$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6840EFD02EDF11EB9CD0A819C4F9AE02.roa File: 6840EFD02EDF11EB9CD0A819C4F9AE02.roa (raw, json) Hash identifier: mASjqc6AyOgZecyGOMzzvnBAd9Z+M1pY+7h0ihe1skk= Subject key identifier: E2:64:C8:F2:CD:F4:87:88:CA:86:DC:9F:EF:46:E6:8B:02:E1:BD:E6 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6DEF Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6840EFD02EDF11EB9CD0A819C4F9AE02.roa Signing time: Wed 10 May 2023 16:31:43 +0000 ROA not before: Wed 10 May 2023 16:31:43 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 139531 IP address blocks: 103.146.240.0/23 maxlen: 24 2001:df2:7380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28143 (0x6def) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:31:43 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc6ef-499e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:2c:9b:f5:4c:de:9a:6c:66:eb:cf:ad:f3:a5: aa:d5:47:f6:66:43:28:72:d9:9f:63:53:8a:96:f9: 8e:ac:96:db:4c:74:4b:44:08:4b:5a:0f:28:70:d5: 98:c8:53:1d:be:a5:30:36:3c:d6:a6:04:8b:c5:c7: ad:fa:33:a2:b6:2e:7e:a2:b2:e3:ae:88:79:b8:71: 78:11:be:7e:2b:9f:d9:54:26:80:03:b0:fb:95:35: 6d:ad:bc:e8:79:16:1b:0c:a3:8f:ab:44:07:26:12: e6:97:84:3c:44:3f:f7:f5:46:c2:59:f0:f5:fd:ea: 15:3a:4d:7e:c2:4b:73:4f:0f:16:50:a7:ed:86:02: 58:46:7a:67:6a:c2:71:dc:f4:1e:b1:8c:57:af:65: 2c:1e:3e:e6:c1:56:86:a2:aa:b6:71:cc:e8:30:4f: b8:7e:57:2a:fb:2d:6c:7d:29:b8:e7:ca:34:0f:11: 01:57:63:dc:ff:76:4f:b5:c4:fa:2e:2c:5c:69:0c: a5:b2:f4:5b:6c:bc:40:24:e2:68:6b:39:fd:dc:36: 01:b9:e1:04:e9:e3:81:b6:aa:a3:c0:a8:d3:0d:14: 75:c4:1e:d5:70:39:9c:d6:8d:86:f9:1f:53:f3:60: 1c:59:c0:f1:b2:33:16:29:6f:12:43:d4:4c:9a:bb: 17:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:64:C8:F2:CD:F4:87:88:CA:86:DC:9F:EF:46:E6:8B:02:E1:BD:E6 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6840EFD02EDF11EB9CD0A819C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.240.0/23 IPv6: 2001:df2:7380::/48 Signature Algorithm: sha256WithRSAEncryption b5:ad:72:9d:23:bd:d1:f4:a3:6f:47:e8:ea:83:8e:f8:b3:57: 3c:ec:02:00:be:e7:e7:4d:8a:39:29:26:21:67:da:d2:c8:7c: f7:aa:25:97:ed:8d:f0:a8:83:8a:00:9e:cc:a2:eb:be:d5:65: de:5e:8e:87:d0:78:80:52:75:9b:33:15:c8:44:6f:dd:03:00: 20:6d:60:b4:6e:83:90:d8:4d:3f:f7:1d:5e:5b:c8:dc:8a:03: e5:32:0f:d7:f0:d9:78:48:04:40:e9:e8:f6:ff:cf:a7:0a:1d: 79:32:87:a8:19:19:a6:d8:2a:05:42:58:40:ed:69:2f:33:f1: 81:cc:d0:22:e5:aa:f6:23:a7:8d:7a:15:04:a6:5b:09:be:5d: ba:d4:a7:79:6c:f5:be:f5:7e:34:8c:65:e2:82:d1:a4:b6:f6: ab:c0:00:ea:89:37:b2:50:e2:3e:06:4d:fa:42:da:20:ce:09: 05:e7:4b:68:95:de:76:73:31:2b:05:59:a4:f0:bd:10:7b:7f: d3:65:4d:f7:33:63:5d:be:02:7d:7e:63:2c:c5:35:cd:38:b7: 1f:b4:ca:a0:e3:27:18:93:3d:f1:9f:ef:43:68:1b:8c:55:bf: 29:d6:39:44:14:25:05:85:c0:28:7e:f3:38:eb:dc:c5:96:eb: 5f:30:ce:1b -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICbe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzMTQzWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzZlZi00OTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8yyb9Uzemmxm68+t86Wq1Uf2ZkMoctmfY1OKlvmOrJbbTHRLRAhLWg8ocNWY yFMdvqUwNjzWpgSLxcet+jOiti5+orLjroh5uHF4Eb5+K5/ZVCaAA7D7lTVtrbzo eRYbDKOPq0QHJhLml4Q8RD/39UbCWfD1/eoVOk1+wktzTw8WUKfthgJYRnpnasJx 3PQesYxXr2UsHj7mwVaGoqq2cczoME+4flcq+y1sfSm458o0DxEBV2Pc/3ZPtcT6 LixcaQylsvRbbLxAJOJoazn93DYBueEE6eOBtqqjwKjTDRR1xB7VcDmc1o2G+R9T 82AcWcDxsjMWKW8SQ9RMmrsXDQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOJkyPLN 9IeIyobcn+9G5osC4b3mMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNjg0MEVGRDAy RURGMTFFQjlDRDBBODE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnkvAwDwQCAAIwCQMHACABDfJzgDANBgkqhkiG9w0BAQsF AAOCAQEAta1ynSO90fSjb0fo6oOO+LNXPOwCAL7n502KOSkmIWfa0sh896oll+2N 8KiDigCezKLrvtVl3l6Oh9B4gFJ1mzMVyERv3QMAIG1gtG6DkNhNP/cdXlvI3IoD 5TIP1/DZeEgEQOno9v/PpwodeTKHqBkZptgqBUJYQO1pLzPxgczQIuWq9iOnjXoV BKZbCb5dutSneWz1vvV+NIxl4oLRpLb2q8AA6ok3slDiPgZN+kLaIM4JBedLaJXe dnMxKwVZpPC9EHt/02VN9zNjXb4CfX5jLMU1zTi3H7TKoOMnGJM98Z/vQ2gbjFW/ KdY5RBQlBYXAKH7zOOvcxZbrXzDOGw== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:36 2024 by rpki-client on console-ams.rpki-client.org