$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/55F5D8044DAB11ECA32B1C1EC4F9AE02.roa File: 55F5D8044DAB11ECA32B1C1EC4F9AE02.roa (raw, json) Hash identifier: 3b/Ldoqk8hw6TeZeQrR2PyZ/f0BZwFB1KphyEagLPQs= Subject key identifier: B7:35:1B:10:6C:E4:71:19:7B:DB:D9:9B:E3:45:D9:D2:B1:44:73:E0 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6CE3 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/55F5D8044DAB11ECA32B1C1EC4F9AE02.roa Signing time: Wed 10 May 2023 16:26:42 +0000 ROA not before: Wed 10 May 2023 16:26:42 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 137122 IP address blocks: 103.110.240.0/22 maxlen: 24 2400:a820::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27875 (0x6ce3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:26:42 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc5c2-de72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:eb:83:61:31:c2:ab:f8:78:ee:a3:d7:5f:a4: c1:10:77:28:a4:2e:90:62:97:f0:49:dd:54:76:ab: 0d:ec:ff:ff:e7:4a:bf:12:37:72:5e:61:07:69:39: 03:7e:8e:80:2e:12:58:2b:e3:95:a9:ac:16:d3:48: 70:4d:57:92:8e:10:d7:de:80:65:46:15:26:1e:dc: bb:be:cf:f1:18:43:77:d1:cb:c7:1e:a7:79:39:ed: a3:3b:f7:38:6c:79:ff:ee:e9:ff:3e:e6:df:4d:ba: 6f:08:68:be:f5:d7:e7:f8:57:49:66:5f:22:10:b3: ed:2c:73:53:51:ac:81:7e:bc:37:8d:00:29:fc:7a: 91:96:72:d0:6e:56:0e:eb:e2:68:59:b3:80:0d:ed: c9:80:ec:ae:d2:93:d0:08:4a:e5:f5:8a:d3:87:9e: 61:f3:79:a8:5f:6f:06:10:1e:c7:5f:9a:b1:da:b7: 72:0b:05:9b:4f:6e:36:18:d5:74:5f:8e:0d:ee:8e: e9:5e:3a:00:5b:76:45:b1:1b:88:e3:fc:b2:ba:69: 5f:0e:25:1c:8b:68:22:f6:ac:97:68:e3:a3:24:a6: c1:d9:e1:33:7f:68:1b:67:2a:91:25:3e:25:d8:e9: 33:ef:c6:93:ec:dd:f3:52:97:d7:e5:82:7f:84:14: e2:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:35:1B:10:6C:E4:71:19:7B:DB:D9:9B:E3:45:D9:D2:B1:44:73:E0 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/55F5D8044DAB11ECA32B1C1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.110.240.0/22 IPv6: 2400:a820::/32 Signature Algorithm: sha256WithRSAEncryption 7e:c6:05:f0:02:a9:0f:60:96:14:18:0a:b7:0f:44:17:83:13: f8:f1:1e:96:95:df:b4:22:ba:f1:84:d6:c8:7f:9c:0b:05:51: 99:6d:6d:6a:01:d1:96:21:b1:2b:95:cb:32:29:3c:93:63:e8: a5:42:69:ae:e4:f0:df:3d:42:5c:51:ad:7b:07:31:28:8f:35: 51:7e:33:64:6f:e4:59:92:f6:a9:45:03:12:62:5f:23:a5:ef: 0f:c7:13:f8:e6:cf:a7:e1:2b:07:8b:57:79:02:36:b3:c7:54: f7:b5:8b:6c:98:f2:6d:73:ce:04:11:ad:d1:93:cc:66:93:39: c4:e5:7d:04:00:3c:d3:4a:68:54:52:22:d0:3d:6d:59:3a:63: 11:b1:07:7c:95:69:4a:0d:1e:ae:95:07:aa:ee:49:d0:6a:4e: 69:3e:be:a4:e5:b1:f2:04:98:c8:54:b1:c9:b8:a9:d9:92:88: 22:1f:f4:f4:d2:b5:66:b0:69:7c:d9:c6:0b:47:8f:ce:93:dd: 7a:75:36:a2:04:5a:ad:b8:74:91:4a:e2:3e:a5:ec:d0:3d:b9: 33:d8:ae:05:2b:fa:d3:fb:52:b1:68:3a:b0:ab:a9:ad:94:58: 67:d2:7b:84:a2:05:cf:03:a3:ad:22:13:24:86:cb:b8:65:02: 8b:44:11:f2 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICbOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNjQyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzVjMi1kZTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5uuDYTHCq/h47qPXX6TBEHcopC6QYpfwSd1UdqsN7P//50q/EjdyXmEHaTkD fo6ALhJYK+OVqawW00hwTVeSjhDX3oBlRhUmHty7vs/xGEN30cvHHqd5Oe2jO/c4 bHn/7un/PubfTbpvCGi+9dfn+FdJZl8iELPtLHNTUayBfrw3jQAp/HqRlnLQblYO 6+JoWbOADe3JgOyu0pPQCErl9YrTh55h83moX28GEB7HX5qx2rdyCwWbT242GNV0 X44N7o7pXjoAW3ZFsRuI4/yyumlfDiUci2gi9qyXaOOjJKbB2eEzf2gbZyqRJT4l 2Okz78aT7N3zUpfX5YJ/hBTiWQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLc1GxBs 5HEZe9vZm+NF2dKxRHPgMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNTVGNUQ4MDQ0 REFCMTFFQ0EzMkIxQzFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnbvAwDQQCAAIwBwMFACQAqCAwDQYJKoZIhvcNAQELBQAD ggEBAH7GBfACqQ9glhQYCrcPRBeDE/jxHpaV37QiuvGE1sh/nAsFUZltbWoB0ZYh sSuVyzIpPJNj6KVCaa7k8N89QlxRrXsHMSiPNVF+M2Rv5FmS9qlFAxJiXyOl7w/H E/jmz6fhKweLV3kCNrPHVPe1i2yY8m1zzgQRrdGTzGaTOcTlfQQAPNNKaFRSItA9 bVk6YxGxB3yVaUoNHq6VB6ruSdBqTmk+vqTlsfIEmMhUscm4qdmSiCIf9PTStWaw aXzZxgtHj86T3Xp1NqIEWq24dJFK4j6l7NA9uTPYrgUr+tP7UrFoOrCrqa2UWGfS e4SiBc8Do60iEySGy7hlAotEEfI= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:33 2024 by rpki-client on console-ams.rpki-client.org