$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7D5AB4BEA11111ECB4D14668C4F9AE02.roa File: 7D5AB4BEA11111ECB4D14668C4F9AE02.roa (raw, json) Hash identifier: pOCyABN1hJ+PbY4CP6Kyf6i+jPxPoDNn9AgPlFuux1Y= Subject key identifier: C2:B6:B6:1E:54:CF:EF:1B:14:02:BE:54:EB:2C:29:96:18:B3:00:07 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 703D Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7D5AB4BEA11111ECB4D14668C4F9AE02.roa Signing time: Wed 10 May 2023 16:42:40 +0000 ROA not before: Wed 10 May 2023 16:42:39 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 149233 IP address blocks: 103.181.66.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 15:26:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28733 (0x703d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:42:39 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc97f-644e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0a:57:da:16:69:c5:0f:28:66:51:f3:ea:ed: 9e:25:c7:0c:87:63:7e:76:ae:c9:c5:e5:d3:46:e9: 65:58:5d:d8:e1:0b:3a:58:24:1c:df:cc:4c:57:5f: 45:df:2b:1d:e9:c7:be:d2:5a:2b:9a:de:cd:3f:83: 47:d7:f8:c6:eb:54:4a:d4:cc:fb:2a:bb:e8:bf:cc: ec:a6:09:a9:f7:fa:6d:cf:b1:1c:5f:a8:1a:18:a4: 16:19:67:77:9d:28:65:67:75:10:25:b7:07:2c:3d: bf:3f:2b:80:20:69:e8:aa:2f:4a:af:2b:7b:9d:71: 44:7b:58:db:e3:a1:4e:e9:3b:74:a8:03:a3:fb:84: 9e:c5:b6:e1:72:b8:3c:88:2a:58:5f:fc:d7:b0:6a: c4:69:51:da:a2:31:30:6d:9c:b6:24:94:33:b4:77: 4b:c9:e1:cc:be:17:ce:d4:16:8f:f9:96:fd:bf:2d: 8a:81:8c:d4:c1:44:0b:b1:a0:70:2b:d9:f6:11:b3: d7:de:11:a8:82:cc:d7:2e:6b:74:c4:7e:6e:03:1a: c7:c1:95:62:2e:a4:70:aa:9c:ec:1a:71:a3:26:4e: e8:d4:12:1b:ea:1d:05:47:d4:cc:32:96:63:72:40: 74:de:78:ea:58:e7:2b:9a:8e:fd:fa:cd:59:fa:0e: da:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:B6:B6:1E:54:CF:EF:1B:14:02:BE:54:EB:2C:29:96:18:B3:00:07 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7D5AB4BEA11111ECB4D14668C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.181.66.0/23 Signature Algorithm: sha256WithRSAEncryption 45:75:a9:af:09:64:09:9b:8c:55:45:26:41:8b:78:d5:c2:1e: 88:f7:8d:a9:7c:08:f6:ca:16:4b:e8:0a:26:1e:ed:2b:db:fa: 3e:4f:06:b5:9a:df:68:0c:55:06:3c:d2:15:61:12:a4:c3:56: 31:46:1f:10:10:c8:a8:bd:5f:5c:c6:2a:37:4b:01:c5:de:51: 3a:bb:99:df:2c:d3:eb:dd:1b:d3:34:30:ee:63:4f:f7:73:40: fc:06:e1:db:31:3e:9b:d0:af:91:b9:fc:01:ec:e3:ae:d8:15: dd:34:dc:97:71:f0:cc:bf:f9:68:ca:08:bf:28:de:2c:73:f3: fe:1c:00:1b:d0:6e:fc:f3:db:b1:b2:d3:d1:d4:d7:bf:fe:01: 54:b9:20:35:27:63:44:20:31:e6:de:55:e2:ec:20:04:82:9b: f3:c9:27:b4:cc:ae:cd:d8:d7:47:0b:1c:0b:49:14:8d:0e:2c: dc:e6:95:1e:0b:e8:0f:98:a5:14:aa:2d:72:2b:bd:8d:e9:58: cb:43:b5:1e:bf:e6:e6:fb:6e:47:3c:19:d6:39:66:20:7c:33: 9d:50:cf:0c:3b:89:43:f5:32:00:de:ad:01:02:a2:c2:a5:a8: 7d:1e:6c:b8:a1:ce:92:6e:28:36:d5:6d:23:44:a9:d7:9b:59: c5:15:34:0b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICcD0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0MjM5WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzk3Zi02NDRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuApX2hZpxQ8oZlHz6u2eJccMh2N+dq7JxeXTRullWF3Y4Qs6WCQc38xMV19F 3ysd6ce+0lormt7NP4NH1/jG61RK1Mz7Krvov8zspgmp9/ptz7EcX6gaGKQWGWd3 nShlZ3UQJbcHLD2/PyuAIGnoqi9Kryt7nXFEe1jb46FO6Tt0qAOj+4Sexbbhcrg8 iCpYX/zXsGrEaVHaojEwbZy2JJQztHdLyeHMvhfO1BaP+Zb9vy2KgYzUwUQLsaBw K9n2EbPX3hGogszXLmt0xH5uAxrHwZViLqRwqpzsGnGjJk7o1BIb6h0FR9TMMpZj ckB03njqWOcrmo79+s1Z+g7a0QIDAQABo4IClTCCApEwHQYDVR0OBBYEFMK2th5U z+8bFAK+VOssKZYYswAHMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvN0Q1QUI0QkVB MTExMTFFQ0I0RDE0NjY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFntUIwDQYJKoZIhvcNAQELBQADggEBAEV1qa8JZAmbjFVF JkGLeNXCHoj3jal8CPbKFkvoCiYe7Svb+j5PBrWa32gMVQY80hVhEqTDVjFGHxAQ yKi9X1zGKjdLAcXeUTq7md8s0+vdG9M0MO5jT/dzQPwG4dsxPpvQr5G5/AHs467Y Fd003Jdx8My/+WjKCL8o3ixz8/4cABvQbvzz27Gy09HU17/+AVS5IDUnY0QgMebe VeLsIASCm/PJJ7TMrs3Y10cLHAtJFI0OLNzmlR4L6A+YpRSqLXIrvY3pWMtDtR6/ 5ub7bkc8GdY5ZiB8M51Qzww7iUP1MgDerQECosKlqH0ebLihzpJuKDbVbSNEqdeb WcUVNAs= -----END CERTIFICATE-----Generated at Sun Apr 28 16:49:26 2024 by rpki-client on console-ams.rpki-client.org