$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3C96D528062C11EC865AA71CC4F9AE02.roa File: 3C96D528062C11EC865AA71CC4F9AE02.roa (raw, json) Hash identifier: U14pVPC5Zs1f8VIvztcmwd+B1TUoO2fdLTvBhwEbf1g= Subject key identifier: 47:14:B2:6C:B1:52:27:D1:61:A1:C0:50:CC:5B:F4:C7:0C:A5:9B:50 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6FBE Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3C96D528062C11EC865AA71CC4F9AE02.roa Signing time: Wed 10 May 2023 16:40:16 +0000 ROA not before: Wed 10 May 2023 16:40:16 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 146917 IP address blocks: 103.172.10.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28606 (0x6fbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:40:16 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc8f0-b723 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:03:1e:eb:61:03:18:c9:bf:e2:4e:80:75:94: 7a:51:4c:b2:1f:98:90:82:2c:20:0f:12:85:53:46: 25:9f:69:07:66:23:df:a0:8d:eb:ca:6d:a2:2d:ae: 00:4e:0c:7c:f6:57:25:d3:b8:ba:34:f4:6d:1c:40: c5:57:e9:32:f6:17:7a:64:5f:5d:d7:3d:d4:63:91: ef:d8:42:89:89:16:53:03:06:89:17:70:92:10:3f: 9d:64:bc:71:30:10:e8:94:b1:05:36:2a:d0:7f:4b: 7b:01:e1:d1:3d:40:cc:ba:b1:20:f1:d0:ed:6e:0c: e4:13:d0:bb:9c:b0:c2:05:ba:a3:c2:c7:e5:1d:9e: 50:de:89:1c:b4:0e:19:70:81:fa:56:a6:43:b9:8f: 64:36:65:3b:e6:85:bc:83:4a:84:6d:42:0a:3e:ff: 2c:cb:51:26:32:59:7b:89:20:2e:3a:fb:ab:98:bf: a6:0e:6f:2f:5a:0c:d4:7d:53:45:fa:32:23:ad:99: 9c:ca:d2:7a:c5:84:3a:9b:fd:fd:48:bb:51:da:5c: 46:7a:cb:95:74:6c:73:83:9d:3d:bb:d3:2b:de:5f: 5f:69:40:c8:af:a7:f5:e2:51:20:22:7d:eb:79:32: 9f:ad:2e:4d:29:24:d3:ad:d5:73:19:46:27:8d:15: f9:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:14:B2:6C:B1:52:27:D1:61:A1:C0:50:CC:5B:F4:C7:0C:A5:9B:50 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3C96D528062C11EC865AA71CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.10.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:14:7c:01:51:08:d0:8c:ec:a0:6d:00:c5:52:a5:be:74:f2: 15:d1:af:be:a1:3c:6b:14:f8:16:f3:d2:18:60:e7:ac:1c:df: 28:2c:fe:8f:a7:1a:7c:d6:dc:3a:05:54:49:f2:f3:a5:9c:48: bb:68:3d:f0:06:e3:82:52:a7:2d:f5:b6:f6:9a:fb:80:24:a8: 20:aa:46:c9:c9:eb:b2:01:65:08:66:9b:cb:e3:68:43:ba:b4: 69:74:8e:cf:f1:e0:3e:dd:a0:5b:f1:39:a2:b1:1b:da:d7:5b: 85:7c:62:83:27:be:26:29:83:0c:0b:7a:8d:e8:69:f1:9d:71: 12:80:b4:39:f8:a7:7f:33:b8:90:09:a2:ca:2d:f3:56:af:5f: 50:65:ff:83:07:f7:99:45:d7:13:f3:c2:2f:a4:66:0f:4d:af: 0e:c0:81:2e:9b:7d:55:86:4b:08:e8:5f:d6:69:80:3a:a7:4e: e7:f4:af:92:5f:72:ce:d5:90:21:a7:36:89:7f:df:e9:3d:ca: 6b:96:84:67:74:9c:a8:1a:62:cf:f7:f9:f4:88:13:75:e6:5a: 64:ab:61:be:56:14:b1:eb:ee:39:83:6f:fa:f0:36:7e:46:46: b9:ac:47:ee:b1:1c:73:37:a9:3e:43:0c:80:98:99:fd:20:68: 73:0d:99:fa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICb74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0MDE2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzhmMC1iNzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1AMe62EDGMm/4k6AdZR6UUyyH5iQgiwgDxKFU0Yln2kHZiPfoI3rym2iLa4A Tgx89lcl07i6NPRtHEDFV+ky9hd6ZF9d1z3UY5Hv2EKJiRZTAwaJF3CSED+dZLxx MBDolLEFNirQf0t7AeHRPUDMurEg8dDtbgzkE9C7nLDCBbqjwsflHZ5Q3okctA4Z cIH6VqZDuY9kNmU75oW8g0qEbUIKPv8sy1EmMll7iSAuOvurmL+mDm8vWgzUfVNF +jIjrZmcytJ6xYQ6m/39SLtR2lxGesuVdGxzg509u9Mr3l9faUDIr6f14lEgIn3r eTKfrS5NKSTTrdVzGUYnjRX5/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFEcUsmyx UifRYaHAUMxb9McMpZtQMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvM0M5NkQ1Mjgw NjJDMTFFQzg2NUFBNzFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnrAowDQYJKoZIhvcNAQELBQADggEBAJoUfAFRCNCM7KBt AMVSpb508hXRr76hPGsU+Bbz0hhg56wc3ygs/o+nGnzW3DoFVEny86WcSLtoPfAG 44JSpy31tvaa+4AkqCCqRsnJ67IBZQhmm8vjaEO6tGl0js/x4D7doFvxOaKxG9rX W4V8YoMnviYpgwwLeo3oafGdcRKAtDn4p38zuJAJosot81avX1Bl/4MH95lF1xPz wi+kZg9Nrw7AgS6bfVWGSwjoX9ZpgDqnTuf0r5Jfcs7VkCGnNol/3+k9ymuWhGd0 nKgaYs/3+fSIE3XmWmSrYb5WFLHr7jmDb/rwNn5GRrmsR+6xHHM3qT5DDICYmf0g aHMNmfo= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:30 2024 by rpki-client on console-ams.rpki-client.org