$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7BDA8A9E059211EC9D42C582C4F9AE02.roa File: 7BDA8A9E059211EC9D42C582C4F9AE02.roa (raw, json) Hash identifier: U30KrOebKwR2MHQWmXk4jdquTSur06YA2CfRipdsesg= Subject key identifier: B6:A7:6C:77:FF:B7:0E:14:12:8B:8B:90:27:E0:D7:5B:96:69:91:9E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6FC0 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7BDA8A9E059211EC9D42C582C4F9AE02.roa Signing time: Wed 10 May 2023 16:40:18 +0000 ROA not before: Wed 10 May 2023 16:40:18 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 146920 IP address blocks: 103.171.130.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28608 (0x6fc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:40:18 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc8f2-3ecb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f9:f6:d7:24:cd:55:86:cb:61:98:eb:d6:2f: 84:f6:f1:65:43:eb:24:12:77:1c:ed:e8:b6:56:e1: 0d:c9:ac:71:e1:6b:db:d6:47:8b:cf:bb:01:19:ef: 08:76:81:69:ec:31:23:fa:4f:cb:c1:01:f2:39:41: 57:51:62:67:6c:50:9d:3d:e8:07:5c:4b:95:9b:37: 39:68:ba:56:ec:14:27:f6:06:cb:80:22:1d:e8:9f: b6:d2:15:2d:f7:73:fa:95:33:bc:93:8b:c7:93:05: 2d:f9:5e:4a:f6:e6:38:30:ba:1a:e0:89:28:21:88: 1e:1d:41:48:ec:18:4a:08:2c:4b:6a:4f:3a:5d:e3: e8:7a:65:57:22:56:b6:a5:db:de:b2:af:58:f4:c3: c4:a1:7c:b1:9e:13:f9:87:f8:a7:5c:d4:bf:c8:3a: 6e:89:42:69:0d:f0:89:ca:6d:6e:b4:da:28:0c:0a: 3e:28:21:e0:8f:04:cd:a3:37:ff:c4:07:f5:62:ac: af:62:e0:fc:27:89:01:07:fd:00:b0:ec:f2:f3:5a: 6c:10:0a:c3:b8:3d:20:bb:7b:83:de:30:3d:6c:98: f0:3b:ab:37:db:b0:8f:bc:10:c0:ad:12:f4:2a:21: 50:08:12:31:ad:59:a1:37:8a:af:9b:a9:00:88:d0: 99:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:A7:6C:77:FF:B7:0E:14:12:8B:8B:90:27:E0:D7:5B:96:69:91:9E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7BDA8A9E059211EC9D42C582C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.171.130.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:62:7f:cd:91:57:e2:9b:75:05:4a:39:15:65:86:90:48:7d: 03:a4:65:ef:eb:f8:4e:fa:00:48:92:86:69:8d:99:20:e8:78: 09:54:45:17:ef:e5:08:f5:b5:c6:c1:05:27:8e:9f:4e:08:33: ff:3d:c7:37:dd:8a:0d:e5:5d:db:cd:8c:9c:70:ba:8d:f4:69: 1b:32:30:41:64:cd:3a:7d:bd:0c:9f:d3:ba:c8:48:58:5e:b9: 27:25:70:a7:f3:6f:5b:83:76:b8:9c:e0:b6:b0:95:cf:88:98: b3:91:75:98:75:7a:c1:1e:9d:58:be:7e:f0:8a:87:14:31:5f: 90:54:0d:7d:ef:ec:6d:84:0d:3d:59:46:ab:8f:e6:df:33:c8: 91:19:0f:ed:a8:f1:84:e2:94:fc:03:66:38:e2:59:67:97:e6: 37:c0:47:9e:2e:52:55:4f:af:38:14:56:a6:f2:2a:b9:03:30: 72:b7:46:c4:27:7e:4b:d1:aa:99:0d:25:4f:54:41:29:db:d3: 50:d5:59:ff:94:f1:10:9e:7e:c9:c5:8f:07:a9:39:28:ee:c6: 45:26:60:92:6e:a5:7b:1f:2b:3d:4d:fe:02:53:f3:0c:8a:1c: cc:79:1d:4e:4b:c0:9f:14:cb:61:9d:2d:6a:06:ea:2c:07:25: a7:42:dd:da -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICb8AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0MDE4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzhmMi0zZWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwPn21yTNVYbLYZjr1i+E9vFlQ+skEncc7ei2VuENyaxx4Wvb1keLz7sBGe8I doFp7DEj+k/LwQHyOUFXUWJnbFCdPegHXEuVmzc5aLpW7BQn9gbLgCId6J+20hUt 93P6lTO8k4vHkwUt+V5K9uY4MLoa4IkoIYgeHUFI7BhKCCxLak86XePoemVXIla2 pdvesq9Y9MPEoXyxnhP5h/inXNS/yDpuiUJpDfCJym1utNooDAo+KCHgjwTNozf/ xAf1YqyvYuD8J4kBB/0AsOzy81psEArDuD0gu3uD3jA9bJjwO6s327CPvBDArRL0 KiFQCBIxrVmhN4qvm6kAiNCZEwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLanbHf/ tw4UEouLkCfg11uWaZGeMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvN0JEQThBOUUw NTkyMTFFQzlENDJDNTgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnq4IwDQYJKoZIhvcNAQELBQADggEBAD1if82RV+KbdQVK ORVlhpBIfQOkZe/r+E76AEiShmmNmSDoeAlURRfv5Qj1tcbBBSeOn04IM/89xzfd ig3lXdvNjJxwuo30aRsyMEFkzTp9vQyf07rISFheuSclcKfzb1uDdric4Lawlc+I mLORdZh1esEenVi+fvCKhxQxX5BUDX3v7G2EDT1ZRquP5t8zyJEZD+2o8YTilPwD ZjjiWWeX5jfAR54uUlVPrzgUVqbyKrkDMHK3RsQnfkvRqpkNJU9UQSnb01DVWf+U 8RCefsnFjwepOSjuxkUmYJJupXsfKz1N/gJT8wyKHMx5HU5LwJ8Uy2GdLWoG6iwH JadC3do= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:38 2024 by rpki-client on console-ams.rpki-client.org