$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/56AC33F83EAA11EB9A6F3525C4F9AE02.roa File: 56AC33F83EAA11EB9A6F3525C4F9AE02.roa (raw, json) Hash identifier: BtVPt+v1n9/7HkBAd95tyCwAnsiM3EIwBvy9fEKDU1U= Subject key identifier: EA:FF:4B:35:85:36:73:73:F6:A8:D3:D0:75:65:8E:8D:22:03:22:EA Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6E9E Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/56AC33F83EAA11EB9A6F3525C4F9AE02.roa Signing time: Wed 10 May 2023 16:34:53 +0000 ROA not before: Wed 10 May 2023 16:34:53 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141331 IP address blocks: 103.159.178.0/23 maxlen: 24 2406:d8c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28318 (0x6e9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:34:53 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc7ad-dcda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:f5:76:9b:8c:b4:94:ca:47:95:1f:d9:8e:bd: 47:8b:ea:f1:26:59:d6:1a:b7:95:c3:3f:cc:d8:d7: ec:b8:be:03:4a:42:08:dd:89:f4:75:e9:87:a9:79: 94:1b:78:91:98:21:74:a6:44:ae:ea:e1:95:8d:99: c8:f7:dd:e9:45:86:8d:6b:c8:81:22:42:50:58:53: b8:a7:10:73:3d:f9:88:88:0e:c8:76:5e:f5:79:0f: 7f:62:73:32:63:e2:02:a1:75:07:57:77:26:49:4c: df:b7:b0:aa:59:e3:5e:1c:d9:f4:76:f3:4b:43:46: 52:45:f9:51:4f:2b:22:f5:d6:3c:64:6e:ca:35:98: 10:ca:57:53:99:3d:75:30:2b:b2:0e:41:7a:04:24: 8c:e4:29:91:1b:63:5a:7a:49:a2:5a:2e:3f:d4:8d: af:61:86:f0:c7:68:ca:00:3a:8d:cd:25:6e:a8:df: 96:28:a2:a1:56:8a:6d:c4:a0:ac:34:cc:f2:ab:d5: b5:04:12:e4:e4:3d:bf:d1:31:cf:bb:e8:ef:dd:a8: 79:8a:b4:48:96:0e:12:a5:36:ca:81:e6:c6:29:67: d4:1a:36:8e:af:be:2d:de:48:d2:2e:dd:ab:be:45: 96:ce:e6:11:60:74:dd:47:5e:18:02:14:3f:3b:51: 80:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:FF:4B:35:85:36:73:73:F6:A8:D3:D0:75:65:8E:8D:22:03:22:EA X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/56AC33F83EAA11EB9A6F3525C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.178.0/23 IPv6: 2406:d8c0::/32 Signature Algorithm: sha256WithRSAEncryption 18:22:67:2b:0d:fe:e4:23:42:5d:cb:40:95:b2:ea:f4:95:5e: 89:11:56:eb:a7:f1:97:f4:2a:96:6c:84:39:5e:e5:03:14:c3: b9:a1:2e:91:78:f9:ee:58:98:5b:f9:a3:9d:9e:95:24:e5:70: da:83:d2:4e:8b:9f:69:e7:9d:bc:87:73:57:e8:83:12:8c:2e: ec:8c:05:ef:53:5c:43:2f:0d:6c:03:66:14:9c:3c:55:07:16: 98:38:b3:e4:ae:d0:8f:e1:58:94:89:c9:1a:ec:a4:6e:8c:84: 68:96:b7:0d:9f:2a:7e:71:9c:df:4c:aa:9b:e3:aa:3e:44:c8: 87:ba:51:c4:e3:d7:9b:92:7e:d2:c5:16:5c:9a:3e:f7:d0:de: 1a:75:a2:38:4d:28:da:84:a5:f4:a2:e9:7b:32:4d:94:e5:96: b8:d5:6e:78:46:7a:65:34:93:40:20:26:a5:06:8e:22:e4:88: e9:71:e8:d8:34:b7:8e:23:f4:73:bd:65:77:55:2d:6c:41:9c: b4:02:aa:18:64:19:e6:91:7a:a9:1f:bb:e8:b3:d5:33:0e:c0: 48:aa:ac:36:01:c1:94:1a:aa:32:b8:b6:09:2d:1f:8f:74:68: 5b:a7:45:ee:ff:43:45:86:86:8a:0b:fb:bf:d5:e3:4c:d8:c0: ce:13:ce:14 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICbp4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzNDUzWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzdhZC1kY2RhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn/V2m4y0lMpHlR/Zjr1Hi+rxJlnWGreVwz/M2NfsuL4DSkII3Yn0demHqXmU G3iRmCF0pkSu6uGVjZnI993pRYaNa8iBIkJQWFO4pxBzPfmIiA7Idl71eQ9/YnMy Y+ICoXUHV3cmSUzft7CqWeNeHNn0dvNLQ0ZSRflRTysi9dY8ZG7KNZgQyldTmT11 MCuyDkF6BCSM5CmRG2NaekmiWi4/1I2vYYbwx2jKADqNzSVuqN+WKKKhVoptxKCs NMzyq9W1BBLk5D2/0THPu+jv3ah5irRIlg4SpTbKgebGKWfUGjaOr74t3kjSLt2r vkWWzuYRYHTdR14YAhQ/O1GAIQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOr/SzWF NnNz9qjT0HVljo0iAyLqMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNTZBQzMzRjgz RUFBMTFFQjlBNkYzNTI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnn7IwDQQCAAIwBwMFACQG2MAwDQYJKoZIhvcNAQELBQAD ggEBABgiZysN/uQjQl3LQJWy6vSVXokRVuun8Zf0KpZshDle5QMUw7mhLpF4+e5Y mFv5o52elSTlcNqD0k6Ln2nnnbyHc1fogxKMLuyMBe9TXEMvDWwDZhScPFUHFpg4 s+Su0I/hWJSJyRrspG6MhGiWtw2fKn5xnN9Mqpvjqj5EyIe6UcTj15uSftLFFlya PvfQ3hp1ojhNKNqEpfSi6XsyTZTllrjVbnhGemU0k0AgJqUGjiLkiOlx6Ng0t44j 9HO9ZXdVLWxBnLQCqhhkGeaReqkfu+iz1TMOwEiqrDYBwZQaqjK4tgktH490aFun Re7/Q0WGhooL+7/V40zYwM4TzhQ= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:33 2024 by rpki-client on console-ams.rpki-client.org