$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/512FDE02F68811EBAFFF4B59C4F9AE02.roa File: 512FDE02F68811EBAFFF4B59C4F9AE02.roa (raw, json) Hash identifier: XLiX9/GPu0STvmfVHK5kkraxah+FvSvasiZyXiUWOSM= Subject key identifier: FC:D0:71:A9:D9:AC:AE:19:A7:94:1E:F1:8C:C3:8A:46:F1:76:C8:77 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6F77 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/512FDE02F68811EBAFFF4B59C4F9AE02.roa Signing time: Wed 10 May 2023 16:38:57 +0000 ROA not before: Wed 10 May 2023 16:38:57 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 142503 IP address blocks: 103.170.42.0/23 maxlen: 24 2001:df7:e80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28535 (0x6f77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:38:57 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc8a1-456c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:71:a4:3e:b1:03:5f:1c:f7:73:20:77:c5:4b: 0e:1d:66:93:7f:ce:94:5b:8b:18:66:ae:1e:60:fb: 41:bc:a1:c6:8b:c4:f3:05:97:63:26:3f:3f:90:0a: 08:e0:09:ef:b8:c9:34:61:20:05:39:58:6d:74:dc: b9:a2:21:c9:36:83:4a:f8:49:6c:99:d1:e0:f6:f8: da:4c:a1:85:20:fc:fc:b7:45:1a:5e:15:f2:a9:58: 49:20:bb:db:1e:15:9d:6f:5a:e1:53:71:1b:39:fd: f7:84:bf:49:a0:28:49:fc:d6:85:9b:c1:3c:f9:c1: 9e:7a:21:5a:03:d5:86:fb:1d:0e:e0:4c:a5:4d:f5: 49:5d:96:b1:7a:40:53:e2:21:7e:0c:29:95:26:6c: 57:de:27:16:00:61:79:5e:10:fa:2c:b8:16:0c:64: df:76:ac:f4:1e:dd:52:fa:68:bf:d5:de:3c:a9:69: a7:5c:c5:1b:21:3c:5a:9d:9f:22:99:e4:90:d2:4a: 9e:ed:e6:43:3c:ac:8a:82:b7:d7:a6:59:07:06:d1: 6d:f0:8a:4a:de:0e:c3:fe:12:20:36:55:87:dd:2c: f6:43:93:bc:26:3c:2c:39:2c:a5:16:b0:75:95:18: a3:81:c9:e7:14:bd:86:a9:c0:74:58:bb:1d:b1:96: 72:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:D0:71:A9:D9:AC:AE:19:A7:94:1E:F1:8C:C3:8A:46:F1:76:C8:77 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/512FDE02F68811EBAFFF4B59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.42.0/23 IPv6: 2001:df7:e80::/48 Signature Algorithm: sha256WithRSAEncryption 0c:e6:97:ad:9a:ec:4c:01:e8:3f:56:1d:9c:bc:e4:f8:df:67: 9c:d6:25:ca:0c:a5:e4:c0:8c:b9:31:25:82:cc:3f:07:7f:ab: 3a:d6:47:bf:e1:f9:f6:ec:3f:52:49:21:a9:a1:7c:14:ef:62: d2:6f:5d:0d:b7:83:a6:39:f6:1b:62:e6:09:da:93:4a:1f:54: 71:02:24:14:be:9a:3d:10:77:49:07:29:72:17:a7:19:bc:61: 38:43:24:2a:48:9b:be:1c:ab:2a:d6:f1:0a:4e:3a:b8:64:99: c1:49:77:ec:52:cb:fd:c7:e1:7b:74:c5:3e:97:61:27:2d:37: 1b:03:5b:49:25:4a:f7:37:00:e3:63:19:0c:94:5c:38:9e:06: 0a:43:55:70:cf:cd:e6:ba:17:95:e3:05:74:1d:87:9a:14:af: 45:da:2f:1e:00:97:da:80:de:fa:ea:b0:c3:26:c5:a6:05:1e: 3a:98:85:1d:12:33:f4:8a:d8:93:62:77:c0:5a:b4:34:d6:3f: 00:58:84:6b:6f:e2:27:0d:f5:81:ef:18:0f:fe:60:91:62:ce: 83:8f:5f:9d:f9:a4:0f:b3:8b:b2:70:0a:35:af:ed:9f:35:c3: de:ad:1b:20:47:67:7b:71:b9:62:4e:00:e7:b7:b1:a7:3b:30: 34:aa:a1:a2 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICb3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzODU3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzhhMS00NTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq3GkPrEDXxz3cyB3xUsOHWaTf86UW4sYZq4eYPtBvKHGi8TzBZdjJj8/kAoI 4AnvuMk0YSAFOVhtdNy5oiHJNoNK+ElsmdHg9vjaTKGFIPz8t0UaXhXyqVhJILvb HhWdb1rhU3EbOf33hL9JoChJ/NaFm8E8+cGeeiFaA9WG+x0O4EylTfVJXZaxekBT 4iF+DCmVJmxX3icWAGF5XhD6LLgWDGTfdqz0Ht1S+mi/1d48qWmnXMUbITxanZ8i meSQ0kqe7eZDPKyKgrfXplkHBtFt8IpK3g7D/hIgNlWH3Sz2Q5O8JjwsOSylFrB1 lRijgcnnFL2GqcB0WLsdsZZyYwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPzQcanZ rK4Zp5Qe8YzDikbxdsh3MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNTEyRkRFMDJG Njg4MTFFQkFGRkY0QjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnqiowDwQCAAIwCQMHACABDfcOgDANBgkqhkiG9w0BAQsF AAOCAQEADOaXrZrsTAHoP1YdnLzk+N9nnNYlygyl5MCMuTElgsw/B3+rOtZHv+H5 9uw/UkkhqaF8FO9i0m9dDbeDpjn2G2LmCdqTSh9UcQIkFL6aPRB3SQcpchenGbxh OEMkKkibvhyrKtbxCk46uGSZwUl37FLL/cfhe3TFPpdhJy03GwNbSSVK9zcA42MZ DJRcOJ4GCkNVcM/N5roXleMFdB2HmhSvRdovHgCX2oDe+uqwwybFpgUeOpiFHRIz 9IrYk2J3wFq0NNY/AFiEa2/iJw31ge8YD/5gkWLOg49fnfmkD7OLsnAKNa/tnzXD 3q0bIEdne3G5Yk4A57expzswNKqhog== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:33 2024 by rpki-client on console-ams.rpki-client.org