$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/78322A364DD211EC89EF6D68C4F9AE02.roa File: 78322A364DD211EC89EF6D68C4F9AE02.roa (raw, json) Hash identifier: Htfemc844+er7AvFhE6yxDaTZFqaTRmhBNhAmiw3qdY= Subject key identifier: 6A:8E:60:E8:86:60:AE:B6:29:B0:92:E3:50:D8:12:6D:2A:4B:1E:43 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6AA3 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/78322A364DD211EC89EF6D68C4F9AE02.roa Signing time: Wed 10 May 2023 16:15:45 +0000 ROA not before: Wed 10 May 2023 16:15:45 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 133678 IP address blocks: 103.122.60.0/24 maxlen: 24 103.122.62.0/23 maxlen: 24 2001:df0:f2c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27299 (0x6aa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:15:45 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc330-c95e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:64:00:06:97:f0:9e:62:4b:54:a0:04:bc:0f: c5:15:64:49:36:45:27:87:44:74:8b:17:57:e9:d1: 60:36:41:7f:14:c7:ee:8d:7d:01:73:74:55:a4:05: 52:23:26:36:e2:bf:22:96:12:45:76:c8:17:42:a4: 81:ab:34:0b:9a:a0:44:05:fa:a2:6d:48:69:b5:05: c0:5c:86:91:7c:3a:d7:c5:2d:3e:f9:96:d5:52:3f: b6:eb:98:ee:d9:5a:a0:16:f9:4e:be:cb:97:04:f8: 85:df:a9:db:36:eb:57:29:9d:9c:52:d4:ef:ac:a3: ab:03:74:ed:40:11:17:da:5b:13:32:f9:1e:0e:e3: 23:4c:37:a1:00:d9:51:77:02:00:67:44:ce:aa:ec: da:8f:2a:cc:33:da:73:19:17:77:ec:c0:4c:95:12: b4:8e:f9:2f:29:79:6c:61:9e:80:90:e1:4e:86:ac: 55:08:06:d5:43:ff:d2:c6:6a:92:fe:45:65:bf:59: a9:03:77:e4:a3:89:f6:38:c6:ed:62:c2:29:60:58: 45:4b:be:e6:3a:e4:40:59:dc:72:73:04:9b:5d:09: be:c0:72:73:73:6d:c7:db:a1:74:19:32:a9:0f:85: fd:3c:e2:83:36:6a:04:71:04:5c:cf:c9:2b:16:c9: be:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:8E:60:E8:86:60:AE:B6:29:B0:92:E3:50:D8:12:6D:2A:4B:1E:43 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/78322A364DD211EC89EF6D68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.122.60.0/24 103.122.62.0/23 IPv6: 2001:df0:f2c0::/48 Signature Algorithm: sha256WithRSAEncryption 00:32:82:de:7a:68:54:1c:98:a7:f1:d8:40:bb:ee:b8:13:d4: 56:39:6b:48:4c:bb:78:53:90:17:ce:44:30:eb:eb:2a:3c:04: 3c:fb:3b:45:51:23:42:cf:5a:a9:3f:3c:99:ac:f0:b9:e9:16: 3f:13:f4:0a:29:c8:ae:74:f3:f5:7b:b8:de:8d:42:78:31:84: 35:d8:44:06:e5:c8:59:bf:6f:e2:6b:36:e7:ca:8f:1d:6f:74: a9:6e:41:d7:44:d9:42:af:4d:53:fd:16:23:56:bf:51:ea:66: 0d:60:25:cb:dd:56:58:b8:be:7f:8a:2a:e5:57:4b:ff:39:99: 5f:30:1d:6c:02:ce:8e:56:8c:67:b0:e9:04:52:d5:92:d3:16: 2b:7d:14:bb:dc:7d:8e:32:93:ec:13:2c:96:41:22:1b:ff:cd: 97:ed:3f:52:43:53:16:4a:c4:d5:77:30:8d:86:1f:fd:04:bd: 6d:37:23:4b:fb:23:5a:76:0a:27:4f:ce:3b:1a:75:70:5f:93: 53:33:a6:80:ae:04:b7:7b:64:3b:e5:fe:4a:5f:04:7a:cd:75: 16:ee:19:13:68:73:3c:48:b8:ff:e9:c1:ca:a0:70:33:13:fc: c6:d8:6f:39:19:73:bf:19:00:5a:b1:02:55:01:b5:28:95:51: c5:ce:6a:ce -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICaqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxNTQ1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzMzMC1jOTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtGQABpfwnmJLVKAEvA/FFWRJNkUnh0R0ixdX6dFgNkF/FMfujX0Bc3RVpAVS IyY24r8ilhJFdsgXQqSBqzQLmqBEBfqibUhptQXAXIaRfDrXxS0++ZbVUj+265ju 2VqgFvlOvsuXBPiF36nbNutXKZ2cUtTvrKOrA3TtQBEX2lsTMvkeDuMjTDehANlR dwIAZ0TOquzajyrMM9pzGRd37MBMlRK0jvkvKXlsYZ6AkOFOhqxVCAbVQ//SxmqS /kVlv1mpA3fko4n2OMbtYsIpYFhFS77mOuRAWdxycwSbXQm+wHJzc23H26F0GTKp D4X9POKDNmoEcQRcz8krFsm+KwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFGqOYOiG YK62KbCS41DYEm0qSx5DMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNzgzMjJBMzY0 REQyMTFFQzg5RUY2RDY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnejwDBAFnej4wDwQCAAIwCQMHACABDfDywDANBgkqhkiG 9w0BAQsFAAOCAQEAADKC3npoVByYp/HYQLvuuBPUVjlrSEy7eFOQF85EMOvrKjwE PPs7RVEjQs9aqT88mazwuekWPxP0CinIrnTz9Xu43o1CeDGENdhEBuXIWb9v4ms2 58qPHW90qW5B10TZQq9NU/0WI1a/UepmDWAly91WWLi+f4oq5VdL/zmZXzAdbALO jlaMZ7DpBFLVktMWK30Uu9x9jjKT7BMslkEiG//Nl+0/UkNTFkrE1XcwjYYf/QS9 bTcjS/sjWnYKJ0/OOxp1cF+TUzOmgK4Et3tkO+X+Sl8Ees11Fu4ZE2hzPEi4/+nB yqBwMxP8xthvORlzvxkAWrECVQG1KJVRxc5qzg== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:37 2024 by rpki-client on console-ams.rpki-client.org