$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/65BF6DCE1CD611EBA06B6D51C4F9AE02.roa File: 65BF6DCE1CD611EBA06B6D51C4F9AE02.roa (raw, json) Hash identifier: 1Opi/H4bTdqpzFKePSFQjCdu/a4kJF850ROddzaUGyo= Subject key identifier: 89:38:74:A5:92:A8:99:43:94:E6:9B:D3:2E:AC:0B:AE:6C:74:4B:72 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6A0C Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/65BF6DCE1CD611EBA06B6D51C4F9AE02.roa Signing time: Wed 10 May 2023 16:12:50 +0000 ROA not before: Wed 10 May 2023 16:12:50 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 132760 IP address blocks: 103.25.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27148 (0x6a0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:12:50 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc281-4983 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:37:6b:cc:28:e0:65:50:81:bf:24:fb:63:76: 30:41:87:09:5c:38:59:b3:dc:a9:90:98:a8:52:07: 4e:2c:8c:f1:92:c2:e0:70:16:0e:10:1a:94:7b:c7: 3c:4d:84:f6:dd:ad:28:02:44:be:a7:ad:5c:43:50: 54:b9:7d:f5:fc:c2:d4:30:c9:9c:8b:5a:f6:a2:52: 64:db:bc:78:1e:6d:a7:c9:da:9a:fa:1c:69:7d:15: ca:02:52:c1:13:22:d6:c1:23:20:1e:72:9d:13:df: c9:df:00:f4:84:56:83:94:cb:24:1a:b9:63:fd:7f: 53:99:f4:3a:56:f5:78:d9:c9:8f:27:df:0f:e4:68: 4d:fd:db:8d:54:44:6c:da:e8:0a:f7:28:ce:11:d9: 12:fc:41:9d:c6:d5:8e:e2:97:3b:b4:c7:84:92:a3: 65:14:22:45:41:b9:56:b2:6d:49:83:d1:92:e1:a7: f9:28:3f:a1:e7:f8:d8:6a:6b:da:e7:ba:31:1c:d7: 57:3b:a5:d1:ac:39:eb:54:91:85:dc:d1:b6:5d:72: 7f:1e:7b:fe:4f:85:64:3a:0b:32:9e:cf:b2:90:ea: f3:2b:78:fc:b6:83:1a:c6:22:b5:d4:a6:90:01:f0: e1:d3:c1:da:06:44:3d:c2:43:df:2b:e1:82:03:e0: 7a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:38:74:A5:92:A8:99:43:94:E6:9B:D3:2E:AC:0B:AE:6C:74:4B:72 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/65BF6DCE1CD611EBA06B6D51C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.25.172.0/22 Signature Algorithm: sha256WithRSAEncryption ac:95:00:43:41:96:e0:43:db:4e:06:7b:11:dd:49:66:79:d4: 18:6d:5c:70:09:b2:62:be:63:f7:e1:c6:bc:48:32:4b:16:4c: 23:82:87:09:f9:45:a1:2f:f5:bc:0c:93:4f:dc:6b:dc:4d:ed: 0c:ec:1c:3c:82:1f:32:a4:ed:7a:de:7c:64:06:dd:c6:31:53: 40:c0:1d:10:b1:ec:e8:be:ec:6d:04:fe:c2:2b:58:46:c5:a0: 33:e3:3e:28:1c:af:c6:55:9d:fb:ec:27:97:e6:fc:d5:af:21: 9a:5e:ba:bf:93:96:40:dd:7b:69:21:45:6d:6c:61:0c:59:54: f1:09:6a:4e:51:28:f2:d8:d5:79:f6:2e:f2:b5:63:3b:b5:a8: 45:9b:db:c4:16:32:13:4f:32:d3:cd:02:fc:e6:3f:79:f9:7c: 02:f5:47:2d:79:ef:ca:b8:68:73:e5:38:b9:a6:80:05:7b:43: bd:d3:58:7e:ec:f5:70:c6:cd:7e:c2:60:0b:cf:54:b2:74:04: 9c:28:8f:da:02:45:af:3e:07:12:7a:15:6b:2b:7f:6d:7d:d1: 6a:6b:af:56:63:5d:95:b5:7f:5b:58:f0:8d:ed:19:2f:48:16: 57:97:90:58:5f:3a:b4:9a:7d:5c:d5:2d:7d:d2:40:26:ef:01: 8a:02:93:9c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICagwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxMjUwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzI4MS00OTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTdrzCjgZVCBvyT7Y3YwQYcJXDhZs9ypkJioUgdOLIzxksLgcBYOEBqUe8c8 TYT23a0oAkS+p61cQ1BUuX31/MLUMMmci1r2olJk27x4Hm2nydqa+hxpfRXKAlLB EyLWwSMgHnKdE9/J3wD0hFaDlMskGrlj/X9TmfQ6VvV42cmPJ98P5GhN/duNVERs 2ugK9yjOEdkS/EGdxtWO4pc7tMeEkqNlFCJFQblWsm1Jg9GS4af5KD+h5/jYamva 57oxHNdXO6XRrDnrVJGF3NG2XXJ/Hnv+T4VkOgsyns+ykOrzK3j8toMaxiK11KaQ AfDh08HaBkQ9wkPfK+GCA+B60QIDAQABo4IClTCCApEwHQYDVR0OBBYEFIk4dKWS qJlDlOab0y6sC65sdEtyMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNjVCRjZEQ0Ux Q0Q2MTFFQkEwNkI2RDUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnGawwDQYJKoZIhvcNAQELBQADggEBAKyVAENBluBD204G exHdSWZ51BhtXHAJsmK+Y/fhxrxIMksWTCOChwn5RaEv9bwMk0/ca9xN7QzsHDyC HzKk7XrefGQG3cYxU0DAHRCx7Oi+7G0E/sIrWEbFoDPjPigcr8ZVnfvsJ5fm/NWv IZpeur+TlkDde2khRW1sYQxZVPEJak5RKPLY1Xn2LvK1Yzu1qEWb28QWMhNPMtPN AvzmP3n5fAL1Ry1578q4aHPlOLmmgAV7Q73TWH7s9XDGzX7CYAvPVLJ0BJwoj9oC Ra8+BxJ6FWsrf2190Wprr1ZjXZW1f1tY8I3tGS9IFleXkFhfOrSafVzVLX3SQCbv AYoCk5w= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:35 2024 by rpki-client on console-ams.rpki-client.org