$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2BC5E4346FA211ECBA16094CC4F9AE02.roa File: 2BC5E4346FA211ECBA16094CC4F9AE02.roa (raw, json) Hash identifier: DUGSWO3yF1z/bwRxquCmIHmCAzzIfnWnOovbK2JUnsw= Subject key identifier: C8:8D:C9:19:4E:E4:64:39:A4:94:29:E6:38:D3:7C:B1:0F:99:BA:C1 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6A04 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2BC5E4346FA211ECBA16094CC4F9AE02.roa Signing time: Wed 10 May 2023 16:12:40 +0000 ROA not before: Wed 10 May 2023 16:12:40 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 132572 IP address blocks: 103.109.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27140 (0x6a04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:12:40 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc278-c982 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:80:e9:00:c9:d7:53:e2:f8:cb:ae:be:6c:9a: 1e:76:f7:35:c8:8b:f2:28:50:5f:dc:18:c7:2f:32: ca:47:39:b2:d4:cb:63:a5:a5:ff:40:c4:a1:02:45: 2f:ef:fb:c9:43:d4:79:9f:0d:2f:88:7e:a3:33:05: f2:f7:8a:0c:63:0a:91:5e:9b:0e:d5:34:11:2f:b3: 94:57:72:dd:bd:fc:52:7d:93:85:98:65:23:c2:cf: 61:c0:a5:93:d8:fd:47:46:26:67:df:ac:7d:7a:8a: c7:ff:56:71:30:23:82:18:67:fd:a3:76:4c:c6:67: db:8e:f7:d9:42:62:54:5d:58:3b:97:3b:5f:60:cb: 98:7a:bd:3d:7c:1d:69:25:74:cd:64:19:f9:0a:aa: 2a:f6:ec:5c:73:9a:5f:f5:75:c9:e2:f7:b6:0c:8e: 38:94:5d:b0:5b:1d:19:83:e7:c5:e5:0a:6f:77:c1: f1:c2:b3:7d:17:be:c6:31:18:c1:77:ca:74:48:f9: cc:c2:bf:36:50:be:50:c4:0c:89:a8:3f:c5:43:c6: 7d:3e:36:3e:cc:cf:8d:94:a0:36:3f:ee:ac:11:39: 6c:c4:97:4d:9a:f2:72:db:7e:bb:2d:f1:64:3e:39: 78:a7:da:12:95:22:e5:d4:bd:06:ea:4b:04:48:13: 3b:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:8D:C9:19:4E:E4:64:39:A4:94:29:E6:38:D3:7C:B1:0F:99:BA:C1 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2BC5E4346FA211ECBA16094CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.109.148.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:6c:8c:99:bd:ac:19:9b:6b:7f:a0:e8:af:4b:fc:76:59:62: 52:18:28:52:b6:c3:79:38:ad:8c:97:ce:e3:b7:09:4b:b1:5e: 33:b8:ee:22:80:0e:2b:59:5d:6f:15:25:bc:35:48:c5:b2:c4: 1c:0a:ca:48:5a:8e:1b:c4:c1:67:66:0e:d4:dd:39:a1:04:ee: 99:84:6a:56:9a:e2:a7:fb:73:cb:37:f7:41:fc:71:c4:26:5f: 63:96:8c:25:20:93:8f:0a:40:e3:e1:48:ac:5d:87:46:66:52: 16:5e:6d:77:26:26:ba:50:6f:92:2e:6d:2f:30:82:b0:03:cb: 0b:24:d5:5c:e8:9a:c0:33:2f:1b:dc:ee:a8:cf:40:45:24:76: 2f:b0:76:0d:61:41:62:6f:80:6e:da:e6:f5:c1:23:cd:f2:1b: d8:bc:35:8f:fa:f8:3a:c1:a0:1c:79:34:ec:ac:3e:c8:67:bd: 9b:9d:d2:b8:56:64:7e:5f:c2:92:9c:2f:29:0a:52:cf:a4:ff: ff:61:6b:d6:c3:f8:f3:64:c4:48:f7:7c:93:36:43:f2:2c:87: 82:1a:a3:c3:e2:ad:af:64:32:5c:9b:66:98:f8:79:f7:ab:9b: 20:17:f5:09:79:9e:14:de:c4:82:e4:7f:65:30:e8:59:b6:b0: 31:ff:14:30 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICagQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxMjQwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzI3OC1jOTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqIDpAMnXU+L4y66+bJoedvc1yIvyKFBf3BjHLzLKRzmy1MtjpaX/QMShAkUv 7/vJQ9R5nw0viH6jMwXy94oMYwqRXpsO1TQRL7OUV3LdvfxSfZOFmGUjws9hwKWT 2P1HRiZn36x9eorH/1ZxMCOCGGf9o3ZMxmfbjvfZQmJUXVg7lztfYMuYer09fB1p JXTNZBn5Cqoq9uxcc5pf9XXJ4ve2DI44lF2wWx0Zg+fF5Qpvd8HxwrN9F77GMRjB d8p0SPnMwr82UL5QxAyJqD/FQ8Z9PjY+zM+NlKA2P+6sETlsxJdNmvJy2367LfFk Pjl4p9oSlSLl1L0G6ksESBM76wIDAQABo4IClTCCApEwHQYDVR0OBBYEFMiNyRlO 5GQ5pJQp5jjTfLEPmbrBMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMkJDNUU0MzQ2 RkEyMTFFQ0JBMTYwOTRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnbZQwDQYJKoZIhvcNAQELBQADggEBAEpsjJm9rBmba3+g 6K9L/HZZYlIYKFK2w3k4rYyXzuO3CUuxXjO47iKADitZXW8VJbw1SMWyxBwKykha jhvEwWdmDtTdOaEE7pmEalaa4qf7c8s390H8ccQmX2OWjCUgk48KQOPhSKxdh0Zm UhZebXcmJrpQb5IubS8wgrADywsk1VzomsAzLxvc7qjPQEUkdi+wdg1hQWJvgG7a 5vXBI83yG9i8NY/6+DrBoBx5NOysPshnvZud0rhWZH5fwpKcLykKUs+k//9ha9bD +PNkxEj3fJM2Q/Ish4Iao8Pira9kMlybZpj4efermyAX9Ql5nhTexILkf2Uw6Fm2 sDH/FDA= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:28 2024 by rpki-client on console-ams.rpki-client.org