$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5851940A1AAF11ECA9C70C78C4F9AE02.roa File: 5851940A1AAF11ECA9C70C78C4F9AE02.roa (raw, json) Hash identifier: ItQlUmVI7c5fO/4ue7tytYbQCjMvsf1fhG0die3nLMk= Subject key identifier: F2:D7:87:11:27:63:EB:CE:CA:BC:A0:5F:B9:1B:8A:6C:07:79:03:DE Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6F4A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5851940A1AAF11ECA9C70C78C4F9AE02.roa Signing time: Wed 10 May 2023 16:38:06 +0000 ROA not before: Wed 10 May 2023 16:38:06 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 142445 IP address blocks: 103.168.234.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28490 (0x6f4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:38:06 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc86e-580e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e9:93:b8:8c:38:cc:be:97:c8:00:0b:d8:28: 0a:8a:9d:fc:1d:8e:6d:e7:14:c6:0e:46:02:90:90: b8:57:06:2b:f9:bb:c2:c8:91:53:3d:ae:97:23:e8: 2a:db:01:2e:26:8f:bf:a2:38:06:21:da:66:68:07: 9a:0f:55:e0:14:44:06:83:fb:7e:9e:03:4e:93:2b: e9:f6:a7:66:86:c4:e8:57:06:79:5e:aa:67:77:29: 10:fa:cd:8b:8f:5f:52:4f:22:b1:6a:dd:ef:62:7c: de:e2:24:87:c9:c3:bc:52:6b:a7:ee:b4:08:83:fd: 5b:e1:9e:15:43:58:51:79:5c:1d:67:5e:e7:b1:e1: b8:3a:51:b4:c8:f0:ac:a5:46:6d:3d:e3:e0:80:4b: 8e:7b:9e:89:59:3e:76:73:6b:9e:5e:e2:e3:b9:42: 8f:05:68:2f:37:c1:0c:a5:3c:92:b5:28:73:83:6f: f5:b7:55:ff:1a:2a:98:e7:13:f4:c2:84:9f:71:9d: 31:77:50:1d:40:28:69:3d:dd:89:f3:72:82:82:fc: 8e:29:4d:35:cd:ef:89:16:8e:d8:4e:4d:b0:4f:63: dd:9c:68:ce:b3:f0:73:d3:cb:99:4a:29:72:a3:43: 24:98:1a:97:b5:46:07:39:1b:95:5e:2f:ae:44:b7: 0b:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:D7:87:11:27:63:EB:CE:CA:BC:A0:5F:B9:1B:8A:6C:07:79:03:DE X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5851940A1AAF11ECA9C70C78C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.234.0/23 Signature Algorithm: sha256WithRSAEncryption b3:70:37:d9:f5:e4:95:f6:84:ed:da:da:14:f6:5d:77:dc:40: c3:7a:49:1c:1a:a7:c0:3d:97:d3:72:a9:08:7f:3a:52:8e:87: fb:77:c7:13:5a:e4:30:0b:41:f6:88:d3:36:78:54:3d:e9:32: f7:66:4e:ee:fc:fc:d0:7d:80:52:ee:82:19:cd:95:a9:fc:66: cd:83:fb:e4:05:32:e5:cd:69:51:31:ae:5f:2a:30:ad:c7:0c: 02:40:85:32:ec:bc:ce:0c:dd:9b:6a:bb:28:fa:92:62:a3:9f: 24:63:8d:fb:fa:cb:ed:98:8f:1b:b8:eb:52:af:14:c6:66:60: e4:23:55:e4:6c:09:b0:e3:21:68:da:a4:f1:e7:b3:95:f1:5d: 14:b9:33:1e:84:db:88:11:88:47:16:0b:e5:73:e4:40:2d:ae: 58:f7:f6:6d:04:c6:a2:f6:d1:6d:5d:59:60:ac:42:a5:07:2a: df:21:59:6e:2e:e6:4e:95:78:8b:9f:4f:e9:d2:4d:cc:3f:46: 5f:78:3c:b8:e7:c0:d9:f2:37:c1:96:c2:f5:79:27:33:0d:b8: d7:0d:91:71:ca:f2:7c:ff:9c:8c:7d:51:85:fb:89:6d:8c:3b: 19:a7:9c:eb:a6:3b:47:35:74:91:8e:85:68:a3:f8:a3:5c:21: e9:08:33:54 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICb0owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzODA2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzg2ZS01ODBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsumTuIw4zL6XyAAL2CgKip38HY5t5xTGDkYCkJC4VwYr+bvCyJFTPa6XI+gq 2wEuJo+/ojgGIdpmaAeaD1XgFEQGg/t+ngNOkyvp9qdmhsToVwZ5XqpndykQ+s2L j19STyKxat3vYnze4iSHycO8Umun7rQIg/1b4Z4VQ1hReVwdZ17nseG4OlG0yPCs pUZtPePggEuOe56JWT52c2ueXuLjuUKPBWgvN8EMpTyStShzg2/1t1X/GiqY5xP0 woSfcZ0xd1AdQChpPd2J83KCgvyOKU01ze+JFo7YTk2wT2PdnGjOs/Bz08uZSily o0MkmBqXtUYHORuVXi+uRLcLbwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPLXhxEn Y+vOyrygX7kbimwHeQPeMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNTg1MTk0MEEx QUFGMTFFQ0E5QzcwQzc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnqOowDQYJKoZIhvcNAQELBQADggEBALNwN9n15JX2hO3a 2hT2XXfcQMN6SRwap8A9l9NyqQh/OlKOh/t3xxNa5DALQfaI0zZ4VD3pMvdmTu78 /NB9gFLughnNlan8Zs2D++QFMuXNaVExrl8qMK3HDAJAhTLsvM4M3Ztquyj6kmKj nyRjjfv6y+2Yjxu461KvFMZmYOQjVeRsCbDjIWjapPHns5XxXRS5Mx6E24gRiEcW C+Vz5EAtrlj39m0ExqL20W1dWWCsQqUHKt8hWW4u5k6VeIufT+nSTcw/Rl94PLjn wNnyN8GWwvV5JzMNuNcNkXHK8nz/nIx9UYX7iW2MOxmnnOumO0c1dJGOhWij+KNc IekIM1Q= -----END CERTIFICATE-----Generated at Sun Apr 28 15:51:21 2024 by rpki-client on console-fra.rpki-client.org