$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4BDE7A3AF96811EA918B1A0CC4F9AE02.roa File: 4BDE7A3AF96811EA918B1A0CC4F9AE02.roa (raw, json) Hash identifier: jGAM/EBTCI0/brPwGdS6ElyIyua/3fA6ZUv2MtT8Xx8= Subject key identifier: 71:DB:C3:86:D2:AE:54:29:45:FB:EE:BE:A3:5C:46:09:AD:F5:E8:56 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6DE0 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4BDE7A3AF96811EA918B1A0CC4F9AE02.roa Signing time: Wed 10 May 2023 16:31:27 +0000 ROA not before: Wed 10 May 2023 16:31:27 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 139513 IP address blocks: 103.145.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28128 (0x6de0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:31:27 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc6df-1db1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2f:a0:fc:db:23:47:bc:0e:bb:8e:8f:db:24: 5a:7b:16:d3:4a:69:6e:d9:3a:d8:f5:70:1d:aa:37: ed:11:0d:cb:d1:d3:c4:1c:e5:92:b1:f7:85:95:b5: b1:72:44:5a:6d:b5:a5:ba:05:91:24:ef:e1:0c:7d: 94:39:86:6a:65:e1:8a:d3:78:cc:11:e2:17:f0:e5: b2:31:a8:19:a1:50:15:8c:b8:b0:39:b8:15:23:43: 35:83:41:c4:fb:d6:fd:82:83:31:ca:00:c4:8f:44: 56:d0:9b:2d:61:4b:2e:85:2c:f5:2e:ca:7e:e4:b1: bb:43:71:38:64:48:ed:9d:4a:8f:01:41:9e:c4:14: 51:a1:41:a4:de:21:f4:1d:a9:79:f0:e1:6e:7b:90: a0:77:8a:94:1c:8c:a2:61:8d:9a:ba:81:bf:91:ba: a4:54:ff:78:1c:d6:33:49:7e:4c:2b:0e:8a:37:b6: 3f:90:8c:37:53:7c:2f:34:45:11:57:66:61:24:44: 71:57:c8:ef:ac:20:0b:e3:f0:b3:a6:f9:b3:f9:b4: 26:07:62:05:62:ad:ae:ed:e4:aa:c3:49:e0:70:95: b9:69:8b:46:38:76:1a:e7:b9:c5:54:68:80:6d:c5: e4:ce:e3:d0:05:37:2a:31:6b:ca:3b:71:dc:01:10: 0b:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:DB:C3:86:D2:AE:54:29:45:FB:EE:BE:A3:5C:46:09:AD:F5:E8:56 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4BDE7A3AF96811EA918B1A0CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.174.0/24 Signature Algorithm: sha256WithRSAEncryption 88:c5:f9:43:53:fc:36:31:ce:3e:89:bd:1c:da:71:5b:39:14: 84:59:1b:d5:19:18:d2:04:24:bc:f5:dd:09:fe:68:53:8f:8f: d0:c8:d5:7c:d0:16:54:09:3e:d0:a8:71:ce:21:69:56:d1:76: 29:0d:01:b7:92:a7:86:14:5e:5e:c2:bc:66:f5:ce:12:e3:c4: 4f:d4:e3:63:99:f5:09:8b:07:c2:30:2f:4c:92:36:77:ef:3d: 31:8a:c4:0d:83:0c:1d:dc:72:a9:85:6f:af:f5:81:06:d9:a2: 4e:9e:e8:65:00:9b:8c:ff:6d:12:a1:c4:30:90:f0:a8:b8:58: d3:24:29:47:2c:28:8d:01:9c:17:6b:be:d1:eb:da:b4:be:93: 53:d5:2b:df:aa:db:c5:a8:90:52:a1:ba:56:0a:77:36:b0:a4: ac:fa:be:1f:0e:e9:2d:7e:06:f7:50:f9:37:1c:e1:44:41:4c: 9f:b3:05:92:a5:0e:73:d8:6d:3d:d5:e8:5e:07:6f:eb:73:4a: e9:4b:a0:7d:88:81:da:0c:8e:2d:64:43:fa:ab:02:4c:a7:79: f3:b8:c0:78:9b:eb:da:51:88:c9:47:4a:2b:44:5b:e2:fa:1f: 5a:c7:91:44:3d:77:cb:e0:ee:10:b0:f6:4e:8f:d6:67:54:4b: b3:b6:64:b4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzMTI3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzZkZi0xZGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0S+g/NsjR7wOu46P2yRaexbTSmlu2TrY9XAdqjftEQ3L0dPEHOWSsfeFlbWx ckRabbWlugWRJO/hDH2UOYZqZeGK03jMEeIX8OWyMagZoVAVjLiwObgVI0M1g0HE +9b9goMxygDEj0RW0JstYUsuhSz1Lsp+5LG7Q3E4ZEjtnUqPAUGexBRRoUGk3iH0 Hal58OFue5Cgd4qUHIyiYY2auoG/kbqkVP94HNYzSX5MKw6KN7Y/kIw3U3wvNEUR V2ZhJERxV8jvrCAL4/Czpvmz+bQmB2IFYq2u7eSqw0ngcJW5aYtGOHYa57nFVGiA bcXkzuPQBTcqMWvKO3HcARALawIDAQABo4IClTCCApEwHQYDVR0OBBYEFHHbw4bS rlQpRfvuvqNcRgmt9ehWMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNEJERTdBM0FG OTY4MTFFQTkxOEIxQTBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnka4wDQYJKoZIhvcNAQELBQADggEBAIjF+UNT/DYxzj6J vRzacVs5FIRZG9UZGNIEJLz13Qn+aFOPj9DI1XzQFlQJPtCocc4haVbRdikNAbeS p4YUXl7CvGb1zhLjxE/U42OZ9QmLB8IwL0ySNnfvPTGKxA2DDB3ccqmFb6/1gQbZ ok6e6GUAm4z/bRKhxDCQ8Ki4WNMkKUcsKI0BnBdrvtHr2rS+k1PVK9+q28WokFKh ulYKdzawpKz6vh8O6S1+BvdQ+Tcc4URBTJ+zBZKlDnPYbT3V6F4Hb+tzSulLoH2I gdoMji1kQ/qrAkynefO4wHib69pRiMlHSitEW+L6H1rHkUQ9d8vg7hCw9k6P1mdU S7O2ZLQ= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:31 2024 by rpki-client on console-ams.rpki-client.org