$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4C4DD23C2DCC11EDABD7CD51C4F9AE02.roa File: 4C4DD23C2DCC11EDABD7CD51C4F9AE02.roa (raw, json) Hash identifier: MX1xT4blWqJt1ZOcDb3guUWMYNByWLflCL722QZ7q50= Subject key identifier: E4:99:F5:6C:A6:10:EA:6C:DA:A4:75:91:07:5E:E6:27:14:D6:51:B2 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 70AF Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4C4DD23C2DCC11EDABD7CD51C4F9AE02.roa Signing time: Wed 10 May 2023 16:44:43 +0000 ROA not before: Wed 10 May 2023 16:44:43 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 150016 IP address blocks: 103.94.100.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 15:26:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28847 (0x70af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:44:43 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc9fb-d6a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:66:0b:9e:89:cf:fc:23:81:95:93:b2:2a:41: 3c:d7:86:34:b4:00:7f:03:b3:ea:9f:07:da:dc:b8: 17:57:d7:ac:0d:0f:fd:9b:52:7f:1c:85:69:85:1a: 99:ae:9f:75:ec:e1:28:0b:bf:33:0e:e0:2c:b3:8f: d3:bf:85:21:4a:d0:bb:e0:b0:fb:5b:ce:61:9b:58: d6:a5:5c:31:9b:aa:01:3d:65:d6:dc:bc:c1:32:56: 9c:d0:35:dd:62:a0:24:9f:78:76:92:44:52:13:1b: eb:a8:7a:c4:25:d6:35:47:e4:00:ed:1a:8a:f6:28: ae:20:44:ae:09:b1:f9:70:bb:34:b5:f6:e4:d1:d8: af:64:2d:4c:7b:ad:37:f6:34:a8:17:77:3e:1b:db: aa:67:a4:3a:a2:8b:01:62:fc:d5:4d:33:1d:01:bc: 5e:f3:48:0c:f4:13:0f:c0:0f:e3:c2:37:6c:63:6b: b9:89:80:13:e7:92:57:c3:57:ec:db:89:d5:6a:e7: 95:46:54:93:87:7a:f6:6f:0b:10:2d:aa:a5:ab:30: f8:74:32:b6:85:cc:66:df:a5:10:76:0b:14:c8:1c: 0d:5c:b8:87:81:ec:31:de:88:b9:0d:11:06:2c:db: bc:0b:af:dc:dc:11:5e:6e:69:a2:7c:dd:94:b5:96: 50:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:99:F5:6C:A6:10:EA:6C:DA:A4:75:91:07:5E:E6:27:14:D6:51:B2 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4C4DD23C2DCC11EDABD7CD51C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.94.100.0/23 Signature Algorithm: sha256WithRSAEncryption 09:34:27:18:c3:86:17:e1:38:8b:11:2b:ad:25:6b:64:9e:51: 36:a5:fd:89:5d:6a:4c:82:92:fe:4d:cc:59:9b:d1:70:50:c7: a4:03:98:00:04:73:fe:60:91:55:32:96:df:00:27:38:e2:9f: 41:e2:f0:8a:41:79:88:fc:da:fb:10:ec:7a:91:f3:d8:be:e6: 05:52:b2:75:2e:44:00:72:a8:90:22:ad:b8:c1:eb:9c:71:f5: 74:6c:f1:22:d9:ce:41:ab:fc:d1:80:d5:c8:ac:28:30:dd:dd: 6b:69:70:f4:0e:f0:65:41:3d:5e:fb:58:59:a5:6c:1d:60:94: c2:e8:be:1b:03:c8:9c:39:93:86:b4:32:bd:4a:ab:7c:63:e9: 8b:d7:02:f1:d4:93:56:b9:13:eb:36:17:29:58:fa:5b:b7:09: 9f:a5:eb:2c:b5:58:5f:e6:20:fa:12:99:3f:5e:08:ea:04:96: 8f:d8:85:c4:86:89:bb:69:05:7c:90:3e:d2:83:7f:69:79:af: e4:b6:af:7d:0c:93:6d:5d:49:3b:4d:9c:0f:a8:68:f3:66:8a: bf:ac:45:2b:ae:b7:73:84:66:66:e9:f6:dd:30:8b:f7:ad:13: 21:45:e2:d9:50:d9:a8:0a:1d:95:b9:42:d2:be:27:58:82:9e: 79:3f:a3:45 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICcK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0NDQzWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzlmYi1kNmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0GYLnonP/COBlZOyKkE814Y0tAB/A7Pqnwfa3LgXV9esDQ/9m1J/HIVphRqZ rp917OEoC78zDuAss4/Tv4UhStC74LD7W85hm1jWpVwxm6oBPWXW3LzBMlac0DXd YqAkn3h2kkRSExvrqHrEJdY1R+QA7RqK9iiuIESuCbH5cLs0tfbk0divZC1Me603 9jSoF3c+G9uqZ6Q6oosBYvzVTTMdAbxe80gM9BMPwA/jwjdsY2u5iYAT55JXw1fs 24nVaueVRlSTh3r2bwsQLaqlqzD4dDK2hcxm36UQdgsUyBwNXLiHgewx3oi5DREG LNu8C6/c3BFebmmifN2UtZZQFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOSZ9Wym EOps2qR1kQde5icU1lGyMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNEM0REQyM0My RENDMTFFREFCRDdDRDUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnXmQwDQYJKoZIhvcNAQELBQADggEBAAk0JxjDhhfhOIsR K60la2SeUTal/YldakyCkv5NzFmb0XBQx6QDmAAEc/5gkVUylt8AJzjin0Hi8IpB eYj82vsQ7HqR89i+5gVSsnUuRAByqJAirbjB65xx9XRs8SLZzkGr/NGA1cisKDDd 3WtpcPQO8GVBPV77WFmlbB1glMLovhsDyJw5k4a0Mr1Kq3xj6YvXAvHUk1a5E+s2 FylY+lu3CZ+l6yy1WF/mIPoSmT9eCOoElo/YhcSGibtpBXyQPtKDf2l5r+S2r30M k21dSTtNnA+oaPNmir+sRSuut3OEZmbp9t0wi/etEyFF4tlQ2agKHZW5QtK+J1iC nnk/o0U= -----END CERTIFICATE-----Generated at Sun Apr 28 16:49:18 2024 by rpki-client on console-ams.rpki-client.org