$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3B6CB1F6575111ECBC35696FC4F9AE02.roa File: 3B6CB1F6575111ECBC35696FC4F9AE02.roa (raw, json) Hash identifier: hcBUBoFQIYohBd91Axyx4nE/bNPbZ3KAWkUdNN9SeWk= Subject key identifier: CB:37:A5:D3:7A:29:02:BF:E3:78:80:47:1E:36:63:7E:84:39:57:4B Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6FB7 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3B6CB1F6575111ECBC35696FC4F9AE02.roa Signing time: Wed 10 May 2023 16:40:08 +0000 ROA not before: Wed 10 May 2023 16:40:08 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 146907 IP address blocks: 103.173.190.0/24 maxlen: 24 2001:df7:a880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28599 (0x6fb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:40:08 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc8e8-65a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4c:7f:fc:4e:75:78:a9:d2:57:b2:0a:6a:44: 76:25:4d:f7:b0:c1:72:f7:d7:8b:91:70:6b:96:7d: a5:c0:cf:22:72:56:e8:17:73:e7:d6:39:4a:66:aa: 0a:19:75:28:f8:6f:a3:6b:f9:54:5e:e8:8b:38:a0: 92:1a:02:97:e0:25:de:81:b5:c9:d0:14:fc:b3:f3: 54:02:06:27:98:be:1d:42:aa:5f:30:00:25:ce:41: 65:5a:3c:e3:a4:11:4b:cf:91:d4:61:ad:20:6b:bb: 52:fa:46:a8:47:2d:d2:08:64:10:34:9e:69:df:03: df:fb:3b:51:1c:61:4b:2f:0c:60:c4:ea:06:47:9c: 4c:89:ba:1c:ea:7d:a1:f1:ca:61:f4:70:43:8f:8b: b4:af:4d:26:93:71:59:47:31:c3:f4:f3:e3:84:d0: 99:b3:b5:b3:98:2c:56:0a:ac:3b:48:15:54:79:55: cb:ab:c2:56:7e:4c:4e:3f:e1:b8:d4:92:b7:59:63: cf:a6:13:41:e3:c2:ef:b4:eb:94:1a:0e:bc:4b:7a: 1a:8e:6b:63:06:c1:47:92:46:4e:7e:de:9c:99:72: ac:0d:91:5e:0a:34:96:db:8b:95:95:45:07:2a:e0: a9:79:de:a6:dc:60:d8:e9:10:0f:d4:8d:3b:42:f9: 6a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:37:A5:D3:7A:29:02:BF:E3:78:80:47:1E:36:63:7E:84:39:57:4B X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3B6CB1F6575111ECBC35696FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.190.0/24 IPv6: 2001:df7:a880::/48 Signature Algorithm: sha256WithRSAEncryption 9c:40:a4:03:ad:74:d1:a0:f5:5b:fd:76:c9:a7:9e:a9:97:b8: 8c:0d:d5:99:ad:a8:11:35:ae:a7:25:df:d2:15:3f:5d:fd:72: 70:82:31:f9:44:90:bd:27:44:55:37:30:a7:eb:dc:1e:a4:2f: 3f:22:cb:46:c0:49:de:15:48:42:fd:bf:79:a2:4a:31:66:49: ca:02:af:bd:87:56:fe:b7:38:5f:1f:d2:32:06:ad:ab:ca:61: c8:12:1d:5e:ba:f8:3c:4b:dc:f1:09:dd:9b:5d:a1:9a:87:63: 5e:b6:3c:1f:cc:01:4e:6b:51:2a:6f:58:4d:9a:0e:9f:47:b6: cf:93:e7:38:c0:c2:2f:35:ee:cf:8c:9d:34:13:da:bf:ec:e0: 06:2f:64:cd:51:5b:f9:c9:da:2f:bb:f5:2d:49:a3:92:71:78: 19:66:66:ed:93:66:b5:a6:1f:b0:00:cc:31:2a:af:63:3b:79: 60:0b:5b:d7:5f:c6:cc:9f:eb:17:29:40:25:cd:cf:8b:ac:f5: e6:d6:eb:6f:66:d5:69:69:c7:f5:01:30:72:4e:ed:3a:fa:3a: 93:3b:b5:dd:c0:42:57:86:08:88:d8:cd:c2:2d:03:1c:23:8c: 5d:41:dc:b8:95:97:f7:29:6c:1c:54:9f:11:ba:77:96:64:b4: ab:33:df:39 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICb7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0MDA4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzhlOC02NWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0x//E51eKnSV7IKakR2JU33sMFy99eLkXBrln2lwM8iclboF3Pn1jlKZqoK GXUo+G+ja/lUXuiLOKCSGgKX4CXegbXJ0BT8s/NUAgYnmL4dQqpfMAAlzkFlWjzj pBFLz5HUYa0ga7tS+kaoRy3SCGQQNJ5p3wPf+ztRHGFLLwxgxOoGR5xMiboc6n2h 8cph9HBDj4u0r00mk3FZRzHD9PPjhNCZs7WzmCxWCqw7SBVUeVXLq8JWfkxOP+G4 1JK3WWPPphNB48LvtOuUGg68S3oajmtjBsFHkkZOft6cmXKsDZFeCjSW24uVlUUH KuCped6m3GDY6RAP1I07QvlqcQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMs3pdN6 KQK/43iARx42Y36EOVdLMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvM0I2Q0IxRjY1 NzUxMTFFQ0JDMzU2OTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnrb4wDwQCAAIwCQMHACABDfeogDANBgkqhkiG9w0BAQsF AAOCAQEAnECkA6100aD1W/12yaeeqZe4jA3Vma2oETWupyXf0hU/Xf1ycIIx+USQ vSdEVTcwp+vcHqQvPyLLRsBJ3hVIQv2/eaJKMWZJygKvvYdW/rc4Xx/SMgatq8ph yBIdXrr4PEvc8Qndm12hmodjXrY8H8wBTmtRKm9YTZoOn0e2z5PnOMDCLzXuz4yd NBPav+zgBi9kzVFb+cnaL7v1LUmjknF4GWZm7ZNmtaYfsADMMSqvYzt5YAtb11/G zJ/rFylAJc3Pi6z15tbrb2bVaWnH9QEwck7tOvo6kzu13cBCV4YIiNjNwi0DHCOM XUHcuJWX9ylsHFSfEbp3lmS0qzPfOQ== -----END CERTIFICATE-----Generated at Sun Apr 28 15:51:18 2024 by rpki-client on console-fra.rpki-client.org