$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5D6BB442221611EDAA735E73C4F9AE02.roa File: 5D6BB442221611EDAA735E73C4F9AE02.roa (raw, json) Hash identifier: 1tGkWW4Dd7kf67E+rIgdi4DqRgOh+axPmy0dByhsHKo= Subject key identifier: 42:1E:E1:2A:A8:B7:A2:34:E1:33:12:75:65:B1:8A:A1:D9:7A:F6:D4 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7076 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5D6BB442221611EDAA735E73C4F9AE02.roa Signing time: Wed 10 May 2023 16:43:42 +0000 ROA not before: Wed 10 May 2023 16:43:42 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 149555 IP address blocks: 103.184.206.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28790 (0x7076) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:43:42 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc9be-230a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c3:eb:ba:d8:62:8f:cb:fd:2e:37:ee:87:2b: 94:35:80:17:6a:48:cf:e4:bb:cd:cd:a8:50:f3:41: 35:20:24:2a:99:76:cc:7f:77:c9:ab:10:8d:e6:8f: 0c:bc:ec:58:c0:01:40:fc:bc:05:ee:a3:b4:90:e3: a4:cd:48:f8:ed:c3:d9:db:42:d7:a7:d7:9e:21:5d: da:1d:57:b3:7a:9e:24:96:eb:94:81:34:55:c9:33: b9:4d:ac:3b:b8:63:be:eb:60:8f:39:93:4c:67:fe: 5e:9e:41:a2:cd:0f:8f:b8:92:15:ce:d1:17:2c:7f: 4a:5b:00:fe:fd:1c:99:71:c2:a3:50:60:ae:82:b5: 4a:a0:25:dd:4d:db:51:5f:fe:6b:5a:46:ea:cb:9b: e4:96:d6:f9:71:32:95:33:1e:62:df:b8:38:52:08: 16:b2:bd:8a:c9:2b:74:63:70:23:40:bd:7a:97:77: 70:ce:80:e2:db:79:9d:91:af:c7:28:68:3b:f0:6f: d4:08:14:5c:75:0f:fb:63:ab:71:5d:f2:d2:26:1e: be:9c:ce:3e:33:73:7c:6c:2f:f3:cd:42:64:1d:4c: 7f:65:cf:c9:3b:5b:46:91:5a:2c:06:d9:55:0f:44: 7a:01:0f:85:8a:72:43:48:d5:88:1a:ed:07:21:e2: 38:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:1E:E1:2A:A8:B7:A2:34:E1:33:12:75:65:B1:8A:A1:D9:7A:F6:D4 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5D6BB442221611EDAA735E73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.184.206.0/23 Signature Algorithm: sha256WithRSAEncryption b8:aa:8b:54:ea:aa:5a:79:9f:4a:b9:9c:8a:6f:84:d4:dc:d0: 4a:73:74:49:d9:29:27:fb:df:39:db:f6:9d:44:8d:45:c9:e4: 1c:d7:89:b8:5e:36:f3:76:4a:47:6e:66:aa:78:75:ea:5d:41: 04:3b:c2:a1:7d:4b:38:1d:b2:7a:cd:58:82:61:cc:e1:96:6d: bb:37:6d:74:8c:02:3f:97:bb:1b:61:e1:9a:e1:eb:3f:6e:c0: 17:b7:cb:f3:d3:b7:bd:94:a6:6b:6d:a7:cc:68:27:c8:34:9d: d8:ae:fb:b6:60:0a:1b:b9:1c:26:ef:19:71:f9:c8:26:f3:9d: 0c:46:ef:8d:03:32:87:63:5d:e0:b3:d4:1a:dd:52:aa:bd:76: 9d:8b:fd:c1:e1:78:bb:20:ed:0c:46:12:2a:5d:30:95:31:d1: 26:cc:b6:e5:63:e8:b4:1b:9f:66:92:7a:99:5f:24:23:14:05: 09:26:77:fa:a7:81:cc:53:0d:2b:c8:39:8c:1d:03:39:0b:27: e3:16:dc:60:f3:ed:99:14:26:78:7b:3e:d6:0f:5e:7b:db:5e: 06:64:99:f5:95:5a:da:44:a8:1a:79:f5:65:82:46:1d:d6:09: a1:7c:90:c9:9b:21:8d:34:e5:46:a0:47:d9:b8:68:4c:7f:c7: 18:15:ea:0e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICcHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0MzQyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzliZS0yMzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwcPruthij8v9LjfuhyuUNYAXakjP5LvNzahQ80E1ICQqmXbMf3fJqxCN5o8M vOxYwAFA/LwF7qO0kOOkzUj47cPZ20LXp9eeIV3aHVezep4kluuUgTRVyTO5Taw7 uGO+62CPOZNMZ/5enkGizQ+PuJIVztEXLH9KWwD+/RyZccKjUGCugrVKoCXdTdtR X/5rWkbqy5vkltb5cTKVMx5i37g4UggWsr2KySt0Y3AjQL16l3dwzoDi23mdka/H KGg78G/UCBRcdQ/7Y6txXfLSJh6+nM4+M3N8bC/zzUJkHUx/Zc/JO1tGkVosBtlV D0R6AQ+FinJDSNWIGu0HIeI4ZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEIe4Sqo t6I04TMSdWWxiqHZevbUMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNUQ2QkI0NDIy MjE2MTFFREFBNzM1RTczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnuM4wDQYJKoZIhvcNAQELBQADggEBALiqi1Tqqlp5n0q5 nIpvhNTc0EpzdEnZKSf73znb9p1EjUXJ5BzXibheNvN2SkduZqp4depdQQQ7wqF9 SzgdsnrNWIJhzOGWbbs3bXSMAj+Xuxth4Zrh6z9uwBe3y/PTt72Upmttp8xoJ8g0 ndiu+7ZgChu5HCbvGXH5yCbznQxG740DModjXeCz1BrdUqq9dp2L/cHheLsg7QxG EipdMJUx0SbMtuVj6LQbn2aSeplfJCMUBQkmd/qngcxTDSvIOYwdAzkLJ+MW3GDz 7ZkUJnh7PtYPXnvbXgZkmfWVWtpEqBp59WWCRh3WCaF8kMmbIY005UagR9m4aEx/ xxgV6g4= -----END CERTIFICATE-----Generated at Sun Apr 28 15:51:22 2024 by rpki-client on console-fra.rpki-client.org