$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/52C997F2079211EBA1A64A7AC4F9AE02.roa File: 52C997F2079211EBA1A64A7AC4F9AE02.roa (raw, json) Hash identifier: kfti71nmmgiB1n+G01d2sl+p9qVaWndhDkuAmR1EtZY= Subject key identifier: A9:F0:00:0D:DC:AD:E5:C8:84:C7:98:F4:A3:6D:04:67:59:61:52:E0 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6C4C Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/52C997F2079211EBA1A64A7AC4F9AE02.roa Signing time: Wed 10 May 2023 16:23:52 +0000 ROA not before: Wed 10 May 2023 16:23:52 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136299 IP address blocks: 103.91.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27724 (0x6c4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:23:52 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc518-a925 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d0:01:a5:a8:d3:b8:e4:d6:8c:9e:e8:e7:75: 70:88:3c:8a:23:18:8c:1b:dd:8f:e6:85:b0:7b:31: 39:27:2c:e3:40:d5:7a:c0:5c:a5:3b:ab:cb:13:2f: 63:af:57:1a:9b:8d:33:3e:c0:2b:69:e4:70:0c:c9: 4d:37:fb:21:e7:8e:11:6b:29:46:8f:96:f9:8e:b5: 81:2b:16:ca:9d:63:47:0d:11:bb:7b:08:46:31:89: 14:57:c8:9e:b1:0c:4c:8c:a9:62:a9:cd:5e:da:1d: 58:57:b4:1c:b3:7f:a2:96:92:e2:5e:34:52:14:ae: a8:8c:9b:d7:64:86:8c:2a:eb:c6:e1:2d:01:95:44: dc:af:bb:27:c8:76:4d:bc:d9:7e:7c:ea:1a:3d:bf: b8:62:4f:5a:fd:36:dc:69:d4:86:13:e6:a0:b5:3f: be:c2:5b:72:7e:c2:24:75:5a:82:e8:66:5b:94:0c: bb:2e:a5:ce:4f:2b:8c:d5:db:c4:1a:ec:f4:5d:e5: 07:2a:23:b2:3f:8b:cd:e7:0c:a6:ae:05:5d:5c:2f: 17:31:60:45:db:b6:19:5d:42:1b:b9:c2:76:3e:08: a7:ef:bb:3c:b7:99:d2:ac:d5:1c:1b:04:59:eb:3f: 40:e9:a2:47:4f:8c:50:0a:1c:a1:e4:12:1a:57:5f: 1a:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:F0:00:0D:DC:AD:E5:C8:84:C7:98:F4:A3:6D:04:67:59:61:52:E0 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/52C997F2079211EBA1A64A7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.124.0/24 Signature Algorithm: sha256WithRSAEncryption 96:9a:27:2e:87:c1:86:e3:1d:95:47:b7:02:c7:93:32:52:d2: b8:ae:7d:7c:4a:e3:6c:4d:07:da:b9:85:14:e5:13:c0:83:7f: 55:dc:92:b5:2b:06:2e:ac:f8:2e:21:bf:47:4a:89:c6:99:1a: 5a:ed:02:ff:32:cc:ad:1e:25:61:90:28:0b:10:04:5e:0f:bf: b6:d8:37:66:f4:ad:c0:a1:e6:69:1b:b8:1b:26:84:5e:99:6e: f7:75:ff:d4:da:64:08:8a:8b:dc:f4:13:63:c1:78:0c:2f:4f: f2:aa:8c:41:27:a2:59:ba:a4:41:13:f3:1e:5e:8b:3a:13:74: 0c:67:c6:66:f2:d4:72:6f:f2:65:9f:91:a6:a1:a3:0a:39:fb: 10:b1:8f:72:5d:4e:a2:9b:fb:1e:d9:96:3e:f7:8c:fe:ce:80: bb:9a:01:67:35:f7:ba:27:86:ed:f3:6c:c7:da:dc:85:d0:88: 95:5c:4d:35:43:94:cd:eb:66:60:c3:54:e2:7b:ce:6e:0f:44: 87:5e:c6:76:94:1c:60:ab:6e:58:24:5f:05:d7:96:31:92:90: 28:71:15:6b:65:f1:ea:14:16:9f:7e:86:e8:a0:f2:36:34:49: 88:65:97:3b:4b:01:42:f1:6b:29:da:79:36:1d:f1:2a:4c:9c: 54:a4:8b:fb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyMzUyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzUxOC1hOTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNABpajTuOTWjJ7o53VwiDyKIxiMG92P5oWwezE5JyzjQNV6wFylO6vLEy9j r1cam40zPsAraeRwDMlNN/sh544RaylGj5b5jrWBKxbKnWNHDRG7ewhGMYkUV8ie sQxMjKliqc1e2h1YV7Qcs3+ilpLiXjRSFK6ojJvXZIaMKuvG4S0BlUTcr7snyHZN vNl+fOoaPb+4Yk9a/TbcadSGE+agtT++wltyfsIkdVqC6GZblAy7LqXOTyuM1dvE Guz0XeUHKiOyP4vN5wymrgVdXC8XMWBF27YZXUIbucJ2Pgin77s8t5nSrNUcGwRZ 6z9A6aJHT4xQChyh5BIaV18a5QIDAQABo4IClTCCApEwHQYDVR0OBBYEFKnwAA3c reXIhMeY9KNtBGdZYVLgMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNTJDOTk3RjIw NzkyMTFFQkExQTY0QTdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnW3wwDQYJKoZIhvcNAQELBQADggEBAJaaJy6HwYbjHZVH twLHkzJS0riufXxK42xNB9q5hRTlE8CDf1XckrUrBi6s+C4hv0dKicaZGlrtAv8y zK0eJWGQKAsQBF4Pv7bYN2b0rcCh5mkbuBsmhF6Zbvd1/9TaZAiKi9z0E2PBeAwv T/KqjEEnolm6pEET8x5eizoTdAxnxmby1HJv8mWfkaahowo5+xCxj3JdTqKb+x7Z lj73jP7OgLuaAWc197onhu3zbMfa3IXQiJVcTTVDlM3rZmDDVOJ7zm4PRIdexnaU HGCrblgkXwXXljGSkChxFWtl8eoUFp9+huig8jY0SYhllztLAULxaynaeTYd8SpM nFSki/s= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:33 2024 by rpki-client on console-ams.rpki-client.org