$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6141B7C2AB9311ED8599D183C4F9AE02.roa File: 6141B7C2AB9311ED8599D183C4F9AE02.roa (raw, json) Hash identifier: Hp610D6xaWEGJNDQEwRh9k4sWRFAbVizZ2HSFUosgDk= Subject key identifier: 7E:0E:57:41:7A:73:6E:31:2F:C5:01:B0:FA:85:58:46:54:24:07:C9 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7284 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6141B7C2AB9311ED8599D183C4F9AE02.roa Signing time: Mon 22 May 2023 11:02:12 +0000 ROA not before: Mon 22 May 2023 11:02:12 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 137609 IP address blocks: 103.117.32.0/22 maxlen: 24 2001:df2:73c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29316 (0x7284) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 22 11:02:12 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=646b4bb4-c55d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:db:19:45:72:95:3b:9c:a4:18:89:4e:2b:ed: b2:ec:43:a5:79:b9:e1:3b:d6:aa:c6:af:c1:e8:fc: 2d:f9:5f:74:96:e7:30:f7:da:37:d2:47:3e:84:c4: 06:be:5d:64:36:5b:30:ec:fb:5b:79:c4:81:d0:07: 2a:af:4a:06:c9:7a:3d:e4:07:f7:ee:dd:9f:96:c2: a7:58:a8:e4:8f:27:37:35:2b:97:fe:5f:81:4e:7e: c4:9d:49:d7:1b:b9:41:c4:48:c4:bc:e0:6c:14:e9: f8:88:6e:b9:80:93:54:8b:4b:05:f4:1c:de:68:92: fa:77:c9:74:97:41:17:cd:cb:32:be:f0:96:8f:59: 91:77:eb:3d:77:86:bc:66:c0:70:5e:58:42:1f:31: d8:66:11:4d:42:a7:d2:9d:98:77:6c:bf:df:92:6c: 2c:1b:9f:ca:3a:ab:09:86:78:a3:b0:59:b8:07:ad: 1e:6d:1c:44:e0:f0:d7:e5:8f:1e:fa:47:5f:6b:fd: 81:bf:18:72:b6:91:d9:48:02:9a:68:cd:b1:16:49: 44:48:d3:eb:10:f4:d0:21:e7:b4:39:81:f4:c6:b1: a6:ad:27:5a:94:a2:81:5c:2e:70:19:8c:e3:4a:d9: 5d:48:d3:43:3c:20:59:21:e8:89:a7:01:de:fa:0c: 0b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:0E:57:41:7A:73:6E:31:2F:C5:01:B0:FA:85:58:46:54:24:07:C9 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6141B7C2AB9311ED8599D183C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.32.0/22 IPv6: 2001:df2:73c0::/48 Signature Algorithm: sha256WithRSAEncryption 39:f8:b6:c0:a7:90:5f:a3:bf:e9:cd:3f:e6:45:01:2b:fb:18: f8:0e:14:0b:35:f9:f1:d4:ed:c5:c2:69:b1:d4:a8:c0:cc:7c: 5e:37:a7:28:c5:c4:fb:a8:58:d5:4a:30:3b:21:99:03:1a:72: 82:6e:e6:01:18:04:48:2b:71:4d:32:c7:38:19:b6:57:4c:3c: 3c:ac:a5:23:ad:4e:77:f5:c2:8b:98:9f:aa:1e:8c:84:92:1e: 53:36:55:cf:34:9f:80:70:16:7f:e2:f2:22:cd:a5:55:59:05: 80:55:46:65:56:64:95:59:91:53:8e:0a:8c:1c:8d:ff:9b:c1: f3:ba:aa:9f:4e:dd:be:0d:ff:0d:f7:f3:e3:53:96:13:ed:84: 64:6e:63:ba:c0:7d:00:4a:b6:86:56:c1:60:d7:c8:ca:c8:6b: 09:70:a3:23:00:a8:53:d0:bd:a7:49:21:d5:79:b0:43:8b:84: 7e:94:fe:23:1f:00:f7:bf:d8:59:73:f8:42:7c:e9:1c:f5:f0: 0c:7e:ca:83:65:e6:7f:30:04:04:32:f5:af:e0:2f:8f:fe:53: dc:d3:30:7f:ce:ee:e6:af:ce:3c:7a:84:e1:a1:67:b5:33:51: 1e:6c:91:a4:c2:70:ed:03:32:f5:84:96:54:ab:e9:32:6f:b7: 71:a5:b1:d9 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICcoQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTIyMTEwMjEyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDZiNGJiNC1jNTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2tsZRXKVO5ykGIlOK+2y7EOlebnhO9aqxq/B6Pwt+V90lucw99o30kc+hMQG vl1kNlsw7PtbecSB0Acqr0oGyXo95Af37t2flsKnWKjkjyc3NSuX/l+BTn7EnUnX G7lBxEjEvOBsFOn4iG65gJNUi0sF9BzeaJL6d8l0l0EXzcsyvvCWj1mRd+s9d4a8 ZsBwXlhCHzHYZhFNQqfSnZh3bL/fkmwsG5/KOqsJhnijsFm4B60ebRxE4PDX5Y8e +kdfa/2BvxhytpHZSAKaaM2xFklESNPrEPTQIee0OYH0xrGmrSdalKKBXC5wGYzj StldSNNDPCBZIeiJpwHe+gwL8QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFH4OV0F6 c24xL8UBsPqFWEZUJAfJMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNjE0MUI3QzJB QjkzMTFFRDg1OTlEMTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJndSAwDwQCAAIwCQMHACABDfJzwDANBgkqhkiG9w0BAQsF AAOCAQEAOfi2wKeQX6O/6c0/5kUBK/sY+A4UCzX58dTtxcJpsdSowMx8XjenKMXE +6hY1UowOyGZAxpygm7mARgESCtxTTLHOBm2V0w8PKylI61Od/XCi5ifqh6MhJIe UzZVzzSfgHAWf+LyIs2lVVkFgFVGZVZklVmRU44KjByN/5vB87qqn07dvg3/Dffz 41OWE+2EZG5jusB9AEq2hlbBYNfIyshrCXCjIwCoU9C9p0kh1XmwQ4uEfpT+Ix8A 97/YWXP4QnzpHPXwDH7Kg2XmfzAEBDL1r+Avj/5T3NMwf87u5q/OPHqE4aFntTNR HmyRpMJw7QMy9YSWVKvpMm+3caWx2Q== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:34 2024 by rpki-client on console-ams.rpki-client.org