$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/32E19AB6748C11EDB1EC923DC4F9AE02.roa File: 32E19AB6748C11EDB1EC923DC4F9AE02.roa (raw, json) Hash identifier: 0Z99kdJfpft6J9Dn93sXESCjCemcPoAm+aRUo6aiMuU= Subject key identifier: B0:DF:47:1B:9A:15:6E:27:68:64:A8:CB:62:90:F3:17:37:FB:F1:F9 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 70DA Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/32E19AB6748C11EDB1EC923DC4F9AE02.roa Signing time: Wed 10 May 2023 16:45:30 +0000 ROA not before: Wed 10 May 2023 16:45:30 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 150068 IP address blocks: 103.76.245.0/24 maxlen: 24 2001:df1:6640::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28890 (0x70da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:45:30 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bca2a-9386 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:90:25:1d:e7:cc:37:39:8b:f6:e0:b1:04:2c: 6a:1c:85:95:5a:c5:5e:2a:77:d8:0f:b9:80:c3:3a: 8f:c7:34:ab:4e:73:e1:bd:70:8b:89:aa:c8:7f:00: 3f:12:67:fc:e4:2e:4e:5d:09:07:91:17:82:35:b7: 4f:9b:8c:f4:ec:23:dd:15:4e:cd:fc:2e:6b:6e:54: fb:da:80:60:df:ca:3d:5c:20:4c:49:ca:34:39:4b: 41:1e:a7:4f:b3:40:df:91:ef:c5:52:24:76:f1:0c: 32:67:0a:a8:0a:cb:51:90:a2:d6:0d:f8:55:48:5a: a8:51:08:ae:5b:cd:60:92:d7:8e:2f:ae:f8:b0:08: 7e:98:06:88:01:8d:ba:dc:5b:00:80:63:5c:52:d6: 93:e4:3b:21:66:93:1b:8f:97:3d:e0:0e:87:71:d6: 5e:b9:36:25:27:ae:87:ea:8c:15:f1:1d:89:fd:d7: 6e:69:5f:9b:06:8b:ef:7f:9c:dc:15:08:c1:94:6a: df:32:56:d3:04:a3:dd:ba:e7:c1:b3:14:23:10:03: a2:44:49:2d:35:64:5c:43:55:28:78:0a:15:8b:ff: 55:21:0f:1b:16:aa:b8:66:9d:08:ac:e2:7d:26:f3: 94:cc:18:55:df:10:e0:e9:f2:25:ac:2a:5b:cb:04: af:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:DF:47:1B:9A:15:6E:27:68:64:A8:CB:62:90:F3:17:37:FB:F1:F9 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/32E19AB6748C11EDB1EC923DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.76.245.0/24 IPv6: 2001:df1:6640::/48 Signature Algorithm: sha256WithRSAEncryption 88:3f:e7:4f:ee:7a:e2:fa:2f:d6:2c:79:45:8e:56:f7:c3:d5: 3b:69:18:48:8e:e6:89:a2:b2:65:0d:38:43:d5:d8:84:3a:26: 21:6e:c6:25:6c:35:9b:57:53:9f:e2:f7:a0:6f:97:64:01:5d: ef:6f:26:b8:b3:06:5f:91:15:24:16:51:e3:dd:44:a0:97:1a: 7f:1c:a6:a4:d9:2e:f1:ea:aa:fa:fa:1c:cb:77:41:c7:3c:75: 39:35:c1:87:b7:6c:b0:ee:d0:bc:77:94:c5:e2:72:1a:65:c1: ad:5c:0e:c2:c3:9e:d4:06:87:2f:e5:ed:9b:d3:52:fd:c1:11: 11:09:96:5c:ba:c4:81:60:e6:5b:11:67:60:94:f4:f9:2e:57: 54:03:03:7c:d7:a5:63:3e:5d:d5:1f:9d:1c:cd:79:49:e6:2e: eb:a3:b5:fe:c1:5d:b1:1c:d3:b6:f0:98:60:8a:45:c8:99:a1: b9:ce:b1:16:23:45:1d:3c:19:b4:8e:59:2f:ff:89:7f:24:5b: 2f:3d:9e:42:a6:42:22:3d:18:19:0c:6a:cb:b9:bb:f6:50:bd: ce:e8:71:37:e4:0e:14:1a:98:20:97:86:a3:7d:30:aa:5a:c8: 6a:3f:1f:20:87:e1:05:d0:bc:11:e4:78:c8:09:6c:83:91:b3: 40:4f:72:6b -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICcNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0NTMwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViY2EyYS05Mzg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA15AlHefMNzmL9uCxBCxqHIWVWsVeKnfYD7mAwzqPxzSrTnPhvXCLiarIfwA/ Emf85C5OXQkHkReCNbdPm4z07CPdFU7N/C5rblT72oBg38o9XCBMSco0OUtBHqdP s0Dfke/FUiR28QwyZwqoCstRkKLWDfhVSFqoUQiuW81gkteOL674sAh+mAaIAY26 3FsAgGNcUtaT5DshZpMbj5c94A6HcdZeuTYlJ66H6owV8R2J/dduaV+bBovvf5zc FQjBlGrfMlbTBKPduufBsxQjEAOiREktNWRcQ1UoeAoVi/9VIQ8bFqq4Zp0IrOJ9 JvOUzBhV3xDg6fIlrCpbywSvKQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLDfRxua FW4naGSoy2KQ8xc3+/H5MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMzJFMTlBQjY3 NDhDMTFFREIxRUM5MjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnTPUwDwQCAAIwCQMHACABDfFmQDANBgkqhkiG9w0BAQsF AAOCAQEAiD/nT+564vov1ix5RY5W98PVO2kYSI7miaKyZQ04Q9XYhDomIW7GJWw1 m1dTn+L3oG+XZAFd728muLMGX5EVJBZR491EoJcafxympNku8eqq+vocy3dBxzx1 OTXBh7dssO7QvHeUxeJyGmXBrVwOwsOe1AaHL+Xtm9NS/cEREQmWXLrEgWDmWxFn YJT0+S5XVAMDfNelYz5d1R+dHM15SeYu66O1/sFdsRzTtvCYYIpFyJmhuc6xFiNF HTwZtI5ZL/+JfyRbLz2eQqZCIj0YGQxqy7m79lC9zuhxN+QOFBqYIJeGo30wqlrI aj8fIIfhBdC8EeR4yAlsg5GzQE9yaw== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:29 2024 by rpki-client on console-ams.rpki-client.org