$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/87AABD9450F111ECA06EB23EC4F9AE02.roa File: 87AABD9450F111ECA06EB23EC4F9AE02.roa (raw, json) Hash identifier: 4a8bQ2HX0EdOU6fxMXzFFsEbJSLIYTTwVK7BGRZZsHc= Subject key identifier: 73:0D:68:EA:D6:BA:97:30:A4:A1:FE:C2:70:95:57:0F:BE:8B:46:18 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6FE6 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/87AABD9450F111ECA06EB23EC4F9AE02.roa Signing time: Wed 10 May 2023 16:41:00 +0000 ROA not before: Wed 10 May 2023 16:41:00 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 147218 IP address blocks: 103.176.212.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28646 (0x6fe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:41:00 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc91c-15b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e3:28:3f:3e:c1:57:7c:0b:0a:58:fa:71:bc: d3:79:ef:3f:d5:00:84:46:cd:1b:d0:8a:86:b2:de: 98:fd:94:5f:a8:0f:09:db:37:ca:63:35:dd:ff:5b: 2e:1c:4f:cc:dc:16:91:2e:95:5f:fc:96:3f:e0:9d: 3f:50:11:f5:21:c4:55:32:6a:98:16:89:cf:d6:2c: 59:98:59:a4:64:22:0c:02:40:6a:75:b3:1f:e2:4d: ce:3c:72:75:b0:7f:df:20:f2:52:f2:2c:67:4b:80: d6:b4:28:99:d0:00:b5:92:4c:1a:e4:ab:e2:1a:8c: e9:38:cd:ec:5f:ed:9a:8c:bb:b9:4b:d4:49:7f:85: 68:0d:2f:78:eb:f4:54:f4:e8:9a:ac:86:8d:01:ba: 17:4c:87:c8:37:dc:5e:a4:6c:e8:ea:e2:4e:51:bf: 83:ba:5e:c8:9d:f8:d6:ec:3e:14:ca:ac:bf:21:bf: 98:95:97:f5:31:d1:10:65:d7:a2:99:da:81:7d:31: ee:95:9e:6c:52:d4:c2:a9:0a:da:47:47:15:ce:8a: 28:74:96:df:07:13:8c:82:f7:09:69:ae:f0:87:01: e3:91:5b:27:e5:4d:da:12:79:08:13:76:05:3f:d6: f3:81:e2:5f:33:9c:2d:59:b9:e6:43:bd:c1:7a:a5: e6:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:0D:68:EA:D6:BA:97:30:A4:A1:FE:C2:70:95:57:0F:BE:8B:46:18 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/87AABD9450F111ECA06EB23EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.176.212.0/23 Signature Algorithm: sha256WithRSAEncryption 23:90:9f:89:b8:76:8c:29:be:30:c8:de:45:ea:9c:9f:0d:a8: af:74:0f:70:03:ee:eb:96:d6:a3:77:3a:c9:b4:f1:4c:cd:9e: e4:a4:3c:4a:ad:ea:19:ef:3a:80:62:cf:49:b2:04:ae:9b:5f: bb:0f:a0:7e:2a:cd:3b:a1:64:68:bf:7c:6a:63:04:6b:a1:0d: 46:37:80:20:ce:ff:ad:d6:ea:13:e7:2b:bd:20:a5:28:91:70: 2f:d2:82:16:a9:2a:76:05:3c:72:e3:1d:61:a0:5b:01:2d:04: 20:ae:8e:9c:e3:10:24:8d:59:d3:73:3a:f8:49:2a:a4:49:b8: 27:61:eb:e0:ec:1e:a1:0e:e3:f3:27:b3:56:b2:8f:2f:46:e9: 9d:28:d0:7c:cc:c3:ea:a5:52:6b:46:f2:64:b1:87:6e:66:fe: c7:9c:48:0d:9b:ff:ab:34:66:ec:18:66:a4:4b:12:34:dc:89: 91:43:18:a3:9b:4b:73:af:2f:41:14:ae:81:46:55:ff:96:25: 7b:9b:ad:b1:97:49:42:7b:9a:2b:33:2f:68:c0:35:06:f8:ab: 82:18:6b:7a:9c:64:27:2e:1c:f8:b9:b5:43:90:e9:8f:61:68: a2:92:c4:92:d8:4d:c5:50:7a:96:62:d9:b9:45:52:b3:21:25: 51:44:b1:87 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICb+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0MTAwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzkxYy0xNWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzOMoPz7BV3wLClj6cbzTee8/1QCERs0b0IqGst6Y/ZRfqA8J2zfKYzXd/1su HE/M3BaRLpVf/JY/4J0/UBH1IcRVMmqYFonP1ixZmFmkZCIMAkBqdbMf4k3OPHJ1 sH/fIPJS8ixnS4DWtCiZ0AC1kkwa5KviGozpOM3sX+2ajLu5S9RJf4VoDS946/RU 9OiarIaNAboXTIfIN9xepGzo6uJOUb+Dul7InfjW7D4Uyqy/Ib+YlZf1MdEQZdei mdqBfTHulZ5sUtTCqQraR0cVzooodJbfBxOMgvcJaa7whwHjkVsn5U3aEnkIE3YF P9bzgeJfM5wtWbnmQ73BeqXmhQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHMNaOrW upcwpKH+wnCVVw++i0YYMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvODdBQUJEOTQ1 MEYxMTFFQ0EwNkVCMjNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnsNQwDQYJKoZIhvcNAQELBQADggEBACOQn4m4dowpvjDI 3kXqnJ8NqK90D3AD7uuW1qN3Osm08UzNnuSkPEqt6hnvOoBiz0myBK6bX7sPoH4q zTuhZGi/fGpjBGuhDUY3gCDO/63W6hPnK70gpSiRcC/SghapKnYFPHLjHWGgWwEt BCCujpzjECSNWdNzOvhJKqRJuCdh6+DsHqEO4/Mns1ayjy9G6Z0o0HzMw+qlUmtG 8mSxh25m/secSA2b/6s0ZuwYZqRLEjTciZFDGKObS3OvL0EUroFGVf+WJXubrbGX SUJ7miszL2jANQb4q4IYa3qcZCcuHPi5tUOQ6Y9haKKSxJLYTcVQepZi2blFUrMh JVFEsYc= -----END CERTIFICATE-----Generated at Sun Apr 28 15:51:27 2024 by rpki-client on console-fra.rpki-client.org