$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4A325C8E8C7411EBAD97854FC4F9AE02.roa File: 4A325C8E8C7411EBAD97854FC4F9AE02.roa (raw, json) Hash identifier: Ld5fAm9TirMYR9jHYtQQkr8heKEjGeGQOXtd1StgXE0= Subject key identifier: B8:A5:2E:D9:50:83:36:5C:67:7E:1C:3D:71:55:9B:40:41:A7:9B:33 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6DA8 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4A325C8E8C7411EBAD97854FC4F9AE02.roa Signing time: Wed 10 May 2023 16:30:25 +0000 ROA not before: Wed 10 May 2023 16:30:25 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 138756 IP address blocks: 103.140.50.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28072 (0x6da8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:30:25 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc6a1-36bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:29:16:5a:cb:f4:40:cc:86:53:60:c3:0e:c7: 84:bb:4f:eb:d8:9c:47:ea:78:76:c3:aa:74:00:20: 95:47:fe:3b:5c:34:81:cc:35:b2:23:66:58:85:64: 29:6a:bf:6f:e5:83:92:cc:bf:aa:d8:38:f3:8b:21: 74:62:42:f4:47:92:27:a3:82:e1:3d:f7:03:8e:e7: a9:4e:c9:5c:89:fd:63:30:12:8e:35:67:0a:cd:c2: 3d:a4:fe:aa:d9:85:3e:21:0b:40:e4:fa:3f:e9:00: 85:53:83:14:56:a4:46:e4:f7:af:7d:53:46:e0:74: 43:e9:af:9f:ca:1f:47:19:f3:7d:f2:76:09:b9:d7: 4f:db:7f:43:e9:7d:28:71:4b:56:89:4d:f3:39:b6: 27:8d:94:cc:00:50:f9:3b:fe:f9:3f:9f:56:1e:45: 40:4b:d0:c2:ac:86:bc:f2:f3:ed:5c:74:d9:48:77: d0:a1:43:6e:d9:15:8c:ff:f4:35:2e:4b:4a:dc:07: e6:7d:29:b5:5f:98:c0:82:2a:a9:fb:b5:00:30:71: 49:c1:71:8f:0e:a1:ff:7d:d0:09:11:43:ba:43:e4: 50:cc:47:1b:1a:5a:ba:43:23:02:f1:0a:03:1d:c3: 38:69:83:7a:7c:4f:c7:38:04:d7:1e:69:34:de:9f: 97:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:A5:2E:D9:50:83:36:5C:67:7E:1C:3D:71:55:9B:40:41:A7:9B:33 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4A325C8E8C7411EBAD97854FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.50.0/23 Signature Algorithm: sha256WithRSAEncryption 26:ae:91:54:0c:4a:e4:8c:21:be:c3:24:4e:f3:fb:c6:df:26: 33:39:6c:5a:8e:17:e9:dd:22:c0:ea:de:0d:f4:6e:d6:e3:b6: 5f:91:a8:72:03:e2:54:df:a2:84:8c:cc:72:b0:5e:c7:2c:4d: 40:aa:80:87:dc:f1:4c:95:99:ab:20:21:29:ea:1d:bc:cf:85: da:d7:56:74:52:d4:ee:35:15:77:06:f1:f1:df:b6:41:0f:4d: b0:56:3c:c0:c2:b1:dc:0c:e6:83:75:27:b6:19:74:e9:10:67: b9:c9:db:ab:22:25:bc:3c:13:80:63:82:41:04:1c:ec:54:62: 7c:31:c9:8c:fe:28:3d:e2:ce:0d:37:29:18:e3:7c:7c:3b:5b: 16:67:a9:e8:f7:1d:c9:c7:47:a6:bc:68:ac:10:1d:ea:36:18: 80:b2:f1:22:c3:ce:f0:74:9c:f4:2f:08:d2:8c:6b:9e:52:f8: 6a:9b:c2:d8:00:b7:8b:03:27:2f:b1:88:80:4e:32:db:5b:00: 40:72:bd:b3:86:d2:39:2b:ae:53:b2:74:df:90:f8:99:20:97: dc:cc:3d:6a:e3:76:ac:7c:a1:dc:ec:13:97:b0:0a:5f:42:6c: 6b:7b:b3:ef:6a:52:5d:b5:ec:0c:ca:33:22:11:7d:d8:2b:51: 64:d5:8f:b3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzMDI1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzZhMS0zNmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoCkWWsv0QMyGU2DDDseEu0/r2JxH6nh2w6p0ACCVR/47XDSBzDWyI2ZYhWQp ar9v5YOSzL+q2DjziyF0YkL0R5Ino4LhPfcDjuepTslcif1jMBKONWcKzcI9pP6q 2YU+IQtA5Po/6QCFU4MUVqRG5PevfVNG4HRD6a+fyh9HGfN98nYJuddP239D6X0o cUtWiU3zObYnjZTMAFD5O/75P59WHkVAS9DCrIa88vPtXHTZSHfQoUNu2RWM//Q1 LktK3AfmfSm1X5jAgiqp+7UAMHFJwXGPDqH/fdAJEUO6Q+RQzEcbGlq6QyMC8QoD HcM4aYN6fE/HOATXHmk03p+X2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFLilLtlQ gzZcZ34cPXFVm0BBp5szMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNEEzMjVDOEU4 Qzc0MTFFQkFEOTc4NTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjDIwDQYJKoZIhvcNAQELBQADggEBACaukVQMSuSMIb7D JE7z+8bfJjM5bFqOF+ndIsDq3g30btbjtl+RqHID4lTfooSMzHKwXscsTUCqgIfc 8UyVmasgISnqHbzPhdrXVnRS1O41FXcG8fHftkEPTbBWPMDCsdwM5oN1J7YZdOkQ Z7nJ26siJbw8E4BjgkEEHOxUYnwxyYz+KD3izg03KRjjfHw7WxZnqej3HcnHR6a8 aKwQHeo2GICy8SLDzvB0nPQvCNKMa55S+GqbwtgAt4sDJy+xiIBOMttbAEByvbOG 0jkrrlOydN+Q+Jkgl9zMPWrjdqx8odzsE5ewCl9CbGt7s+9qUl217AzKMyIRfdgr UWTVj7M= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:31 2024 by rpki-client on console-ams.rpki-client.org