$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5B110C9C411211EBA913BB5DC4F9AE02.roa File: 5B110C9C411211EBA913BB5DC4F9AE02.roa (raw, json) Hash identifier: biLNRfCgvhTm2nw6rDLzUeib5EIhHjUkpjHOFWjxLtI= Subject key identifier: 1B:DE:DD:19:22:37:A1:14:9F:B7:3D:EA:0F:D0:26:2B:35:4C:70:47 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6C91 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5B110C9C411211EBA913BB5DC4F9AE02.roa Signing time: Wed 10 May 2023 16:25:10 +0000 ROA not before: Wed 10 May 2023 16:25:10 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136649 IP address blocks: 103.99.185.0/24 maxlen: 24 2001:df1:72c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27793 (0x6c91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:25:10 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc565-55ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4e:01:7e:e8:b2:7b:6a:28:c7:94:18:98:a2: cd:f6:92:eb:58:5a:4c:58:84:8d:dd:cf:33:e4:f8: e9:6f:60:7b:a1:05:15:4d:01:e1:26:bd:77:4c:f7: 48:31:bc:f7:02:15:cf:bd:27:6b:99:71:99:28:34: b8:50:21:60:45:8a:a8:f8:c7:0a:45:7f:34:66:94: 1b:79:80:81:da:86:fe:9e:a8:ec:7b:cf:3b:e0:bb: 64:7e:63:1b:a1:82:96:21:a5:f8:34:45:06:66:ee: da:71:3d:6d:c3:b7:3a:44:de:1b:3d:11:c9:76:82: d0:59:d2:13:49:b9:92:5e:99:55:91:21:b7:4d:43: e7:81:a0:71:42:53:bf:1c:0a:94:22:99:cc:4b:e3: a3:3c:ba:e9:38:0a:ce:8c:7d:a6:ed:18:1e:12:68: 95:3a:81:c1:f6:7b:65:78:5d:45:3f:c0:fb:72:d3: 7c:fb:a9:e9:6b:14:c8:1f:64:37:3b:22:d6:60:32: cc:b0:4c:89:65:66:b4:3e:6e:8c:2d:01:12:0b:c1: 99:f1:cc:02:26:35:b1:b3:63:ed:f9:67:a3:e5:ad: 9f:e5:4d:5c:b1:37:7b:64:b1:f2:a4:69:1e:08:54: 30:99:27:6a:4e:b5:0b:cd:82:e1:a7:fc:fc:fb:96: 5c:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:DE:DD:19:22:37:A1:14:9F:B7:3D:EA:0F:D0:26:2B:35:4C:70:47 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5B110C9C411211EBA913BB5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.185.0/24 IPv6: 2001:df1:72c0::/48 Signature Algorithm: sha256WithRSAEncryption 00:cc:24:e4:6f:62:55:97:6c:9c:d9:9b:65:2e:2d:e5:69:67: 94:a7:da:16:5a:79:e2:e5:f2:e2:92:b6:5e:e6:af:f1:f8:71: 7b:31:08:cf:7a:90:88:fc:f4:da:b1:e5:e2:6e:fb:85:99:0e: 93:3d:7c:13:4d:37:0f:7e:8f:ac:78:bd:98:c8:8e:18:b8:14: 21:7c:31:5f:dc:67:3b:43:87:5a:15:b1:6d:59:4e:ec:23:32: 13:67:58:e3:e2:7a:51:b5:ab:a6:5a:9e:35:b0:73:82:7e:69: 5c:6f:2e:e8:2c:b8:63:92:0a:ae:6d:43:3b:7c:2a:f9:a3:3b: 22:25:14:0d:d2:24:1b:12:68:48:bf:f3:3e:8b:59:ec:db:f6: c8:d8:11:64:92:28:7d:55:20:d5:20:59:e0:47:ef:7c:87:99: b8:3e:c7:d0:05:a4:71:f5:68:d8:9f:a4:ec:7e:71:c2:3b:0f: 33:fe:39:68:67:22:86:06:bc:e5:7b:bd:0e:ff:c4:fb:2b:b1: b3:09:76:8f:cf:5b:bc:cc:ae:b2:ca:7d:57:e4:a4:b4:00:5f: df:84:cd:94:f0:be:f9:1b:42:46:bd:09:55:b0:e3:fb:c0:f8: 0b:13:b3:d0:61:9b:54:34:68:e9:3f:a2:68:6d:4e:4a:ef:3b: df:46:ce:dd -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICbJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNTEwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzU2NS01NWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyE4Bfuiye2oox5QYmKLN9pLrWFpMWISN3c8z5Pjpb2B7oQUVTQHhJr13TPdI Mbz3AhXPvSdrmXGZKDS4UCFgRYqo+McKRX80ZpQbeYCB2ob+nqjse8874LtkfmMb oYKWIaX4NEUGZu7acT1tw7c6RN4bPRHJdoLQWdITSbmSXplVkSG3TUPngaBxQlO/ HAqUIpnMS+OjPLrpOArOjH2m7RgeEmiVOoHB9ntleF1FP8D7ctN8+6npaxTIH2Q3 OyLWYDLMsEyJZWa0Pm6MLQESC8GZ8cwCJjWxs2Pt+Wej5a2f5U1csTd7ZLHypGke CFQwmSdqTrULzYLhp/z8+5ZcxwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBve3Rki N6EUn7c96g/QJis1THBHMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNUIxMTBDOUM0 MTEyMTFFQkE5MTNCQjVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnY7kwDwQCAAIwCQMHACABDfFywDANBgkqhkiG9w0BAQsF AAOCAQEAAMwk5G9iVZdsnNmbZS4t5WlnlKfaFlp54uXy4pK2Xuav8fhxezEIz3qQ iPz02rHl4m77hZkOkz18E003D36PrHi9mMiOGLgUIXwxX9xnO0OHWhWxbVlO7CMy E2dY4+J6UbWrplqeNbBzgn5pXG8u6Cy4Y5IKrm1DO3wq+aM7IiUUDdIkGxJoSL/z PotZ7Nv2yNgRZJIofVUg1SBZ4EfvfIeZuD7H0AWkcfVo2J+k7H5xwjsPM/45aGci hga85Xu9Dv/E+yuxswl2j89bvMyussp9V+SktABf34TNlPC++RtCRr0JVbDj+8D4 CxOz0GGbVDRo6T+iaG1OSu8730bO3Q== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:34 2024 by rpki-client on console-ams.rpki-client.org