$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3C805AAA68DF11EA845FA822C4F9AE02.roa File: 3C805AAA68DF11EA845FA822C4F9AE02.roa (raw, json) Hash identifier: JyaPsz81mm/Yf7Zsm6hmgKvU2BKCX5A4sbDsCcH0lQM= Subject key identifier: AB:19:07:6F:91:87:1E:7A:96:6F:2C:91:6B:18:FE:AD:E3:43:2F:D9 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 71E0 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3C805AAA68DF11EA845FA822C4F9AE02.roa Signing time: Wed 10 May 2023 16:50:22 +0000 ROA not before: Wed 10 May 2023 16:50:22 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 9430 IP address blocks: 203.190.144.0/24 maxlen: 24 2402:ef01:2::/48 maxlen: 48 2402:ef01:3::/48 maxlen: 48 2402:ef16::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29152 (0x71e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:50:22 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bcb4e-f7c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:05:42:e5:87:36:c9:e6:f8:3f:14:f7:3b:64: 66:1b:a8:96:88:15:40:65:35:8d:26:07:4a:9a:7d: 54:38:aa:a1:54:3b:86:bc:88:77:46:e2:db:9e:b7: 42:ad:57:88:55:c7:44:15:bb:2a:95:45:0c:8e:ef: d4:ea:ea:31:de:0c:0e:57:37:1c:43:9f:6f:f6:ac: d9:05:73:17:cc:ad:09:d4:c7:78:70:84:c2:3f:2f: d0:6f:aa:bd:3e:61:e2:48:7f:b2:a7:45:5a:1f:16: d0:83:76:ae:f7:8a:96:25:03:54:17:f4:36:83:ea: 93:a6:e4:43:b3:47:6e:5d:80:cf:97:5d:fe:f8:80: ee:0e:45:bf:f8:94:cc:fa:e9:5c:36:7c:17:9e:71: 95:cb:85:fd:02:b6:a8:61:52:a0:99:82:b7:65:a4: 5b:9c:77:19:5d:64:6a:47:51:ee:c7:32:db:d0:3b: 57:a9:ca:b3:5a:6e:0a:66:9d:12:44:b4:11:db:ca: fe:e4:85:43:4b:3e:b7:2d:a5:aa:49:48:4b:8c:4d: bf:4f:d1:9b:08:5f:9c:b5:92:f4:53:ef:67:2d:bc: af:db:86:4e:44:2b:58:4a:28:cc:20:6a:fe:83:f9: f6:78:03:dc:36:38:df:68:d9:32:da:89:a9:66:60: 22:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:19:07:6F:91:87:1E:7A:96:6F:2C:91:6B:18:FE:AD:E3:43:2F:D9 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3C805AAA68DF11EA845FA822C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.190.144.0/24 IPv6: 2402:ef01:2::/47 2402:ef16::/32 Signature Algorithm: sha256WithRSAEncryption 9d:2c:76:a7:f6:22:f8:f6:35:5c:b6:85:ba:b5:42:d2:5e:3c: 8e:5d:50:a5:c4:34:0d:ed:2f:be:42:3b:a7:7e:c3:1d:1d:48: 23:9a:96:50:ec:7a:16:f6:d8:ac:73:31:28:88:0a:f7:24:1e: 2d:92:5d:af:2a:4a:f8:91:cd:2a:9c:ab:1a:74:be:42:83:af: 85:6a:d8:5b:12:4f:d3:a8:28:2b:96:13:e6:7d:1f:58:4d:c7: f6:44:32:58:1e:f9:92:24:a2:a6:57:83:27:9b:72:4a:27:1f: 9a:50:bd:a2:52:9c:cb:c1:af:4c:16:f0:3e:9d:77:88:03:7e: b5:b6:ce:df:f5:83:97:f2:99:18:be:af:e7:d8:a8:a7:38:a0: 2c:68:20:e8:56:f1:18:7e:27:f9:8a:14:52:bb:cd:07:e4:bb: 24:7c:ad:1b:14:06:cc:e7:49:32:89:1a:1f:6e:da:c9:91:4f: 76:54:4e:95:d5:8f:91:7c:40:7e:39:43:0a:4f:1c:99:6f:e7: 9a:d2:ff:5d:c1:58:35:10:66:3e:68:6c:45:c3:40:d8:09:e9: 55:97:53:f8:0b:8f:40:a3:64:34:a6:f1:63:b6:4c:c8:ba:8e: 98:87:53:ac:98:4a:2f:9a:77:81:2c:02:68:2e:cd:1d:f8:08: 31:a8:02:7c -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICceAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY1MDIyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViY2I0ZS1mN2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQVC5Yc2yeb4PxT3O2RmG6iWiBVAZTWNJgdKmn1UOKqhVDuGvIh3RuLbnrdC rVeIVcdEFbsqlUUMju/U6uox3gwOVzccQ59v9qzZBXMXzK0J1Md4cITCPy/Qb6q9 PmHiSH+yp0VaHxbQg3au94qWJQNUF/Q2g+qTpuRDs0duXYDPl13++IDuDkW/+JTM +ulcNnwXnnGVy4X9AraoYVKgmYK3ZaRbnHcZXWRqR1HuxzLb0DtXqcqzWm4KZp0S RLQR28r+5IVDSz63LaWqSUhLjE2/T9GbCF+ctZL0U+9nLbyv24ZORCtYSijMIGr+ g/n2eAPcNjjfaNky2ompZmAi1wIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFKsZB2+R hx56lm8skWsY/q3jQy/ZMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvM0M4MDVBQUE2 OERGMTFFQTg0NUZBODIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMAwEAgABMAYDBADLvpAwFgQCAAIwEAMHASQC7wEAAgMFACQC7xYwDQYJKoZI hvcNAQELBQADggEBAJ0sdqf2Ivj2NVy2hbq1QtJePI5dUKXENA3tL75CO6d+wx0d SCOallDsehb22KxzMSiICvckHi2SXa8qSviRzSqcqxp0vkKDr4Vq2FsST9OoKCuW E+Z9H1hNx/ZEMlge+ZIkoqZXgyebckonH5pQvaJSnMvBr0wW8D6dd4gDfrW2zt/1 g5fymRi+r+fYqKc4oCxoIOhW8Rh+J/mKFFK7zQfkuyR8rRsUBsznSTKJGh9u2smR T3ZUTpXVj5F8QH45QwpPHJlv55rS/13BWDUQZj5obEXDQNgJ6VWXU/gLj0CjZDSm 8WO2TMi6jpiHU6yYSi+ad4EsAmguzR34CDGoAnw= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:30 2024 by rpki-client on console-ams.rpki-client.org