$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5BB2F358DE3E11EBB8C6B96CC4F9AE02.roa File: 5BB2F358DE3E11EBB8C6B96CC4F9AE02.roa (raw, json) Hash identifier: NBDQxBF63mIiCa0nviQwk96Rx/9Df5o3SZsm5pEIItU= Subject key identifier: 22:52:5A:7E:EC:D0:3E:E7:3F:D4:BD:14:64:D8:4B:3B:B8:F8:C4:84 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6E14 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5BB2F358DE3E11EBB8C6B96CC4F9AE02.roa Signing time: Wed 10 May 2023 16:32:24 +0000 ROA not before: Wed 10 May 2023 16:32:24 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 140119 IP address blocks: 103.151.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28180 (0x6e14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:32:24 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc718-3062 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:7e:ce:e4:83:23:a8:f3:7f:9c:0c:ed:5f:f3: 9a:ab:03:4f:ea:29:b1:10:7d:fe:d9:70:50:a9:69: 22:f8:7c:de:ba:d0:a2:04:ff:56:eb:ce:3e:77:45: b4:dc:89:92:62:8c:5e:4a:63:13:35:4d:05:05:b4: b0:81:13:92:ad:ac:59:72:1a:75:f5:55:cf:7a:8a: 24:54:a4:2e:73:0a:d1:3b:e9:df:96:08:30:d1:a4: 32:34:cc:b7:54:f7:fa:ed:f8:3a:77:ff:1d:35:47: e5:94:3f:25:98:a1:99:50:95:b4:32:42:06:60:f0: fd:b2:df:2f:3c:ee:65:7a:4c:63:f2:79:0a:ac:4b: 52:28:77:6b:70:89:b5:b3:79:4a:13:cd:3c:a2:73: 45:29:e8:6c:b3:a7:ad:86:29:6b:cf:6a:0b:ec:74: 1a:ee:95:db:4d:7f:25:fc:f5:86:3d:56:06:4b:97: 7b:fa:fb:4e:77:78:57:09:11:e3:30:43:cd:29:56: 21:09:36:c4:db:a8:02:b0:8a:7a:f7:41:7f:c1:6c: 96:e2:c4:78:e5:5a:fb:4f:60:92:a1:68:5b:31:ed: 0c:0a:9a:5c:0f:7b:7b:75:06:78:25:09:aa:a6:de: 31:c5:78:22:d4:f4:e9:68:12:4e:d4:27:00:45:b2: e3:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:52:5A:7E:EC:D0:3E:E7:3F:D4:BD:14:64:D8:4B:3B:B8:F8:C4:84 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5BB2F358DE3E11EBB8C6B96CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.232.0/23 Signature Algorithm: sha256WithRSAEncryption 56:2e:b1:27:dc:99:fb:2b:ac:c0:31:d6:8e:43:1a:b7:11:7e: f4:32:00:da:a7:87:15:35:5d:35:55:73:c3:53:c6:0d:e1:6f: d1:fc:d9:f7:db:db:4f:6a:5f:83:3b:03:37:25:5b:34:7d:2b: 9d:81:eb:83:12:07:5c:0d:48:3e:80:f7:ca:7f:fe:ba:08:16: 10:ab:ee:8d:77:97:6e:56:1d:de:6b:e4:89:14:59:b6:5f:a1: 6b:92:f3:92:7c:ff:5d:ab:31:61:42:fd:df:69:c5:24:3c:a8: 34:21:99:55:72:f7:a4:c1:21:92:24:ac:b2:65:41:bc:51:f3: eb:c7:65:f1:1d:80:3f:66:c1:ea:33:70:ad:3d:f6:f3:ad:69: 50:d1:f6:9e:e6:6f:e4:f8:35:eb:28:77:78:c5:c4:22:c2:20: d7:16:a7:d2:e7:3a:30:a6:2e:6f:6e:3e:16:3f:89:62:46:dc: f3:b5:6a:5c:01:12:c1:f9:ca:62:7e:d6:ea:8f:98:5b:67:07: 21:41:4a:cf:59:b2:01:c2:de:bb:4f:ca:1e:07:6d:ae:29:b2: 9f:34:58:08:7e:89:10:84:8c:21:22:14:58:d6:fb:23:36:04: 58:7c:8a:74:6d:e1:26:8c:7b:7f:64:a2:04:7b:5a:b4:0b:62: f8:13:be:bd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzMjI0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzcxOC0zMDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyH7O5IMjqPN/nAztX/OaqwNP6imxEH3+2XBQqWki+HzeutCiBP9W684+d0W0 3ImSYoxeSmMTNU0FBbSwgROSraxZchp19VXPeookVKQucwrRO+nflggw0aQyNMy3 VPf67fg6d/8dNUfllD8lmKGZUJW0MkIGYPD9st8vPO5lekxj8nkKrEtSKHdrcIm1 s3lKE808onNFKehss6ethilrz2oL7HQa7pXbTX8l/PWGPVYGS5d7+vtOd3hXCRHj MEPNKVYhCTbE26gCsIp690F/wWyW4sR45Vr7T2CSoWhbMe0MCppcD3t7dQZ4JQmq pt4xxXgi1PTpaBJO1CcARbLjawIDAQABo4IClTCCApEwHQYDVR0OBBYEFCJSWn7s 0D7nP9S9FGTYSzu4+MSEMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNUJCMkYzNThE RTNFMTFFQkI4QzZCOTZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnl+gwDQYJKoZIhvcNAQELBQADggEBAFYusSfcmfsrrMAx 1o5DGrcRfvQyANqnhxU1XTVVc8NTxg3hb9H82ffb209qX4M7AzclWzR9K52B64MS B1wNSD6A98p//roIFhCr7o13l25WHd5r5IkUWbZfoWuS85J8/12rMWFC/d9pxSQ8 qDQhmVVy96TBIZIkrLJlQbxR8+vHZfEdgD9mweozcK099vOtaVDR9p7mb+T4Neso d3jFxCLCINcWp9LnOjCmLm9uPhY/iWJG3PO1alwBEsH5ymJ+1uqPmFtnByFBSs9Z sgHC3rtPyh4Hba4psp80WAh+iRCEjCEiFFjW+yM2BFh8inRt4SaMe39kogR7WrQL YvgTvr0= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:34 2024 by rpki-client on console-ams.rpki-client.org