$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/748B0074BDE111EAAEFB6D58C4F9AE02.roa File: 748B0074BDE111EAAEFB6D58C4F9AE02.roa (raw, json) Hash identifier: 4CslWYtiru6PcDxkx4zpeBwtvAwerrkTyqqcBGmGz7M= Subject key identifier: 29:B6:2E:A6:4C:CD:A2:6C:96:8D:AF:65:C5:7A:A5:5F:A0:DC:82:A0 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6A28 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/748B0074BDE111EAAEFB6D58C4F9AE02.roa Signing time: Wed 10 May 2023 16:13:23 +0000 ROA not before: Wed 10 May 2023 16:13:23 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 132937 IP address blocks: 43.239.192.0/22 maxlen: 24 103.173.192.0/23 maxlen: 24 103.227.62.0/24 maxlen: 24 103.234.116.0/23 maxlen: 24 103.253.125.0/24 maxlen: 24 2001:df7:8a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27176 (0x6a28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:13:23 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc2a2-8002 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:83:16:a5:e3:eb:04:54:a1:1f:db:5e:54:60: 4b:a6:08:35:35:ca:11:9d:fd:dc:22:30:07:8b:d8: fe:75:95:e0:97:00:e4:4e:4e:0e:d5:e2:7f:c3:0c: 16:e8:33:0e:40:ea:8b:18:bb:10:a7:9f:8a:29:3f: 5a:62:94:bf:55:01:8e:4b:98:dd:33:4c:22:e8:94: 99:a0:ff:a8:b8:30:b0:87:14:2f:f3:43:37:80:12: 26:81:57:22:ec:ad:e8:eb:61:7c:7c:ab:76:af:e9: 23:78:d1:d4:34:93:71:6f:3b:af:1a:7e:87:f0:ab: 87:6d:3d:65:d0:e8:b4:cf:61:b2:58:55:05:6c:96: 10:bc:e4:5e:7d:da:e1:b9:39:03:a9:4a:23:d7:17: 9f:db:4e:4b:eb:6f:a7:e8:72:cf:8e:0c:ee:dd:9f: 6a:07:e4:dc:31:47:00:3c:eb:dd:90:0b:3d:87:fc: cb:8c:25:6e:ac:46:6c:e8:a3:00:37:01:7b:e2:6c: dd:81:13:6c:c6:4b:07:3a:97:ef:29:d7:f1:8e:c2: 23:c9:5b:3a:ab:3f:39:42:a2:74:08:54:79:76:98: fc:5c:12:2f:43:d0:57:0b:25:c7:1f:61:de:ce:d7: 8f:30:8f:fb:6a:25:49:f8:78:76:a3:48:5d:37:a6: 71:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:B6:2E:A6:4C:CD:A2:6C:96:8D:AF:65:C5:7A:A5:5F:A0:DC:82:A0 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/748B0074BDE111EAAEFB6D58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.192.0/22 103.173.192.0/23 103.227.62.0/24 103.234.116.0/23 103.253.125.0/24 IPv6: 2001:df7:8a00::/48 Signature Algorithm: sha256WithRSAEncryption 34:0b:c9:6a:34:49:00:80:c8:69:40:b8:c2:0c:b2:a8:20:db: 3b:3f:16:47:3b:7b:74:31:52:fc:18:05:c6:ea:49:76:8e:b3: 00:58:d9:c7:b9:42:ac:e7:a4:21:c8:49:38:58:1d:7d:d4:3b: 07:9e:06:99:38:3d:b3:c8:34:2f:ee:89:45:df:33:a4:4d:65: bb:3e:70:15:4b:ff:b7:c4:55:48:85:51:da:54:06:5c:41:4a: 4d:8e:bf:64:68:93:2e:76:9a:a4:52:6c:95:f3:85:8c:b3:7a: 4f:35:93:4a:fe:28:84:4b:03:67:7a:e7:92:69:68:e8:e7:0b: 48:ff:1c:57:7c:0c:ae:ec:5b:73:9f:a6:99:99:de:17:19:b1: 27:3a:45:04:fb:28:be:af:80:1a:cc:73:eb:b9:e6:12:0a:83: e4:55:66:e5:c7:5f:6b:e7:11:b9:ec:49:9d:83:19:ae:19:b7: 96:c6:8a:e8:9a:2e:ff:31:88:43:8a:e1:b5:d0:fc:05:dd:3c: 42:32:0c:85:68:30:6d:16:f3:53:28:f2:3e:f2:78:b4:83:39: 63:39:e0:89:29:26:e1:f9:88:1b:15:ea:b2:8a:df:aa:29:bd: 2e:99:d4:53:cd:ad:13:a3:dc:1a:c8:33:a7:c9:4f:df:e0:a6: f9:e7:b2:3e -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgICaigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxMzIzWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzJhMi04MDAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2YMWpePrBFShH9teVGBLpgg1NcoRnf3cIjAHi9j+dZXglwDkTk4O1eJ/wwwW 6DMOQOqLGLsQp5+KKT9aYpS/VQGOS5jdM0wi6JSZoP+ouDCwhxQv80M3gBImgVci 7K3o62F8fKt2r+kjeNHUNJNxbzuvGn6H8KuHbT1l0Oi0z2GyWFUFbJYQvORefdrh uTkDqUoj1xef205L62+n6HLPjgzu3Z9qB+TcMUcAPOvdkAs9h/zLjCVurEZs6KMA NwF74mzdgRNsxksHOpfvKdfxjsIjyVs6qz85QqJ0CFR5dpj8XBIvQ9BXCyXHH2He ztePMI/7aiVJ+Hh2o0hdN6ZxPwIDAQABo4ICvjCCArowHQYDVR0OBBYEFCm2LqZM zaJslo2vZcV6pV+g3IKgMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNzQ4QjAwNzRC REUxMTFFQUFFRkI2RDU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSAYIKwYBBQUHAQcBAf8E OTA3MCQEAgABMB4DBAIr78ADBAFnrcADBABn4z4DBAFn6nQDBABn/X0wDwQCAAIw CQMHACABDfeKADANBgkqhkiG9w0BAQsFAAOCAQEANAvJajRJAIDIaUC4wgyyqCDb Oz8WRzt7dDFS/BgFxupJdo6zAFjZx7lCrOekIchJOFgdfdQ7B54GmTg9s8g0L+6J Rd8zpE1luz5wFUv/t8RVSIVR2lQGXEFKTY6/ZGiTLnaapFJslfOFjLN6TzWTSv4o hEsDZ3rnkmlo6OcLSP8cV3wMruxbc5+mmZneFxmxJzpFBPsovq+AGsxz67nmEgqD 5FVm5cdfa+cRuexJnYMZrhm3lsaK6Jou/zGIQ4rhtdD8Bd08QjIMhWgwbRbzUyjy PvJ4tIM5YzngiSkm4fmIGxXqsorfqim9LpnUU82tE6PcGsgzp8lP3+Cm+eeyPg== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:37 2024 by rpki-client on console-ams.rpki-client.org