$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7686D8C64DD211EC89EF6D68C4F9AE02.roa File: 7686D8C64DD211EC89EF6D68C4F9AE02.roa (raw, json) Hash identifier: ibWF9Sie7Vp38lHXAXvdqnIT9844kvjZb89yb7TmLus= Subject key identifier: 2A:93:77:4C:B0:27:7E:7E:35:1E:5F:8D:7F:02:08:DF:B2:E5:65:D8 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6DDE Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7686D8C64DD211EC89EF6D68C4F9AE02.roa Signing time: Wed 10 May 2023 16:31:25 +0000 ROA not before: Wed 10 May 2023 16:31:25 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 139511 IP address blocks: 103.146.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28126 (0x6dde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:31:25 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc6dd-8089 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d3:52:a7:b0:75:1e:0c:65:0f:ac:84:b9:16: 8f:64:ce:64:8e:5d:8b:38:a3:4f:41:80:8c:70:62: be:46:a9:b9:12:ae:e6:ef:cf:6a:90:e0:0c:0d:94: 91:41:bc:13:54:ff:7c:f2:e9:70:b0:25:2f:b8:6c: 16:cf:f7:77:9d:fb:49:81:d6:42:d0:00:04:75:50: be:3e:48:97:d2:d9:0f:11:37:0a:af:9f:95:eb:a0: 81:d1:88:39:c1:a9:02:fd:ae:64:49:eb:43:d8:12: 93:4b:96:7c:0c:57:04:05:1f:c1:1e:0b:1b:3e:9a: e5:01:ef:2c:d4:13:4d:eb:56:15:ee:b1:83:cd:95: 2e:76:94:ac:08:9d:58:a6:ed:e0:62:a8:17:1c:6a: a1:a7:f3:c6:cc:c4:22:99:fc:c0:24:c8:b2:a1:e5: 1d:56:e7:8d:21:19:05:e7:59:84:e7:81:ef:83:e5: b0:26:e4:01:a5:5b:9f:87:a1:5a:c6:34:1d:70:21: 68:77:83:61:51:93:15:0b:42:df:e6:b2:8f:da:4a: 11:15:80:ec:f7:78:c7:8a:30:6b:fd:d0:15:41:92: 45:dc:22:cf:c0:2b:d9:10:ef:f4:df:db:a6:f6:78: fa:ac:96:10:ac:8a:f5:f7:74:78:99:c0:13:c1:dc: 67:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:93:77:4C:B0:27:7E:7E:35:1E:5F:8D:7F:02:08:DF:B2:E5:65:D8 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7686D8C64DD211EC89EF6D68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.172.0/23 Signature Algorithm: sha256WithRSAEncryption ba:5c:55:29:1b:3d:f4:0e:0b:6c:68:89:a7:77:77:92:a2:3d: 00:4a:07:04:ce:5a:0a:33:be:3d:73:b7:41:c7:2d:54:dd:20: cd:6f:5b:88:d1:da:40:13:99:0e:cc:9b:de:72:00:c7:08:7d: 05:35:3e:ca:5b:d1:9f:c1:bb:48:6d:9d:ee:7b:d5:1c:e8:62: 4d:7e:c8:14:d1:bd:ca:58:66:1a:57:52:19:33:e5:f5:1e:66: ef:c4:ed:bc:b8:29:32:8a:7d:ef:17:ee:1e:44:73:63:bf:77: 34:6f:ea:7b:87:a6:3d:8e:60:ae:bb:b3:b1:81:31:39:16:05: de:52:c8:0d:b4:ca:53:84:09:cb:e6:d2:ae:6e:f9:f2:78:8f: 4f:67:e9:88:23:66:5c:af:9b:cd:98:8a:fd:95:61:7a:21:51: d7:0c:26:fb:67:02:40:a4:00:3e:af:d3:bc:a7:d7:d7:cf:d3: 32:b3:55:8f:a3:1d:bd:7e:17:85:7b:d3:28:ec:e6:3e:95:9a: e9:96:12:aa:74:b8:74:82:79:6e:64:9a:18:34:b2:0d:2e:70: 32:69:47:a5:69:d2:dc:b0:04:01:0e:ab:4c:bc:55:2c:02:47: 28:33:43:1c:36:1f:dd:52:83:79:bd:26:95:4e:0e:04:68:53: ce:b3:1f:95 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzMTI1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzZkZC04MDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn9NSp7B1HgxlD6yEuRaPZM5kjl2LOKNPQYCMcGK+Rqm5Eq7m789qkOAMDZSR QbwTVP988ulwsCUvuGwWz/d3nftJgdZC0AAEdVC+PkiX0tkPETcKr5+V66CB0Yg5 wakC/a5kSetD2BKTS5Z8DFcEBR/BHgsbPprlAe8s1BNN61YV7rGDzZUudpSsCJ1Y pu3gYqgXHGqhp/PGzMQimfzAJMiyoeUdVueNIRkF51mE54Hvg+WwJuQBpVufh6Fa xjQdcCFod4NhUZMVC0Lf5rKP2koRFYDs93jHijBr/dAVQZJF3CLPwCvZEO/039um 9nj6rJYQrIr193R4mcATwdxnOwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCqTd0yw J35+NR5fjX8CCN+y5WXYMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNzY4NkQ4QzY0 REQyMTFFQzg5RUY2RDY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkqwwDQYJKoZIhvcNAQELBQADggEBALpcVSkbPfQOC2xo iad3d5KiPQBKBwTOWgozvj1zt0HHLVTdIM1vW4jR2kATmQ7Mm95yAMcIfQU1Pspb 0Z/Bu0htne571RzoYk1+yBTRvcpYZhpXUhkz5fUeZu/E7by4KTKKfe8X7h5Ec2O/ dzRv6nuHpj2OYK67s7GBMTkWBd5SyA20ylOECcvm0q5u+fJ4j09n6YgjZlyvm82Y iv2VYXohUdcMJvtnAkCkAD6v07yn19fP0zKzVY+jHb1+F4V70yjs5j6VmumWEqp0 uHSCeW5kmhg0sg0ucDJpR6Vp0tywBAEOq0y8VSwCRygzQxw2H91Sg3m9JpVODgRo U86zH5U= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:37 2024 by rpki-client on console-ams.rpki-client.org