$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6BCA4E4AB1B811ED8DC4D42EC4F9AE02.roa File: 6BCA4E4AB1B811ED8DC4D42EC4F9AE02.roa (raw, json) Hash identifier: sCXbZGpoXzX5uzdJaToqTg0QHW4UbthTdVbD/3xjSHo= Subject key identifier: 85:20:14:A1:B7:E1:13:84:41:9C:9D:85:56:7E:5B:F4:C7:84:59:8E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6D46 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6BCA4E4AB1B811ED8DC4D42EC4F9AE02.roa Signing time: Wed 10 May 2023 16:28:32 +0000 ROA not before: Wed 10 May 2023 16:28:32 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 137672 IP address blocks: 103.116.144.0/24 maxlen: 24 103.116.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27974 (0x6d46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:28:32 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc62f-e1a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fb:07:26:30:dc:70:4e:66:87:6c:45:23:17: f1:c6:3d:34:2a:a0:2d:50:c7:a5:b5:5f:3b:6a:f7: a3:67:0c:e2:e7:11:75:d7:d8:6f:da:b9:85:bc:bf: 37:0e:36:c7:3a:a1:c4:3b:83:5b:49:bd:62:92:80: 87:95:9f:ed:51:44:14:07:ea:d4:a2:86:60:e7:19: 5b:aa:a7:a2:b8:e7:97:90:b4:70:8f:75:a7:e8:23: a9:a1:43:91:1c:1f:91:af:e5:cc:67:f1:43:f7:c3: 5f:a0:8b:53:75:18:53:2b:71:06:7c:1e:1e:44:17: ef:9f:28:f0:1e:8a:8a:f9:a5:73:6f:4f:c1:1a:69: 71:08:c7:ad:7d:ef:6b:ac:fc:58:f4:5b:93:f9:70: 86:c9:29:4b:22:26:c2:ab:e2:3b:5f:bd:95:11:24: 5e:a0:e7:52:4f:7e:58:82:71:6d:97:6e:1b:ba:fb: e2:db:64:62:da:16:0b:86:f9:f1:ed:5c:da:c9:bf: 75:4e:66:e3:1d:e2:00:b4:e5:c4:fa:3d:e3:fb:e0: 30:27:96:65:a8:89:c9:e8:ea:e5:71:5c:80:35:02: 02:4b:36:b2:ea:ad:1e:82:1a:50:ad:42:73:bd:46: 23:4e:41:53:2c:a1:1c:57:1d:6c:b7:83:4a:12:c8: 04:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:20:14:A1:B7:E1:13:84:41:9C:9D:85:56:7E:5B:F4:C7:84:59:8E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6BCA4E4AB1B811ED8DC4D42EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.144.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:a8:f5:80:50:f4:bf:16:96:92:01:af:cb:17:cf:74:d9:86: a1:9d:63:95:d1:55:8b:db:e8:35:a6:55:94:84:fe:f0:18:71: 6b:44:9d:9e:b8:a3:69:74:16:7c:18:01:01:31:2f:98:5a:fb: 80:f4:1e:6e:d2:c1:c9:6e:9c:3a:6c:42:76:13:05:3d:3a:a3: 54:8f:4f:15:3e:9e:82:86:00:97:19:85:0f:81:d2:bf:2c:1c: ee:f6:c7:8b:04:6b:dd:1d:a5:4f:2d:23:f3:83:c1:58:00:7a: be:35:a2:77:82:3f:73:e9:fd:1a:dd:8a:db:24:27:10:b1:d2: 59:91:d1:52:af:a3:c8:e0:94:61:7b:bb:ec:75:67:c9:28:39: d2:dc:46:df:4e:80:b2:3e:27:bc:48:30:52:8e:cd:6a:8e:60: d9:5b:c1:57:c3:58:7e:75:27:61:ee:89:7f:d2:27:99:71:07: 7c:41:fd:04:66:3c:cf:76:7c:b8:db:e1:33:95:d5:67:72:d4: ea:6a:56:37:ab:f2:69:b6:3c:d0:65:23:9d:33:5b:aa:b3:d4: cb:e3:a6:db:e2:27:dd:c4:35:7b:d1:87:7b:8b:12:53:07:21: 1e:bf:0e:ad:6a:c8:65:bf:ea:8f:69:25:a2:39:86:ee:73:fb: 56:d6:2f:78 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyODMyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzYyZi1lMWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvsHJjDccE5mh2xFIxfxxj00KqAtUMeltV87avejZwzi5xF119hv2rmFvL83 DjbHOqHEO4NbSb1ikoCHlZ/tUUQUB+rUooZg5xlbqqeiuOeXkLRwj3Wn6COpoUOR HB+Rr+XMZ/FD98NfoItTdRhTK3EGfB4eRBfvnyjwHoqK+aVzb0/BGmlxCMetfe9r rPxY9FuT+XCGySlLIibCq+I7X72VESReoOdST35YgnFtl24buvvi22Ri2hYLhvnx 7Vzayb91TmbjHeIAtOXE+j3j++AwJ5ZlqInJ6OrlcVyANQICSzay6q0eghpQrUJz vUYjTkFTLKEcVx1st4NKEsgExwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIUgFKG3 4ROEQZydhVZ+W/THhFmOMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNkJDQTRFNEFC MUI4MTFFRDhEQzRENDJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFndJAwDQYJKoZIhvcNAQELBQADggEBAG6o9YBQ9L8WlpIB r8sXz3TZhqGdY5XRVYvb6DWmVZSE/vAYcWtEnZ64o2l0FnwYAQExL5ha+4D0Hm7S wclunDpsQnYTBT06o1SPTxU+noKGAJcZhQ+B0r8sHO72x4sEa90dpU8tI/ODwVgA er41oneCP3Pp/RrditskJxCx0lmR0VKvo8jglGF7u+x1Z8koOdLcRt9OgLI+J7xI MFKOzWqOYNlbwVfDWH51J2HuiX/SJ5lxB3xB/QRmPM92fLjb4TOV1Wdy1OpqVjer 8mm2PNBlI50zW6qz1MvjptviJ93ENXvRh3uLElMHIR6/Dq1qyGW/6o9pJaI5hu5z +1bWL3g= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:36 2024 by rpki-client on console-ams.rpki-client.org