$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4CC3BF3AE00911EC8260F266C4F9AE02.roa File: 4CC3BF3AE00911EC8260F266C4F9AE02.roa (raw, json) Hash identifier: 1v+jGIJ4Bh9GtKSbVyUwuhumQSN6kX58PCR3XtBEpVI= Subject key identifier: 34:F9:A9:E4:60:6B:40:4D:EB:6E:37:1E:03:32:38:CC:65:01:0B:E8 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6FF8 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4CC3BF3AE00911EC8260F266C4F9AE02.roa Signing time: Wed 10 May 2023 16:41:21 +0000 ROA not before: Wed 10 May 2023 16:41:21 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 147246 IP address blocks: 103.176.64.0/23 maxlen: 24 2001:df1:6c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28664 (0x6ff8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:41:21 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc931-783c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:38:b4:1c:df:64:68:c7:ed:ed:03:25:c3:d9: a9:ee:ca:c6:dc:99:89:1a:61:ef:8d:2f:d6:dd:22: bb:4f:e7:25:1c:f6:15:9d:bd:b9:ac:0c:c6:63:b2: 64:a4:3d:05:e2:19:e5:7d:55:9f:a6:27:64:28:b6: bb:2a:78:55:3f:4d:11:ee:43:db:e2:72:3d:70:3c: 20:b7:6a:d4:97:be:c6:d3:5e:e1:22:fc:dc:e9:65: 56:f3:c7:d5:f8:fa:f6:4c:99:68:4b:51:ce:9e:7a: 68:57:2c:23:ef:64:19:a1:d4:2a:b7:1a:97:5a:58: a5:7f:78:68:43:32:6a:f5:b5:6d:1a:c6:bd:c9:7b: f0:66:5c:1e:19:49:81:9e:d0:22:35:01:00:bd:63: c1:ac:7b:76:63:13:d6:c6:0c:fd:44:22:1d:36:da: de:f7:5b:d8:09:af:f0:c8:df:4b:b4:a8:b7:17:70: ab:73:8f:3a:a6:b2:eb:d7:77:28:90:99:34:a7:4a: 37:9e:2c:62:f4:b4:de:cb:01:7a:f4:04:b7:dc:c8: d4:db:47:c8:1f:3b:fe:6e:56:2c:2e:4f:c6:ea:40: 7b:f5:da:be:52:93:be:d1:63:31:2d:f4:ff:46:58: 1d:a1:69:87:6b:72:c1:50:d4:77:0d:51:f6:08:62: ca:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:F9:A9:E4:60:6B:40:4D:EB:6E:37:1E:03:32:38:CC:65:01:0B:E8 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4CC3BF3AE00911EC8260F266C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.176.64.0/23 IPv6: 2001:df1:6c0::/48 Signature Algorithm: sha256WithRSAEncryption 44:57:c3:71:57:16:98:a7:4e:f0:49:db:bd:f9:82:70:80:f4: 47:76:5b:a4:13:0a:96:07:eb:a7:2a:1d:3e:3d:77:2f:98:2e: 7c:75:7a:3f:f0:d4:34:f9:bb:8c:d5:1e:25:09:59:6b:8b:b4: e8:c9:9e:f7:07:82:e8:d3:bc:ea:23:68:60:43:07:82:c2:4f: c7:bc:5a:86:c4:1e:35:06:f2:dc:93:a6:81:f4:71:fc:b6:c9: 65:60:11:a1:f9:48:0e:b3:aa:ac:15:79:f8:a5:fc:dc:03:1e: 59:ac:f1:63:c7:31:06:8f:98:fc:7f:57:7f:cf:19:cf:fe:44: 5b:f2:1e:c5:c8:1c:bd:5a:30:00:4a:10:5e:0b:8d:24:46:fb: 90:ab:7a:f0:74:d9:a5:92:fb:a5:f2:61:dd:ed:b4:ea:4f:eb: c5:3b:2b:f5:23:43:ee:d4:2b:6c:4e:b4:a6:3d:05:8c:25:37: 17:cc:bd:ba:ca:13:0f:d5:f4:c5:29:b3:3c:10:aa:5a:50:8f: c6:c1:df:21:d1:52:50:72:2a:f8:ee:c4:73:3f:c4:7e:4d:1e: 5c:c4:94:14:52:7d:41:03:f8:db:fe:5a:83:7b:b1:52:c4:c3: 50:57:f1:99:9f:ef:a8:a7:b0:97:13:21:05:99:a3:7e:c6:5c: b5:5c:48:f2 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICb/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0MTIxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzkzMS03ODNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnDi0HN9kaMft7QMlw9mp7srG3JmJGmHvjS/W3SK7T+clHPYVnb25rAzGY7Jk pD0F4hnlfVWfpidkKLa7KnhVP00R7kPb4nI9cDwgt2rUl77G017hIvzc6WVW88fV +Pr2TJloS1HOnnpoVywj72QZodQqtxqXWlilf3hoQzJq9bVtGsa9yXvwZlweGUmB ntAiNQEAvWPBrHt2YxPWxgz9RCIdNtre91vYCa/wyN9LtKi3F3Crc486prLr13co kJk0p0o3nixi9LTeywF69AS33MjU20fIHzv+blYsLk/G6kB79dq+UpO+0WMxLfT/ RlgdoWmHa3LBUNR3DVH2CGLKuQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDT5qeRg a0BN6243HgMyOMxlAQvoMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNENDM0JGM0FF MDA5MTFFQzgyNjBGMjY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnsEAwDwQCAAIwCQMHACABDfEGwDANBgkqhkiG9w0BAQsF AAOCAQEARFfDcVcWmKdO8EnbvfmCcID0R3ZbpBMKlgfrpyodPj13L5gufHV6P/DU NPm7jNUeJQlZa4u06Mme9weC6NO86iNoYEMHgsJPx7xahsQeNQby3JOmgfRx/LbJ ZWARoflIDrOqrBV5+KX83AMeWazxY8cxBo+Y/H9Xf88Zz/5EW/IexcgcvVowAEoQ XguNJEb7kKt68HTZpZL7pfJh3e206k/rxTsr9SND7tQrbE60pj0FjCU3F8y9usoT D9X0xSmzPBCqWlCPxsHfIdFSUHIq+O7Ecz/Efk0eXMSUFFJ9QQP42/5ag3uxUsTD UFfxmZ/vqKewlxMhBZmjfsZctVxI8g== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:33 2024 by rpki-client on console-ams.rpki-client.org