$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6AAC3F5E71E211EBA5288F1EC4F9AE02.roa File: 6AAC3F5E71E211EBA5288F1EC4F9AE02.roa (raw, json) Hash identifier: Q/nIazPC2Ft2PscMlcafqPz/PLt85cEWPXGLzYGRwPo= Subject key identifier: A6:EC:46:80:12:C8:BC:28:4A:AE:7A:56:19:03:38:88:C9:13:21:F5 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6EC6 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6AAC3F5E71E211EBA5288F1EC4F9AE02.roa Signing time: Wed 10 May 2023 16:35:38 +0000 ROA not before: Wed 10 May 2023 16:35:38 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141520 IP address blocks: 103.162.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28358 (0x6ec6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:35:38 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc7d9-dfb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:e5:d9:1d:be:eb:9e:af:db:57:b5:32:6f:79: 01:9f:dc:d3:b4:e1:67:f1:35:07:a5:5d:c0:9b:69: 6e:23:df:72:22:7a:33:da:4b:61:28:1e:c4:a5:b0: f5:7c:0d:3e:88:68:4d:0f:3c:f7:96:80:97:71:50: c9:12:73:71:91:a7:03:ff:89:07:3f:3a:bf:0e:57: e5:0b:32:6b:96:ff:34:a8:b9:94:e6:5e:8c:f0:c0: 63:f8:79:c3:95:cf:d9:77:23:8e:b4:4c:7c:1a:c6: 76:d9:be:b3:1d:1e:49:39:55:b7:a4:37:68:a8:33: 02:e7:24:83:9a:a2:fa:8b:7f:84:2a:e3:0a:f0:c9: 1d:5c:34:52:6d:a2:6e:1a:61:bb:55:ac:9c:a0:16: b2:24:63:7f:11:72:15:6d:0e:72:96:cd:ab:ae:ba: 3f:f1:92:da:89:df:dd:5e:4a:c8:b2:db:f2:60:48: fe:05:fe:34:ca:52:74:69:2d:f0:d5:4a:35:d3:bc: 94:f1:21:fa:54:4e:5d:52:ec:da:5d:27:3e:3e:f1: 0b:f5:00:9f:fb:a1:af:19:3e:c6:bc:18:ff:be:19: e8:eb:20:98:ef:81:b4:66:3e:62:98:d7:4f:cb:7b: bc:cf:6a:59:48:bc:93:4e:c0:15:b3:f5:c9:16:43: 63:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:EC:46:80:12:C8:BC:28:4A:AE:7A:56:19:03:38:88:C9:13:21:F5 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6AAC3F5E71E211EBA5288F1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.166.0/23 Signature Algorithm: sha256WithRSAEncryption ba:3f:73:da:ff:b0:72:0c:df:21:b5:b7:99:03:f6:d1:83:3d: 99:aa:fd:b1:d4:52:53:be:41:6d:d9:6c:32:fd:d9:80:90:69: 24:83:85:20:ac:2d:e4:cd:52:73:d3:e5:3e:79:b4:2b:34:0c: f4:1e:5f:38:e8:71:47:5e:49:12:90:c9:73:95:34:be:75:4c: 04:60:ec:df:c2:67:10:8a:2b:3e:aa:38:a5:f1:a5:06:cd:71: c7:d0:84:7e:10:48:ef:32:4e:3a:b1:7e:1e:5e:09:b9:7e:e9: 3e:c8:af:e3:f6:8a:03:a5:26:b1:fa:a5:4b:8f:87:d3:59:9b: f8:9d:18:33:65:e0:21:ce:86:18:a3:76:e8:68:47:9f:46:ba: a3:2a:93:cb:3d:f0:fc:01:73:4c:68:1b:0c:44:0d:da:e3:41: 8a:20:6e:f9:f9:2e:53:93:54:5b:81:f9:a9:a3:54:f2:47:37: 3a:3c:82:1d:fd:87:76:9a:c6:36:2e:d6:34:f9:76:d2:12:d7: 15:44:9e:f9:1c:5e:06:bb:03:f0:61:70:e4:a7:a6:32:d4:09: b1:d3:a4:cf:75:03:95:3c:50:a0:46:77:74:44:ca:06:6b:85: 62:fe:ea:06:1b:ef:6c:19:f9:e8:e1:1f:f4:a1:ab:05:bd:48: 87:86:b0:7e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbsYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzNTM4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzdkOS1kZmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7+XZHb7rnq/bV7Uyb3kBn9zTtOFn8TUHpV3Am2luI99yInoz2kthKB7EpbD1 fA0+iGhNDzz3loCXcVDJEnNxkacD/4kHPzq/DlflCzJrlv80qLmU5l6M8MBj+HnD lc/ZdyOOtEx8GsZ22b6zHR5JOVW3pDdoqDMC5ySDmqL6i3+EKuMK8MkdXDRSbaJu GmG7VaycoBayJGN/EXIVbQ5yls2rrro/8ZLaid/dXkrIstvyYEj+Bf40ylJ0aS3w 1Uo107yU8SH6VE5dUuzaXSc+PvEL9QCf+6GvGT7GvBj/vhno6yCY74G0Zj5imNdP y3u8z2pZSLyTTsAVs/XJFkNjvwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKbsRoAS yLwoSq56VhkDOIjJEyH1MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNkFBQzNGNUU3 MUUyMTFFQkE1Mjg4RjFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnoqYwDQYJKoZIhvcNAQELBQADggEBALo/c9r/sHIM3yG1 t5kD9tGDPZmq/bHUUlO+QW3ZbDL92YCQaSSDhSCsLeTNUnPT5T55tCs0DPQeXzjo cUdeSRKQyXOVNL51TARg7N/CZxCKKz6qOKXxpQbNccfQhH4QSO8yTjqxfh5eCbl+ 6T7Ir+P2igOlJrH6pUuPh9NZm/idGDNl4CHOhhijduhoR59GuqMqk8s98PwBc0xo GwxEDdrjQYogbvn5LlOTVFuB+amjVPJHNzo8gh39h3aaxjYu1jT5dtIS1xVEnvkc Xga7A/BhcOSnpjLUCbHTpM91A5U8UKBGd3REygZrhWL+6gYb72wZ+ejhH/ShqwW9 SIeGsH4= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:36 2024 by rpki-client on console-ams.rpki-client.org