$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/317841BAE79511EAA3AE7153C4F9AE02.roa File: 317841BAE79511EAA3AE7153C4F9AE02.roa (raw, json) Hash identifier: Y18hrwIaGIEK9AoAER0bjr9zFldOvJetqO3ZGcMcsdk= Subject key identifier: 13:36:72:4D:9D:B2:38:20:F9:73:B5:B3:95:E8:64:9C:E3:12:1E:68 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6E41 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/317841BAE79511EAA3AE7153C4F9AE02.roa Signing time: Wed 10 May 2023 16:33:13 +0000 ROA not before: Wed 10 May 2023 16:33:13 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 140186 IP address blocks: 103.152.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28225 (0x6e41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:33:13 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc749-390a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9c:35:35:4a:97:e2:13:ed:c4:72:a4:20:59: 88:37:3f:ae:99:6e:01:4f:8a:87:44:f9:26:84:24: 9f:4d:01:ec:7a:4e:55:d1:9e:50:8d:7a:dd:ca:66: 12:72:ad:1e:59:7a:fe:04:fa:68:4b:75:68:3e:47: 69:45:55:80:83:d2:27:b8:72:ab:13:c0:7e:03:4f: 49:c7:ef:8e:af:75:5e:36:28:af:ee:cc:0a:77:ee: 56:4d:f1:7e:76:eb:61:37:03:79:ec:1f:2a:67:b8: 13:25:70:8c:2c:e9:7d:b7:6e:a6:7e:93:1b:09:c3: 13:97:50:7e:95:38:bd:75:e8:55:49:6f:22:ec:fb: 98:1e:4e:08:23:37:d0:37:c8:46:05:1e:6d:c7:5b: 27:3a:a0:fa:8b:75:2a:f0:61:06:63:7e:68:84:a0: 9f:ce:d4:b0:8f:b3:5c:bf:a1:a0:0a:8a:b0:6e:c7: a4:2d:c8:1a:65:9b:a2:40:89:e3:d6:99:06:73:63: ac:f6:4f:ef:ab:94:fe:ae:2a:35:90:8b:9c:1c:da: 6a:41:d2:a1:36:96:26:1a:38:de:67:dc:63:bc:58: 20:09:42:40:c8:02:c3:2e:77:02:e6:76:23:88:20: 65:41:7f:eb:81:06:97:2c:c4:ef:54:d1:76:e2:5f: 09:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:36:72:4D:9D:B2:38:20:F9:73:B5:B3:95:E8:64:9C:E3:12:1E:68 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/317841BAE79511EAA3AE7153C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.181.0/24 Signature Algorithm: sha256WithRSAEncryption 32:44:8f:f6:02:93:b3:1a:e3:48:5e:ed:30:f7:c8:b7:6e:ef: da:be:e5:a6:46:59:63:ce:12:c2:d1:fe:f1:98:95:98:95:fb: ef:0d:17:18:a7:21:1a:88:f3:16:3c:25:db:4b:ec:0c:d8:ac: 26:9a:98:02:1b:ad:98:d9:9e:2d:d2:8e:ba:95:dc:0f:5e:78: 44:f0:14:2d:dd:21:2a:38:3a:03:52:ae:c3:82:04:5e:42:9e: 68:b0:7d:19:79:42:37:fa:04:da:d3:3c:93:70:4f:eb:cf:3e: 66:2f:7a:c5:31:00:1c:1f:1f:c5:18:32:df:e0:85:65:37:1b: 0a:7b:d4:f2:a0:86:70:22:a4:bd:7f:b7:22:b4:38:7d:26:d4: fb:83:00:0b:83:c9:86:8b:dc:b8:27:98:da:79:10:a7:a0:11: 0a:29:a5:1f:9f:38:3e:64:5e:d9:92:d2:62:52:4b:ae:41:2f: bf:aa:9d:28:ac:c5:58:41:e2:00:07:76:a4:7c:64:bb:e7:5c: f8:04:e5:49:f0:ee:95:75:43:e9:8e:54:1d:f9:09:7e:cc:73: 11:97:d2:d6:a1:29:47:85:7b:9c:4e:68:7a:a9:7d:53:22:9b: 37:03:56:69:5d:50:39:35:6f:50:5c:bd:cf:ab:37:28:c6:9c: bf:a9:8c:eb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzMzEzWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzc0OS0zOTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZw1NUqX4hPtxHKkIFmINz+umW4BT4qHRPkmhCSfTQHsek5V0Z5QjXrdymYS cq0eWXr+BPpoS3VoPkdpRVWAg9InuHKrE8B+A09Jx++Or3VeNiiv7swKd+5WTfF+ duthNwN57B8qZ7gTJXCMLOl9t26mfpMbCcMTl1B+lTi9dehVSW8i7PuYHk4IIzfQ N8hGBR5tx1snOqD6i3Uq8GEGY35ohKCfztSwj7Ncv6GgCoqwbsekLcgaZZuiQInj 1pkGc2Os9k/vq5T+rio1kIucHNpqQdKhNpYmGjjeZ9xjvFggCUJAyALDLncC5nYj iCBlQX/rgQaXLMTvVNF24l8JzQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBM2ck2d sjgg+XO1s5XoZJzjEh5oMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMzE3ODQxQkFF Nzk1MTFFQUEzQUU3MTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmLUwDQYJKoZIhvcNAQELBQADggEBADJEj/YCk7Ma40he 7TD3yLdu79q+5aZGWWPOEsLR/vGYlZiV++8NFxinIRqI8xY8JdtL7AzYrCaamAIb rZjZni3SjrqV3A9eeETwFC3dISo4OgNSrsOCBF5CnmiwfRl5Qjf6BNrTPJNwT+vP PmYvesUxABwfH8UYMt/ghWU3Gwp71PKghnAipL1/tyK0OH0m1PuDAAuDyYaL3Lgn mNp5EKegEQoppR+fOD5kXtmS0mJSS65BL7+qnSisxVhB4gAHdqR8ZLvnXPgE5Unw 7pV1Q+mOVB35CX7McxGX0tahKUeFe5xOaHqpfVMimzcDVmldUDk1b1Bcvc+rNyjG nL+pjOs= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:29 2024 by rpki-client on console-ams.rpki-client.org