$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/613DB4EC05CA11EEA10A1841C4F9AE02.roa File: 613DB4EC05CA11EEA10A1841C4F9AE02.roa (raw, json) Hash identifier: UfZ8ycZjyPdBeHKBGp+x6dG3G714kO2kgtt9RMg/H48= Subject key identifier: A4:F5:9A:3D:D7:31:51:D6:B8:EA:2E:BF:98:A9:95:68:FA:4A:EA:74 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7391 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/613DB4EC05CA11EEA10A1841C4F9AE02.roa Signing time: Thu 08 Jun 2023 07:02:07 +0000 ROA not before: Thu 08 Jun 2023 07:02:07 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136664 IP address blocks: 103.100.216.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29585 (0x7391) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jun 8 07:02:07 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64817cef-0e94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:b5:9d:6b:f9:31:b9:e4:72:08:ac:ed:42:52: 4d:27:9f:3b:4e:61:eb:e5:bf:d6:85:01:1c:07:94: d8:83:10:c9:95:4a:26:7d:a4:ed:ff:9f:f5:f5:2d: 6c:0e:2c:c2:8e:0d:58:24:06:b4:b5:b9:62:4b:8e: 30:c7:dc:64:d5:64:64:d8:ee:9a:a5:34:2f:ed:62: 79:30:c4:dd:8a:97:d1:58:b0:aa:a5:8d:e3:0d:90: ea:9c:94:94:f9:53:fa:93:4b:d8:c8:85:0b:b4:c1: b2:3f:34:a7:48:d3:03:e7:2d:90:19:2f:48:fd:5f: 8d:88:72:c7:08:27:b1:7d:67:8e:b4:1f:9c:67:c3: 36:f0:68:3e:ea:77:e0:fe:9c:d7:07:e0:3e:b3:c5: d7:57:eb:b7:e2:72:ea:a3:77:e4:a8:d4:63:02:2d: c9:e9:b3:a0:0a:0d:f9:d9:89:71:c0:f7:f8:99:f1: 17:aa:7c:a6:fc:ad:72:3b:ac:de:67:e3:66:fb:fe: 8d:98:2b:6f:ff:78:36:d7:07:58:ff:7e:77:d6:f4: 99:bc:e8:aa:99:61:cd:30:4e:ef:e8:2a:e4:00:ce: 5b:44:8e:15:25:bf:88:72:39:04:be:69:d6:79:76: c3:93:09:30:17:4b:9d:ed:4c:f0:4b:6e:7c:68:c7: 43:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:F5:9A:3D:D7:31:51:D6:B8:EA:2E:BF:98:A9:95:68:FA:4A:EA:74 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/613DB4EC05CA11EEA10A1841C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.100.216.0/22 Signature Algorithm: sha256WithRSAEncryption 61:a6:32:2e:8d:f4:81:99:6b:32:41:96:72:de:26:1e:b2:86: 79:be:58:cf:09:5e:20:35:f9:57:99:bc:2e:72:cf:9c:0d:19: 05:e5:26:12:3c:89:5a:5d:6a:eb:1f:a6:a7:b1:a4:8c:67:20: 53:c2:09:1d:7c:b5:5a:88:8b:b8:0b:04:05:7d:02:9d:04:e5: 73:08:a6:33:62:40:c5:77:08:72:5b:f2:8f:a9:f3:87:a0:40: bf:8b:66:1f:09:87:bc:3f:1f:d0:6b:fa:12:47:67:00:87:83: 8d:4d:3a:de:c8:9d:16:8a:12:18:8e:7d:ec:33:a6:77:0e:b4: f8:3a:7c:dc:8c:a2:c4:e9:d6:52:61:81:e8:69:ef:f2:d7:22: 19:47:56:20:73:01:49:f2:92:f9:a1:14:a8:40:ae:f3:e0:e8: 50:ce:65:89:a8:45:f6:66:67:d1:85:06:76:c3:5f:e7:07:b4: f3:7d:1a:81:b6:91:28:fb:75:33:b5:04:36:d3:fe:b4:f0:c4: 75:8a:9a:d7:b9:d1:b8:f4:de:98:1f:3b:b6:d6:46:7e:60:e0: 0a:d7:2a:34:1f:2f:6f:1f:68:49:b7:73:6c:33:f2:2f:02:40: 11:f5:87:84:0e:8b:08:3a:b6:17:88:a1:94:aa:58:14:95:44: 03:e2:38:c0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICc5EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNjA4MDcwMjA3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDgxN2NlZi0wZTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnbWda/kxueRyCKztQlJNJ587TmHr5b/WhQEcB5TYgxDJlUomfaTt/5/19S1s DizCjg1YJAa0tbliS44wx9xk1WRk2O6apTQv7WJ5MMTdipfRWLCqpY3jDZDqnJSU +VP6k0vYyIULtMGyPzSnSNMD5y2QGS9I/V+NiHLHCCexfWeOtB+cZ8M28Gg+6nfg /pzXB+A+s8XXV+u34nLqo3fkqNRjAi3J6bOgCg352YlxwPf4mfEXqnym/K1yO6ze Z+Nm+/6NmCtv/3g21wdY/3531vSZvOiqmWHNME7v6CrkAM5bRI4VJb+IcjkEvmnW eXbDkwkwF0ud7UzwS258aMdD6wIDAQABo4IClTCCApEwHQYDVR0OBBYEFKT1mj3X MVHWuOouv5iplWj6Sup0MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNjEzREI0RUMw NUNBMTFFRUExMEExODQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnZNgwDQYJKoZIhvcNAQELBQADggEBAGGmMi6N9IGZazJB lnLeJh6yhnm+WM8JXiA1+VeZvC5yz5wNGQXlJhI8iVpdausfpqexpIxnIFPCCR18 tVqIi7gLBAV9Ap0E5XMIpjNiQMV3CHJb8o+p84egQL+LZh8Jh7w/H9Br+hJHZwCH g41NOt7InRaKEhiOfewzpncOtPg6fNyMosTp1lJhgehp7/LXIhlHViBzAUnykvmh FKhArvPg6FDOZYmoRfZmZ9GFBnbDX+cHtPN9GoG2kSj7dTO1BDbT/rTwxHWKmte5 0bj03pgfO7bWRn5g4ArXKjQfL28faEm3c2wz8i8CQBH1h4QOiwg6theIoZSqWBSV RAPiOMA= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:34 2024 by rpki-client on console-ams.rpki-client.org