$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8F1912129E3711ED923B6E41C4F9AE02.roa File: 8F1912129E3711ED923B6E41C4F9AE02.roa (raw, json) Hash identifier: a2fsrnxNpkzIPlYk0qXTFD4JqTOabLInzfLAKEPUwo0= Subject key identifier: 2D:D6:1D:70:46:48:F9:B2:E4:CC:E5:4B:C3:CC:12:B9:2E:B9:7D:25 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7121 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8F1912129E3711ED923B6E41C4F9AE02.roa Signing time: Wed 10 May 2023 16:46:45 +0000 ROA not before: Wed 10 May 2023 16:46:45 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 150618 IP address blocks: 103.68.86.0/23 maxlen: 24 2001:df1:d240::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28961 (0x7121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:46:45 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bca75-646a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a6:29:00:96:f2:2b:9e:e7:e1:4c:98:e1:49: 38:24:3a:42:cb:8b:28:bc:10:01:e5:58:88:fe:18: 12:c8:95:68:65:0b:35:1b:fe:71:be:46:47:bb:87: bd:c0:65:f1:16:fd:61:ce:9c:3e:f1:2f:1d:d9:cb: 1f:a1:8b:41:83:db:86:d7:44:15:7d:61:0f:4c:69: cc:e7:0c:95:c8:51:8b:73:30:5d:4d:57:d8:8d:31: ba:7b:e0:61:ad:48:cb:eb:66:41:b4:bd:f5:da:bf: 57:91:97:d3:8a:a1:51:dd:74:fb:41:53:a6:8d:99: 26:3c:20:e5:d6:7f:b2:c6:8e:91:18:32:33:b9:b1: 66:b3:b1:3c:07:8e:d0:89:08:8a:f0:6f:3a:54:aa: 09:8f:dc:e6:81:76:31:45:9e:f1:6d:63:62:c3:97: 6b:af:17:79:a8:b3:54:48:f6:b0:4f:fc:30:b7:97: 8e:82:91:08:8d:6c:b5:39:8b:79:a2:72:22:f7:26: b8:4f:50:1c:1b:6b:4f:9d:e5:42:b5:16:0b:ad:bb: db:fd:94:f6:71:83:d3:df:e4:16:ab:9f:2d:b1:6d: c5:07:ca:60:f0:60:e6:ed:6f:93:a0:f0:30:53:e5: fc:98:51:86:44:d4:b5:24:ec:e1:07:49:3c:06:5d: fa:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:D6:1D:70:46:48:F9:B2:E4:CC:E5:4B:C3:CC:12:B9:2E:B9:7D:25 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8F1912129E3711ED923B6E41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.86.0/23 IPv6: 2001:df1:d240::/48 Signature Algorithm: sha256WithRSAEncryption 22:a9:0a:b8:70:0c:89:6c:ed:41:46:11:16:09:0b:a7:39:3a: fe:0e:fc:32:5f:5b:ab:16:19:f3:b6:9c:36:bd:da:b6:fd:91: 17:a6:e8:fb:dd:f1:1e:73:1e:2b:95:01:cb:8c:49:53:54:20: 6e:3b:fc:6e:aa:0b:92:2a:e2:f1:07:d5:5a:a5:a7:28:ea:4e: 13:bb:b4:90:58:70:59:05:2e:ee:57:97:2b:8d:58:f2:a9:f6: 80:4c:42:c2:6e:63:06:25:b1:7b:9d:84:27:1c:58:5e:8c:21: 8d:c0:98:1a:d7:88:a7:67:eb:ca:d7:48:8d:c9:6b:38:c9:d3: b5:7c:e3:40:96:da:6c:42:f8:63:87:1d:1f:67:70:94:53:2d: 11:e1:31:07:fb:26:6d:20:65:26:01:13:21:4c:fa:88:99:72: 1d:28:a0:bc:c9:af:8e:1b:32:21:9e:e3:de:c5:a7:51:c2:7c: c3:a2:6c:2c:60:2e:2f:f2:d1:9e:13:c7:99:74:81:85:ae:5f: e3:62:07:3b:54:af:4f:85:a0:e7:46:8b:50:3c:fb:29:81:e2: 84:20:b8:10:2a:8a:55:89:ff:e0:61:b4:29:53:32:26:52:94: ac:ad:77:69:e8:1a:0c:9d:51:5b:a6:c7:cf:ff:78:a5:06:e8: e2:b4:94:76 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICcSEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0NjQ1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViY2E3NS02NDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr6YpAJbyK57n4UyY4Uk4JDpCy4sovBAB5ViI/hgSyJVoZQs1G/5xvkZHu4e9 wGXxFv1hzpw+8S8d2csfoYtBg9uG10QVfWEPTGnM5wyVyFGLczBdTVfYjTG6e+Bh rUjL62ZBtL312r9XkZfTiqFR3XT7QVOmjZkmPCDl1n+yxo6RGDIzubFms7E8B47Q iQiK8G86VKoJj9zmgXYxRZ7xbWNiw5drrxd5qLNUSPawT/wwt5eOgpEIjWy1OYt5 onIi9ya4T1AcG2tPneVCtRYLrbvb/ZT2cYPT3+QWq58tsW3FB8pg8GDm7W+ToPAw U+X8mFGGRNS1JOzhB0k8Bl36TQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFC3WHXBG SPmy5MzlS8PMErkuuX0lMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOEYxOTEyMTI5 RTM3MTFFRDkyM0I2RTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnRFYwDwQCAAIwCQMHACABDfHSQDANBgkqhkiG9w0BAQsF AAOCAQEAIqkKuHAMiWztQUYRFgkLpzk6/g78Ml9bqxYZ87acNr3atv2RF6bo+93x HnMeK5UBy4xJU1Qgbjv8bqoLkiri8QfVWqWnKOpOE7u0kFhwWQUu7leXK41Y8qn2 gExCwm5jBiWxe52EJxxYXowhjcCYGteIp2frytdIjclrOMnTtXzjQJbabEL4Y4cd H2dwlFMtEeExB/smbSBlJgETIUz6iJlyHSigvMmvjhsyIZ7j3sWnUcJ8w6JsLGAu L/LRnhPHmXSBha5f42IHO1SvT4Wg50aLUDz7KYHihCC4ECqKVYn/4GG0KVMyJlKU rK13aegaDJ1RW6bHz/94pQbo4rSUdg== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:39 2024 by rpki-client on console-ams.rpki-client.org