$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/67C19492744811ECA946E13EC4F9AE02.roa File: 67C19492744811ECA946E13EC4F9AE02.roa (raw, json) Hash identifier: 6PufsYAqAOHkqQLKMeOiY6mOKPqqldwY/bN7L/nqnP0= Subject key identifier: D5:B9:52:2E:20:25:7D:79:B1:80:A9:3E:B4:D7:45:3E:6F:10:64:16 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6C25 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/67C19492744811ECA946E13EC4F9AE02.roa Signing time: Wed 10 May 2023 16:23:07 +0000 ROA not before: Wed 10 May 2023 16:23:07 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 135843 IP address blocks: 103.129.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 15:26:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27685 (0x6c25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:23:07 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc4eb-2b39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:0c:5b:53:f7:a3:79:96:30:38:cb:6c:f3:8c: d5:71:44:69:3b:03:c6:af:f4:89:a6:58:0f:b8:a8: 56:eb:31:34:30:cd:9d:27:19:b8:77:4b:20:67:38: d6:59:30:2a:f0:ba:4e:af:58:91:cb:8b:b7:46:1a: 30:a5:83:dc:4b:ae:d0:c3:49:f2:8d:91:38:a7:eb: af:9b:23:4f:2e:d9:3f:b4:ad:0f:0b:30:ef:70:6f: 31:d0:a8:cf:1c:61:2d:fe:e6:b3:4f:b5:d6:1f:53: 84:4a:07:25:d2:35:d1:e7:b6:0b:f8:82:22:0d:ce: e0:67:b4:c3:30:c7:4c:1a:d6:e9:f9:93:5f:b5:b0: 63:94:1f:2f:02:2e:1a:06:81:29:ef:f4:ce:46:ae: 03:e8:05:e6:12:21:68:b7:80:d8:9d:61:38:57:26: 73:22:69:75:79:9f:1c:07:5c:3d:d0:1b:96:8b:4f: 7b:f0:ac:f8:84:28:bc:0a:37:e3:a4:50:5d:8a:7c: e1:08:22:a0:d5:cb:22:5d:03:9c:a4:03:63:76:68: 97:15:56:ee:3b:d8:85:57:4e:a5:19:ab:9c:90:b6: 76:b0:f9:0a:91:a0:56:f6:80:33:bc:93:d0:36:df: af:1b:01:fd:e6:c7:3c:c4:70:9a:7d:fa:ed:03:a0: 35:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:B9:52:2E:20:25:7D:79:B1:80:A9:3E:B4:D7:45:3E:6F:10:64:16 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/67C19492744811ECA946E13EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.155.0/24 Signature Algorithm: sha256WithRSAEncryption 00:29:3e:29:38:d1:44:47:3e:ec:fb:37:4e:c5:83:f5:cc:41: 66:82:e9:8c:ab:7c:18:24:f1:3b:d1:83:8c:4c:3c:8b:88:4a: d4:5b:f2:af:f9:60:8f:4e:28:3e:a3:49:28:95:3d:17:31:5d: 40:1b:3a:0f:fd:12:98:3c:d6:98:42:c0:0c:f4:2c:48:a5:7d: 8d:a5:93:02:ae:2a:e3:60:e5:e9:26:20:8b:d5:c8:2c:09:1b: 2d:a6:e3:dd:12:6b:3b:0b:6f:41:1c:82:b5:ce:55:d6:25:7d: eb:1d:4e:d2:3d:0a:6a:41:04:4e:c6:9a:52:06:6c:08:fd:56: a0:4c:21:ac:a4:f2:2d:11:b2:1a:cc:d7:95:3b:41:6d:77:4c: bf:8b:00:3f:cf:ba:d6:58:9c:8b:c4:74:72:63:28:03:05:b2: 1e:4b:f7:09:d7:35:a1:cf:a0:f0:35:31:69:9f:59:f7:62:8f: 85:30:e3:78:68:d2:a5:50:57:9a:e8:2f:bc:75:d6:a8:30:1e: cd:b5:b4:66:ac:2c:80:71:58:2f:e9:a4:13:12:80:a1:c0:a3: b1:a5:e5:fa:56:3f:89:df:6a:90:16:04:23:17:30:d7:03:04: 8f:4d:96:d7:b0:2b:90:4e:92:43:29:79:e5:40:bd:8f:61:25: d8:cd:68:fb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyMzA3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzRlYi0yYjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnAxbU/ejeZYwOMts84zVcURpOwPGr/SJplgPuKhW6zE0MM2dJxm4d0sgZzjW WTAq8LpOr1iRy4u3RhowpYPcS67Qw0nyjZE4p+uvmyNPLtk/tK0PCzDvcG8x0KjP HGEt/uazT7XWH1OESgcl0jXR57YL+IIiDc7gZ7TDMMdMGtbp+ZNftbBjlB8vAi4a BoEp7/TORq4D6AXmEiFot4DYnWE4VyZzIml1eZ8cB1w90BuWi0978Kz4hCi8Cjfj pFBdinzhCCKg1csiXQOcpANjdmiXFVbuO9iFV06lGauckLZ2sPkKkaBW9oAzvJPQ Nt+vGwH95sc8xHCaffrtA6A1kQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNW5Ui4g JX15sYCpPrTXRT5vEGQWMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNjdDMTk0OTI3 NDQ4MTFFQ0E5NDZFMTNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABngZswDQYJKoZIhvcNAQELBQADggEBAAApPik40URHPuz7 N07Fg/XMQWaC6YyrfBgk8TvRg4xMPIuIStRb8q/5YI9OKD6jSSiVPRcxXUAbOg/9 Epg81phCwAz0LEilfY2lkwKuKuNg5ekmIIvVyCwJGy2m490SazsLb0EcgrXOVdYl fesdTtI9CmpBBE7GmlIGbAj9VqBMIayk8i0RshrM15U7QW13TL+LAD/PutZYnIvE dHJjKAMFsh5L9wnXNaHPoPA1MWmfWfdij4Uw43ho0qVQV5roL7x11qgwHs21tGas LIBxWC/ppBMSgKHAo7Gl5fpWP4nfapAWBCMXMNcDBI9NltewK5BOkkMpeeVAvY9h JdjNaPs= -----END CERTIFICATE-----Generated at Sun Apr 28 16:49:24 2024 by rpki-client on console-ams.rpki-client.org