$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7B6ED014E5FA11EAB447406FC4F9AE02.roa File: 7B6ED014E5FA11EAB447406FC4F9AE02.roa (raw, json) Hash identifier: 6M2GppXdhuEhTXcaz1v2hR/sjA2uJWpOmhA1blfeZMo= Subject key identifier: D9:DD:82:86:C0:45:AB:CE:92:86:BF:D3:0A:7B:B0:92:A3:B5:EE:4E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6BF9 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7B6ED014E5FA11EAB447406FC4F9AE02.roa Signing time: Wed 10 May 2023 16:22:17 +0000 ROA not before: Wed 10 May 2023 16:22:17 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 135763 IP address blocks: 103.146.156.0/23 maxlen: 24 2400:ec20::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27641 (0x6bf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:22:17 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc4b9-d5b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:86:60:74:36:aa:72:b0:a2:b4:68:7a:f3:7c: 55:18:e6:88:ef:a4:7e:2a:87:84:98:0f:38:0c:c2: 07:02:d5:c8:fd:b9:99:5f:36:70:0b:65:f8:4b:50: 21:9c:9e:04:4a:92:04:d4:ad:94:b8:ad:5e:c7:52: 10:ba:9c:e1:a2:31:13:06:88:cf:f9:bf:fb:19:6d: 2b:2e:57:06:ca:ca:69:da:19:e7:65:0a:16:9d:80: 40:e1:6c:4a:ad:5f:f3:2e:bb:0b:d5:bc:c1:ae:be: a2:62:8b:20:ac:e4:bf:1f:b4:ad:fe:9c:38:1d:4b: 3c:43:f7:1e:df:81:ef:c0:83:f8:c9:2e:a4:5b:4d: 64:5e:0a:c5:8f:ef:be:4b:9a:a0:77:06:0c:32:e8: 63:7a:99:83:fe:4b:a7:24:e8:9b:c4:c3:cc:85:d0: 0e:d0:88:5e:c2:d6:2d:12:d0:16:d3:eb:38:32:0e: 4c:da:b3:75:5c:63:c6:45:13:ab:6d:84:11:7e:c3: da:9c:fb:82:4c:50:55:92:5c:10:75:d9:a5:40:c7: aa:da:52:d7:44:10:c6:e4:27:00:75:ca:d0:24:f2: 12:d3:d0:58:8f:ca:10:33:47:0a:73:11:96:9f:50: 6f:ce:c8:4c:98:91:1f:d1:56:8f:d5:33:71:6e:9e: 0c:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:DD:82:86:C0:45:AB:CE:92:86:BF:D3:0A:7B:B0:92:A3:B5:EE:4E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7B6ED014E5FA11EAB447406FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.156.0/23 IPv6: 2400:ec20::/32 Signature Algorithm: sha256WithRSAEncryption 55:04:4e:f1:45:ae:ad:d6:87:88:73:20:c6:b2:29:58:9b:f6: ac:85:c3:8f:7a:5d:c3:c5:d9:36:c8:c7:b7:13:33:55:4b:aa: 54:9f:ad:1a:7c:c0:d9:cb:7c:86:06:6c:9d:9c:0a:0a:8f:42: 01:07:57:5b:f5:1e:35:ca:26:71:89:19:80:42:23:b6:fc:d6: d7:89:3f:65:56:95:32:1b:2d:cc:23:6d:e9:c1:80:f9:49:2b: fa:43:f2:ec:89:77:e2:bf:a7:5b:ab:f8:71:c7:8d:1e:e4:20: b2:d6:9a:21:07:7c:50:d9:7b:0c:76:ff:76:bf:4a:cc:a1:33: 61:23:db:9f:a8:f4:d0:21:db:07:46:db:9c:b0:bc:fc:61:36: e0:3c:e6:3b:20:2b:ef:08:05:b4:cc:72:11:80:c3:94:66:be: b8:c8:7b:35:27:a0:65:17:f5:6f:2a:68:bc:02:14:5d:77:c6: ca:e2:fa:f9:b5:61:6f:38:f7:95:19:dd:e5:8a:b0:7c:44:cc: 67:cb:40:36:68:a1:ee:9e:56:bd:6e:57:ec:04:91:20:44:20: e6:b4:09:06:61:0f:13:a5:db:19:ef:91:37:c8:0b:88:74:13: d6:c3:f9:5b:c0:25:64:4e:94:b8:2f:2d:4f:bc:7d:d1:b2:15: 1a:c0:0f:78 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICa/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyMjE3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzRiOS1kNWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYZgdDaqcrCitGh683xVGOaI76R+KoeEmA84DMIHAtXI/bmZXzZwC2X4S1Ah nJ4ESpIE1K2UuK1ex1IQupzhojETBojP+b/7GW0rLlcGyspp2hnnZQoWnYBA4WxK rV/zLrsL1bzBrr6iYosgrOS/H7St/pw4HUs8Q/ce34HvwIP4yS6kW01kXgrFj+++ S5qgdwYMMuhjepmD/kunJOibxMPMhdAO0IhewtYtEtAW0+s4Mg5M2rN1XGPGRROr bYQRfsPanPuCTFBVklwQddmlQMeq2lLXRBDG5CcAdcrQJPIS09BYj8oQM0cKcxGW n1BvzshMmJEf0VaP1TNxbp4MXQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNndgobA RavOkoa/0wp7sJKjte5OMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvN0I2RUQwMTRF NUZBMTFFQUI0NDc0MDZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnkpwwDQQCAAIwBwMFACQA7CAwDQYJKoZIhvcNAQELBQAD ggEBAFUETvFFrq3Wh4hzIMayKVib9qyFw496XcPF2TbIx7cTM1VLqlSfrRp8wNnL fIYGbJ2cCgqPQgEHV1v1HjXKJnGJGYBCI7b81teJP2VWlTIbLcwjbenBgPlJK/pD 8uyJd+K/p1ur+HHHjR7kILLWmiEHfFDZewx2/3a/SsyhM2Ej25+o9NAh2wdG25yw vPxhNuA85jsgK+8IBbTMchGAw5RmvrjIezUnoGUX9W8qaLwCFF13xsri+vm1YW84 95UZ3eWKsHxEzGfLQDZooe6eVr1uV+wEkSBEIOa0CQZhDxOl2xnvkTfIC4h0E9bD +VvAJWROlLgvLU+8fdGyFRrAD3g= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:38 2024 by rpki-client on console-ams.rpki-client.org