$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/324FF430FE9411ECB1EAB229C4F9AE02.roa File: 324FF430FE9411ECB1EAB229C4F9AE02.roa (raw, json) Hash identifier: xBZ099s7vbriGc3VmB1gBF3ENP9KRKrrsLZm3XPERN4= Subject key identifier: FD:2D:04:28:A3:99:A9:81:4A:F2:63:2C:7C:01:E8:BB:63:93:0C:27 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6B27 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/324FF430FE9411ECB1EAB229C4F9AE02.roa Signing time: Wed 10 May 2023 16:18:16 +0000 ROA not before: Wed 10 May 2023 16:18:16 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134318 IP address blocks: 103.199.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27431 (0x6b27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:18:16 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc3c8-4749 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:83:f8:45:a4:3f:01:88:09:4c:8a:94:7a:e3: b3:39:03:20:08:41:ee:06:b7:d1:46:49:a3:c6:ea: 15:ad:72:88:f9:74:03:6c:d1:81:27:e2:0f:03:1c: b8:1e:d9:ec:2c:2c:30:09:d9:52:cd:4d:9c:eb:de: 8a:73:48:ae:53:b3:94:24:02:aa:d4:ae:83:43:03: f8:ca:24:61:b5:18:9e:70:04:2d:03:65:b4:71:37: ff:84:5b:52:0a:1f:0d:36:b2:fa:e6:50:f8:48:40: 51:f6:bc:24:95:9a:ef:05:29:f2:92:16:98:77:a5: c2:66:8e:62:e2:15:41:9b:42:f5:ea:1c:5e:83:28: 75:e6:8b:00:26:f6:7a:04:92:a4:a4:92:66:ab:19: 02:36:91:e4:64:d9:ee:21:bb:94:31:00:44:11:e5: 46:93:64:cc:96:5e:6f:20:83:b6:96:82:66:b4:bf: f8:b3:30:74:cb:bb:aa:3b:75:31:25:08:c5:85:c0: 1a:44:2a:fc:85:02:9b:6c:d7:0e:d2:96:e5:58:5a: fa:0a:1e:07:c3:42:59:45:04:e3:14:9a:3e:df:78: 35:b1:88:98:e5:58:e2:71:65:46:d7:b6:d0:fa:ac: 3d:a1:91:9c:b6:ca:8c:18:69:3c:8f:2f:8d:58:b1: 44:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:2D:04:28:A3:99:A9:81:4A:F2:63:2C:7C:01:E8:BB:63:93:0C:27 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/324FF430FE9411ECB1EAB229C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.199.156.0/22 Signature Algorithm: sha256WithRSAEncryption ba:bd:18:c3:48:36:84:1e:42:c3:12:ef:e6:74:41:db:4b:e1: f2:17:33:f9:13:70:b5:3e:02:88:d0:78:5e:6d:11:01:f1:80: b5:f7:e5:65:f6:5c:c6:97:de:12:69:b5:9b:28:70:f9:e1:0b: 6e:d5:25:a0:38:88:68:69:ff:7c:26:a8:4d:15:a6:73:52:03: bb:3e:ac:c7:69:75:b0:aa:fa:86:e7:4e:9e:07:02:96:64:17: a4:17:2f:60:62:9f:75:0c:5b:b9:27:1e:43:e4:5c:52:20:12: 87:63:88:b9:74:6f:8d:56:78:05:a4:55:fc:21:92:49:31:3a: 4f:57:cb:7a:28:14:18:63:82:03:59:9f:08:52:6b:ae:e2:f3: e2:99:6f:10:46:17:33:b0:f1:13:2e:a3:64:14:5d:ed:6d:a6: 8f:81:7f:d0:02:86:ff:dc:11:88:de:5a:35:43:98:c0:ea:f9: 07:ca:e0:37:17:3a:e4:27:74:c8:09:6a:c1:c6:71:7e:cf:7e: fb:9b:c0:8c:7a:a8:5c:4b:98:58:6e:dc:38:d2:97:27:60:2d: 94:9c:35:bf:eb:01:2b:a8:e8:5a:ba:38:0c:34:a0:4d:f3:4f: 46:ba:bb:aa:22:00:59:29:5a:12:49:93:a8:98:ba:55:d2:ee: 10:e1:3c:c9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICaycwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxODE2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzNjOC00NzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv4P4RaQ/AYgJTIqUeuOzOQMgCEHuBrfRRkmjxuoVrXKI+XQDbNGBJ+IPAxy4 HtnsLCwwCdlSzU2c696Kc0iuU7OUJAKq1K6DQwP4yiRhtRiecAQtA2W0cTf/hFtS Ch8NNrL65lD4SEBR9rwklZrvBSnykhaYd6XCZo5i4hVBm0L16hxegyh15osAJvZ6 BJKkpJJmqxkCNpHkZNnuIbuUMQBEEeVGk2TMll5vIIO2loJmtL/4szB0y7uqO3Ux JQjFhcAaRCr8hQKbbNcO0pblWFr6Ch4Hw0JZRQTjFJo+33g1sYiY5VjicWVG17bQ +qw9oZGctsqMGGk8jy+NWLFEWwIDAQABo4IClTCCApEwHQYDVR0OBBYEFP0tBCij mamBSvJjLHwB6LtjkwwnMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMzI0RkY0MzBG RTk0MTFFQ0IxRUFCMjI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnx5wwDQYJKoZIhvcNAQELBQADggEBALq9GMNINoQeQsMS 7+Z0QdtL4fIXM/kTcLU+AojQeF5tEQHxgLX35WX2XMaX3hJptZsocPnhC27VJaA4 iGhp/3wmqE0VpnNSA7s+rMdpdbCq+obnTp4HApZkF6QXL2Bin3UMW7knHkPkXFIg EodjiLl0b41WeAWkVfwhkkkxOk9Xy3ooFBhjggNZnwhSa67i8+KZbxBGFzOw8RMu o2QUXe1tpo+Bf9AChv/cEYjeWjVDmMDq+QfK4DcXOuQndMgJasHGcX7PfvubwIx6 qFxLmFhu3DjSlydgLZScNb/rASuo6Fq6OAw0oE3zT0a6u6oiAFkpWhJJk6iYulXS 7hDhPMk= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:29 2024 by rpki-client on console-ams.rpki-client.org