$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/71FAEDEAF36611EBA2E4F164C4F9AE02.roa File: 71FAEDEAF36611EBA2E4F164C4F9AE02.roa (raw, json) Hash identifier: IfccHJDDPgYv4ndqelRT3kolbAWgh4fadPuoA3JE1rI= Subject key identifier: A0:63:10:E2:99:36:F5:3E:AA:2E:B7:8B:79:48:F8:6A:31:70:AD:12 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6F5B Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/71FAEDEAF36611EBA2E4F164C4F9AE02.roa Signing time: Wed 10 May 2023 16:38:25 +0000 ROA not before: Wed 10 May 2023 16:38:25 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 142468 IP address blocks: 103.170.46.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 11:49:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28507 (0x6f5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:38:25 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc880-fe09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6e:96:e9:d1:75:85:9f:ae:9a:ee:52:3f:f3: ef:c3:b5:7d:63:0a:ff:86:88:7e:45:8c:c8:82:97: 21:ce:f6:18:6f:c7:6e:00:c1:0d:ca:b1:53:6d:2f: ce:93:72:51:ce:e6:7e:02:84:6f:58:b1:30:6f:b6: 57:b4:20:15:85:a3:11:d2:9a:aa:0b:a5:3a:14:fe: cc:fc:43:b2:8b:09:2a:90:fd:4a:6f:58:7a:f1:c9: 4b:84:89:6c:92:ff:71:26:6f:84:ec:06:3c:f8:3d: 24:cd:46:10:06:c9:ab:b5:68:cd:d4:64:e1:f5:de: 0b:6c:fe:9f:ec:12:3b:26:b0:0c:1c:ef:a3:26:f0: 66:a8:c9:e2:c0:96:eb:9d:61:b0:e9:dd:a8:b1:57: 3a:11:8f:4a:42:45:34:0b:cd:2c:d3:57:34:15:aa: 91:c7:46:69:ef:cb:92:8e:c7:76:16:60:db:51:0d: fd:cb:1b:68:06:76:ee:5b:db:7f:8b:b5:02:da:ad: e1:87:c3:09:5a:07:69:86:4c:28:58:e3:fd:5b:4d: 58:4d:bf:4e:b0:0e:7b:1f:a4:3d:ee:a9:55:81:29: 92:51:c9:af:ab:d7:a8:d3:9a:24:a4:5d:a5:7e:7d: 5c:8c:85:31:0a:f2:35:9c:58:9a:3c:ea:d0:ac:1e: bc:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:63:10:E2:99:36:F5:3E:AA:2E:B7:8B:79:48:F8:6A:31:70:AD:12 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/71FAEDEAF36611EBA2E4F164C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.46.0/23 Signature Algorithm: sha256WithRSAEncryption 94:e5:16:f7:d3:40:bb:c1:c8:ad:e7:9e:25:40:1d:f7:bc:dc: 26:95:7c:d5:27:21:4c:54:4b:32:9d:4f:de:6a:05:a0:4a:68: c2:0e:e4:24:b3:48:39:1a:8d:fd:1f:b4:1a:ed:12:28:df:e8: 44:d7:3f:e7:b9:ff:f8:4c:94:1b:b0:32:7e:c3:1b:b5:a6:25: 22:82:5b:70:f0:22:3c:8b:3b:50:eb:3a:64:f7:fa:b6:bf:3d: 54:81:11:36:3c:bf:ec:eb:52:28:0d:0c:9d:95:8a:53:cf:94: 03:a7:84:93:62:33:74:d4:9b:d9:6c:c5:6e:bc:70:5a:3f:75: 09:c4:c9:2a:f7:b4:5c:3e:d0:b7:20:79:39:98:17:54:4c:9e: 61:7f:bf:0d:f3:46:db:a6:21:38:0d:45:bd:26:37:31:ef:53: 0b:21:06:61:30:e0:d9:b9:04:90:64:43:95:10:5d:1b:ae:d9: 96:ff:9c:55:e4:e0:96:f4:30:a6:16:d4:49:07:a0:ad:f1:a7: 61:a8:9c:ce:73:bb:99:05:7d:11:98:0b:51:3e:e2:35:8c:51: be:d3:a4:e3:ed:88:d3:18:45:47:2d:6b:47:00:79:1c:83:e2: 02:29:90:67:8e:c3:25:de:58:99:1d:80:5a:8a:a0:6c:dd:c6: 13:43:d0:a2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICb1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzODI1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzg4MC1mZTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvW6W6dF1hZ+umu5SP/Pvw7V9Ywr/hoh+RYzIgpchzvYYb8duAMENyrFTbS/O k3JRzuZ+AoRvWLEwb7ZXtCAVhaMR0pqqC6U6FP7M/EOyiwkqkP1Kb1h68clLhIls kv9xJm+E7AY8+D0kzUYQBsmrtWjN1GTh9d4LbP6f7BI7JrAMHO+jJvBmqMniwJbr nWGw6d2osVc6EY9KQkU0C80s01c0FaqRx0Zp78uSjsd2FmDbUQ39yxtoBnbuW9t/ i7UC2q3hh8MJWgdphkwoWOP9W01YTb9OsA57H6Q97qlVgSmSUcmvq9eo05okpF2l fn1cjIUxCvI1nFiaPOrQrB68lwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKBjEOKZ NvU+qi63i3lI+GoxcK0SMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNzFGQUVERUFG MzY2MTFFQkEyRTRGMTY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnqi4wDQYJKoZIhvcNAQELBQADggEBAJTlFvfTQLvByK3n niVAHfe83CaVfNUnIUxUSzKdT95qBaBKaMIO5CSzSDkajf0ftBrtEijf6ETXP+e5 //hMlBuwMn7DG7WmJSKCW3DwIjyLO1DrOmT3+ra/PVSBETY8v+zrUigNDJ2VilPP lAOnhJNiM3TUm9lsxW68cFo/dQnEySr3tFw+0LcgeTmYF1RMnmF/vw3zRtumITgN Rb0mNzHvUwshBmEw4Nm5BJBkQ5UQXRuu2Zb/nFXk4Jb0MKYW1EkHoK3xp2GonM5z u5kFfRGYC1E+4jWMUb7TpOPtiNMYRUcta0cAeRyD4gIpkGeOwyXeWJkdgFqKoGzd xhND0KI= -----END CERTIFICATE-----Generated at Thu Apr 25 22:33:56 2024 by rpki-client on console-fra.rpki-client.org