$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/616C73B8BDCF11EA8755D90DC4F9AE02.roa File: 616C73B8BDCF11EA8755D90DC4F9AE02.roa (raw, json) Hash identifier: pMViG19L5yVZGfu+zyKjtrMEWqQqSNqqrVc8f+kban8= Subject key identifier: E1:78:B0:DB:B4:80:9E:4F:59:00:F3:92:91:42:C7:6F:CA:D6:83:E6 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6DAC Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/616C73B8BDCF11EA8755D90DC4F9AE02.roa Signing time: Wed 10 May 2023 16:30:30 +0000 ROA not before: Wed 10 May 2023 16:30:30 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 138761 IP address blocks: 103.140.190.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28076 (0x6dac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:30:30 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc6a6-0fcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f6:28:fd:35:77:cc:0c:dc:66:44:ee:22:d6: 88:e3:52:4f:cd:05:56:33:94:26:9f:2d:65:02:1a: 2d:2d:b3:49:b1:30:e0:46:83:b0:75:3e:85:36:ff: 95:e6:22:21:a8:d7:46:ae:ae:ae:4d:bf:fd:21:e9: f1:b6:ef:96:a0:35:1c:7d:88:bb:5e:ed:a9:07:0f: 0e:7c:7b:41:36:bd:a7:b0:91:56:a8:11:b4:57:6c: df:e6:a0:71:72:83:54:9c:2a:ea:88:60:33:84:da: 08:ec:aa:b8:1d:5f:d9:ff:ce:e7:70:1b:ba:ae:5f: 14:cf:2d:6c:77:8c:83:c2:af:a0:b5:b0:91:c7:e4: 6e:09:31:ab:b9:12:6c:b0:72:b3:cf:01:69:64:b8: 01:6d:e7:34:9e:f4:38:54:bd:1c:d7:65:61:1f:6b: 7e:8e:15:ed:45:bb:8c:5f:42:6e:ca:3d:b6:6c:ca: 11:c4:78:33:26:33:a0:08:52:37:15:64:a4:f6:7c: 24:41:e3:68:c8:35:eb:05:7f:37:e4:e6:1c:84:94: af:4b:b6:2c:9d:4a:c9:01:17:ee:b5:80:06:b0:1e: 02:de:34:d4:31:0d:e6:cf:33:df:dc:a6:0e:0e:20: c4:82:17:7f:6d:8d:62:fd:9e:bd:e4:fc:e7:2d:dd: 1b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:78:B0:DB:B4:80:9E:4F:59:00:F3:92:91:42:C7:6F:CA:D6:83:E6 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/616C73B8BDCF11EA8755D90DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.190.0/23 Signature Algorithm: sha256WithRSAEncryption 1e:a9:cb:18:4b:7a:06:f8:cf:61:c2:56:6c:17:83:f7:35:df: 7a:84:6a:49:1d:49:30:19:9e:03:0b:7d:70:fd:36:e5:ad:93: 00:8c:46:93:fd:b0:71:69:ba:28:4a:c1:76:8f:f2:ca:82:51: ac:6f:5a:64:66:53:93:cc:96:48:da:93:4a:71:0a:38:0e:78: 17:f2:06:e0:7d:44:ec:83:93:d6:15:f8:9e:3f:72:4f:84:60: fc:52:33:c6:87:7e:3e:5c:1a:e6:e2:ad:68:ec:da:ac:37:0b: a0:af:4d:eb:ea:21:0b:45:f7:f9:e1:ba:ff:03:be:76:5d:36: b5:c6:a9:c7:91:42:a1:68:bc:4a:08:55:58:ba:c8:b1:06:65: b5:80:af:9a:ab:34:ec:a4:9c:eb:d8:06:19:55:0a:97:b1:59: 3b:1c:54:d1:13:19:a1:81:7c:12:80:89:f7:36:fa:00:43:b3: b4:5a:65:d5:8c:e5:fb:2b:7d:42:1c:a2:a4:d8:cf:a7:18:fe: bc:fb:e7:53:76:f7:97:50:01:9c:73:42:41:cb:6f:b9:93:d0: 6f:6d:b0:c3:d4:60:6d:4d:94:c5:0e:b3:a6:90:e5:52:b5:28: e1:fd:e7:55:e5:7a:13:ef:22:0d:5d:cb:61:d1:f0:37:45:f6: 8a:1d:53:03 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzMDMwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzZhNi0wZmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqPYo/TV3zAzcZkTuItaI41JPzQVWM5Qmny1lAhotLbNJsTDgRoOwdT6FNv+V 5iIhqNdGrq6uTb/9Ienxtu+WoDUcfYi7Xu2pBw8OfHtBNr2nsJFWqBG0V2zf5qBx coNUnCrqiGAzhNoI7Kq4HV/Z/87ncBu6rl8Uzy1sd4yDwq+gtbCRx+RuCTGruRJs sHKzzwFpZLgBbec0nvQ4VL0c12VhH2t+jhXtRbuMX0Juyj22bMoRxHgzJjOgCFI3 FWSk9nwkQeNoyDXrBX835OYchJSvS7YsnUrJARfutYAGsB4C3jTUMQ3mzzPf3KYO DiDEghd/bY1i/Z695PznLd0b1wIDAQABo4IClTCCApEwHQYDVR0OBBYEFOF4sNu0 gJ5PWQDzkpFCx2/K1oPmMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNjE2QzczQjhC RENGMTFFQTg3NTVEOTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjL4wDQYJKoZIhvcNAQELBQADggEBAB6pyxhLegb4z2HC VmwXg/c133qEakkdSTAZngMLfXD9NuWtkwCMRpP9sHFpuihKwXaP8sqCUaxvWmRm U5PMlkjak0pxCjgOeBfyBuB9ROyDk9YV+J4/ck+EYPxSM8aHfj5cGubirWjs2qw3 C6CvTevqIQtF9/nhuv8DvnZdNrXGqceRQqFovEoIVVi6yLEGZbWAr5qrNOyknOvY BhlVCpexWTscVNETGaGBfBKAifc2+gBDs7RaZdWM5fsrfUIcoqTYz6cY/rz751N2 95dQAZxzQkHLb7mT0G9tsMPUYG1NlMUOs6aQ5VK1KOH951XlehPvIg1dy2HR8DdF 9oodUwM= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:34 2024 by rpki-client on console-ams.rpki-client.org