$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/65C047D644FD11EBB52B9F2FC4F9AE02.roa File: 65C047D644FD11EBB52B9F2FC4F9AE02.roa (raw, json) Hash identifier: XgtujTKEgbHew5zLKv+Duq2f5+us+jNC6h0tpKh1Ay0= Subject key identifier: BA:4C:76:C7:C6:D8:0C:FA:48:F2:C7:51:6A:C9:F5:E6:2C:9E:1C:4A Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6E87 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/65C047D644FD11EBB52B9F2FC4F9AE02.roa Signing time: Wed 10 May 2023 16:34:29 +0000 ROA not before: Wed 10 May 2023 16:34:29 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141304 IP address blocks: 103.160.163.0/24 maxlen: 24 103.191.104.0/24 maxlen: 24 2001:df1:a5c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28295 (0x6e87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:34:29 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc794-a42d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:df:19:66:63:10:8a:2d:af:36:ad:4b:0b:93: 68:4b:a2:31:f2:f1:16:6e:4c:b2:ae:60:90:9c:7e: eb:d4:f4:e1:33:b3:3c:d5:c4:a4:a9:a0:5d:35:7f: 41:80:a6:8f:ef:7d:22:a3:c9:ac:f1:41:36:a6:d4: ca:14:a6:86:a4:6c:77:b2:7c:b3:db:ca:c7:f8:19: 52:d6:d7:f5:92:0b:51:79:cd:cc:3d:e9:15:20:f8: 5a:17:78:1b:d9:bf:f6:8b:38:69:30:c3:71:35:1c: fb:f5:1e:7f:30:12:69:17:81:47:55:6a:2d:2c:7c: ad:6f:37:d0:44:f9:cd:d7:b8:73:5f:65:dd:ea:0b: 79:35:10:56:cf:dc:7b:2e:53:b2:63:2c:c7:40:28: c1:c3:3f:e6:87:4a:2f:8a:1a:15:80:b0:00:17:ab: 2b:a0:d1:93:58:e8:67:93:d7:aa:d0:c2:45:b4:b8: 9f:97:96:02:87:0b:64:0d:9c:8e:bf:14:0b:e0:00: 90:12:fa:7e:e0:e2:1a:00:1a:5a:19:99:87:4c:ef: 24:3f:8a:54:91:c7:46:93:0d:eb:e7:99:98:3a:39: 61:21:32:7f:52:9c:ce:12:b2:4a:a5:1a:89:46:e1: 5f:db:8b:d8:35:6e:57:ce:7f:35:f5:9e:f8:d9:8f: 25:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:4C:76:C7:C6:D8:0C:FA:48:F2:C7:51:6A:C9:F5:E6:2C:9E:1C:4A X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/65C047D644FD11EBB52B9F2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.163.0/24 103.191.104.0/24 IPv6: 2001:df1:a5c0::/48 Signature Algorithm: sha256WithRSAEncryption 51:58:ed:ea:d9:67:15:db:47:6b:43:d7:e6:ed:58:0d:b9:36: 89:57:df:42:c6:7d:91:80:24:9f:03:37:62:81:69:42:40:4e: 0c:87:e7:db:cb:72:57:a1:99:bc:45:e0:40:43:d9:ff:4e:c9: d0:ca:c3:41:a9:ce:4a:d1:33:ca:b8:37:93:ce:aa:85:59:a1: 86:7e:ff:54:67:3e:53:ec:7e:dd:61:d7:db:55:95:09:98:ed: 0a:86:29:09:e3:90:0e:28:22:b9:0f:61:b8:99:d0:3b:18:46: 5e:5d:ef:e0:42:18:14:08:3b:8a:9e:17:de:38:c3:e3:28:75: ef:41:54:f0:f7:92:96:f7:97:17:4f:bd:12:e3:96:e9:1d:82: b8:18:27:9a:1b:83:eb:44:fe:0c:38:bb:ca:4f:00:71:39:c0: e3:ad:d9:b9:97:7c:9a:f7:6b:b7:98:7f:ff:a3:c5:ca:2f:73: db:9a:7a:9e:ea:5d:8e:e9:16:70:dc:10:4d:ae:b9:5f:bd:b9: cb:66:d3:ba:4d:f1:ff:5b:19:f0:f2:71:83:12:d5:0d:5f:f2: 66:7b:ae:52:3d:47:c2:ab:fd:5b:29:7f:4b:ed:fe:5c:0f:c0: 76:b6:39:24:fb:f1:7d:e1:ea:22:48:62:0a:69:7f:87:85:43: 6b:1f:02:3e -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICbocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzNDI5WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzc5NC1hNDJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5N8ZZmMQii2vNq1LC5NoS6Ix8vEWbkyyrmCQnH7r1PThM7M81cSkqaBdNX9B gKaP730io8ms8UE2ptTKFKaGpGx3snyz28rH+BlS1tf1kgtRec3MPekVIPhaF3gb 2b/2izhpMMNxNRz79R5/MBJpF4FHVWotLHytbzfQRPnN17hzX2Xd6gt5NRBWz9x7 LlOyYyzHQCjBwz/mh0ovihoVgLAAF6sroNGTWOhnk9eq0MJFtLifl5YChwtkDZyO vxQL4ACQEvp+4OIaABpaGZmHTO8kP4pUkcdGkw3r55mYOjlhITJ/UpzOErJKpRqJ RuFf24vYNW5Xzn819Z742Y8lXQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFLpMdsfG 2Az6SPLHUWrJ9eYsnhxKMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNjVDMDQ3RDY0 NEZEMTFFQkI1MkI5RjJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnoKMDBABnv2gwDwQCAAIwCQMHACABDfGlwDANBgkqhkiG 9w0BAQsFAAOCAQEAUVjt6tlnFdtHa0PX5u1YDbk2iVffQsZ9kYAknwM3YoFpQkBO DIfn28tyV6GZvEXgQEPZ/07J0MrDQanOStEzyrg3k86qhVmhhn7/VGc+U+x+3WHX 21WVCZjtCoYpCeOQDigiuQ9huJnQOxhGXl3v4EIYFAg7ip4X3jjD4yh170FU8PeS lveXF0+9EuOW6R2CuBgnmhuD60T+DDi7yk8AcTnA463ZuZd8mvdrt5h//6PFyi9z 25p6nupdjukWcNwQTa65X725y2bTuk3x/1sZ8PJxgxLVDV/yZnuuUj1Hwqv9Wyl/ S+3+XA/AdrY5JPvxfeHqIkhiCml/h4VDax8CPg== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:35 2024 by rpki-client on console-ams.rpki-client.org