$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3BDB6784F9B111EBA17B0413C4F9AE02.roa File: 3BDB6784F9B111EBA17B0413C4F9AE02.roa (raw, json) Hash identifier: DghQFkEIvqim5sy/8Jm0yqERd5wd/zEa43SVd+c+yBA= Subject key identifier: F1:FB:28:AA:59:E9:D3:91:C7:8E:A3:33:D8:D8:4D:15:9F:8D:76:4C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6F51 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3BDB6784F9B111EBA17B0413C4F9AE02.roa Signing time: Wed 10 May 2023 16:38:13 +0000 ROA not before: Wed 10 May 2023 16:38:13 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 142452 IP address blocks: 103.171.38.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28497 (0x6f51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:38:13 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc875-a575 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2c:ef:02:06:3f:6a:db:3f:e6:ab:ee:15:71: cc:cb:02:68:0e:e6:6f:9c:32:a3:b0:de:3b:d3:2d: be:fc:5a:a9:31:6d:5a:96:03:3a:9e:b9:e9:50:bc: a4:34:bf:7f:d7:ce:d9:1b:91:6b:ec:5c:6a:8b:16: 63:cc:fc:c8:ea:36:86:13:03:cf:98:2e:2e:61:57: e6:52:40:4d:d4:6f:51:92:d0:59:f8:4f:2c:fa:09: 00:98:b8:5f:89:f4:6b:9a:19:ca:16:37:8c:01:57: 9b:c6:f3:97:01:6f:cc:9c:dd:fd:26:80:f5:63:7b: 3e:41:50:4f:00:4a:e8:22:ed:af:97:f2:60:73:a5: ec:14:c5:3c:27:7a:0d:7c:c7:a2:98:3f:c9:1f:20: e3:a7:60:aa:ae:9b:23:69:9f:85:9a:29:7f:74:23: b9:c8:a1:7b:78:f5:29:bd:01:09:1f:ca:6f:81:70: 92:24:2f:89:63:77:a3:1e:49:00:b1:da:8a:e4:46: 4f:12:25:dc:24:66:c5:c9:f1:4c:b7:35:c2:7b:04: 23:ae:86:c8:a7:72:8e:07:b8:a9:43:f3:c0:84:44: 95:85:cd:f3:a1:4b:b4:2d:8a:2c:62:9b:1f:12:ad: b1:1f:cf:9e:25:7b:a2:d3:a3:b4:90:90:04:38:e4: 99:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:FB:28:AA:59:E9:D3:91:C7:8E:A3:33:D8:D8:4D:15:9F:8D:76:4C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3BDB6784F9B111EBA17B0413C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.171.38.0/23 Signature Algorithm: sha256WithRSAEncryption 24:04:81:0f:52:0d:4c:46:c7:ab:2a:99:3c:17:f7:08:66:d1: 1c:b2:6a:f2:ca:fd:b2:4d:f2:57:fc:92:db:f6:05:ab:b6:f4: 5c:9f:ce:f7:3c:bd:1d:87:01:a2:9e:ac:4d:a3:1d:5a:a1:07: ec:54:aa:d9:5c:3b:8a:fd:1c:0f:6c:a4:01:85:2f:8c:47:88: 66:db:13:14:44:cc:37:2a:5b:c6:d2:d1:10:ba:d4:38:24:98: b0:e1:a6:13:b3:67:18:26:81:3c:ed:a8:04:20:38:41:b7:4e: 96:de:35:73:2c:64:e3:21:6d:12:a3:8e:a8:bb:ca:7b:b9:38: 9b:c3:aa:43:5f:17:86:6f:be:b0:0d:c6:33:9a:dd:ec:20:79: f0:7b:c8:c0:d7:50:bd:2c:ec:f9:7c:6b:17:f2:38:c0:d9:7b: d9:ac:f5:7a:18:44:d8:8e:20:b3:1a:82:3c:73:c0:4d:f0:65: 1b:ba:1f:4a:d7:3a:84:35:68:64:89:64:08:4f:07:b8:db:f2: e2:e0:5a:b1:38:6b:c0:5c:6e:53:63:5b:f2:04:1b:26:ae:eb: 22:44:4d:db:df:43:2b:7f:d2:e4:59:e4:c6:a2:15:ba:0e:53: 75:c6:b0:2f:7f:3c:55:d3:d5:b2:07:a6:4b:94:76:12:1e:12: 4f:1f:9a:9b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICb1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzODEzWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzg3NS1hNTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAryzvAgY/ats/5qvuFXHMywJoDuZvnDKjsN470y2+/FqpMW1algM6nrnpULyk NL9/187ZG5Fr7FxqixZjzPzI6jaGEwPPmC4uYVfmUkBN1G9RktBZ+E8s+gkAmLhf ifRrmhnKFjeMAVebxvOXAW/MnN39JoD1Y3s+QVBPAEroIu2vl/Jgc6XsFMU8J3oN fMeimD/JHyDjp2CqrpsjaZ+Fmil/dCO5yKF7ePUpvQEJH8pvgXCSJC+JY3ejHkkA sdqK5EZPEiXcJGbFyfFMtzXCewQjrobIp3KOB7ipQ/PAhESVhc3zoUu0LYosYpsf Eq2xH8+eJXui06O0kJAEOOSZ+QIDAQABo4IClTCCApEwHQYDVR0OBBYEFPH7KKpZ 6dORx46jM9jYTRWfjXZMMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvM0JEQjY3ODRG OUIxMTFFQkExN0IwNDEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnqyYwDQYJKoZIhvcNAQELBQADggEBACQEgQ9SDUxGx6sq mTwX9whm0RyyavLK/bJN8lf8ktv2Bau29Fyfzvc8vR2HAaKerE2jHVqhB+xUqtlc O4r9HA9spAGFL4xHiGbbExREzDcqW8bS0RC61DgkmLDhphOzZxgmgTztqAQgOEG3 TpbeNXMsZOMhbRKjjqi7ynu5OJvDqkNfF4ZvvrANxjOa3ewgefB7yMDXUL0s7Pl8 axfyOMDZe9ms9XoYRNiOILMagjxzwE3wZRu6H0rXOoQ1aGSJZAhPB7jb8uLgWrE4 a8BcblNjW/IEGyau6yJETdvfQyt/0uRZ5MaiFboOU3XGsC9/PFXT1bIHpkuUdhIe Ek8fmps= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:30 2024 by rpki-client on console-ams.rpki-client.org