$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/765025CEC23E11ED80139928C4F9AE02.roa File: 765025CEC23E11ED80139928C4F9AE02.roa (raw, json) Hash identifier: PrZgFCGW5hi9xePjbw3YRmo3wOCDkuNjbOzh5qRytf8= Subject key identifier: BC:45:53:8C:57:C8:BF:EB:75:FF:19:FE:E1:31:14:D9:71:E6:46:5D Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 70FE Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/765025CEC23E11ED80139928C4F9AE02.roa Signing time: Wed 10 May 2023 16:46:08 +0000 ROA not before: Wed 10 May 2023 16:46:08 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 150569 IP address blocks: 103.99.146.0/23 maxlen: 24 2001:df2:e40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 15:26:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28926 (0x70fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:46:08 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bca4f-ef41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d8:06:f9:8f:c3:cf:90:ab:57:31:45:17:54: e4:9e:42:84:85:29:9f:ab:77:81:e4:ba:ab:0a:99: af:0c:06:4e:50:f7:b0:f9:12:86:69:11:42:2d:cb: 34:f9:ca:8d:6b:18:b4:24:c4:e1:b3:46:25:54:d5: 6a:b6:68:0f:f7:b9:b8:28:bf:17:4b:db:a2:0f:3b: d4:46:d6:47:fd:9a:08:20:24:7d:f3:61:7e:00:74: 5a:d8:6f:92:f8:f9:c7:ec:6a:45:63:43:43:3d:c7: 24:38:8a:09:1c:f8:39:f4:2e:a7:2e:c1:b1:8c:a7: 65:e3:3f:2e:b0:20:aa:56:cd:af:79:3f:c7:ce:04: e1:5c:77:1d:df:2e:8a:53:83:6e:ca:af:07:ae:e0: 64:65:d9:30:b8:dd:1a:fd:4c:bc:ab:f1:05:3c:fb: cb:5f:e0:49:9c:21:bb:53:2f:96:df:f1:1d:d0:cc: aa:a0:1e:ff:33:d0:2d:74:97:e7:11:3b:8e:7b:63: 07:10:01:31:24:c0:d6:6b:e2:13:84:56:81:44:e6: 7f:1d:a7:92:30:75:3c:ab:53:b8:d2:df:71:c3:3c: 4e:99:7d:36:42:67:3f:9e:c1:f8:0a:04:15:37:67: 7a:51:6a:ff:48:33:30:d9:91:73:5d:02:8f:6b:41: 5b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:45:53:8C:57:C8:BF:EB:75:FF:19:FE:E1:31:14:D9:71:E6:46:5D X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/765025CEC23E11ED80139928C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.146.0/23 IPv6: 2001:df2:e40::/48 Signature Algorithm: sha256WithRSAEncryption 41:62:39:4e:af:21:8e:1f:ad:24:b0:bd:98:ed:56:cc:96:0c: 99:a0:66:1c:02:6a:ff:38:ad:a6:30:b5:98:af:b0:40:9f:aa: 47:f5:36:83:15:05:51:15:f7:79:55:d6:a8:99:92:74:26:52: 25:c8:e5:9f:e3:23:dc:43:57:34:b5:b4:1a:34:8f:a3:05:98: 59:57:fd:25:30:34:1c:3d:42:9b:45:91:4c:a8:b2:3c:46:ca: cf:46:fb:19:0a:72:62:38:41:5f:32:39:d7:3e:40:21:29:28: 7a:c7:17:ac:a7:8a:4b:98:50:8c:c2:4d:11:65:3c:de:4c:89: b9:4d:b0:7f:9d:22:1c:d3:5d:ca:b2:70:02:30:9c:86:56:c0: 7c:0b:1f:70:e6:4d:a4:c9:f0:de:02:a4:e4:3c:c5:c1:a3:e2: d1:3f:9b:8b:6f:f6:b5:d6:6c:a0:45:4e:28:69:d1:d6:69:c2: fe:08:58:fa:c9:1c:c9:c0:1a:11:31:b9:a1:38:88:17:b8:cd: a5:2d:8e:0b:ff:63:75:70:93:97:5a:93:f0:60:ce:1c:e5:42: 63:e8:c0:72:16:4a:b2:d2:7d:58:60:4a:2e:c6:9b:16:6e:3d: ae:82:01:84:9b:c3:53:58:5d:46:94:f1:c5:31:68:59:ea:49: 02:c4:3e:21 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICcP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0NjA4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViY2E0Zi1lZjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNgG+Y/Dz5CrVzFFF1TknkKEhSmfq3eB5LqrCpmvDAZOUPew+RKGaRFCLcs0 +cqNaxi0JMThs0YlVNVqtmgP97m4KL8XS9uiDzvURtZH/ZoIICR982F+AHRa2G+S +PnH7GpFY0NDPcckOIoJHPg59C6nLsGxjKdl4z8usCCqVs2veT/HzgThXHcd3y6K U4Nuyq8HruBkZdkwuN0a/Uy8q/EFPPvLX+BJnCG7Uy+W3/Ed0MyqoB7/M9AtdJfn ETuOe2MHEAExJMDWa+IThFaBROZ/HaeSMHU8q1O40t9xwzxOmX02Qmc/nsH4CgQV N2d6UWr/SDMw2ZFzXQKPa0FbIQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLxFU4xX yL/rdf8Z/uExFNlx5kZdMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNzY1MDI1Q0VD MjNFMTFFRDgwMTM5OTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnY5IwDwQCAAIwCQMHACABDfIOQDANBgkqhkiG9w0BAQsF AAOCAQEAQWI5Tq8hjh+tJLC9mO1WzJYMmaBmHAJq/zitpjC1mK+wQJ+qR/U2gxUF URX3eVXWqJmSdCZSJcjln+Mj3ENXNLW0GjSPowWYWVf9JTA0HD1Cm0WRTKiyPEbK z0b7GQpyYjhBXzI51z5AISkoescXrKeKS5hQjMJNEWU83kyJuU2wf50iHNNdyrJw AjCchlbAfAsfcOZNpMnw3gKk5DzFwaPi0T+bi2/2tdZsoEVOKGnR1mnC/ghY+skc ycAaETG5oTiIF7jNpS2OC/9jdXCTl1qT8GDOHOVCY+jAchZKstJ9WGBKLsabFm49 roIBhJvDU1hdRpTxxTFoWepJAsQ+IQ== -----END CERTIFICATE-----Generated at Sun Apr 28 16:49:25 2024 by rpki-client on console-ams.rpki-client.org