$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/37FB40B604A211ECBB369A6EC4F9AE02.roa File: 37FB40B604A211ECBB369A6EC4F9AE02.roa (raw, json) Hash identifier: WwIT1l0r6Knew9vetDRcrkytU5aCHJcybxc1rHMyeQw= Subject key identifier: C2:11:8C:CD:72:99:6C:DC:A2:5F:59:03:A2:63:F6:71:13:7F:17:46 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6BB7 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/37FB40B604A211ECBB369A6EC4F9AE02.roa Signing time: Wed 10 May 2023 16:21:01 +0000 ROA not before: Wed 10 May 2023 16:21:01 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 135255 IP address blocks: 103.211.188.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27575 (0x6bb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:21:01 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc46d-e70b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ba:07:72:a8:cd:05:db:cc:8e:5d:ca:5a:c1: 7c:00:1b:50:c1:d5:67:32:4b:19:33:c9:51:4e:6e: fd:77:96:c6:e8:0c:f0:64:f0:80:8d:05:05:08:b7: d9:46:f0:26:82:51:d8:10:87:6c:0f:4d:e2:81:87: 0c:43:35:b4:b1:46:d7:4b:e8:8f:41:bb:d5:ef:1f: ec:ce:9e:c8:de:56:fb:d9:15:62:f1:2f:44:d6:f4: 5f:3d:14:24:5c:15:c9:7f:00:23:70:de:b0:ac:d2: 4d:e5:c2:0f:ee:5d:63:4b:89:66:07:29:19:08:ea: 41:54:eb:53:3b:fd:46:cf:01:36:4b:8f:bb:1d:11: 83:e1:54:0a:78:6a:fa:16:26:42:98:1d:f6:9e:7f: 6a:65:66:41:b4:33:ca:69:13:22:e7:63:10:aa:75: 32:da:92:bb:ac:e1:bf:c8:36:d9:a3:1c:41:72:49: 85:8b:35:bf:46:2c:dc:78:6b:e9:a2:ce:6b:3e:56: 7c:ad:b8:be:b8:34:36:8e:46:a2:57:fd:51:bd:48: a1:cd:bf:b7:22:04:4d:cc:a2:51:9b:23:41:cc:e5: cb:d6:e5:a5:91:24:90:93:f6:a0:00:fd:b5:a5:9b: ce:4c:6b:39:39:21:40:38:22:07:df:b1:b5:87:1a: d0:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:11:8C:CD:72:99:6C:DC:A2:5F:59:03:A2:63:F6:71:13:7F:17:46 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/37FB40B604A211ECBB369A6EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.211.188.0/23 Signature Algorithm: sha256WithRSAEncryption 28:1e:e9:dc:05:02:82:30:f7:e2:4d:e6:d3:eb:3e:78:a6:9a: 25:a2:47:01:30:b2:0b:70:ee:50:0f:6b:1b:4b:dd:0d:86:9c: 21:c5:c0:63:75:9f:88:49:0e:85:2c:71:ae:38:b1:b4:3b:14: 60:41:17:01:ad:3a:8d:ae:dd:5d:6d:f0:68:b7:27:2e:76:7d: 4d:d6:b7:3f:93:59:e2:d5:08:c3:4e:17:db:e1:e3:fa:f3:81: 5b:eb:3c:ce:6a:88:21:47:ae:b5:e5:bd:cc:ce:71:09:ad:8d: 72:1d:b0:c4:62:96:51:c5:46:8a:95:01:09:0c:ac:8a:ee:bb: 8b:79:40:f6:1b:38:cc:ec:46:13:12:a7:43:b0:08:41:3d:fc: 9c:8a:72:f8:91:d4:1f:21:cc:cf:93:8d:41:bb:30:10:33:79: 92:3f:8e:7b:0e:c3:2b:2d:d5:70:4e:56:ea:c4:cc:d1:48:1d: f7:62:24:c7:51:30:a2:a5:75:dd:21:61:a1:0e:b5:d2:bb:65: 56:11:f4:be:bd:e4:4c:73:fe:23:25:1c:70:86:09:bd:1c:c6: 67:75:a6:e5:78:61:b1:ad:e3:3a:21:5f:f2:54:3b:38:b5:b3: e1:0d:34:98:0c:95:a4:86:e1:c3:51:92:64:8f:5c:a9:28:79: 15:71:71:0c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICa7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyMTAxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzQ2ZC1lNzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtboHcqjNBdvMjl3KWsF8ABtQwdVnMksZM8lRTm79d5bG6AzwZPCAjQUFCLfZ RvAmglHYEIdsD03igYcMQzW0sUbXS+iPQbvV7x/szp7I3lb72RVi8S9E1vRfPRQk XBXJfwAjcN6wrNJN5cIP7l1jS4lmBykZCOpBVOtTO/1GzwE2S4+7HRGD4VQKeGr6 FiZCmB32nn9qZWZBtDPKaRMi52MQqnUy2pK7rOG/yDbZoxxBckmFizW/RizceGvp os5rPlZ8rbi+uDQ2jkaiV/1RvUihzb+3IgRNzKJRmyNBzOXL1uWlkSSQk/agAP21 pZvOTGs5OSFAOCIH37G1hxrQoQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMIRjM1y mWzcol9ZA6Jj9nETfxdGMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMzdGQjQwQjYw NEEyMTFFQ0JCMzY5QTZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn07wwDQYJKoZIhvcNAQELBQADggEBACge6dwFAoIw9+JN 5tPrPnimmiWiRwEwsgtw7lAPaxtL3Q2GnCHFwGN1n4hJDoUsca44sbQ7FGBBFwGt Oo2u3V1t8Gi3Jy52fU3Wtz+TWeLVCMNOF9vh4/rzgVvrPM5qiCFHrrXlvczOcQmt jXIdsMRillHFRoqVAQkMrIruu4t5QPYbOMzsRhMSp0OwCEE9/JyKcviR1B8hzM+T jUG7MBAzeZI/jnsOwyst1XBOVurEzNFIHfdiJMdRMKKldd0hYaEOtdK7ZVYR9L69 5Exz/iMlHHCGCb0cxmd1puV4YbGt4zohX/JUOzi1s+ENNJgMlaSG4cNRkmSPXKko eRVxcQw= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:29 2024 by rpki-client on console-ams.rpki-client.org