$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7900469ADE7311ED9E592B1DC4F9AE02.roa File: 7900469ADE7311ED9E592B1DC4F9AE02.roa (raw, json) Hash identifier: PhxOzf0qyjBHxbohd4JMQ/AfKmfO3Jsf9F0iZaIZ2go= Subject key identifier: EE:42:89:B2:B9:F6:83:D5:CF:FA:A5:5B:0E:20:46:58:7B:73:08:77 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6A3A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7900469ADE7311ED9E592B1DC4F9AE02.roa Signing time: Wed 10 May 2023 16:13:44 +0000 ROA not before: Wed 10 May 2023 16:13:44 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 132979 IP address blocks: 103.253.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27194 (0x6a3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:13:44 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc2b8-92a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:5e:cc:a5:42:17:bd:ca:85:45:32:f2:05:7b: a5:30:f7:b6:8e:d7:de:86:c8:fc:53:8f:0b:92:37: 71:5a:6e:36:0d:e3:c2:1c:5f:de:10:14:af:37:74: d7:e8:72:b3:40:8a:c8:3a:ef:66:4a:be:77:33:06: d9:3f:d4:ee:90:14:79:31:d0:da:e4:5f:6f:cd:bc: 74:09:97:aa:ab:d2:3d:5b:63:d6:1f:e9:21:55:b6: b2:23:d7:12:67:e0:54:3f:20:55:9a:57:47:ff:7f: 70:2e:0a:69:1b:ad:28:de:d5:2f:c2:21:ae:03:7f: 20:33:a7:de:9d:d3:64:d0:70:3a:20:d6:db:d7:9d: 31:d4:53:af:a6:ab:e3:0d:55:c7:08:7a:a2:7c:94: 31:07:87:d3:c1:06:a8:22:43:b8:a5:07:d7:5b:cb: 92:6b:a5:9e:18:b1:05:4d:bb:48:d6:88:5e:5c:9d: b8:36:24:a5:13:df:99:8c:46:d5:5f:98:23:92:9b: f4:3e:73:31:91:c0:c1:ee:f8:75:1a:50:05:d6:67: 84:10:dd:9b:da:9f:c0:61:5a:ec:76:83:63:77:db: 83:34:d5:00:27:88:f2:21:f6:f2:65:61:2e:6d:65: ab:86:1c:b0:0c:25:52:a4:b5:d1:08:89:82:28:4e: 5a:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:42:89:B2:B9:F6:83:D5:CF:FA:A5:5B:0E:20:46:58:7B:73:08:77 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7900469ADE7311ED9E592B1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.253.148.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:fa:1e:e8:fa:da:f8:75:ec:c3:f9:6f:60:7e:2c:b5:e1:50: f7:cf:30:44:3b:f9:8a:84:2c:49:fa:e6:a8:1f:17:f7:bb:83: e6:c5:ad:06:86:55:31:0a:9e:91:7f:3e:ed:da:62:ff:44:44: 6d:a4:8c:a3:e5:80:48:94:2c:d1:39:57:ee:8c:c1:dc:22:75: bd:48:84:b3:f8:93:45:7e:68:c7:40:a0:ef:df:52:48:0d:d9: 73:23:c6:51:e8:06:79:d6:c0:7e:5d:01:de:37:15:28:4b:01: 79:88:28:0e:67:19:36:83:16:5f:97:25:8f:49:17:0b:26:ae: b8:b0:ae:61:15:42:81:4e:fb:ed:9d:74:00:11:87:21:f9:00: a5:9e:b6:3e:c5:a3:7e:29:f4:86:68:44:d1:5f:ee:5c:a0:58: f8:da:3f:8f:20:6e:6c:11:e1:7f:b7:e3:4d:99:f4:0a:a0:7c: 52:07:85:b6:29:22:50:95:7f:93:46:9c:08:6b:a1:fe:fd:9b: 38:9c:1f:ab:1d:85:61:69:49:dd:b2:8d:81:78:58:93:cc:fc: 25:66:ca:82:e5:0f:b7:49:8a:1e:8b:97:d0:37:b9:e2:49:e9: 5b:a3:3c:ac:19:87:30:ee:b1:de:e8:29:56:aa:90:0a:fa:54: 65:bc:6e:f8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICajowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxMzQ0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzJiOC05MmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA617MpUIXvcqFRTLyBXulMPe2jtfehsj8U48LkjdxWm42DePCHF/eEBSvN3TX 6HKzQIrIOu9mSr53MwbZP9TukBR5MdDa5F9vzbx0CZeqq9I9W2PWH+khVbayI9cS Z+BUPyBVmldH/39wLgppG60o3tUvwiGuA38gM6fendNk0HA6INbb150x1FOvpqvj DVXHCHqifJQxB4fTwQaoIkO4pQfXW8uSa6WeGLEFTbtI1oheXJ24NiSlE9+ZjEbV X5gjkpv0PnMxkcDB7vh1GlAF1meEEN2b2p/AYVrsdoNjd9uDNNUAJ4jyIfbyZWEu bWWrhhywDCVSpLXRCImCKE5aUQIDAQABo4IClTCCApEwHQYDVR0OBBYEFO5CibK5 9oPVz/qlWw4gRlh7cwh3MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNzkwMDQ2OUFE RTczMTFFRDlFNTkyQjFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn/ZQwDQYJKoZIhvcNAQELBQADggEBABv6Huj62vh17MP5 b2B+LLXhUPfPMEQ7+YqELEn65qgfF/e7g+bFrQaGVTEKnpF/Pu3aYv9ERG2kjKPl gEiULNE5V+6Mwdwidb1IhLP4k0V+aMdAoO/fUkgN2XMjxlHoBnnWwH5dAd43FShL AXmIKA5nGTaDFl+XJY9JFwsmrriwrmEVQoFO++2ddAARhyH5AKWetj7Fo34p9IZo RNFf7lygWPjaP48gbmwR4X+3402Z9AqgfFIHhbYpIlCVf5NGnAhrof79mzicH6sd hWFpSd2yjYF4WJPM/CVmyoLlD7dJih6Ll9A3ueJJ6VujPKwZhzDusd7oKVaqkAr6 VGW8bvg= -----END CERTIFICATE-----Generated at Sun Apr 28 15:51:26 2024 by rpki-client on console-fra.rpki-client.org