh48QiahzHMwjJwF85bThCOe4nxuQH2jvX9fE2aZs2 rUtSJBVETHdpBZFV2omKn3wpITtoyZDfaRltV+hSLTKPiczrSw7ezs1IHAEbbOzx EdnVfgyr5tXO0QxTGglblLIP+ErHzT0XecSHumcU96ysb/sV/z15WliytXo2a3H3 Q+kgVR5mMl+/nWZVGJpl+3xTis0L68Zk02TEj471uDXksGDMUWx92PXbsk64530j Y4LUx6rE+MsItY7LtOJJ5SpuFQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBrZw+C5 wqVOeCb+7W+76bCkIz2dMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMkFFOTg3QkEw RTA0MTFFQjgyODcwMjM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr5LADBAJnL8QwDQYJKoZIhvcNAQELBQADggEBALQ6GlJr cxsSFD3iIB7SzO4DHAUlrgp4sEy0YaI55eQITITLpK0EbMJ51yYrWmNR2vl5ktdx 61NtfW/tDyT9MqX/sMx+lyLnCHlVwI8Uep7pydEMIH6txysgL/rKQroTqeqQtXDV 9njxQcUDnvKTMAWf+kBD8rKL1cMTGWLyB0jKbEUGa5CQ+LPovtbgQfqqT3xsJper ZOvHzQzZRGHm8foEgOYBFQ8WvJDqRomOGV2FVkIv1JC7C9cm0bBJlbVe1DCxL9yt HY4sZPNCI/0MAdPxPSPZ7NE8TpUGauJYOWB6z4Rtba0DcDbFzSAd6CoVkj6nQ+7i yZn9T9F/Yatod/o= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:28 2024 by rpki-client on console-ams.rpki-client.org