$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3BC0AC7E917111ED901EA268C4F9AE02.roa File: 3BC0AC7E917111ED901EA268C4F9AE02.roa (raw, json) Hash identifier: +Nux5kJMCd/okrKTv/HYaceGlzU47tf4aFPAOh1DH1I= Subject key identifier: 80:69:E7:DC:B5:0B:6B:44:5C:73:9B:6E:B9:8C:8B:9C:8A:20:5F:F7 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6AE9 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3BC0AC7E917111ED901EA268C4F9AE02.roa Signing time: Wed 10 May 2023 16:17:06 +0000 ROA not before: Wed 10 May 2023 16:17:06 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134018 IP address blocks: 103.42.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27369 (0x6ae9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:17:06 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc381-bc1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:09:9f:00:ac:6c:84:41:c8:4d:9f:b5:d0:a3: b4:a0:95:5f:8f:20:09:16:88:ab:bc:63:7b:fe:aa: b9:47:82:ed:fd:0c:9d:ce:ea:57:55:ff:f6:30:e4: ed:f1:60:71:3c:30:41:b5:ff:43:d5:77:5a:85:7c: b0:dc:26:82:1d:0e:87:b8:b0:fb:2d:e7:88:a4:03: 12:5a:86:d8:c8:a8:c5:42:99:f9:25:f8:68:6d:2e: 28:c9:7c:5d:99:e7:2a:e0:b7:0c:46:67:67:c9:e0: 11:0f:40:fb:a3:67:e0:09:a8:05:6d:0d:b2:19:00: 72:2e:71:c3:a7:f1:7e:07:b6:f3:d2:c0:b1:9c:57: 14:6c:4d:65:c6:85:23:25:86:8c:fd:45:18:1f:7e: 91:ea:0a:55:7c:6e:27:d2:3f:1f:a6:b1:dd:fc:4a: d5:3e:01:d0:f7:07:15:f2:b9:19:70:fa:03:24:39: 9d:2a:2a:9e:aa:10:c4:e6:da:b6:cd:f6:56:39:d7: ec:bd:ee:4e:86:8e:76:1d:cc:43:ad:3d:7c:c3:67: 13:8c:25:b7:c8:30:eb:ce:08:f3:91:fa:d1:3c:ce: 19:c0:5e:41:e5:60:03:b4:8a:10:22:ae:a1:91:49: 46:d0:8c:d3:2e:64:95:b3:ab:47:a5:7f:5a:e8:ac: a2:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:69:E7:DC:B5:0B:6B:44:5C:73:9B:6E:B9:8C:8B:9C:8A:20:5F:F7 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3BC0AC7E917111ED901EA268C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.42.12.0/23 Signature Algorithm: sha256WithRSAEncryption 23:c1:b3:d9:39:87:9a:d3:89:ea:08:aa:a2:d0:0b:b1:e2:d7: b1:c5:8d:0a:5d:c9:6a:91:30:e3:a9:6c:44:d3:2d:b3:ce:e3: 76:af:c9:cc:5f:a1:51:09:c1:07:44:d7:69:93:4b:e3:2d:e0: c9:11:7c:e2:08:fb:e7:70:de:62:d8:06:b3:49:e8:c8:b3:4d: 90:34:c9:c6:a8:aa:78:27:43:ee:1e:32:53:88:23:c1:f1:31: bb:ae:30:11:00:05:dd:88:6f:5d:6e:69:c6:b9:42:c7:cf:6b: 0b:2e:df:0a:41:f1:bd:21:94:dd:87:94:59:2c:0d:47:37:c5: 69:68:9a:36:d2:dd:d3:53:d7:66:34:18:e1:62:86:3c:63:a7: 80:4a:b5:7e:1d:c0:bd:01:b3:64:b8:3b:29:82:56:fc:34:3a: 4f:18:2b:d6:6c:6c:13:74:1d:00:ff:3d:d4:d7:2a:c6:40:ce: d0:79:2d:10:10:08:f1:64:6e:7e:c5:c7:48:92:cb:de:4d:67: 22:c0:22:d5:a8:13:2b:e9:f4:c9:f2:82:83:b7:a6:18:65:eb: ce:2d:d2:8f:7f:40:f2:d3:cb:9d:ed:5b:2d:f1:f8:75:bc:ed: 12:0f:25:92:84:ec:77:0a:99:97:80:34:c4:4a:75:41:f4:90: 92:49:f7:d0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICaukwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxNzA2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzM4MS1iYzFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArgmfAKxshEHITZ+10KO0oJVfjyAJFoirvGN7/qq5R4Lt/QydzupXVf/2MOTt 8WBxPDBBtf9D1XdahXyw3CaCHQ6HuLD7LeeIpAMSWobYyKjFQpn5JfhobS4oyXxd mecq4LcMRmdnyeARD0D7o2fgCagFbQ2yGQByLnHDp/F+B7bz0sCxnFcUbE1lxoUj JYaM/UUYH36R6gpVfG4n0j8fprHd/ErVPgHQ9wcV8rkZcPoDJDmdKiqeqhDE5tq2 zfZWOdfsve5Oho52HcxDrT18w2cTjCW3yDDrzgjzkfrRPM4ZwF5B5WADtIoQIq6h kUlG0IzTLmSVs6tHpX9a6Kyi6QIDAQABo4IClTCCApEwHQYDVR0OBBYEFIBp59y1 C2tEXHObbrmMi5yKIF/3MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvM0JDMEFDN0U5 MTcxMTFFRDkwMUVBMjY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnKgwwDQYJKoZIhvcNAQELBQADggEBACPBs9k5h5rTieoI qqLQC7Hi17HFjQpdyWqRMOOpbETTLbPO43avycxfoVEJwQdE12mTS+Mt4MkRfOII ++dw3mLYBrNJ6MizTZA0ycaoqngnQ+4eMlOII8HxMbuuMBEABd2Ib11uaca5QsfP awsu3wpB8b0hlN2HlFksDUc3xWlomjbS3dNT12Y0GOFihjxjp4BKtX4dwL0Bs2S4 OymCVvw0Ok8YK9ZsbBN0HQD/PdTXKsZAztB5LRAQCPFkbn7Fx0iSy95NZyLAItWo Eyvp9MnygoO3phhl684t0o9/QPLTy53tWy3x+HW87RIPJZKE7HcKmZeANMRKdUH0 kJJJ99A= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:30 2024 by rpki-client on console-ams.rpki-client.org