$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5BB05F0807A711EBBAD90C57C4F9AE02.roa File: 5BB05F0807A711EBBAD90C57C4F9AE02.roa (raw, json) Hash identifier: G4zpvMFeliOveNQOu0BgqrovO11hlb2kbpoVXUyRXQo= Subject key identifier: B0:A3:92:E2:83:3C:55:43:E7:98:45:77:DB:3B:93:AD:72:9A:61:06 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6A9A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5BB05F0807A711EBBAD90C57C4F9AE02.roa Signing time: Wed 10 May 2023 16:15:34 +0000 ROA not before: Wed 10 May 2023 16:15:34 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 133659 IP address blocks: 103.42.188.0/24 maxlen: 24 103.81.160.0/24 maxlen: 24 2001:df1:3c00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27290 (0x6a9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:15:34 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc326-d292 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:60:43:b1:c6:c6:c0:29:b0:1d:7f:d5:c6:34: 37:09:17:7b:98:0a:e1:14:5a:b2:22:ab:e1:ba:a1: dd:cd:5d:0e:8c:90:ba:0f:59:45:e7:5c:ea:05:b6: 26:cd:78:75:46:29:11:20:b6:e5:bf:3a:85:e6:88: a7:c6:64:e5:8e:34:cb:af:65:9d:35:b6:95:8f:53: f3:b1:91:f2:09:50:84:ae:ad:79:b2:5f:39:65:f4: 73:85:1b:94:e7:a2:61:78:ef:76:a7:28:8c:bd:30: 05:20:a1:0c:2f:aa:c2:4f:d9:2c:ce:88:14:86:35: ad:dd:2d:95:98:0d:9a:7c:ef:97:f6:27:e0:e0:07: 43:a7:b6:67:2f:e4:ba:23:f4:fc:b5:03:05:a3:bb: b7:81:d6:c2:8b:fe:32:35:1d:56:cb:85:c2:2a:2a: 5d:a3:c7:35:15:05:6b:fe:dc:9c:9d:08:82:8c:7a: 7a:d8:0e:ad:c3:8f:67:ac:9c:56:1a:a2:a4:93:0c: ef:8f:02:96:7c:16:d7:ce:ee:ad:4d:98:e0:3c:c5: 5b:46:f3:7f:e9:de:ec:31:11:85:a7:9c:a7:f9:79: b1:59:82:24:19:cc:dd:c0:44:7d:8b:83:1c:af:0b: aa:05:2e:ae:f0:46:34:d1:e5:7d:74:d2:f0:92:94: e5:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:A3:92:E2:83:3C:55:43:E7:98:45:77:DB:3B:93:AD:72:9A:61:06 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5BB05F0807A711EBBAD90C57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.42.188.0/24 103.81.160.0/24 IPv6: 2001:df1:3c00::/48 Signature Algorithm: sha256WithRSAEncryption 74:af:1f:9e:b4:71:c0:7d:e0:79:4d:0a:c4:3d:53:53:a3:5f: 22:24:3d:0f:74:c6:57:e2:85:20:93:7a:4a:6c:a4:05:93:73: ec:28:45:92:c7:0e:d2:44:db:39:dd:f4:80:42:6b:44:53:4c: e6:22:af:2e:8b:4a:fe:4c:61:ee:a1:73:c3:21:90:34:dc:c5: 31:e5:78:4e:25:65:43:53:4c:4a:fc:7c:e3:e8:c5:65:d4:9a: 50:f8:ea:98:89:04:bb:f6:69:9c:0f:a7:d0:f8:d6:df:f9:7c: 9b:bd:f0:64:34:ab:75:3e:6d:94:de:82:ce:af:a4:3e:29:d3: 17:d5:27:6e:f1:41:d5:20:59:6c:c5:3a:27:20:28:9e:04:61: d2:7c:3e:8c:d6:28:2f:0a:8c:0b:cb:75:ed:ee:ea:b7:6c:ca: d3:13:f4:c7:4e:02:26:00:cb:82:3e:81:b6:f8:5c:d5:bf:01: c1:ef:0c:16:9a:19:2e:e0:d9:0a:2e:b5:8d:8f:16:1d:29:59: 8b:db:8d:6c:d4:25:9f:ac:71:39:93:bf:5c:36:a5:a0:ad:5c: 5f:d3:36:90:68:5a:cc:7f:9b:8b:9b:7c:4c:f4:68:ea:90:21: 71:3c:a1:b9:11:cb:b8:a6:81:91:64:58:24:be:c3:18:0e:15: 27:a6:be:e1 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICapowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxNTM0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzMyNi1kMjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsWBDscbGwCmwHX/VxjQ3CRd7mArhFFqyIqvhuqHdzV0OjJC6D1lF51zqBbYm zXh1RikRILblvzqF5oinxmTljjTLr2WdNbaVj1PzsZHyCVCErq15sl85ZfRzhRuU 56JheO92pyiMvTAFIKEML6rCT9kszogUhjWt3S2VmA2afO+X9ifg4AdDp7ZnL+S6 I/T8tQMFo7u3gdbCi/4yNR1Wy4XCKipdo8c1FQVr/tycnQiCjHp62A6tw49nrJxW GqKkkwzvjwKWfBbXzu6tTZjgPMVbRvN/6d7sMRGFp5yn+XmxWYIkGczdwER9i4Mc rwuqBS6u8EY00eV9dNLwkpTl7QIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFLCjkuKD PFVD55hFd9s7k61ymmEGMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNUJCMDVGMDgw N0E3MTFFQkJBRDkwQzU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnKrwDBABnUaAwDwQCAAIwCQMHACABDfE8ADANBgkqhkiG 9w0BAQsFAAOCAQEAdK8fnrRxwH3geU0KxD1TU6NfIiQ9D3TGV+KFIJN6SmykBZNz 7ChFkscO0kTbOd30gEJrRFNM5iKvLotK/kxh7qFzwyGQNNzFMeV4TiVlQ1NMSvx8 4+jFZdSaUPjqmIkEu/ZpnA+n0PjW3/l8m73wZDSrdT5tlN6Czq+kPinTF9UnbvFB 1SBZbMU6JyAongRh0nw+jNYoLwqMC8t17e7qt2zK0xP0x04CJgDLgj6Btvhc1b8B we8MFpoZLuDZCi61jY8WHSlZi9uNbNQln6xxOZO/XDaloK1cX9M2kGhazH+bi5t8 TPRo6pAhcTyhuRHLuKaBkWRYJL7DGA4VJ6a+4Q== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:34 2024 by rpki-client on console-ams.rpki-client.org