$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/58C95E4A0EC611EB9C298721C4F9AE02.roa File: 58C95E4A0EC611EB9C298721C4F9AE02.roa (raw, json) Hash identifier: dNglDprzkiEXhuWq18bwwXXpvm2AZJjKn7JJgNsEVmo= Subject key identifier: 8F:F5:E5:81:FD:99:BD:D6:D6:D3:BC:FD:EC:61:06:D6:FA:82:88:3C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6DC6 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/58C95E4A0EC611EB9C298721C4F9AE02.roa Signing time: Wed 10 May 2023 16:31:00 +0000 ROA not before: Wed 10 May 2023 16:31:00 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 138800 IP address blocks: 103.136.36.0/22 maxlen: 24 2406:c7c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28102 (0x6dc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:31:00 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc6c3-a05c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ba:d0:c6:05:65:26:ba:b5:67:c3:16:ff:e9: af:e7:3c:7d:4b:92:68:62:2d:48:93:b5:14:e4:a2: ec:c0:98:42:d9:8f:da:67:16:68:e4:8f:a4:f0:66: a3:89:b0:07:4e:d5:01:97:11:a0:93:bd:1c:0b:e2: 3c:f3:da:10:a6:1a:6e:17:7f:54:de:d0:a6:0e:9f: 0c:d7:1b:08:f1:c5:b0:f2:bb:03:dc:5c:47:d3:46: a4:4a:05:ff:29:ea:dc:42:13:da:71:09:15:43:f5: 09:e9:5a:15:43:be:9f:f5:41:e1:5d:19:c0:aa:be: d6:ef:d1:7b:f9:7e:80:f9:92:dd:cf:9d:68:70:7f: 14:8e:d9:93:48:c4:48:29:0e:3c:c4:3c:ff:12:0e: ec:31:93:db:4b:9d:d4:a7:58:0f:c4:7f:d0:48:96: 2a:eb:4f:6b:4a:a7:8c:09:94:1a:8c:d8:f8:fd:4e: df:0f:30:6f:9c:d7:fa:13:64:55:9e:d5:a7:d9:8c: 7a:61:d5:7b:65:0d:8d:e8:be:d7:c9:b4:70:77:1d: e3:cd:97:0b:0a:64:ea:bd:30:25:77:c7:78:68:52: 06:9e:5f:c5:4f:b6:94:ae:b8:fc:ac:20:a7:80:c6: ae:a0:db:28:55:52:54:78:ff:3d:7b:ac:f2:90:db: d7:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:F5:E5:81:FD:99:BD:D6:D6:D3:BC:FD:EC:61:06:D6:FA:82:88:3C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/58C95E4A0EC611EB9C298721C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.36.0/22 IPv6: 2406:c7c0::/32 Signature Algorithm: sha256WithRSAEncryption 5e:0a:68:0d:7e:51:3f:9a:d9:37:4a:a0:e3:b3:3c:73:63:c6: 26:51:e6:15:73:42:0b:7a:ee:1b:50:bd:e1:8a:3c:22:28:07: 40:2e:a5:0c:da:b0:e6:54:77:91:e6:ed:01:7c:8f:d8:74:d5: 18:2b:5f:39:49:55:ee:5f:24:7d:26:b3:56:13:e1:c3:3c:37: d4:fe:46:04:39:c3:42:e4:37:91:9b:a9:c1:1a:30:3c:1a:8c: 50:12:8c:8d:fa:a3:27:63:6c:02:e6:84:8c:3e:81:40:db:ba: be:1e:90:59:97:2c:ee:f6:73:94:37:f7:3a:b4:b0:72:1c:c9: 10:53:00:2b:62:77:c9:22:f1:aa:e4:19:75:f6:0b:04:76:00: 70:b0:bf:1b:d1:6a:f2:1b:88:14:73:1b:48:de:0d:b1:c9:46: 27:62:bf:eb:05:1b:a2:90:da:df:f7:91:60:2a:56:01:d4:da: 2a:0b:33:12:72:f0:d8:a5:f9:11:52:63:c1:de:77:ae:d4:5b: 94:34:46:7c:96:6f:a0:80:ca:b0:7c:e9:b3:dc:3a:0c:a2:6d: 7a:76:e5:b0:2c:a9:45:41:51:af:e9:b9:e5:d3:85:12:8c:e0: bb:8d:63:c5:4d:d0:64:d4:21:ab:74:2f:b5:a5:85:fa:7a:13: c0:03:43:52 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICbcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzMTAwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzZjMy1hMDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7rQxgVlJrq1Z8MW/+mv5zx9S5JoYi1Ik7UU5KLswJhC2Y/aZxZo5I+k8Gaj ibAHTtUBlxGgk70cC+I889oQphpuF39U3tCmDp8M1xsI8cWw8rsD3FxH00akSgX/ KercQhPacQkVQ/UJ6VoVQ76f9UHhXRnAqr7W79F7+X6A+ZLdz51ocH8UjtmTSMRI KQ48xDz/Eg7sMZPbS53Up1gPxH/QSJYq609rSqeMCZQajNj4/U7fDzBvnNf6E2RV ntWn2Yx6YdV7ZQ2N6L7XybRwdx3jzZcLCmTqvTAld8d4aFIGnl/FT7aUrrj8rCCn gMauoNsoVVJUeP89e6zykNvXpwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFI/15YH9 mb3W1tO8/exhBtb6gog8MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNThDOTVFNEEw RUM2MTFFQjlDMjk4NzIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJniCQwDQQCAAIwBwMFACQGx8AwDQYJKoZIhvcNAQELBQAD ggEBAF4KaA1+UT+a2TdKoOOzPHNjxiZR5hVzQgt67htQveGKPCIoB0AupQzasOZU d5Hm7QF8j9h01RgrXzlJVe5fJH0ms1YT4cM8N9T+RgQ5w0LkN5GbqcEaMDwajFAS jI36oydjbALmhIw+gUDbur4ekFmXLO72c5Q39zq0sHIcyRBTACtid8ki8arkGXX2 CwR2AHCwvxvRavIbiBRzG0jeDbHJRidiv+sFG6KQ2t/3kWAqVgHU2ioLMxJy8Nil +RFSY8Hed67UW5Q0RnyWb6CAyrB86bPcOgyibXp25bAsqUVBUa/pueXThRKM4LuN Y8VN0GTUIat0L7Wlhfp6E8ADQ1I= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:33 2024 by rpki-client on console-ams.rpki-client.org