$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4CE03FEE2FCE11EB9757E42EC4F9AE02.roa File: 4CE03FEE2FCE11EB9757E42EC4F9AE02.roa (raw, json) Hash identifier: C4EApY7IaCxjnpmKYyX12IWsaBwZM9otzByAtUqBpQg= Subject key identifier: DC:A7:48:C6:DE:34:B1:DA:27:7B:B8:6F:5A:D5:02:86:4D:07:99:D5 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6E8C Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4CE03FEE2FCE11EB9757E42EC4F9AE02.roa Signing time: Wed 10 May 2023 16:34:34 +0000 ROA not before: Wed 10 May 2023 16:34:34 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141309 IP address blocks: 103.158.104.0/23 maxlen: 24 2001:df5:ab80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28300 (0x6e8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:34:34 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc799-2713 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:34:5f:7f:49:26:11:ab:ff:61:a2:05:5c:0a: b6:da:04:b8:63:07:f5:33:f0:65:b2:69:a1:c5:df: aa:4b:03:ae:f9:aa:bd:e1:15:92:18:fd:66:05:8b: 41:65:46:5a:2a:56:b5:03:e9:55:4f:9d:76:15:ea: 40:4d:8e:90:a5:ac:49:a2:19:5e:b9:8e:9e:4a:db: 2f:7e:99:c4:55:c6:94:8c:01:02:63:5e:42:53:38: 3a:ff:ca:1c:4a:5f:0b:73:1c:96:5a:ca:29:d2:f0: 04:df:29:ea:f4:31:11:e7:22:98:1c:b1:d5:ea:0f: 9b:b5:d0:10:51:59:56:60:94:ca:2d:06:08:74:32: f5:ff:64:ad:ff:5c:d0:4b:c1:99:f8:36:89:69:96: d4:a1:d3:c6:bf:70:17:1e:75:40:88:2e:50:03:8a: 31:ff:a8:81:a7:8d:6c:81:14:43:ef:ae:13:76:9e: 3f:a1:3f:b8:b6:6b:c8:5e:1d:d0:1c:1a:9d:87:3a: a7:af:cb:b2:f3:01:b8:62:76:87:09:66:4a:8c:89: 5f:42:2f:70:fd:36:1b:96:2a:e2:08:02:c5:fb:e3: 73:4a:46:75:d8:a2:f1:ef:36:6c:8d:3c:98:0e:7b: 24:8c:2e:fb:fa:a6:fe:11:19:47:00:e2:46:41:06: ff:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:A7:48:C6:DE:34:B1:DA:27:7B:B8:6F:5A:D5:02:86:4D:07:99:D5 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4CE03FEE2FCE11EB9757E42EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.104.0/23 IPv6: 2001:df5:ab80::/48 Signature Algorithm: sha256WithRSAEncryption 7b:c6:ba:b4:2b:83:1c:31:58:ce:89:6b:12:46:52:9f:05:af: ae:9b:76:ac:7d:04:77:72:e4:26:b8:b8:74:76:2d:3d:e7:6e: 78:55:07:7f:5d:0b:fb:01:8e:43:eb:06:7c:f2:da:05:82:1a: 18:76:35:20:f6:1a:d2:45:0d:4d:15:f1:57:35:2e:23:39:cc: 11:b8:bc:ba:40:c7:e3:4a:09:c1:2f:8f:2f:4f:f1:2e:e2:fd: 57:ac:c4:3d:bc:72:af:38:04:f9:ac:0b:b1:5b:e1:ca:ba:dc: 3c:d6:5d:2f:49:7d:40:88:26:28:ac:2e:7c:14:e7:27:c3:34: 28:87:88:db:ee:50:f3:92:de:ec:0e:02:d0:bd:fc:1c:8d:6f: 52:0c:c6:d8:ff:32:7c:8b:28:f1:08:73:97:7b:c4:c4:72:74: 77:46:48:bc:cc:07:9d:b3:e4:62:ca:78:d9:ab:68:e7:16:6b: 10:98:c9:cf:12:50:49:da:0c:74:a0:22:5c:a3:cc:89:d3:52: 3f:11:af:79:3e:c8:73:da:aa:79:10:8a:f0:e3:3e:0a:a6:70: e2:26:59:d0:c1:1b:e0:94:32:95:6f:12:93:b8:9a:61:82:80: 80:23:43:0d:3b:41:b4:08:93:a0:fa:7b:0e:aa:92:92:bf:7c: f9:bd:54:b7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICbowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzNDM0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzc5OS0yNzEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDRff0kmEav/YaIFXAq22gS4Ywf1M/Blsmmhxd+qSwOu+aq94RWSGP1mBYtB ZUZaKla1A+lVT512FepATY6QpaxJohleuY6eStsvfpnEVcaUjAECY15CUzg6/8oc Sl8LcxyWWsop0vAE3ynq9DER5yKYHLHV6g+btdAQUVlWYJTKLQYIdDL1/2St/1zQ S8GZ+DaJaZbUodPGv3AXHnVAiC5QA4ox/6iBp41sgRRD764Tdp4/oT+4tmvIXh3Q HBqdhzqnr8uy8wG4YnaHCWZKjIlfQi9w/TYbliriCALF++NzSkZ12KLx7zZsjTyY DnskjC77+qb+ERlHAOJGQQb/7QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNynSMbe NLHaJ3u4b1rVAoZNB5nVMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNENFMDNGRUUy RkNFMTFFQjk3NTdFNDJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnnmgwDwQCAAIwCQMHACABDfWrgDANBgkqhkiG9w0BAQsF AAOCAQEAe8a6tCuDHDFYzolrEkZSnwWvrpt2rH0Ed3LkJri4dHYtPedueFUHf10L +wGOQ+sGfPLaBYIaGHY1IPYa0kUNTRXxVzUuIznMEbi8ukDH40oJwS+PL0/xLuL9 V6zEPbxyrzgE+awLsVvhyrrcPNZdL0l9QIgmKKwufBTnJ8M0KIeI2+5Q85Le7A4C 0L38HI1vUgzG2P8yfIso8Qhzl3vExHJ0d0ZIvMwHnbPkYsp42ato5xZrEJjJzxJQ SdoMdKAiXKPMidNSPxGveT7Ic9qqeRCK8OM+CqZw4iZZ0MEb4JQylW8Sk7iaYYKA gCNDDTtBtAiToPp7DqqSkr98+b1Utw== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:33 2024 by rpki-client on console-ams.rpki-client.org