$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7E7DE410F3ED11EA99477A4DC4F9AE02.roa File: 7E7DE410F3ED11EA99477A4DC4F9AE02.roa (raw, json) Hash identifier: cLifavyLfoyufOIQ42AeM5FE+L5UdFWFq4lfdPjsF1Y= Subject key identifier: 43:3D:F5:98:19:53:1F:AF:D6:43:A2:38:BF:A5:D2:2B:87:8D:4B:ED Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6E4C Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7E7DE410F3ED11EA99477A4DC4F9AE02.roa Signing time: Wed 10 May 2023 16:33:25 +0000 ROA not before: Wed 10 May 2023 16:33:25 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 140200 IP address blocks: 103.155.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28236 (0x6e4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:33:25 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc754-e142 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:66:2b:58:95:86:61:7c:ff:7b:2a:fb:ff:61: 2f:58:08:60:b4:1c:cf:ee:ea:58:d8:ee:d3:be:e1: 8e:e9:b4:f3:33:bc:2a:76:15:ca:16:9b:ac:5d:f0: f8:86:e7:48:c8:b2:1d:25:a2:b3:7c:5b:4d:d3:51: 5e:c9:17:18:87:ce:c9:8e:7b:02:d0:e4:ba:63:f7: 54:8d:be:3e:48:5a:18:7b:61:6a:5d:39:f6:9a:f3: 44:c1:40:85:29:2e:c2:63:c8:e0:8b:fb:52:27:2a: bd:e4:bb:53:5b:94:fd:fd:98:bd:82:31:f8:da:f8: d8:b1:c1:db:a0:14:d8:5f:19:0c:0b:f5:26:a5:c2: e5:33:06:4f:87:ff:35:96:f6:67:81:9f:d4:5e:d9: 9b:44:94:09:b5:b8:1d:be:d7:08:03:94:a3:40:39: 2f:c6:93:d3:b4:c2:f6:50:99:98:56:66:c1:04:ec: 3b:79:73:c3:a6:2b:c1:30:c6:33:12:ed:00:9c:65: 1a:02:77:e5:52:92:bf:e2:7b:d5:72:1a:5a:2f:1c: e9:7a:af:21:0b:51:60:ca:52:10:a3:d1:84:e5:5c: 3d:53:58:1b:41:43:80:79:83:62:86:da:96:9b:2e: 6b:dd:ca:fc:cf:79:76:3a:8c:06:c6:40:35:95:0c: 93:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:3D:F5:98:19:53:1F:AF:D6:43:A2:38:BF:A5:D2:2B:87:8D:4B:ED X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7E7DE410F3ED11EA99477A4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.138.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:cb:c5:d7:1f:6f:ec:0c:90:44:02:37:78:b4:48:24:8d:95: 40:b3:44:e9:80:34:f5:03:fe:d7:1c:57:95:99:e0:f0:d6:e0: 5d:e6:3f:9a:f0:a9:8c:df:8a:93:5c:4f:f2:e4:7f:4b:e5:ec: c1:3e:c7:c2:59:d7:f2:6b:0b:a3:02:78:fc:1b:66:53:0c:a7: fd:51:4f:7c:bb:da:66:95:cc:3d:5e:51:65:33:03:4e:7b:62: ec:5e:0d:16:de:cd:9c:6e:7a:31:ea:74:b6:de:58:8e:ef:dc: 2c:05:f5:13:89:89:b0:d0:84:2c:4f:d2:c6:90:ea:ab:a7:02: 59:d6:76:b9:35:6d:3f:64:67:f1:36:5d:a0:13:d9:cb:19:df: a9:ac:5d:64:b9:d7:38:8f:f7:9e:8c:ed:04:6d:14:ec:f0:05: e2:19:e0:b5:3d:55:7d:44:2f:c2:18:ab:87:ea:15:27:de:f5: 86:84:81:dd:f3:a4:5c:61:23:29:d9:e2:83:be:10:54:d3:8b: 27:c7:67:d5:8d:3e:6a:d8:d7:e8:bd:2b:79:90:cc:ed:e0:de: 6d:da:bc:8b:f9:80:f3:9d:6e:0b:6e:13:44:69:00:e0:22:1c: 76:34:e9:71:b7:c2:64:6c:43:0a:78:ec:84:b9:02:fd:5a:83: 77:e1:3a:f6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbkwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzMzI1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzc1NC1lMTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmYrWJWGYXz/eyr7/2EvWAhgtBzP7upY2O7TvuGO6bTzM7wqdhXKFpusXfD4 hudIyLIdJaKzfFtN01FeyRcYh87JjnsC0OS6Y/dUjb4+SFoYe2FqXTn2mvNEwUCF KS7CY8jgi/tSJyq95LtTW5T9/Zi9gjH42vjYscHboBTYXxkMC/UmpcLlMwZPh/81 lvZngZ/UXtmbRJQJtbgdvtcIA5SjQDkvxpPTtML2UJmYVmbBBOw7eXPDpivBMMYz Eu0AnGUaAnflUpK/4nvVchpaLxzpeq8hC1FgylIQo9GE5Vw9U1gbQUOAeYNihtqW my5r3cr8z3l2OowGxkA1lQyTgQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEM99ZgZ Ux+v1kOiOL+l0iuHjUvtMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvN0U3REU0MTBG M0VEMTFFQTk5NDc3QTREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnm4owDQYJKoZIhvcNAQELBQADggEBAD7Lxdcfb+wMkEQC N3i0SCSNlUCzROmANPUD/tccV5WZ4PDW4F3mP5rwqYzfipNcT/Lkf0vl7ME+x8JZ 1/JrC6MCePwbZlMMp/1RT3y72maVzD1eUWUzA057YuxeDRbezZxuejHqdLbeWI7v 3CwF9ROJibDQhCxP0saQ6qunAlnWdrk1bT9kZ/E2XaAT2csZ36msXWS51ziP956M 7QRtFOzwBeIZ4LU9VX1EL8IYq4fqFSfe9YaEgd3zpFxhIynZ4oO+EFTTiyfHZ9WN PmrY1+i9K3mQzO3g3m3avIv5gPOdbgtuE0RpAOAiHHY06XG3wmRsQwp47IS5Av1a g3fhOvY= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:38 2024 by rpki-client on console-ams.rpki-client.org