$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3B16287A43A711EDB443F97DC4F9AE02.roa File: 3B16287A43A711EDB443F97DC4F9AE02.roa (raw, json) Hash identifier: /bnmmTOUfeP1G8hnnpecoqMNyl2JL2m86CxjTzxcKG0= Subject key identifier: 18:4B:0A:A5:CD:FC:D1:16:76:36:25:A5:1A:E3:F1:6B:F6:19:45:35 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 70F0 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3B16287A43A711EDB443F97DC4F9AE02.roa Signing time: Wed 10 May 2023 16:45:54 +0000 ROA not before: Wed 10 May 2023 16:45:54 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 150097 IP address blocks: 103.13.42.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28912 (0x70f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:45:54 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bca41-2ded Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:df:c6:22:d3:b2:8f:6f:02:d8:bc:fa:fc:d4: 75:8f:fe:ba:b5:1c:d8:c8:f1:00:78:ef:f6:83:fe: d0:88:49:81:76:15:c8:bb:bc:11:60:7c:a6:eb:c6: 00:83:a2:50:2e:ac:8e:8e:68:e3:b4:01:4d:64:ad: 75:29:5b:cf:de:53:38:77:69:e1:b3:83:59:39:3a: 3d:7d:9b:1c:58:a8:81:85:f4:9a:73:ff:80:16:17: 5a:cb:15:67:33:1f:93:81:31:c3:d9:5a:85:37:fc: ae:46:e5:e5:3a:20:d2:85:41:cd:fd:62:4f:55:d6: d9:0f:56:7f:17:51:e0:9a:ee:10:a1:08:e1:e6:ad: a2:03:0d:5e:e6:06:bb:87:63:19:c5:79:8b:f2:ab: 96:3b:5b:2d:cc:5e:2b:e8:9d:30:43:b1:46:be:f3: 3e:10:c4:5f:27:e2:16:6e:9f:3b:35:2d:30:b9:c7: f7:2f:ed:9b:a9:d6:2f:40:4b:43:cf:67:2a:62:c8: f2:d4:a2:66:27:34:31:85:9c:c4:46:f7:a8:cf:6e: e1:c0:36:23:bf:a9:de:9d:18:36:f9:7d:3f:dc:09: 4f:6e:99:e5:58:61:52:12:f4:bf:64:d8:09:2d:7a: 21:36:6f:22:5f:ea:82:9b:b4:74:fe:8c:6c:24:26: 95:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:4B:0A:A5:CD:FC:D1:16:76:36:25:A5:1A:E3:F1:6B:F6:19:45:35 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3B16287A43A711EDB443F97DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.13.42.0/23 Signature Algorithm: sha256WithRSAEncryption 21:84:95:4c:e7:72:c3:7d:fd:9e:fd:d2:57:d9:78:d7:8b:fa: ff:41:b3:ee:eb:cf:4e:25:4f:89:cc:cc:65:bf:f2:1f:ce:3f: cc:2c:fe:b4:22:9e:63:05:89:c6:c4:7c:fd:d4:74:fb:72:7a: fd:c0:af:35:2d:85:f0:eb:45:e7:0e:5e:e5:9d:61:70:a4:c1: ae:08:da:da:e6:5b:4e:a3:7b:fa:5d:82:e6:ee:bb:ed:e1:c8: 4e:34:95:3c:b1:27:b9:89:ef:5e:67:ff:d7:e2:9a:5a:f0:a8: d6:54:83:93:ed:17:72:1d:ac:59:c8:81:33:66:9a:33:47:87: cf:48:01:90:d1:33:d9:c7:e5:da:de:0f:7a:e7:79:8f:de:e7: b4:34:ef:1b:b5:e8:d8:1a:70:90:6d:4b:42:2f:30:00:4e:d7: 80:aa:fb:a7:af:84:29:a6:10:1d:e4:0d:2a:1a:be:43:79:07: 0c:3e:ad:0b:46:47:95:8a:62:7b:98:24:c0:d3:53:9a:dd:b3: e5:0c:e0:33:36:bc:0e:b2:a2:57:c9:3c:fa:a8:f0:a4:1b:d8: d6:b5:35:37:28:2c:72:4a:89:a1:a2:76:5b:ee:7c:1d:b6:f7: 43:a3:bd:69:a8:b0:ec:62:b5:85:21:78:0e:c8:ce:52:e2:55: 65:ca:d1:79 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICcPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0NTU0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViY2E0MS0yZGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp9/GItOyj28C2Lz6/NR1j/66tRzYyPEAeO/2g/7QiEmBdhXIu7wRYHym68YA g6JQLqyOjmjjtAFNZK11KVvP3lM4d2nhs4NZOTo9fZscWKiBhfSac/+AFhdayxVn Mx+TgTHD2VqFN/yuRuXlOiDShUHN/WJPVdbZD1Z/F1Hgmu4QoQjh5q2iAw1e5ga7 h2MZxXmL8quWO1stzF4r6J0wQ7FGvvM+EMRfJ+IWbp87NS0wucf3L+2bqdYvQEtD z2cqYsjy1KJmJzQxhZzERveoz27hwDYjv6nenRg2+X0/3AlPbpnlWGFSEvS/ZNgJ LXohNm8iX+qCm7R0/oxsJCaVQQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBhLCqXN /NEWdjYlpRrj8Wv2GUU1MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvM0IxNjI4N0E0 M0E3MTFFREI0NDNGOTdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnDSowDQYJKoZIhvcNAQELBQADggEBACGElUzncsN9/Z79 0lfZeNeL+v9Bs+7rz04lT4nMzGW/8h/OP8ws/rQinmMFicbEfP3UdPtyev3ArzUt hfDrRecOXuWdYXCkwa4I2trmW06je/pdgubuu+3hyE40lTyxJ7mJ715n/9fimlrw qNZUg5PtF3IdrFnIgTNmmjNHh89IAZDRM9nH5dreD3rneY/e57Q07xu16NgacJBt S0IvMABO14Cq+6evhCmmEB3kDSoavkN5Bww+rQtGR5WKYnuYJMDTU5rds+UM4DM2 vA6yolfJPPqo8KQb2Na1NTcoLHJKiaGidlvufB2290OjvWmosOxitYUheA7IzlLi VWXK0Xk= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:30 2024 by rpki-client on console-ams.rpki-client.org