$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5E741FEE886511EE9428F93DC4F9AE02.roa File: 5E741FEE886511EE9428F93DC4F9AE02.roa (raw, json) Hash identifier: icYGjaaxhuD9RMyNUKqjnguyuowwlg5ktJknZk+KqT0= Subject key identifier: 81:40:D3:C9:AB:CC:29:28:DE:45:3C:4A:A0:2C:7C:EA:E4:92:FA:B5 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7E77 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5E741FEE886511EE9428F93DC4F9AE02.roa Signing time: Tue 21 Nov 2023 11:59:05 +0000 ROA not before: Tue 21 Nov 2023 11:59:05 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136720 IP address blocks: 103.104.208.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32375 (0x7e77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Nov 21 11:59:05 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=655c9b89-eef6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:db:43:70:72:1a:4a:8c:77:17:67:39:dd:cb: fc:9c:84:67:2e:5d:19:58:6a:5c:32:2a:45:b4:28: 49:78:b1:1a:45:78:e4:a1:04:18:43:de:3e:e4:17: 45:8f:54:cc:cb:d1:d4:db:4c:e9:6f:7b:d7:a8:6a: ac:3e:2f:97:aa:5d:87:fa:ba:29:e7:73:8e:d6:e1: 3e:e3:3c:8f:86:3c:3e:98:13:e9:1c:af:fc:2c:ab: ac:7c:c3:df:de:c4:06:6a:31:97:d7:a9:ab:e8:b8: 1c:1a:63:fb:7b:3d:3c:96:4b:65:ff:42:2e:e3:01: d8:94:a9:9b:81:c5:ae:77:cd:10:b4:37:a5:f2:e8: 92:72:6a:6a:89:41:be:b1:8a:ca:29:df:b2:e8:19: b5:09:e4:b9:34:e3:28:8a:6b:93:eb:7a:20:43:d3: 19:fa:70:fd:30:7f:e8:d0:a2:4c:05:34:cb:da:8b: 74:b3:2f:cf:18:c6:9b:99:53:57:b3:f3:66:28:eb: 82:e0:57:e9:a3:55:24:95:54:d0:a3:ca:c5:82:fc: 1f:c4:8f:05:6d:5f:7f:80:82:21:35:72:36:fa:4f: 84:2e:0e:85:2d:91:ad:a5:e0:10:87:e0:86:7f:b4: 25:a0:a5:8a:f7:7b:a9:95:23:0d:3f:90:2f:39:56: 28:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:40:D3:C9:AB:CC:29:28:DE:45:3C:4A:A0:2C:7C:EA:E4:92:FA:B5 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5E741FEE886511EE9428F93DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.104.208.0/22 Signature Algorithm: sha256WithRSAEncryption 55:53:1d:38:a0:93:65:f4:f8:3d:fb:ee:e3:46:41:62:8f:c0: 44:f3:cf:c1:fa:f2:e2:46:f2:39:61:9a:6e:94:b2:fb:02:03: e0:4f:24:9c:14:de:03:ee:6a:f3:3e:ba:c1:18:a0:e3:78:ee: 7c:3a:0b:32:40:3f:5b:0c:86:14:1b:54:86:75:6a:c7:5e:b6: 46:3d:23:ac:60:cb:b0:93:65:63:a3:5e:2e:9f:ad:be:84:d4: cb:97:bb:15:e6:73:2a:ed:64:d1:b2:39:9e:54:a9:38:0e:eb: ff:8c:18:00:de:50:50:5d:ff:f8:5e:da:18:c7:67:8a:06:2f: fa:89:36:12:98:ee:38:25:84:5b:69:7a:f6:71:d6:fa:2c:54: 22:2d:e0:f6:4b:a3:5f:92:99:4c:f6:25:1f:99:60:6f:d0:0f: 23:a8:97:f0:4c:ef:70:18:9e:3c:12:4b:d4:54:0c:a8:fd:2b: 9e:e4:40:b3:4e:56:f3:0c:b9:ab:cb:46:f7:3b:79:fe:af:a1: 77:5b:78:d9:e2:0e:97:94:82:9e:0e:92:4c:09:c2:d0:fd:33: b3:f1:db:83:37:d0:20:6f:bf:33:c3:90:49:b3:79:57:e9:e5: 40:fa:f3:31:3b:59:be:13:bc:a3:d3:2b:80:d8:85:ec:5f:29: db:e0:b3:3f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICfncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMxMTIxMTE1OTA1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTVjOWI4OS1lZWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9tDcHIaSox3F2c53cv8nIRnLl0ZWGpcMipFtChJeLEaRXjkoQQYQ94+5BdF j1TMy9HU20zpb3vXqGqsPi+Xql2H+rop53OO1uE+4zyPhjw+mBPpHK/8LKusfMPf 3sQGajGX16mr6LgcGmP7ez08lktl/0Iu4wHYlKmbgcWud80QtDel8uiScmpqiUG+ sYrKKd+y6Bm1CeS5NOMoimuT63ogQ9MZ+nD9MH/o0KJMBTTL2ot0sy/PGMabmVNX s/NmKOuC4Ffpo1UklVTQo8rFgvwfxI8FbV9/gIIhNXI2+k+ELg6FLZGtpeAQh+CG f7QloKWK93uplSMNP5AvOVYoHQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIFA08mr zCko3kU8SqAsfOrkkvq1MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNUU3NDFGRUU4 ODY1MTFFRTk0MjhGOTNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnaNAwDQYJKoZIhvcNAQELBQADggEBAFVTHTigk2X0+D37 7uNGQWKPwETzz8H68uJG8jlhmm6UsvsCA+BPJJwU3gPuavM+usEYoON47nw6CzJA P1sMhhQbVIZ1asdetkY9I6xgy7CTZWOjXi6frb6E1MuXuxXmcyrtZNGyOZ5UqTgO 6/+MGADeUFBd//he2hjHZ4oGL/qJNhKY7jglhFtpevZx1vosVCIt4PZLo1+SmUz2 JR+ZYG/QDyOol/BM73AYnjwSS9RUDKj9K57kQLNOVvMMuavLRvc7ef6voXdbeNni DpeUgp4OkkwJwtD9M7Px24M30CBvvzPDkEmzeVfp5UD68zE7Wb4TvKPTK4DYhexf Kdvgsz8= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:34 2024 by rpki-client on console-ams.rpki-client.org