$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8CBA3FF27D1111EC8D94E43BC4F9AE02.roa File: 8CBA3FF27D1111EC8D94E43BC4F9AE02.roa (raw, json) Hash identifier: lpoO/KrEVMPUliN57j6zijxq7MB4IlmgvKxk3WTRaeo= Subject key identifier: 6F:0E:3B:AF:D7:3D:45:30:4A:2B:54:EC:3A:D3:BA:23:F8:74:AE:CC Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6FE4 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8CBA3FF27D1111EC8D94E43BC4F9AE02.roa Signing time: Wed 10 May 2023 16:40:58 +0000 ROA not before: Wed 10 May 2023 16:40:58 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 147216 IP address blocks: 103.175.32.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28644 (0x6fe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:40:58 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc91a-af29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:74:9e:5a:33:72:04:49:36:73:b6:ab:d0:91: 70:e7:59:57:a8:59:d1:70:7a:63:4c:8a:02:9c:26: 1c:c1:a4:18:0b:3d:44:ec:94:55:84:c5:24:b2:e9: 1b:ff:c6:e6:49:d8:80:86:18:4a:67:fd:fd:1e:47: 5a:17:36:fe:f2:57:76:80:34:4b:ad:b6:9c:5b:31: 20:1d:36:47:92:8f:c4:bc:53:22:59:64:28:c9:b8: ca:fa:0c:a5:d2:15:34:45:5f:16:f5:e3:55:6d:b4: 40:a5:96:b0:64:a9:5b:78:fc:4d:11:90:a5:c5:9b: d2:22:66:3f:8d:46:e4:dc:00:91:44:79:67:06:ea: d2:57:6b:d2:ab:d8:c9:f7:e9:1f:1a:20:59:9d:7e: 57:35:b3:11:9d:3f:3a:cd:ce:fc:77:3d:c7:4f:b7: a8:84:47:8e:2f:d8:03:a2:dc:70:ab:0f:e3:92:a3: 86:48:3e:ed:1f:09:20:13:d9:97:23:18:09:0e:a8: 0f:c2:b5:d1:0f:57:ae:2b:cd:b1:c2:aa:23:5f:ee: 4d:c2:7f:5d:f2:90:cb:fe:f9:00:1e:b9:4b:05:48: 91:33:df:cf:c2:98:16:71:0a:97:8c:ae:5e:a7:35: d4:9d:f6:9c:34:95:93:bf:c1:31:a6:7e:13:0f:95: 29:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:0E:3B:AF:D7:3D:45:30:4A:2B:54:EC:3A:D3:BA:23:F8:74:AE:CC X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8CBA3FF27D1111EC8D94E43BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.175.32.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:ad:8a:ac:04:f3:19:4a:11:28:e1:56:b0:27:c9:2b:e2:af: 6b:c1:aa:73:c0:e7:dc:f7:b9:f5:05:68:4e:85:1d:e5:61:56: 81:38:3d:bc:54:30:12:56:e1:7d:59:9b:12:a2:93:3d:39:83: 0a:72:1f:32:9b:a9:8e:fa:5f:c7:8b:06:81:9e:6b:21:99:72: 1b:bf:cd:b4:4a:22:d7:32:6e:7c:31:4f:89:a8:7d:19:4a:d9: 3f:34:65:a7:8d:1a:7c:a6:69:65:4a:ee:27:30:6a:6c:45:c4: 94:11:4e:83:3f:4c:44:ae:77:43:06:ed:33:63:09:d3:66:63: e2:e0:9c:4f:2c:e2:d4:f9:b0:3a:8e:b3:37:5c:62:e6:91:99: 1a:97:92:d3:21:95:ef:f2:bb:91:04:be:01:69:6a:08:85:67: cb:14:3d:29:55:4d:73:84:26:95:e2:29:d3:80:47:e9:5d:d3: 17:76:ec:7e:96:55:89:d9:a9:2a:5d:f2:97:5c:f2:28:77:53: 61:c8:6e:50:b5:47:f1:85:71:74:9e:2b:65:c3:e2:7b:a4:b3: 7b:64:ca:51:71:cf:77:e3:46:6d:36:b4:49:02:37:8b:1c:ab: ac:36:df:36:e7:1f:0b:3e:8e:2d:29:22:57:65:21:4a:90:06: 32:79:44:72 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICb+QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0MDU4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzkxYS1hZjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA13SeWjNyBEk2c7ar0JFw51lXqFnRcHpjTIoCnCYcwaQYCz1E7JRVhMUksukb /8bmSdiAhhhKZ/39HkdaFzb+8ld2gDRLrbacWzEgHTZHko/EvFMiWWQoybjK+gyl 0hU0RV8W9eNVbbRApZawZKlbePxNEZClxZvSImY/jUbk3ACRRHlnBurSV2vSq9jJ 9+kfGiBZnX5XNbMRnT86zc78dz3HT7eohEeOL9gDotxwqw/jkqOGSD7tHwkgE9mX IxgJDqgPwrXRD1euK82xwqojX+5Nwn9d8pDL/vkAHrlLBUiRM9/PwpgWcQqXjK5e pzXUnfacNJWTv8Expn4TD5UprQIDAQABo4IClTCCApEwHQYDVR0OBBYEFG8OO6/X PUUwSitU7DrTuiP4dK7MMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOENCQTNGRjI3 RDExMTFFQzhEOTRFNDNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnryAwDQYJKoZIhvcNAQELBQADggEBAJqtiqwE8xlKESjh VrAnySvir2vBqnPA59z3ufUFaE6FHeVhVoE4PbxUMBJW4X1ZmxKikz05gwpyHzKb qY76X8eLBoGeayGZchu/zbRKItcybnwxT4mofRlK2T80ZaeNGnymaWVK7icwamxF xJQRToM/TESud0MG7TNjCdNmY+LgnE8s4tT5sDqOszdcYuaRmRqXktMhle/yu5EE vgFpagiFZ8sUPSlVTXOEJpXiKdOAR+ld0xd27H6WVYnZqSpd8pdc8ih3U2HIblC1 R/GFcXSeK2XD4nuks3tkylFxz3fjRm02tEkCN4scq6w23zbnHws+ji0pIldlIUqQ BjJ5RHI= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:39 2024 by rpki-client on console-ams.rpki-client.org