$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/826BEC22BDCC11EAB486CA81C4F9AE02.roa File: 826BEC22BDCC11EAB486CA81C4F9AE02.roa (raw, json) Hash identifier: ypo4iRR/SpuWIRG77gCunH8nv3ESCqrX06PrybH4BpQ= Subject key identifier: 05:E9:45:65:BD:8B:47:8D:B0:F5:E5:4C:33:81:9A:80:FF:FD:A6:ED Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6D7A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/826BEC22BDCC11EAB486CA81C4F9AE02.roa Signing time: Wed 10 May 2023 16:29:32 +0000 ROA not before: Wed 10 May 2023 16:29:32 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 138293 IP address blocks: 103.122.168.0/24 maxlen: 24 103.122.169.0/24 maxlen: 24 103.122.170.0/24 maxlen: 24 2405:ecc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28026 (0x6d7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:29:32 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc66b-e350 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:75:2c:48:30:44:e7:14:1f:c4:03:a5:3e:87: 8d:a6:a2:99:70:a7:e1:95:93:a9:34:1a:db:1c:21: a6:16:ee:85:2f:a2:e9:b5:9c:15:9f:5b:ce:d9:6f: f4:aa:ce:35:08:01:31:06:7e:06:0d:cd:e5:90:b3: e0:85:85:2e:f7:d9:a9:7a:0b:ea:8c:18:91:e1:bc: b9:4e:15:4e:94:f3:6f:a3:f5:fd:34:18:18:aa:ab: e2:b8:4a:7f:c5:3d:dd:a3:0c:b1:e4:99:e6:f8:b4: cf:33:a9:b6:27:63:f3:09:09:04:cb:27:c3:de:0f: 37:64:6e:09:ec:b2:60:63:19:e1:bc:84:41:0a:7b: e9:2e:ea:61:b5:7d:4d:c9:d3:c7:f7:15:ec:17:a6: 61:51:51:0f:57:ae:ee:45:33:a8:e9:6e:12:10:be: fc:9f:80:2b:c4:8c:a8:6b:9a:70:ff:ff:4f:ac:ca: 56:8c:9e:1c:31:cc:88:aa:86:8f:b8:01:22:93:19: 5e:71:56:cb:a2:cc:46:33:80:bd:bb:96:e9:1a:3a: 5c:1e:97:d1:86:fe:9a:97:ad:e2:da:da:6a:9a:42: 42:5e:51:26:64:e3:69:11:0d:9d:62:7c:6b:9e:3b: d8:fc:78:8c:f6:d3:b3:00:a3:98:44:2d:ad:ac:5a: 6b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:E9:45:65:BD:8B:47:8D:B0:F5:E5:4C:33:81:9A:80:FF:FD:A6:ED X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/826BEC22BDCC11EAB486CA81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.122.168.0-103.122.170.255 IPv6: 2405:ecc0::/32 Signature Algorithm: sha256WithRSAEncryption 9f:09:18:fa:0e:cf:c7:bc:9c:f0:e5:fb:60:ca:c4:33:e0:e9: f2:d6:d2:83:9c:3c:4c:02:be:17:0b:bf:cf:a8:7c:0c:8b:bf: dd:c9:82:f7:04:69:92:1e:72:74:b3:01:0d:26:71:6d:ef:a7: e8:cf:30:23:5b:96:31:ad:51:03:46:2e:0e:81:44:12:29:5f: 41:d0:0f:5b:9c:5b:95:89:fc:b6:c1:62:f5:32:fd:b0:d6:98: e4:c0:26:75:67:71:80:33:97:33:99:90:8f:8d:31:f6:4c:36: e7:75:da:39:f6:93:1e:2f:80:11:1b:a5:e7:ce:a9:0a:ff:e2: 06:e2:04:38:48:cb:2a:c3:d5:ac:3a:72:8e:0b:01:cf:9f:ff: 09:4f:92:f5:10:63:f4:f8:4f:7a:13:79:67:e4:26:da:81:f8: c9:81:c5:07:90:b6:f3:ce:6c:bb:87:52:e7:66:29:55:b8:a3: 4d:bd:fc:a2:a7:e0:8a:9c:ca:2b:26:1e:86:ae:e8:5d:20:2e: 5e:71:19:5a:9b:27:7c:48:b6:7e:58:b7:d7:ad:41:16:bd:1d: 25:6b:88:a6:5f:4a:6a:6c:7c:ca:60:f8:03:eb:2a:c8:cd:3a: 43:df:f7:84:b6:a4:43:79:4d:a8:5b:ad:8c:16:00:3a:07:a3: d2:77:ad:05 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICbXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyOTMyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzY2Yi1lMzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHUsSDBE5xQfxAOlPoeNpqKZcKfhlZOpNBrbHCGmFu6FL6LptZwVn1vO2W/0 qs41CAExBn4GDc3lkLPghYUu99mpegvqjBiR4by5ThVOlPNvo/X9NBgYqqviuEp/ xT3dowyx5Jnm+LTPM6m2J2PzCQkEyyfD3g83ZG4J7LJgYxnhvIRBCnvpLuphtX1N ydPH9xXsF6ZhUVEPV67uRTOo6W4SEL78n4ArxIyoa5pw//9PrMpWjJ4cMcyIqoaP uAEikxlecVbLosxGM4C9u5bpGjpcHpfRhv6al63i2tpqmkJCXlEmZONpEQ2dYnxr njvY/HiM9tOzAKOYRC2trFprXQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFAXpRWW9 i0eNsPXlTDOBmoD//abtMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvODI2QkVDMjJC RENDMTFFQUI0ODZDQTgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBQEAgABMA4wDAMEA2d6qAMEAGd6qjANBAIAAjAHAwUAJAXswDANBgkqhkiG 9w0BAQsFAAOCAQEAnwkY+g7Px7yc8OX7YMrEM+Dp8tbSg5w8TAK+Fwu/z6h8DIu/ 3cmC9wRpkh5ydLMBDSZxbe+n6M8wI1uWMa1RA0YuDoFEEilfQdAPW5xblYn8tsFi 9TL9sNaY5MAmdWdxgDOXM5mQj40x9kw253XaOfaTHi+AERul586pCv/iBuIEOEjL KsPVrDpyjgsBz5//CU+S9RBj9PhPehN5Z+Qm2oH4yYHFB5C2885su4dS52YpVbij Tb38oqfgipzKKyYehq7oXSAuXnEZWpsnfEi2fli3161BFr0dJWuIpl9Kamx8ymD4 A+sqyM06Q9/3hLakQ3lNqFutjBYAOgej0netBQ== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:38 2024 by rpki-client on console-ams.rpki-client.org