$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3B93DE2E8B1911EC98B1252FC4F9AE02.roa File: 3B93DE2E8B1911EC98B1252FC4F9AE02.roa (raw, json) Hash identifier: ahignF6AhpZe4StqmmRafNhomH0+jCZZHhAcGx6+HvY= Subject key identifier: EE:5E:9F:3B:D8:34:91:9A:D8:9A:BE:E2:0E:C3:FF:67:06:0B:34:61 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6C8A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3B93DE2E8B1911EC98B1252FC4F9AE02.roa Signing time: Wed 10 May 2023 16:25:02 +0000 ROA not before: Wed 10 May 2023 16:25:02 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136641 IP address blocks: 103.181.16.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27786 (0x6c8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:25:02 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc55e-140b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:db:d5:39:f1:e7:fd:f9:f2:bf:b4:74:fb:24: 4d:f8:9e:d0:46:50:ce:ec:a1:50:69:de:8f:fe:89: ec:c5:f3:ec:aa:eb:8d:08:97:ea:6b:58:c1:b6:72: ba:b7:8b:e4:4a:75:9c:35:7e:b0:72:72:b1:c3:9d: 70:63:ce:f9:3d:c0:92:9b:f8:bc:91:f3:ec:5a:19: 30:a3:62:27:5f:5e:2b:ff:ca:c3:81:f7:48:09:93: 0a:31:10:bb:7a:d0:e9:6d:51:14:df:f5:6c:e7:dc: 8b:bf:23:61:d3:90:57:fa:7f:12:c8:9a:5f:96:89: b4:18:54:9f:5d:9e:ed:37:e5:ab:96:97:db:df:35: 5c:fc:83:d2:2f:3e:83:c3:e7:43:28:5e:41:95:31: 7d:e8:65:68:d0:b1:ab:d1:33:4d:f5:f9:16:42:78: 09:01:6d:78:eb:c3:f0:15:38:fb:2d:37:bc:2e:79: 8b:45:bb:4e:25:53:18:1f:a1:3c:51:e5:02:5d:0e: d4:cf:24:55:8e:da:40:e7:f1:88:0a:f8:c5:d3:35: 20:a2:ef:8d:04:b2:46:87:3d:ae:00:11:3d:bc:33: 9c:24:7b:d4:59:ea:71:8b:f9:22:8f:0d:74:f0:00: c3:66:68:b0:3c:8d:da:37:d2:f7:6f:0e:95:65:2b: fd:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:5E:9F:3B:D8:34:91:9A:D8:9A:BE:E2:0E:C3:FF:67:06:0B:34:61 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3B93DE2E8B1911EC98B1252FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.181.16.0/23 Signature Algorithm: sha256WithRSAEncryption 41:7b:67:3a:69:9f:26:81:c7:57:56:32:b5:ab:a8:a2:05:08: f8:b9:be:2e:50:09:aa:18:09:cf:58:24:fc:f0:25:00:20:8f: 13:7d:64:a0:1f:28:2a:1d:d1:c2:f3:48:fd:2e:98:56:e8:56: 9c:06:27:86:91:58:d7:5c:53:c4:24:25:21:89:0b:6e:57:e7: d9:d7:0e:ae:60:75:35:ac:0f:85:4b:b3:43:64:26:63:0b:ee: 4b:92:72:f2:a0:c0:b1:35:eb:3e:cb:4d:1c:de:90:71:c1:7f: 6a:27:95:39:8f:eb:ab:17:39:a8:30:3d:7b:19:83:00:90:a9: bf:49:00:a5:27:b1:f5:47:f1:08:82:6f:1c:ca:fc:86:87:bc: d0:21:3c:5d:98:c9:4b:7f:fe:9f:8a:85:ef:39:6e:dd:d5:be: 20:bf:4f:46:f9:95:6a:38:54:a0:a9:55:f5:ce:9e:03:7e:53: fb:35:7c:b6:11:03:c1:8f:62:4e:8c:ef:9f:74:c3:39:f7:a2: a8:62:63:ee:73:a7:94:fa:8c:b9:c6:f9:73:50:7b:a7:23:3f: 05:22:c2:28:b7:4d:cc:28:eb:14:a4:20:44:62:00:c3:09:58: 03:e8:f8:38:a3:f9:6e:b9:c7:52:ab:fd:a9:cf:54:fe:8b:db: e8:eb:91:f2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNTAyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzU1ZS0xNDBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxdvVOfHn/fnyv7R0+yRN+J7QRlDO7KFQad6P/onsxfPsquuNCJfqa1jBtnK6 t4vkSnWcNX6wcnKxw51wY875PcCSm/i8kfPsWhkwo2InX14r/8rDgfdICZMKMRC7 etDpbVEU3/Vs59yLvyNh05BX+n8SyJpflom0GFSfXZ7tN+Wrlpfb3zVc/IPSLz6D w+dDKF5BlTF96GVo0LGr0TNN9fkWQngJAW1468PwFTj7LTe8LnmLRbtOJVMYH6E8 UeUCXQ7UzyRVjtpA5/GICvjF0zUgou+NBLJGhz2uABE9vDOcJHvUWepxi/kijw10 8ADDZmiwPI3aN9L3bw6VZSv9DwIDAQABo4IClTCCApEwHQYDVR0OBBYEFO5enzvY NJGa2Jq+4g7D/2cGCzRhMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvM0I5M0RFMkU4 QjE5MTFFQzk4QjEyNTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFntRAwDQYJKoZIhvcNAQELBQADggEBAEF7ZzppnyaBx1dW MrWrqKIFCPi5vi5QCaoYCc9YJPzwJQAgjxN9ZKAfKCod0cLzSP0umFboVpwGJ4aR WNdcU8QkJSGJC25X59nXDq5gdTWsD4VLs0NkJmML7kuScvKgwLE16z7LTRzekHHB f2onlTmP66sXOagwPXsZgwCQqb9JAKUnsfVH8QiCbxzK/IaHvNAhPF2YyUt//p+K he85bt3VviC/T0b5lWo4VKCpVfXOngN+U/s1fLYRA8GPYk6M7590wzn3oqhiY+5z p5T6jLnG+XNQe6cjPwUiwii3Tcwo6xSkIERiAMMJWAPo+Dij+W65x1Kr/anPVP6L 2+jrkfI= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:30 2024 by rpki-client on console-ams.rpki-client.org