$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7764291AEDA211EAA22D521FC4F9AE02.roa File: 7764291AEDA211EAA22D521FC4F9AE02.roa (raw, json) Hash identifier: UG2FGtwdzZ6rN163YHQv0IGSPTKZmfimnf2Yc78rFBQ= Subject key identifier: F6:52:DD:3F:D9:16:00:A3:A8:12:A9:9C:6B:42:4C:00:9B:60:83:F4 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 69F5 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7764291AEDA211EAA22D521FC4F9AE02.roa Signing time: Wed 10 May 2023 16:12:23 +0000 ROA not before: Wed 10 May 2023 16:12:23 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 132515 IP address blocks: 103.120.234.0/23 maxlen: 24 2001:df4:6180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27125 (0x69f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:12:23 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc267-298d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a8:35:ca:64:52:bf:f9:93:bc:2e:ef:4d:69: 5f:7c:6f:21:f4:02:fb:63:79:e3:17:a8:11:88:67: 84:78:7a:73:88:51:a2:06:9b:2b:a8:38:94:c9:e5: c8:7b:f2:19:6f:11:65:63:d6:f3:d5:aa:3e:18:59: 63:05:47:1c:59:95:7c:cb:5f:43:73:f0:f3:c2:dd: 0c:56:e2:dc:8d:21:bd:87:3f:88:94:99:db:ce:8c: bc:36:83:ce:5d:fa:4a:ba:1a:0b:06:37:dd:b5:1e: da:23:47:e4:1d:7d:43:f5:97:6d:20:e0:b2:c8:2e: 08:97:1a:14:8a:1b:c4:78:f7:49:2d:a0:80:95:44: 87:e0:dd:70:57:27:4a:55:15:6b:36:1f:9f:7d:c3: 49:b8:47:af:28:77:37:38:72:1d:78:71:68:80:c0: 33:76:b0:10:6e:0f:39:55:ae:b8:83:0a:60:00:c4: 99:31:2a:d9:21:18:36:64:e6:af:10:45:aa:82:d0: ba:b0:40:ab:03:c5:d3:b5:6e:16:6a:d1:71:ad:e3: 35:56:a9:08:04:f6:b2:f1:f4:62:66:78:58:bc:0f: 06:52:06:68:5c:05:c1:c4:d1:21:f5:c3:5a:a4:45: 23:76:22:4d:f9:2c:49:ae:5c:1f:e8:31:63:1a:48: a8:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:52:DD:3F:D9:16:00:A3:A8:12:A9:9C:6B:42:4C:00:9B:60:83:F4 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7764291AEDA211EAA22D521FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.234.0/23 IPv6: 2001:df4:6180::/48 Signature Algorithm: sha256WithRSAEncryption 77:7f:25:5c:9a:5c:a0:44:88:09:c4:f6:89:82:3c:1e:45:c7: e3:82:69:36:82:2c:75:2a:cc:09:63:88:58:d7:b5:26:ae:39: 1f:97:98:43:4d:58:13:d6:4b:83:01:51:af:2b:c3:91:0a:c7: 3a:1d:9a:30:b5:75:6f:c4:73:83:49:20:c0:d6:41:c3:5f:9d: d6:d5:24:95:44:78:26:ff:93:19:ab:01:3f:58:df:fa:b7:53: 68:cb:80:d1:7e:9c:65:bc:76:5f:28:07:fc:9f:89:99:d1:0c: 1d:75:73:8f:4c:a3:a7:3a:a9:d8:6e:d5:83:3a:64:cf:e1:a1: 3b:1f:c9:9d:43:b7:99:60:8f:aa:59:a3:e4:cc:35:90:07:db: 87:df:d6:92:13:95:b7:27:7e:14:2d:6e:4e:25:e6:e9:3b:ec: b6:0b:2a:9d:57:3d:ad:6d:8c:a0:ce:71:fb:05:43:27:9c:2c: 0d:d8:50:e4:0b:b9:6e:42:23:b8:e4:1f:b9:57:d4:db:d7:75: 66:f5:e1:a9:b2:36:ab:e4:39:eb:15:df:42:a7:70:9f:78:c0: 88:df:ab:ad:6b:d9:0f:52:36:e3:5c:b2:cc:53:b8:ed:ed:c1: 74:84:aa:78:b3:24:be:54:de:ef:3a:96:a9:4e:ef:8e:2a:cc: 08:33:3e:c7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICafUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxMjIzWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzI2Ny0yOThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzKg1ymRSv/mTvC7vTWlffG8h9AL7Y3njF6gRiGeEeHpziFGiBpsrqDiUyeXI e/IZbxFlY9bz1ao+GFljBUccWZV8y19Dc/Dzwt0MVuLcjSG9hz+IlJnbzoy8NoPO XfpKuhoLBjfdtR7aI0fkHX1D9ZdtIOCyyC4IlxoUihvEePdJLaCAlUSH4N1wVydK VRVrNh+ffcNJuEevKHc3OHIdeHFogMAzdrAQbg85Va64gwpgAMSZMSrZIRg2ZOav EEWqgtC6sECrA8XTtW4WatFxreM1VqkIBPay8fRiZnhYvA8GUgZoXAXBxNEh9cNa pEUjdiJN+SxJrlwf6DFjGkioiQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPZS3T/Z FgCjqBKpnGtCTACbYIP0MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNzc2NDI5MUFF REEyMTFFQUEyMkQ1MjFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFneOowDwQCAAIwCQMHACABDfRhgDANBgkqhkiG9w0BAQsF AAOCAQEAd38lXJpcoESICcT2iYI8HkXH44JpNoIsdSrMCWOIWNe1Jq45H5eYQ01Y E9ZLgwFRryvDkQrHOh2aMLV1b8Rzg0kgwNZBw1+d1tUklUR4Jv+TGasBP1jf+rdT aMuA0X6cZbx2XygH/J+JmdEMHXVzj0yjpzqp2G7Vgzpkz+GhOx/JnUO3mWCPqlmj 5Mw1kAfbh9/WkhOVtyd+FC1uTiXm6TvstgsqnVc9rW2MoM5x+wVDJ5wsDdhQ5Au5 bkIjuOQfuVfU29d1ZvXhqbI2q+Q56xXfQqdwn3jAiN+rrWvZD1I241yyzFO47e3B dISqeLMkvlTe7zqWqU7vjirMCDM+xw== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:37 2024 by rpki-client on console-ams.rpki-client.org