$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5AC32AA2E27111EC80ADDB74C4F9AE02.roa File: 5AC32AA2E27111EC80ADDB74C4F9AE02.roa (raw, json) Hash identifier: PdC9TsJeMdkhH2HGzKy8fluvtUDSMOyp9yYNNHlnk8Q= Subject key identifier: 4F:5D:B5:31:6A:5E:CC:49:09:67:BA:90:62:8C:B1:08:05:31:79:AC Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7022 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5AC32AA2E27111EC80ADDB74C4F9AE02.roa Signing time: Wed 10 May 2023 16:42:07 +0000 ROA not before: Wed 10 May 2023 16:42:07 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 149193 IP address blocks: 103.178.62.0/24 maxlen: 24 103.178.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28706 (0x7022) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:42:07 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc95f-f083 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c5:42:e4:3e:ee:77:6b:b0:0a:88:97:b3:35: aa:2d:b8:4f:2a:d0:e9:c8:45:95:c2:46:b0:31:03: 86:37:c3:be:c2:c6:ee:cf:c0:47:5f:87:ba:a1:06: de:1f:b4:96:ed:06:dd:e1:71:f0:9f:39:98:97:7e: 92:0b:02:c0:7b:fd:58:88:8a:88:3a:40:ca:1a:76: 64:b1:cf:e7:81:33:d0:c1:cb:46:48:0a:55:51:a3: cd:4b:e7:31:fc:28:e0:12:e0:f3:47:24:eb:c5:82: 90:a6:64:de:8e:4c:31:8b:95:2a:54:1b:8d:2d:42: 2b:82:0e:51:82:8f:db:91:cf:1d:4d:e4:40:90:07: 20:9e:75:81:b5:37:b9:97:3e:63:06:18:d9:7c:75: 31:dc:e8:6a:26:a2:77:2b:b8:4f:82:99:4c:b7:39: f0:86:aa:68:5a:ea:9d:17:ff:bf:bf:d5:81:66:fb: 60:e4:5a:4a:74:8b:7e:32:81:73:9d:15:75:bd:cd: 44:44:f7:7b:f7:41:e1:c5:c8:1e:f0:92:ec:a8:69: bf:e4:41:d9:4e:56:15:f9:d3:b5:f8:1b:86:be:96: 3b:ef:c3:a0:c6:bb:06:cd:47:3d:48:1f:90:3c:07: 6f:eb:3e:51:aa:74:f1:8d:12:aa:1f:d4:d4:e7:73: 1f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:5D:B5:31:6A:5E:CC:49:09:67:BA:90:62:8C:B1:08:05:31:79:AC X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5AC32AA2E27111EC80ADDB74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.178.62.0/23 Signature Algorithm: sha256WithRSAEncryption 22:10:3c:b1:85:8c:14:62:01:a4:f0:fd:ef:6f:d7:15:93:28: 82:42:a1:65:0b:95:6b:0b:98:f8:44:0a:cf:ec:bd:94:2e:76: 53:cc:6f:f9:5f:e0:07:cd:53:33:58:44:5f:08:43:c2:92:e7: 40:18:cb:c3:dd:26:7c:53:ce:01:ff:20:81:f7:35:a4:19:43: 16:20:19:1d:22:66:f2:89:7c:7d:bc:f9:ac:c8:8c:5c:51:3d: e5:0e:ac:08:9f:79:00:0f:c7:33:80:c0:d1:0d:15:87:dc:9b: bc:e8:9b:83:52:2a:eb:cc:ec:06:19:63:af:57:2c:f4:2d:09: 6d:54:bf:d1:44:44:aa:8b:0f:7c:13:7a:26:af:08:9e:80:59: 85:24:c6:ec:8f:26:9d:12:6f:8f:cf:66:85:8c:b6:45:e1:aa: 75:1e:e1:26:e3:02:09:3f:c6:37:07:62:36:26:24:bf:ca:47: 53:9d:42:f3:22:ab:77:16:37:35:08:6d:66:32:f3:6e:37:45: 65:71:f8:e7:25:84:8b:60:2a:de:c7:5e:0a:d3:a2:70:6f:f3: c1:b9:4e:04:20:83:7e:4e:63:58:bf:cc:ba:cf:ef:70:4a:24: 38:03:71:61:6b:b8:0b:bc:68:32:fc:1f:fb:dd:d6:61:0f:fb: a0:d3:6f:c3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICcCIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0MjA3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzk1Zi1mMDgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8VC5D7ud2uwCoiXszWqLbhPKtDpyEWVwkawMQOGN8O+wsbuz8BHX4e6oQbe H7SW7Qbd4XHwnzmYl36SCwLAe/1YiIqIOkDKGnZksc/ngTPQwctGSApVUaPNS+cx /CjgEuDzRyTrxYKQpmTejkwxi5UqVBuNLUIrgg5Rgo/bkc8dTeRAkAcgnnWBtTe5 lz5jBhjZfHUx3OhqJqJ3K7hPgplMtznwhqpoWuqdF/+/v9WBZvtg5FpKdIt+MoFz nRV1vc1ERPd790Hhxcge8JLsqGm/5EHZTlYV+dO1+BuGvpY778OgxrsGzUc9SB+Q PAdv6z5RqnTxjRKqH9TU53MfUQIDAQABo4IClTCCApEwHQYDVR0OBBYEFE9dtTFq XsxJCWe6kGKMsQgFMXmsMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNUFDMzJBQTJF MjcxMTFFQzgwQUREQjc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnsj4wDQYJKoZIhvcNAQELBQADggEBACIQPLGFjBRiAaTw /e9v1xWTKIJCoWULlWsLmPhECs/svZQudlPMb/lf4AfNUzNYRF8IQ8KS50AYy8Pd JnxTzgH/IIH3NaQZQxYgGR0iZvKJfH28+azIjFxRPeUOrAifeQAPxzOAwNENFYfc m7zom4NSKuvM7AYZY69XLPQtCW1Uv9FERKqLD3wTeiavCJ6AWYUkxuyPJp0Sb4/P ZoWMtkXhqnUe4SbjAgk/xjcHYjYmJL/KR1OdQvMiq3cWNzUIbWYy8243RWVx+Ocl hItgKt7HXgrTonBv88G5TgQgg35OY1i/zLrP73BKJDgDcWFruAu8aDL8H/vd1mEP +6DTb8M= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:34 2024 by rpki-client on console-ams.rpki-client.org