$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/68BA11A82CE411EDAC1EA366C4F9AE02.roa File: 68BA11A82CE411EDAC1EA366C4F9AE02.roa (raw, json) Hash identifier: nZBb6SoTbHsBOYbwZUNlPBQzHpt0P5KKAHWi26GtEM8= Subject key identifier: E3:70:C5:9E:2D:52:90:07:45:D9:82:70:B5:0D:4B:FC:06:57:9F:A0 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6A2A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/68BA11A82CE411EDAC1EA366C4F9AE02.roa Signing time: Wed 10 May 2023 16:13:25 +0000 ROA not before: Wed 10 May 2023 16:13:25 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 132945 IP address blocks: 45.65.52.0/22 maxlen: 24 103.252.148.0/22 maxlen: 24 2001:df2:2800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27178 (0x6a2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:13:25 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc2a5-6984 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:77:ac:3e:92:b7:16:6c:cb:79:11:19:ad:b2: 03:5b:f9:ed:bf:9c:b0:43:98:e7:52:16:97:04:1d: dd:b8:65:32:fd:98:c6:35:5e:58:54:a1:10:ad:23: 5a:22:8e:c4:e5:d9:af:44:cb:1b:3c:76:8c:96:b2: 6e:d5:90:1a:a4:dc:e9:cc:45:99:09:59:c0:9f:e8: b2:b3:c6:a4:5f:83:b4:3e:b0:48:5a:11:39:70:b5: 86:9a:c6:63:32:06:0d:a3:c3:03:62:0a:15:48:8e: f6:c1:00:13:82:d7:f7:e1:36:d8:ea:06:49:73:05: 43:2d:9b:20:00:18:af:c1:8b:3f:b3:b2:43:70:e2: 2c:1f:31:3f:3c:8f:d0:c5:dc:50:45:e9:ac:24:a7: 2f:37:cd:1f:1a:79:15:da:4c:6e:14:4a:84:7f:a6: d5:d5:59:42:38:63:4c:c8:df:c5:72:b3:84:29:ea: 30:31:13:58:50:c4:32:70:8c:e3:bf:cc:11:8c:91: ee:96:de:25:c7:70:3f:df:ab:ff:5a:78:35:80:d8: f5:33:9e:e5:0b:fa:97:06:39:7c:63:c6:da:a9:f8: f4:d1:1e:80:94:1f:3c:10:74:11:c9:28:70:33:74: 33:d7:99:36:a7:09:f7:c0:7d:c5:7a:88:75:60:a6: fb:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:70:C5:9E:2D:52:90:07:45:D9:82:70:B5:0D:4B:FC:06:57:9F:A0 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/68BA11A82CE411EDAC1EA366C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.65.52.0/22 103.252.148.0/22 IPv6: 2001:df2:2800::/48 Signature Algorithm: sha256WithRSAEncryption 92:1a:1e:9f:02:fe:60:ab:0f:b2:25:ab:b7:35:1b:bc:0b:05: de:ec:43:86:df:fc:05:01:b2:9f:f4:10:ff:5b:ee:14:ec:8c: d2:02:3f:3c:b9:bf:de:c4:88:43:f7:ed:2e:74:ac:20:d5:79: cd:51:4f:68:60:72:8d:77:75:cd:8c:ae:6c:86:79:b7:73:39: bd:f4:2a:31:a3:52:74:21:81:fd:9e:be:de:d4:7a:24:b4:22: f5:94:58:67:d0:0b:12:f2:8c:41:20:31:3f:ce:7d:91:4c:f3: a2:84:97:8f:01:b7:18:3c:b7:90:3b:2e:54:a9:d4:84:2c:d4: d2:4a:2f:ed:75:d6:8a:74:b8:96:f8:83:7c:af:d8:27:cf:67: e8:99:20:00:6c:4c:6e:da:ee:fe:0e:70:77:6f:2b:9e:d2:f1: 5d:34:ea:98:8f:b5:5c:fb:2b:29:4c:db:7f:54:a0:54:43:89: f2:07:24:0e:92:13:57:56:de:67:47:40:dc:c9:8a:64:ac:f9: c8:f3:23:d3:00:a7:ee:ee:ef:3b:b4:60:b2:8f:47:16:a8:d6: 07:d7:65:b8:b3:fa:af:27:0f:ab:e2:ca:27:93:bd:d4:cf:70: 06:80:10:6e:c2:2a:83:68:c6:65:1b:3b:87:76:2e:f4:83:e5: 19:66:69:1c -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICaiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxMzI1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzJhNS02OTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2XesPpK3FmzLeREZrbIDW/ntv5ywQ5jnUhaXBB3duGUy/ZjGNV5YVKEQrSNa Io7E5dmvRMsbPHaMlrJu1ZAapNzpzEWZCVnAn+iys8akX4O0PrBIWhE5cLWGmsZj MgYNo8MDYgoVSI72wQATgtf34TbY6gZJcwVDLZsgABivwYs/s7JDcOIsHzE/PI/Q xdxQRemsJKcvN80fGnkV2kxuFEqEf6bV1VlCOGNMyN/FcrOEKeowMRNYUMQycIzj v8wRjJHult4lx3A/36v/Wng1gNj1M57lC/qXBjl8Y8baqfj00R6AlB88EHQRyShw M3Qz15k2pwn3wH3Feoh1YKb7GwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFONwxZ4t UpAHRdmCcLUNS/wGV5+gMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNjhCQTExQTgy Q0U0MTFFREFDMUVBMzY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAItQTQDBAJn/JQwDwQCAAIwCQMHACABDfIoADANBgkqhkiG 9w0BAQsFAAOCAQEAkhoenwL+YKsPsiWrtzUbvAsF3uxDht/8BQGyn/QQ/1vuFOyM 0gI/PLm/3sSIQ/ftLnSsINV5zVFPaGByjXd1zYyubIZ5t3M5vfQqMaNSdCGB/Z6+ 3tR6JLQi9ZRYZ9ALEvKMQSAxP859kUzzooSXjwG3GDy3kDsuVKnUhCzU0kov7XXW inS4lviDfK/YJ89n6JkgAGxMbtru/g5wd28rntLxXTTqmI+1XPsrKUzbf1SgVEOJ 8gckDpITV1beZ0dA3MmKZKz5yPMj0wCn7u7vO7Rgso9HFqjWB9dluLP6rycPq+LK J5O91M9wBoAQbsIqg2jGZRs7h3Yu9IPlGWZpHA== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:36 2024 by rpki-client on console-ams.rpki-client.org