$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7CFD5B3C463011EEB5F19B5BC4F9AE02.roa File: 7CFD5B3C463011EEB5F19B5BC4F9AE02.roa (raw, json) Hash identifier: 65pslSUeqw/WivnrTXgCi3SVB9oM6oznGS8PwS2C0ks= Subject key identifier: 23:0A:C3:2A:BD:38:9E:A2:6B:46:92:C2:76:17:D9:FB:33:D8:0A:4F Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 78DC Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7CFD5B3C463011EEB5F19B5BC4F9AE02.roa Signing time: Tue 29 Aug 2023 05:54:16 +0000 ROA not before: Tue 29 Aug 2023 05:54:16 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 137095 IP address blocks: 103.113.64.0/22 maxlen: 24 2407:6240::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30940 (0x78dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Aug 29 05:54:16 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64ed8808-edee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:76:9b:a0:e3:86:51:76:b8:55:fe:74:5a:3e: b6:3c:8f:b7:81:bd:69:d2:15:7e:87:32:20:70:b8: c6:89:e9:c0:5b:c2:4e:67:17:37:dc:c9:d8:af:b9: 88:39:b0:f5:39:65:81:1c:97:a5:29:c3:05:33:e5: 3e:96:86:9c:56:3f:4f:45:2b:65:2d:58:8e:b9:50: 3e:e6:05:85:a7:64:4e:9a:c3:9d:c3:a1:db:e7:55: 65:33:6c:b0:0f:b6:b0:33:85:4f:8e:36:82:61:45: a7:a9:52:9c:d9:05:b4:f8:5c:8c:7b:92:65:6f:81: 8e:ec:e6:2d:5c:bd:57:bb:c5:31:59:72:b0:8f:ae: b8:d5:72:32:84:40:f0:37:77:db:f4:fd:43:90:bc: 52:bc:bc:64:9e:3c:4f:55:ca:f6:53:7f:15:0f:23: 3c:6e:95:fe:fc:b6:da:57:06:18:84:8b:b6:fc:8d: 8c:ce:39:d8:0b:68:6f:38:b1:20:18:df:db:12:c4: 54:f0:e1:2f:d7:9a:a5:85:a1:69:07:e2:5b:1b:ae: 1d:48:ff:da:66:90:11:2a:b8:41:0a:25:53:ef:b2: ae:23:3f:a0:3f:fa:19:26:e2:c9:15:0e:d8:8d:9c: bc:11:c5:65:a1:60:39:97:08:2b:ca:44:40:b8:ed: 9c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:0A:C3:2A:BD:38:9E:A2:6B:46:92:C2:76:17:D9:FB:33:D8:0A:4F X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7CFD5B3C463011EEB5F19B5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.113.64.0/22 IPv6: 2407:6240::/32 Signature Algorithm: sha256WithRSAEncryption 31:12:0f:73:44:23:9b:9e:17:c7:e0:3b:57:9e:e6:7a:3a:64: 72:50:ad:65:4b:c9:5a:d1:b5:69:6c:25:d6:df:7c:69:c3:5d: c9:4a:80:7a:35:02:9e:28:e7:0d:ea:d9:cb:0c:b7:3c:73:e8: 6a:fe:63:69:5d:75:ef:93:72:23:f6:a5:28:12:ef:dc:13:43: e8:6e:05:47:e1:e3:aa:e7:1d:ba:18:e8:72:da:e7:6d:e4:71: 82:6a:70:a0:f6:2a:52:0b:39:17:d6:9b:8e:98:a4:c4:b4:e7: af:09:85:3b:ee:60:ea:34:bc:5d:b7:ba:68:6c:cd:d7:3d:3b: b9:15:c6:a9:03:a5:ed:63:eb:10:c5:bd:8c:d0:b6:d0:9d:25: 19:c5:05:7f:59:2c:e8:31:76:19:06:f5:44:a0:5d:e1:dd:ad: b7:02:98:8f:a1:95:b9:16:45:05:4a:02:ba:05:60:fd:4f:bd: 6a:84:2b:66:f9:97:3e:2c:78:3b:f0:40:1d:56:7b:fb:ed:2d: f2:7d:0b:70:c8:48:08:9b:38:2a:bc:f6:24:b8:c8:e2:d3:9c: 75:4a:97:a3:0f:35:13:7c:c8:f6:33:8e:2e:1b:1a:98:dd:b5: e3:2f:b3:21:39:90:a2:01:f9:57:4a:e1:84:fb:3c:38:99:d0: 6d:42:a9:cf -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICeNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwODI5MDU1NDE2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVkODgwOC1lZGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlHaboOOGUXa4Vf50Wj62PI+3gb1p0hV+hzIgcLjGienAW8JOZxc33MnYr7mI ObD1OWWBHJelKcMFM+U+loacVj9PRStlLViOuVA+5gWFp2ROmsOdw6Hb51VlM2yw D7awM4VPjjaCYUWnqVKc2QW0+FyMe5Jlb4GO7OYtXL1Xu8UxWXKwj6641XIyhEDw N3fb9P1DkLxSvLxknjxPVcr2U38VDyM8bpX+/LbaVwYYhIu2/I2MzjnYC2hvOLEg GN/bEsRU8OEv15qlhaFpB+JbG64dSP/aZpARKrhBCiVT77KuIz+gP/oZJuLJFQ7Y jZy8EcVloWA5lwgrykRAuO2cSQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCMKwyq9 OJ6ia0aSwnYX2fsz2ApPMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvN0NGRDVCM0M0 NjMwMTFFRUI1RjE5QjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJncUAwDQQCAAIwBwMFACQHYkAwDQYJKoZIhvcNAQELBQAD ggEBADESD3NEI5ueF8fgO1ee5no6ZHJQrWVLyVrRtWlsJdbffGnDXclKgHo1Ap4o 5w3q2csMtzxz6Gr+Y2ldde+TciP2pSgS79wTQ+huBUfh46rnHboY6HLa523kcYJq cKD2KlILORfWm46YpMS0568JhTvuYOo0vF23umhszdc9O7kVxqkDpe1j6xDFvYzQ ttCdJRnFBX9ZLOgxdhkG9USgXeHdrbcCmI+hlbkWRQVKAroFYP1PvWqEK2b5lz4s eDvwQB1We/vtLfJ9C3DISAibOCq89iS4yOLTnHVKl6MPNRN8yPYzji4bGpjdteMv syE5kKIB+VdK4YT7PDiZ0G1Cqc8= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:38 2024 by rpki-client on console-ams.rpki-client.org