$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7F8B5DE64F4211EB92DC0916C4F9AE02.roa File: 7F8B5DE64F4211EB92DC0916C4F9AE02.roa (raw, json) Hash identifier: dvMjF9fQt/r0sE5HCXvRaHJo8capEknHJVMDxeGFwcM= Subject key identifier: 4C:C3:01:EF:0D:22:13:42:BD:F1:B3:27:09:69:55:27:40:DC:83:85 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6B89 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7F8B5DE64F4211EB92DC0916C4F9AE02.roa Signing time: Wed 10 May 2023 16:20:10 +0000 ROA not before: Wed 10 May 2023 16:20:10 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 135180 IP address blocks: 103.216.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27529 (0x6b89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:20:10 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc439-bab4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:30:b4:b3:64:31:12:45:9d:0f:84:7a:27:c7: 35:6e:58:d8:a8:bf:d4:a1:7f:12:4e:97:7c:6d:b3: f4:76:8a:b0:3a:11:c7:14:03:fd:9d:29:90:2d:dd: 6a:db:bf:bb:98:b7:ef:6a:31:fd:b6:73:ca:e0:6e: a0:d5:a5:44:d2:2e:04:49:70:95:ce:37:94:66:0c: 72:2c:b1:67:86:0e:c7:13:75:bb:91:63:d6:48:22: e0:29:8b:4f:70:55:3d:53:d3:a3:47:78:a2:8f:ca: a9:b2:c0:a2:1e:20:7d:c8:d2:fc:f4:ce:a1:f1:0f: 88:69:fb:89:27:bc:81:12:ea:07:ef:4f:31:2e:54: 0f:b7:67:9d:8a:c9:4f:c3:1b:be:32:5f:61:af:b2: 7d:35:d7:ea:4a:70:3c:88:35:8f:38:2b:08:0c:ce: 9c:25:d5:61:14:75:e1:22:5f:d5:51:30:ed:18:f5: 58:be:b5:c5:47:c0:5d:56:bd:08:6f:e6:6c:ab:57: 3e:9f:98:10:7e:93:11:ee:36:c5:b1:18:35:65:96: cb:24:34:35:10:b7:b1:54:b7:02:2b:ad:f6:af:ef: 3e:b2:7b:62:f8:4d:ba:da:1c:ad:26:8d:23:e9:01: 54:dc:67:39:00:fd:59:94:95:42:1d:fe:f5:f9:5b: d4:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:C3:01:EF:0D:22:13:42:BD:F1:B3:27:09:69:55:27:40:DC:83:85 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7F8B5DE64F4211EB92DC0916C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.216.232.0/22 Signature Algorithm: sha256WithRSAEncryption 13:16:b4:f6:fc:63:1e:05:f2:21:dc:a1:65:8c:97:b1:d9:c8: 01:50:f1:90:30:95:31:e2:37:3a:21:6e:1d:92:9f:15:59:6e: 92:bc:aa:02:5e:26:43:9c:60:f3:9a:ed:b5:3b:ba:44:30:a5: b9:b6:13:bf:c8:ca:b9:69:a3:d9:a7:0c:c1:f4:ed:8c:3d:c3: e1:89:20:3e:b4:a0:4a:87:b6:31:aa:e9:bc:a9:3e:27:b4:63: b0:ea:f7:b4:92:c2:19:f4:42:1e:21:8e:a4:77:d8:ad:74:29: c7:b6:2d:eb:42:06:93:cc:37:a4:55:56:af:96:75:45:9e:b0: 44:5b:87:dd:48:ab:75:4f:b0:d0:40:8d:af:47:2d:96:67:13: 9f:3c:6e:b7:8d:7e:3e:4a:3a:6c:78:22:fc:5f:cf:3e:05:39: 4a:d1:f9:6c:e0:27:79:97:0a:fe:d9:89:de:8a:e6:41:c5:a4: 25:98:9b:3e:98:62:6c:31:ba:77:c3:1a:56:67:f2:6b:bd:6c: 4a:33:ac:81:ea:7d:82:48:b6:0d:96:19:4c:48:00:2f:81:df: 8f:4a:64:35:45:c2:5c:65:50:c1:01:c6:ef:9c:24:4d:0e:3d: b5:aa:bf:58:8e:03:75:f0:b1:36:4a:43:c2:d3:bb:dc:1f:a5: c5:bb:fb:4e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICa4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyMDEwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzQzOS1iYWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8DC0s2QxEkWdD4R6J8c1bljYqL/UoX8STpd8bbP0doqwOhHHFAP9nSmQLd1q 27+7mLfvajH9tnPK4G6g1aVE0i4ESXCVzjeUZgxyLLFnhg7HE3W7kWPWSCLgKYtP cFU9U9OjR3iij8qpssCiHiB9yNL89M6h8Q+IafuJJ7yBEuoH708xLlQPt2edislP wxu+Ml9hr7J9NdfqSnA8iDWPOCsIDM6cJdVhFHXhIl/VUTDtGPVYvrXFR8BdVr0I b+Zsq1c+n5gQfpMR7jbFsRg1ZZbLJDQ1ELexVLcCK632r+8+snti+E262hytJo0j 6QFU3Gc5AP1ZlJVCHf71+VvU3QIDAQABo4IClTCCApEwHQYDVR0OBBYEFEzDAe8N IhNCvfGzJwlpVSdA3IOFMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvN0Y4QjVERTY0 RjQyMTFFQjkyREMwOTE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn2OgwDQYJKoZIhvcNAQELBQADggEBABMWtPb8Yx4F8iHc oWWMl7HZyAFQ8ZAwlTHiNzohbh2SnxVZbpK8qgJeJkOcYPOa7bU7ukQwpbm2E7/I yrlpo9mnDMH07Yw9w+GJID60oEqHtjGq6bypPie0Y7Dq97SSwhn0Qh4hjqR32K10 Kce2LetCBpPMN6RVVq+WdUWesERbh91Iq3VPsNBAja9HLZZnE588breNfj5KOmx4 Ivxfzz4FOUrR+WzgJ3mXCv7Zid6K5kHFpCWYmz6YYmwxunfDGlZn8mu9bEozrIHq fYJItg2WGUxIAC+B349KZDVFwlxlUMEBxu+cJE0OPbWqv1iOA3XwsTZKQ8LTu9wf pcW7+04= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:38 2024 by rpki-client on console-ams.rpki-client.org