$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5F583B02BDCF11EA8755D90DC4F9AE02.roa File: 5F583B02BDCF11EA8755D90DC4F9AE02.roa (raw, json) Hash identifier: P2cFWZpB6xQOaG6LtE2zRo1pFwERrog3p2vGDZ1JbFE= Subject key identifier: EB:3D:8D:D1:E2:B4:A2:79:1A:4F:C0:3D:58:9A:2C:94:28:02:76:24 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6DA5 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5F583B02BDCF11EA8755D90DC4F9AE02.roa Signing time: Wed 10 May 2023 16:30:22 +0000 ROA not before: Wed 10 May 2023 16:30:22 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 138752 IP address blocks: 103.138.0.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28069 (0x6da5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:30:22 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc69e-f31a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:51:a4:e3:f1:ec:a0:60:24:ce:5d:fe:50:a0: a5:0a:ea:21:b8:04:bc:fa:90:bd:ac:56:65:57:e6: c2:f7:70:18:9c:d3:a0:42:63:1e:44:b2:ce:1a:cb: d5:8a:03:79:45:4c:4d:e0:9a:58:38:66:c2:23:e8: 97:85:10:63:6b:29:96:4d:a3:79:d7:4b:0c:70:4f: 2a:28:59:f6:6f:4e:7b:96:35:21:8f:9f:f9:31:02: 16:67:a8:19:ad:97:7d:c2:e2:33:19:c6:7f:35:ec: 77:2c:f3:21:13:d6:6e:ee:34:bd:5f:0f:ac:4d:b8: db:5d:a3:1b:88:0e:3f:b8:ab:a8:85:75:41:93:0c: 6a:f3:6a:d3:4f:da:bd:77:31:a3:bf:32:ca:45:eb: 0a:3f:7a:5b:47:b8:26:4b:2f:e0:1f:a3:e5:df:8d: da:45:54:4b:5f:9f:21:9d:48:91:bc:cd:14:24:86: cb:8b:7d:f3:9a:76:94:eb:99:d3:c0:df:09:c7:a3: e4:5c:8f:88:b8:9e:3b:eb:aa:87:8f:78:d6:d1:df: 27:3a:ce:82:d2:db:dc:2f:5a:85:4d:f4:cf:cf:fa: a2:22:1a:36:7b:6e:2d:42:34:98:10:c2:98:b9:5d: eb:72:ed:62:d5:f8:b4:f8:4c:ae:ec:73:f5:73:d8: c1:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:3D:8D:D1:E2:B4:A2:79:1A:4F:C0:3D:58:9A:2C:94:28:02:76:24 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5F583B02BDCF11EA8755D90DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.0.0/23 Signature Algorithm: sha256WithRSAEncryption 81:f7:29:89:40:6f:cc:af:31:4c:36:60:82:67:0d:36:46:55: aa:86:e5:83:7e:5f:45:fa:b6:b8:11:43:bb:8b:ee:54:f5:09: c7:75:12:29:a7:eb:e8:db:ea:ce:10:d5:25:c8:0c:83:75:55: 37:c9:d1:9a:5b:58:6f:65:3e:81:72:b0:96:6d:86:a7:ef:01: 28:b4:5f:f2:e5:54:8f:74:19:a0:d5:6a:c1:9a:9b:1e:d6:20: cb:c9:b7:0e:10:e4:6e:21:1a:26:5d:3e:65:c4:64:cd:22:4a: 78:5b:f8:4b:4f:fd:d4:d2:52:97:1e:fc:d8:23:b5:48:72:82: cd:6e:0e:4b:b1:98:00:5b:89:bc:6f:96:43:04:b3:bd:24:72: 35:92:6a:b6:bc:cf:1c:1d:75:3f:5c:59:96:07:5c:43:ee:a5: 74:ec:c6:8e:0a:51:f7:45:93:97:0d:c7:71:80:ac:18:a0:dc: 39:17:02:45:2c:25:96:c0:8b:6c:6a:d1:45:b5:9f:5b:5c:8f: ed:ce:2b:ab:01:b3:f5:eb:5e:a4:6e:79:c4:85:e4:47:e7:28: 59:5e:79:ea:52:e1:2b:ae:99:0e:91:3c:29:c1:7e:a5:76:31: 9a:64:85:63:cb:30:37:d9:ed:94:97:f4:37:a1:a0:ca:83:1f: 5f:74:70:ca -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzMDIyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzY5ZS1mMzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVGk4/HsoGAkzl3+UKClCuohuAS8+pC9rFZlV+bC93AYnNOgQmMeRLLOGsvV igN5RUxN4JpYOGbCI+iXhRBjaymWTaN510sMcE8qKFn2b057ljUhj5/5MQIWZ6gZ rZd9wuIzGcZ/Nex3LPMhE9Zu7jS9Xw+sTbjbXaMbiA4/uKuohXVBkwxq82rTT9q9 dzGjvzLKResKP3pbR7gmSy/gH6Pl343aRVRLX58hnUiRvM0UJIbLi33zmnaU65nT wN8Jx6PkXI+IuJ4766qHj3jW0d8nOs6C0tvcL1qFTfTPz/qiIho2e24tQjSYEMKY uV3rcu1i1fi0+Eyu7HP1c9jB9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFOs9jdHi tKJ5Gk/APViaLJQoAnYkMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNUY1ODNCMDJC RENGMTFFQTg3NTVEOTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnigAwDQYJKoZIhvcNAQELBQADggEBAIH3KYlAb8yvMUw2 YIJnDTZGVaqG5YN+X0X6trgRQ7uL7lT1Ccd1Eimn6+jb6s4Q1SXIDIN1VTfJ0Zpb WG9lPoFysJZthqfvASi0X/LlVI90GaDVasGamx7WIMvJtw4Q5G4hGiZdPmXEZM0i Snhb+EtP/dTSUpce/NgjtUhygs1uDkuxmABbibxvlkMEs70kcjWSara8zxwddT9c WZYHXEPupXTsxo4KUfdFk5cNx3GArBig3DkXAkUsJZbAi2xq0UW1n1tcj+3OK6sB s/XrXqRuecSF5EfnKFleeepS4SuumQ6RPCnBfqV2MZpkhWPLMDfZ7ZSX9DehoMqD H190cMo= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:34 2024 by rpki-client on console-ams.rpki-client.org