$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2FDD48D6109411EC84840956C4F9AE02.roa File: 2FDD48D6109411EC84840956C4F9AE02.roa (raw, json) Hash identifier: +CpyhfUg3ALt3mfzp8BU75/KieCcPHSLSwSJVGXPch0= Subject key identifier: BF:BE:67:75:58:72:88:75:6A:17:D8:86:EB:C4:EF:B5:31:AA:97:CB Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6F72 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2FDD48D6109411EC84840956C4F9AE02.roa Signing time: Wed 10 May 2023 16:38:52 +0000 ROA not before: Wed 10 May 2023 16:38:52 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 142498 IP address blocks: 103.169.164.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28530 (0x6f72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:38:52 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc89b-3e93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:e5:67:14:34:d2:2e:35:fa:cc:c0:f3:e6:23: d9:05:41:51:89:a0:cc:52:4b:bd:99:49:7a:64:09: 4d:59:ce:c4:fa:cb:56:f6:e7:71:87:fb:9d:1b:f2: 07:b2:0e:58:7d:67:d4:99:09:e8:de:9b:d5:47:9f: e1:ae:d8:4d:44:d8:33:50:f0:c6:c9:bc:18:91:44: 86:ae:db:6f:13:95:13:2c:c8:9c:a7:af:bc:ba:97: 7e:70:6b:c7:f4:54:4d:21:66:4a:c3:da:4f:96:fd: bd:14:4a:41:11:77:af:14:2b:b9:60:55:25:19:9f: f3:70:72:b3:fd:c9:44:5b:9a:e6:13:54:1c:5c:4d: 3e:12:3e:6d:71:39:b5:8c:14:76:65:e7:0b:db:9b: cb:d7:22:e2:8a:b6:32:37:09:34:47:5b:5e:af:c9: a8:5d:02:79:f5:18:db:fc:5e:13:d0:05:a5:94:e1: b4:7d:91:1a:f3:63:ca:7d:12:b4:68:11:81:b2:e8: 32:23:60:81:b7:20:2e:e6:ad:3c:14:c0:e7:6e:92: e5:be:61:03:94:84:3c:36:9b:fc:54:2a:88:9e:4a: f0:62:01:6a:1e:cc:76:c4:d8:17:86:a4:17:e9:84: fb:c8:b3:40:d0:19:35:24:af:bd:de:b8:3d:4a:cf: 1f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:BE:67:75:58:72:88:75:6A:17:D8:86:EB:C4:EF:B5:31:AA:97:CB X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2FDD48D6109411EC84840956C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.169.164.0/23 Signature Algorithm: sha256WithRSAEncryption 70:2e:cd:48:b3:61:03:be:5a:cc:e2:0f:48:84:bd:66:a4:4d: 72:ae:bd:b4:1e:ea:6a:43:bd:3b:c3:e5:ee:01:92:3e:b1:4f: b5:7e:a6:d6:c6:ba:be:dc:00:c0:6c:10:01:9f:95:e7:e3:3c: d4:8b:ce:fd:03:41:05:5a:9a:02:f6:8a:b2:b1:e6:8e:c7:c7: a8:75:be:1e:df:29:38:b9:d9:5e:d1:e9:ac:01:32:66:aa:61: ef:e5:58:e8:b6:4b:ad:c4:39:05:db:1c:f8:65:13:fe:ab:cf: c0:d0:b8:84:79:dd:47:d7:b0:fa:f4:40:27:12:7a:54:eb:e6: b6:e2:55:78:cb:88:3e:1e:a8:7c:37:b7:7e:27:b3:5f:ef:93: 5d:26:23:37:6d:3a:41:88:87:de:c7:e8:50:09:5f:10:b6:78: 3e:b6:2f:dd:9d:83:cb:2c:e2:35:42:04:c0:4f:13:1f:02:cc: f7:a3:fc:2c:d9:ea:c3:c3:e7:17:55:cb:1f:45:09:fd:c7:68: 0e:0a:b0:7e:aa:a5:cc:b3:45:5d:c3:76:79:b0:dd:46:e0:3d: 59:3f:80:fc:38:c2:d2:ad:00:0a:ca:d5:89:25:63:7f:ad:08: df:23:d2:9a:98:c8:44:ad:e3:48:c0:48:db:73:dc:e1:52:cc: d2:e8:fe:3d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICb3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzODUyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzg5Yi0zZTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmuVnFDTSLjX6zMDz5iPZBUFRiaDMUku9mUl6ZAlNWc7E+stW9udxh/udG/IH sg5YfWfUmQno3pvVR5/hrthNRNgzUPDGybwYkUSGrttvE5UTLMicp6+8upd+cGvH 9FRNIWZKw9pPlv29FEpBEXevFCu5YFUlGZ/zcHKz/clEW5rmE1QcXE0+Ej5tcTm1 jBR2ZecL25vL1yLiirYyNwk0R1ter8moXQJ59Rjb/F4T0AWllOG0fZEa82PKfRK0 aBGBsugyI2CBtyAu5q08FMDnbpLlvmEDlIQ8Npv8VCqInkrwYgFqHsx2xNgXhqQX 6YT7yLNA0Bk1JK+93rg9Ss8fhQIDAQABo4IClTCCApEwHQYDVR0OBBYEFL++Z3VY coh1ahfYhuvE77UxqpfLMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMkZERDQ4RDYx MDk0MTFFQzg0ODQwOTU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnqaQwDQYJKoZIhvcNAQELBQADggEBAHAuzUizYQO+Wszi D0iEvWakTXKuvbQe6mpDvTvD5e4Bkj6xT7V+ptbGur7cAMBsEAGflefjPNSLzv0D QQVamgL2irKx5o7Hx6h1vh7fKTi52V7R6awBMmaqYe/lWOi2S63EOQXbHPhlE/6r z8DQuIR53UfXsPr0QCcSelTr5rbiVXjLiD4eqHw3t34ns1/vk10mIzdtOkGIh97H 6FAJXxC2eD62L92dg8ss4jVCBMBPEx8CzPej/CzZ6sPD5xdVyx9FCf3HaA4KsH6q pcyzRV3Ddnmw3UbgPVk/gPw4wtKtAArK1YklY3+tCN8j0pqYyESt40jASNtz3OFS zNLo/j0= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:29 2024 by rpki-client on console-ams.rpki-client.org