$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8E72437EA91311ED9E2AC948C4F9AE02.roa File: 8E72437EA91311ED9E2AC948C4F9AE02.roa (raw, json) Hash identifier: W0Zu5oq1JWY000/A7hSh7OnxVjrtuDBjI3lbD7YuoLk= Subject key identifier: 85:BD:E4:5A:64:8F:91:B3:FB:95:DE:A4:B8:D3:EE:2D:B8:1B:56:54 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6CBE Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8E72437EA91311ED9E2AC948C4F9AE02.roa Signing time: Wed 10 May 2023 16:26:02 +0000 ROA not before: Wed 10 May 2023 16:26:02 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136719 IP address blocks: 103.102.100.0/23 maxlen: 24 103.102.102.0/23 maxlen: 24 2400:f560::/32 maxlen: 32 2400:f560::/33 maxlen: 33 2400:f560:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27838 (0x6cbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:26:02 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc599-b0ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ae:9f:08:2c:b2:77:f7:bd:cd:1c:a1:a9:b8: 38:c1:0e:9b:fc:4d:1c:c2:20:91:f0:af:a3:0c:6b: f8:14:6d:c1:4a:7e:f1:13:42:20:cc:02:42:8b:b0: 48:bb:28:f4:9c:11:71:30:1d:5d:95:ec:e3:4c:f1: 25:43:d2:e3:32:a7:6a:86:dd:6c:1e:3c:90:93:6b: 89:76:5e:e5:9e:e6:18:0b:35:24:a3:a2:8b:0a:cc: 7e:c6:72:80:0c:ae:e2:2e:93:19:98:cb:2c:bf:87: 9b:61:31:28:5c:f3:cc:33:3a:e6:ed:2c:90:5b:11: 9b:21:d0:e2:b1:50:18:3b:d6:2c:1a:62:3a:6e:6d: 15:81:f9:e4:23:41:57:4c:12:ec:bf:05:4c:16:f7: 1a:6a:34:e9:17:39:48:87:ec:82:f4:6c:99:d3:70: 7e:b1:e4:e7:44:eb:32:10:87:26:e0:d1:0e:95:a7: b6:8a:41:a5:48:2e:9d:1e:a6:ae:85:58:f4:52:b8: a4:13:4d:db:dd:23:a5:d7:01:4d:45:bb:97:92:65: a4:82:80:7c:2e:6e:24:76:01:e3:58:43:71:d6:f9: 27:7c:72:fc:a2:17:02:94:c1:71:db:e2:08:16:8a: 4e:2b:1d:4c:93:37:9b:14:71:2c:74:be:0a:9f:31: ca:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:BD:E4:5A:64:8F:91:B3:FB:95:DE:A4:B8:D3:EE:2D:B8:1B:56:54 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8E72437EA91311ED9E2AC948C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.102.100.0/22 IPv6: 2400:f560::/32 Signature Algorithm: sha256WithRSAEncryption 92:d4:3b:cf:8c:4d:42:ba:87:21:e2:c4:d6:13:58:bd:51:91: c0:d6:31:ab:df:0c:12:73:47:db:70:87:fa:b9:5c:6d:d5:82: 6b:16:cb:de:e3:39:af:8d:3e:79:31:00:ab:5e:b6:eb:7a:63: af:7a:0d:c8:b6:26:f8:40:26:2a:1e:7a:2c:8b:ab:4a:e2:c9: 83:ca:86:a5:b6:73:85:c5:ee:b7:35:8d:9e:58:63:1e:d1:12: 22:d3:ab:48:9a:d5:a5:e6:e8:3c:cc:a6:97:5a:8b:b5:fd:fe: 47:d8:f5:59:bf:b6:f4:ea:e3:71:79:db:54:e9:43:cf:4e:59: e2:48:5b:b8:10:ba:1f:c5:91:dc:f2:31:3a:ab:79:9a:a5:d4: cb:fd:db:c7:ae:e7:3f:93:52:ab:00:cd:68:dd:b5:77:bd:c1: 39:8f:c2:f6:b7:a4:05:1a:18:03:3a:8b:60:35:9d:68:10:57: b2:c1:55:bc:d3:92:20:46:74:20:7e:12:51:23:9b:60:24:82: cb:d0:9b:d5:e5:e3:0c:94:80:ec:3a:b2:e8:ef:ca:88:52:22: b0:9a:78:43:ef:e5:95:c0:8c:4e:a4:26:3a:2c:e8:1d:d8:19: 6a:9c:7a:74:73:66:e2:07:1c:b6:5a:de:12:60:db:03:d0:30: e2:ee:38:6b -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICbL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNjAyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzU5OS1iMGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo66fCCyyd/e9zRyhqbg4wQ6b/E0cwiCR8K+jDGv4FG3BSn7xE0IgzAJCi7BI uyj0nBFxMB1dlezjTPElQ9LjMqdqht1sHjyQk2uJdl7lnuYYCzUko6KLCsx+xnKA DK7iLpMZmMssv4ebYTEoXPPMMzrm7SyQWxGbIdDisVAYO9YsGmI6bm0VgfnkI0FX TBLsvwVMFvcaajTpFzlIh+yC9GyZ03B+seTnROsyEIcm4NEOlae2ikGlSC6dHqau hVj0UrikE03b3SOl1wFNRbuXkmWkgoB8Lm4kdgHjWENx1vknfHL8ohcClMFx2+II FopOKx1MkzebFHEsdL4KnzHKtwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIW95Fpk j5Gz+5XepLjT7i24G1ZUMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOEU3MjQzN0VB OTEzMTFFRDlFMkFDOTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnZmQwDQQCAAIwBwMFACQA9WAwDQYJKoZIhvcNAQELBQAD ggEBAJLUO8+MTUK6hyHixNYTWL1RkcDWMavfDBJzR9twh/q5XG3VgmsWy97jOa+N PnkxAKtetut6Y696Dci2JvhAJioeeiyLq0riyYPKhqW2c4XF7rc1jZ5YYx7REiLT q0ia1aXm6DzMppdai7X9/kfY9Vm/tvTq43F521TpQ89OWeJIW7gQuh/FkdzyMTqr eZql1Mv928eu5z+TUqsAzWjdtXe9wTmPwva3pAUaGAM6i2A1nWgQV7LBVbzTkiBG dCB+ElEjm2AkgsvQm9Xl4wyUgOw6sujvyohSIrCaeEPv5ZXAjE6kJjos6B3YGWqc enRzZuIHHLZa3hJg2wPQMOLuOGs= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:39 2024 by rpki-client on console-ams.rpki-client.org