$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4EB6E16C10BB11EEBFA25219C4F9AE02.roa File: 4EB6E16C10BB11EEBFA25219C4F9AE02.roa (raw, json) Hash identifier: vuIzR13I7a/rvSFvuu/ISz/8+181IJJ9Otv6U8rCqg8= Subject key identifier: 7F:40:73:DC:46:CC:E7:9B:50:2C:A1:83:B3:03:51:6F:3B:96:B0:14 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7458 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4EB6E16C10BB11EEBFA25219C4F9AE02.roa Signing time: Thu 22 Jun 2023 05:11:56 +0000 ROA not before: Thu 22 Jun 2023 05:11:56 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 23470 IP address blocks: 103.106.66.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29784 (0x7458) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jun 22 05:11:56 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=6493d81c-e326 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:80:a7:41:4a:54:12:b5:52:4b:77:cb:eb:38: ec:71:e2:02:02:6a:0a:81:37:0a:99:33:7b:1e:71: eb:49:e1:37:24:9a:bf:87:ad:4f:d3:87:90:55:21: 5b:30:c6:0f:0b:96:5a:60:dc:b5:de:1d:d1:6d:f2: ad:c5:c8:9c:16:fa:dc:89:87:1c:59:ed:72:b5:0e: c4:56:95:9c:7e:dc:25:6e:0a:e1:29:d9:a0:c4:60: ae:76:9e:0b:3e:ca:e5:a1:b6:54:6b:04:15:07:2b: de:3e:b9:2b:f5:09:34:e0:23:fa:f4:3a:fd:b7:4c: 12:48:03:16:90:c5:6f:07:7e:b0:71:4f:73:d2:aa: a8:18:41:fd:6b:96:8d:40:b1:3e:65:8e:92:ec:4a: a5:a5:40:f9:16:19:5d:63:cc:97:26:20:7e:be:f4: 06:4d:56:29:71:f0:e4:f8:16:58:8c:d1:8d:92:2f: 73:64:db:65:a7:ae:9d:8e:04:28:61:47:23:6f:33: a9:b0:2c:88:63:30:78:f6:46:a9:94:d9:b2:b8:9d: 71:20:0b:97:47:d9:a6:b4:ec:0c:9b:71:b9:a8:99: 79:37:4d:9d:56:70:d1:26:53:65:25:aa:87:e2:20: b3:6e:3c:02:15:7e:35:f8:cd:99:e1:22:2c:a1:67: be:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:40:73:DC:46:CC:E7:9B:50:2C:A1:83:B3:03:51:6F:3B:96:B0:14 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4EB6E16C10BB11EEBFA25219C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.106.66.0/23 Signature Algorithm: sha256WithRSAEncryption a7:b4:72:f8:b4:76:c1:56:64:c8:44:fd:d3:bd:27:4d:4c:41: 38:b1:a0:15:54:48:a7:f6:17:10:f5:b1:87:c6:ed:c6:d1:45: 31:13:39:b3:03:ff:e2:97:35:dd:1f:48:d3:81:28:24:88:55: db:8e:d1:1b:40:af:b2:1c:7e:37:9d:97:2d:df:7a:98:ea:b4: b1:e4:f0:39:98:d3:5c:4d:5b:5f:3a:60:8a:89:89:71:0f:d5: d6:a5:93:48:0a:1b:2a:6a:1e:83:58:5e:da:3c:c3:ae:bb:8a: 66:c9:fa:18:a9:c8:b9:51:05:be:dd:5f:b9:d1:28:54:d5:06: 3e:25:e3:83:4a:9b:45:98:5e:cc:95:06:63:3b:1a:fb:41:e8: 40:13:62:60:ef:5e:bc:1e:15:01:e1:7e:5f:f0:c3:c0:e1:41: de:7c:fe:59:bb:8c:e7:bd:98:da:da:fa:16:83:50:35:6c:e5: 89:9e:69:b0:82:5b:00:ea:ea:fa:34:2d:33:a2:ad:49:74:57: 2c:90:fa:bf:d4:db:15:97:de:f0:9b:40:c2:e5:ea:c5:23:8e: 5c:3b:f2:dc:a9:61:8a:75:65:46:22:b5:2d:ae:39:89:b6:ee: e6:dd:25:f9:49:94:12:20:59:4b:aa:ea:2c:2d:4e:f8:ba:29: 48:0c:fb:e7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICdFgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNjIyMDUxMTU2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDkzZDgxYy1lMzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5YCnQUpUErVSS3fL6zjsceICAmoKgTcKmTN7HnHrSeE3JJq/h61P04eQVSFb MMYPC5ZaYNy13h3RbfKtxcicFvrciYccWe1ytQ7EVpWcftwlbgrhKdmgxGCudp4L PsrlobZUawQVByvePrkr9Qk04CP69Dr9t0wSSAMWkMVvB36wcU9z0qqoGEH9a5aN QLE+ZY6S7EqlpUD5FhldY8yXJiB+vvQGTVYpcfDk+BZYjNGNki9zZNtlp66djgQo YUcjbzOpsCyIYzB49kaplNmyuJ1xIAuXR9mmtOwMm3G5qJl5N02dVnDRJlNlJaqH 4iCzbjwCFX41+M2Z4SIsoWe+awIDAQABo4IClTCCApEwHQYDVR0OBBYEFH9Ac9xG zOebUCyhg7MDUW87lrAUMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNEVCNkUxNkMx MEJCMTFFRUJGQTI1MjE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnakIwDQYJKoZIhvcNAQELBQADggEBAKe0cvi0dsFWZMhE /dO9J01MQTixoBVUSKf2FxD1sYfG7cbRRTETObMD/+KXNd0fSNOBKCSIVduO0RtA r7Icfjedly3fepjqtLHk8DmY01xNW186YIqJiXEP1dalk0gKGypqHoNYXto8w667 imbJ+hipyLlRBb7dX7nRKFTVBj4l44NKm0WYXsyVBmM7GvtB6EATYmDvXrweFQHh fl/ww8DhQd58/lm7jOe9mNra+haDUDVs5YmeabCCWwDq6vo0LTOirUl0VyyQ+r/U 2xWX3vCbQMLl6sUjjlw78typYYp1ZUYitS2uOYm27ubdJflJlBIgWUuq6iwtTvi6 KUgM++c= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:33 2024 by rpki-client on console-ams.rpki-client.org