$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/55751B541A2B11EDBA2C6D18C4F9AE02.roa File: 55751B541A2B11EDBA2C6D18C4F9AE02.roa (raw, json) Hash identifier: stpfSOrTCnTaDyy36S4sBbrIhhrDBvNSqdSzPzZopio= Subject key identifier: 9B:53:20:71:8D:64:F4:1D:83:42:99:B0:EC:F8:AE:A6:EB:3C:46:BD Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6BE0 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/55751B541A2B11EDBA2C6D18C4F9AE02.roa Signing time: Wed 10 May 2023 16:21:48 +0000 ROA not before: Wed 10 May 2023 16:21:48 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 135726 IP address blocks: 103.132.56.0/22 maxlen: 24 2001:df0:1d80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27616 (0x6be0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:21:48 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc49c-5201 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:9d:05:b7:3e:cd:9d:13:ea:ce:09:dc:d3:9b: 06:bf:eb:fb:70:b1:11:a6:6f:b3:b5:ba:d1:44:60: e5:27:df:f6:6b:0f:48:f9:97:9a:89:b1:a1:9d:29: e4:47:d0:b6:2d:80:a7:87:27:c8:db:bb:b6:16:99: 98:dd:17:a9:1f:f9:69:da:1f:2a:aa:dc:60:3c:b7: fb:e3:07:87:2d:1d:0c:00:48:3c:8e:f0:93:5c:e6: 3e:db:44:98:c6:44:95:99:ff:cc:4b:ef:35:f3:d1: 3e:69:44:22:9d:c6:d4:b4:ec:8c:04:94:77:be:2c: f2:b6:c3:f9:72:d9:de:90:8f:ad:92:97:49:b4:7c: 0a:6a:f0:71:2d:ac:47:f2:3d:73:f9:fe:e5:e4:e4: ef:4b:66:06:f8:5f:bf:e1:08:81:e2:8d:aa:df:dd: 14:59:9c:b4:fe:41:5a:6a:6a:75:06:d5:86:1f:d2: 6a:2c:57:7d:9d:66:91:33:19:60:35:eb:21:8c:bd: e0:d2:a7:c9:c9:b0:54:06:a7:18:c6:75:71:85:51: 24:8a:b6:0d:c8:77:2d:f9:50:a0:e4:3c:f5:88:82: c0:27:7a:0f:a9:9d:02:ca:f4:87:17:bc:e1:ea:5c: 7d:d5:39:16:34:b3:a7:4c:9f:bd:21:e1:2f:2c:ae: e4:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:53:20:71:8D:64:F4:1D:83:42:99:B0:EC:F8:AE:A6:EB:3C:46:BD X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/55751B541A2B11EDBA2C6D18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.132.56.0/22 IPv6: 2001:df0:1d80::/48 Signature Algorithm: sha256WithRSAEncryption 8b:20:b4:0d:26:ac:34:99:8a:6b:40:e2:41:02:71:b6:da:8c: 00:29:14:06:5d:c2:bb:9f:b5:0a:60:77:ee:19:bf:f0:bb:b8: da:ad:54:1d:1b:a9:1d:81:b7:c0:28:33:ea:fd:40:36:98:91: cf:af:22:61:f2:4b:6b:da:b8:f5:d8:38:d8:d8:93:ef:7d:45: 99:85:5a:3b:4d:42:65:fe:ab:83:70:89:b8:1b:33:20:d6:c8: 9f:eb:e3:77:fb:84:bb:d5:80:31:d5:01:95:1f:63:a5:74:88: dc:9e:a2:79:9d:31:19:3a:92:3f:59:60:e2:67:a9:ef:98:45: 57:2c:41:31:95:ea:56:b8:90:2e:66:7e:b8:52:da:47:81:c0: 40:29:0e:1d:ff:a9:01:82:bb:d1:60:8a:77:8e:4d:3d:6f:58: 35:d3:30:70:c1:14:b7:88:bd:9c:be:10:12:4c:d2:47:d3:b3: ff:ae:69:79:50:4e:75:ce:f3:89:57:38:26:b7:4d:94:fa:0f: b0:4a:4d:28:15:ce:43:3e:74:7a:e0:df:c0:05:45:6d:38:4c: a9:54:58:d2:3e:a7:9a:cf:c2:77:e3:4c:7d:cd:58:d1:45:75: 5a:28:eb:f0:58:91:be:cd:fb:64:ef:8b:da:e6:6c:a4:2f:65: 58:7b:48:63 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICa+AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyMTQ4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzQ5Yy01MjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2p0Ftz7NnRPqzgnc05sGv+v7cLERpm+ztbrRRGDlJ9/2aw9I+ZeaibGhnSnk R9C2LYCnhyfI27u2FpmY3RepH/lp2h8qqtxgPLf74weHLR0MAEg8jvCTXOY+20SY xkSVmf/MS+8189E+aUQincbUtOyMBJR3vizytsP5ctnekI+tkpdJtHwKavBxLaxH 8j1z+f7l5OTvS2YG+F+/4QiB4o2q390UWZy0/kFaamp1BtWGH9JqLFd9nWaRMxlg NeshjL3g0qfJybBUBqcYxnVxhVEkirYNyHct+VCg5Dz1iILAJ3oPqZ0CyvSHF7zh 6lx91TkWNLOnTJ+9IeEvLK7k9wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJtTIHGN ZPQdg0KZsOz4rqbrPEa9MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNTU3NTFCNTQx QTJCMTFFREJBMkM2RDE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnhDgwDwQCAAIwCQMHACABDfAdgDANBgkqhkiG9w0BAQsF AAOCAQEAiyC0DSasNJmKa0DiQQJxttqMACkUBl3Cu5+1CmB37hm/8Lu42q1UHRup HYG3wCgz6v1ANpiRz68iYfJLa9q49dg42NiT731FmYVaO01CZf6rg3CJuBszINbI n+vjd/uEu9WAMdUBlR9jpXSI3J6ieZ0xGTqSP1lg4mep75hFVyxBMZXqVriQLmZ+ uFLaR4HAQCkOHf+pAYK70WCKd45NPW9YNdMwcMEUt4i9nL4QEkzSR9Oz/65peVBO dc7ziVc4JrdNlPoPsEpNKBXOQz50euDfwAVFbThMqVRY0j6nms/Cd+NMfc1Y0UV1 Wijr8FiRvs37ZO+L2uZspC9lWHtIYw== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:33 2024 by rpki-client on console-ams.rpki-client.org