$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4A2E8FB8360811EBB4274012C4F9AE02.roa File: 4A2E8FB8360811EBB4274012C4F9AE02.roa (raw, json) Hash identifier: WwN18h6TcQfKIUov9TmSCkTw0jwTX26fKwiFeLruAgM= Subject key identifier: 99:5C:C1:B9:11:1F:49:D3:7D:1C:FC:56:17:44:D3:A8:23:BA:44:5A Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6E92 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4A2E8FB8360811EBB4274012C4F9AE02.roa Signing time: Wed 10 May 2023 16:34:40 +0000 ROA not before: Wed 10 May 2023 16:34:40 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141315 IP address blocks: 103.159.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28306 (0x6e92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:34:40 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc7a0-c5aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:a7:c0:20:cd:90:9f:12:ca:c8:e2:33:44:5a: 52:c6:47:31:97:6d:84:c8:e3:c6:55:10:b3:a2:0a: a6:57:5e:13:45:30:89:ed:7b:8c:01:64:7c:ff:39: f1:29:44:a7:99:76:13:61:0f:2e:15:7c:69:c2:e5: 58:2e:ca:11:be:f2:88:44:14:a5:34:ea:d3:69:e0: 33:4f:12:67:7d:ee:08:f8:22:e0:09:dc:4a:94:4e: fa:19:1f:38:0d:06:01:cc:38:55:7c:0a:58:1e:47: 38:08:e6:50:0c:2e:87:b4:a6:eb:f4:5e:83:57:ab: 87:b7:55:1d:b2:da:47:a7:09:ae:ab:78:b7:a0:de: 68:a5:e6:89:5a:4d:36:47:99:3f:ef:91:df:13:55: e8:30:f7:5b:18:ec:41:59:e6:be:75:0c:4d:42:39: 97:da:0e:3d:38:d6:04:d9:23:e0:bb:36:ce:6e:7f: 82:49:2e:06:08:ea:48:0a:07:76:b1:f9:49:fe:97: 57:98:02:04:b8:ff:a8:27:81:99:e4:04:1e:02:a2: 58:38:18:18:23:e1:6d:a9:84:23:0d:a5:ea:43:1e: ca:96:34:e3:4f:14:cb:84:d2:e9:b7:42:cb:0f:57: 3a:f7:5e:e6:8f:46:b5:50:61:b8:d6:c4:6d:d9:23: 72:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:5C:C1:B9:11:1F:49:D3:7D:1C:FC:56:17:44:D3:A8:23:BA:44:5A X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4A2E8FB8360811EBB4274012C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.145.0/24 Signature Algorithm: sha256WithRSAEncryption 80:43:84:70:fa:5a:e1:3c:ff:3a:bf:04:b1:da:91:c9:1f:90: d9:08:d9:2c:49:a0:df:e6:5b:bd:4d:3d:f9:1f:d2:2b:a8:b8: da:25:bb:d1:c8:05:bc:a0:8c:49:eb:c7:f5:25:d2:4e:0f:1a: e5:11:8e:65:97:b0:91:29:d5:a9:16:14:e3:7d:e0:17:9a:9c: 85:93:d9:82:f9:e4:6b:c2:e0:16:77:8f:db:25:4f:c6:96:3a: e8:cf:47:11:98:84:89:53:31:da:3f:eb:5b:1b:be:73:e9:1e: a3:f9:72:07:00:df:9e:88:43:d8:02:47:fd:e2:91:b9:52:27: 7c:65:bc:5e:cf:4c:56:45:0c:9f:07:8f:99:e2:9f:2b:c3:72: 0c:18:e5:6f:d5:1b:2a:cc:d8:6e:b8:3d:10:ed:0a:5d:d7:a7: ad:fd:41:0c:cf:0f:74:5b:70:96:db:eb:d8:e0:b3:20:2f:ed: 26:66:53:99:30:b5:74:01:d1:5b:84:68:7e:3a:7a:a4:6e:71: be:10:80:25:93:da:de:f8:e9:f4:a0:af:4c:bc:20:e9:7b:ae: d3:65:19:b1:51:2b:97:e8:d4:62:ce:ce:72:a6:f0:39:6a:0e: 10:29:98:2f:fc:ba:4f:93:df:07:88:96:5c:81:0b:45:5d:de: 62:db:35:70 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbpIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzNDQwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzdhMC1jNWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoqfAIM2QnxLKyOIzRFpSxkcxl22EyOPGVRCzogqmV14TRTCJ7XuMAWR8/znx KUSnmXYTYQ8uFXxpwuVYLsoRvvKIRBSlNOrTaeAzTxJnfe4I+CLgCdxKlE76GR84 DQYBzDhVfApYHkc4COZQDC6HtKbr9F6DV6uHt1UdstpHpwmuq3i3oN5opeaJWk02 R5k/75HfE1XoMPdbGOxBWea+dQxNQjmX2g49ONYE2SPguzbObn+CSS4GCOpICgd2 sflJ/pdXmAIEuP+oJ4GZ5AQeAqJYOBgYI+FtqYQjDaXqQx7KljTjTxTLhNLpt0LL D1c6917mj0a1UGG41sRt2SNyhQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJlcwbkR H0nTfRz8VhdE06gjukRaMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNEEyRThGQjgz NjA4MTFFQkI0Mjc0MDEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnn5EwDQYJKoZIhvcNAQELBQADggEBAIBDhHD6WuE8/zq/ BLHakckfkNkI2SxJoN/mW71NPfkf0iuouNolu9HIBbygjEnrx/Ul0k4PGuURjmWX sJEp1akWFON94BeanIWT2YL55GvC4BZ3j9slT8aWOujPRxGYhIlTMdo/61sbvnPp HqP5cgcA356IQ9gCR/3ikblSJ3xlvF7PTFZFDJ8Hj5ninyvDcgwY5W/VGyrM2G64 PRDtCl3Xp639QQzPD3RbcJbb69jgsyAv7SZmU5kwtXQB0VuEaH46eqRucb4QgCWT 2t746fSgr0y8IOl7rtNlGbFRK5fo1GLOznKm8DlqDhApmC/8uk+T3weIllyBC0Vd 3mLbNXA= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:31 2024 by rpki-client on console-ams.rpki-client.org