$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/48F9465C036911EE96C26D87C4F9AE02.roa File: 48F9465C036911EE96C26D87C4F9AE02.roa (raw, json) Hash identifier: MkqjW3BCub4UtKLxPyajJMzctEsAOIHxOrFECQfbxxA= Subject key identifier: 5B:34:DA:31:CD:E6:86:BE:94:B7:22:F0:3C:12:F6:2F:C3:3D:11:37 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7353 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/48F9465C036911EE96C26D87C4F9AE02.roa Signing time: Mon 05 Jun 2023 10:52:04 +0000 ROA not before: Mon 05 Jun 2023 10:52:04 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136311 IP address blocks: 103.85.208.0/22 maxlen: 24 2001:df1:c500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29523 (0x7353) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jun 5 10:52:04 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=647dbe54-a721 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:09:89:4c:d1:8a:60:31:a6:bd:77:6f:8e:68: 4b:a2:1a:2a:02:86:05:71:27:36:16:6e:92:02:01: 3f:64:5a:14:a8:ef:ce:63:1b:78:31:e7:13:d4:b3: 71:e6:61:6d:ed:89:94:6d:55:33:96:5f:27:63:62: 6e:d4:33:79:c2:76:0c:4b:87:a8:fb:82:34:db:0e: 3e:83:4e:bc:55:6a:18:8b:d9:8d:84:02:db:84:a6: 11:43:7c:6e:c5:17:35:c1:df:08:e1:71:a1:c9:b0: e2:50:b1:5a:00:db:4b:dc:28:b0:f1:65:e8:5f:97: 5c:89:85:d1:10:0c:da:15:d2:02:53:9a:54:6d:1b: a1:dc:a6:05:32:25:c8:7a:1d:3c:3e:bd:26:97:66: 2c:5f:0e:c2:55:ff:fd:7d:97:50:41:e9:2e:e5:d0: a3:3f:97:0e:a4:b4:39:28:fb:30:a5:74:89:bf:86: 20:76:81:05:7a:c8:b0:0b:8b:1c:2e:e2:fb:7f:8d: 6e:c6:26:6a:c7:c4:5a:db:fc:88:64:88:ab:79:7b: 26:26:6d:08:8f:88:dd:61:a0:88:e0:f6:34:c8:d7: 44:d0:f1:05:ef:de:0a:c3:02:85:9d:2a:c2:e6:05: 74:7b:49:db:84:dd:90:db:26:ba:31:2d:32:8c:f9: bd:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:34:DA:31:CD:E6:86:BE:94:B7:22:F0:3C:12:F6:2F:C3:3D:11:37 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/48F9465C036911EE96C26D87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.85.208.0/22 IPv6: 2001:df1:c500::/48 Signature Algorithm: sha256WithRSAEncryption 0a:19:c0:78:d9:90:fc:8b:27:c4:fd:ab:28:70:14:54:22:b5: 7b:d1:a7:ea:88:b3:1b:51:06:18:b0:a3:66:a9:a8:3f:60:fd: 8d:ff:67:a6:0c:5f:f6:e0:3d:eb:81:1a:18:99:f2:d0:9a:ae: 81:d1:8c:c6:ec:94:39:6c:62:93:8c:34:57:44:dc:38:ff:ab: 1c:5f:c2:10:7e:87:1d:aa:11:7d:de:66:01:df:f7:31:76:05: 88:ba:bf:1c:9a:bf:bd:87:99:27:4f:d9:36:85:32:73:bb:c0: d0:38:5d:10:22:c2:35:75:83:d4:14:aa:fc:68:88:db:61:a7: 57:df:b0:54:c8:72:c4:e9:26:d1:3f:15:a2:0c:5d:15:d3:4a: f1:73:72:1b:cb:09:d3:ec:34:aa:cc:9f:43:53:31:e2:dc:c0: 80:37:ff:db:d9:34:3e:69:e9:c6:11:98:5e:49:48:68:ab:b8: 6a:20:62:0a:75:83:b2:4a:81:f9:b6:76:c8:8a:15:c7:1a:c2: 5a:92:cd:3a:04:21:5c:9c:6d:a9:ef:5d:c1:e1:c5:0f:ed:f4: 11:b3:1d:ba:55:e2:04:f2:55:87:a5:87:22:76:f7:51:e4:b2: 66:b7:8b:56:ff:ca:8d:95:11:9d:6e:81:5b:05:08:28:b0:fb: 5b:bb:a9:c4 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICc1MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNjA1MTA1MjA0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdkYmU1NC1hNzIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApwmJTNGKYDGmvXdvjmhLohoqAoYFcSc2Fm6SAgE/ZFoUqO/OYxt4MecT1LNx 5mFt7YmUbVUzll8nY2Ju1DN5wnYMS4eo+4I02w4+g068VWoYi9mNhALbhKYRQ3xu xRc1wd8I4XGhybDiULFaANtL3Ciw8WXoX5dciYXREAzaFdICU5pUbRuh3KYFMiXI eh08Pr0ml2YsXw7CVf/9fZdQQeku5dCjP5cOpLQ5KPswpXSJv4YgdoEFesiwC4sc LuL7f41uxiZqx8Ra2/yIZIireXsmJm0Ij4jdYaCI4PY0yNdE0PEF794KwwKFnSrC 5gV0e0nbhN2Q2ya6MS0yjPm92QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFs02jHN 5oa+lLci8DwS9i/DPRE3MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNDhGOTQ2NUMw MzY5MTFFRTk2QzI2RDg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnVdAwDwQCAAIwCQMHACABDfHFADANBgkqhkiG9w0BAQsF AAOCAQEAChnAeNmQ/IsnxP2rKHAUVCK1e9Gn6oizG1EGGLCjZqmoP2D9jf9npgxf 9uA964EaGJny0JqugdGMxuyUOWxik4w0V0TcOP+rHF/CEH6HHaoRfd5mAd/3MXYF iLq/HJq/vYeZJ0/ZNoUyc7vA0DhdECLCNXWD1BSq/GiI22GnV9+wVMhyxOkm0T8V ogxdFdNK8XNyG8sJ0+w0qsyfQ1Mx4tzAgDf/29k0PmnpxhGYXklIaKu4aiBiCnWD skqB+bZ2yIoVxxrCWpLNOgQhXJxtqe9dweHFD+30EbMdulXiBPJVh6WHInb3UeSy ZreLVv/KjZURnW6BWwUIKLD7W7upxA== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:31 2024 by rpki-client on console-ams.rpki-client.org