$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8F42187E5E8B11EDB001EA52C4F9AE02.roa File: 8F42187E5E8B11EDB001EA52C4F9AE02.roa (raw, json) Hash identifier: b2QkJEZJNqs8RJ6wPZv4Htha5GFwjwou/pErBIWK0BI= Subject key identifier: 3E:97:88:38:E5:C0:B9:3B:FA:34:92:17:9A:0E:99:BE:A4:67:3C:A8 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6BEE Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8F42187E5E8B11EDB001EA52C4F9AE02.roa Signing time: Wed 10 May 2023 16:22:05 +0000 ROA not before: Wed 10 May 2023 16:22:05 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 135748 IP address blocks: 103.76.8.0/23 maxlen: 24 2001:df1:dcc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27630 (0x6bee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:22:05 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc4ad-b496 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:56:1f:43:7b:27:2c:52:17:7f:72:b4:0e:c3: 65:c6:dc:1d:12:63:da:1a:73:b9:d8:be:d7:3b:52: fd:b9:e4:d8:c8:3c:26:c7:dc:bb:13:76:40:42:17: c0:23:59:8f:2e:17:ef:10:f5:6c:20:f0:0d:e4:55: ff:c9:11:89:d5:70:b9:01:02:15:f1:0a:ed:b8:51: d4:24:44:fc:de:cd:75:ef:f2:a1:c3:7e:14:72:b5: 45:5d:e6:6b:76:90:29:e9:1b:74:34:77:c6:d6:95: 2a:0a:76:69:3b:89:85:c5:f5:69:97:bb:44:5e:7d: e4:60:f5:4e:82:98:13:74:e5:bc:e3:9d:e0:9f:ac: 86:cf:49:f2:e6:4e:08:38:b7:79:ff:ef:d1:4a:65: 54:31:55:e5:b7:98:90:15:e7:2e:3d:1f:0d:5e:ed: f6:01:a8:28:ec:bb:1f:ca:df:d4:f8:0d:3a:9b:0b: cf:39:90:ec:9e:14:b7:fd:16:9d:34:60:60:92:88: 6f:6e:a7:f6:fd:37:66:30:ee:45:dc:28:53:bb:d8: 8f:39:64:97:4f:77:63:db:b0:3b:99:68:cd:9e:6b: 9b:3a:1b:be:cb:5e:84:c2:13:fe:7f:31:d4:e9:be: 51:ab:f6:e0:30:e8:0b:82:a7:fb:cb:af:f1:3f:28: 04:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:97:88:38:E5:C0:B9:3B:FA:34:92:17:9A:0E:99:BE:A4:67:3C:A8 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8F42187E5E8B11EDB001EA52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.76.8.0/23 IPv6: 2001:df1:dcc0::/48 Signature Algorithm: sha256WithRSAEncryption 56:f7:c6:6a:08:bb:80:20:03:5d:35:b9:e2:64:4e:fe:6a:58: 32:b3:d5:67:93:54:08:6a:00:e4:ac:dc:58:2d:4d:45:a6:de: ec:7b:49:5a:66:f7:dc:ae:0e:bd:51:cc:88:eb:1f:95:cf:4b: 23:09:20:17:0d:c7:80:c8:0e:95:d3:6d:52:2f:79:b0:9c:09: a3:5f:1c:85:15:c9:99:07:c9:b2:a6:35:05:37:b8:65:ab:e5: f5:c4:8c:15:18:fd:30:4c:1a:70:4d:96:3a:80:b6:fb:07:8f: 62:5b:c9:0d:0c:bf:b7:47:c2:79:24:54:d0:e8:70:90:07:5b: c5:6c:54:35:0a:66:ed:d7:b0:dd:9a:81:ae:1c:8f:1b:d9:b3: 5e:b6:21:de:8f:eb:16:d1:eb:8a:3a:c6:c0:43:8e:10:e7:07: 1c:66:90:07:cc:9d:2b:ea:c6:58:60:5e:95:23:d7:9d:8a:9f: 6d:87:8c:12:e0:d2:12:da:f2:1c:a4:27:80:54:41:78:e2:0c: 3b:ca:8e:ad:cb:a3:de:14:72:29:35:27:a0:ea:d2:e3:e8:26: 37:56:33:f0:b0:78:e3:fa:42:4f:e5:0f:ee:e4:47:cd:f5:ae: 7b:57:2c:f9:d9:61:a6:ec:95:9f:45:59:b2:d2:68:ae:95:e2: 18:90:41:b0 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICa+4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyMjA1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzRhZC1iNDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1VYfQ3snLFIXf3K0DsNlxtwdEmPaGnO52L7XO1L9ueTYyDwmx9y7E3ZAQhfA I1mPLhfvEPVsIPAN5FX/yRGJ1XC5AQIV8QrtuFHUJET83s117/Khw34UcrVFXeZr dpAp6Rt0NHfG1pUqCnZpO4mFxfVpl7tEXn3kYPVOgpgTdOW8453gn6yGz0ny5k4I OLd5/+/RSmVUMVXlt5iQFecuPR8NXu32Aago7Lsfyt/U+A06mwvPOZDsnhS3/Rad NGBgkohvbqf2/TdmMO5F3ChTu9iPOWSXT3dj27A7mWjNnmubOhu+y16EwhP+fzHU 6b5Rq/bgMOgLgqf7y6/xPygEGwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFD6XiDjl wLk7+jSSF5oOmb6kZzyoMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOEY0MjE4N0U1 RThCMTFFREIwMDFFQTUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnTAgwDwQCAAIwCQMHACABDfHcwDANBgkqhkiG9w0BAQsF AAOCAQEAVvfGagi7gCADXTW54mRO/mpYMrPVZ5NUCGoA5KzcWC1NRabe7HtJWmb3 3K4OvVHMiOsflc9LIwkgFw3HgMgOldNtUi95sJwJo18chRXJmQfJsqY1BTe4Zavl 9cSMFRj9MEwacE2WOoC2+wePYlvJDQy/t0fCeSRU0OhwkAdbxWxUNQpm7dew3ZqB rhyPG9mzXrYh3o/rFtHrijrGwEOOEOcHHGaQB8ydK+rGWGBelSPXnYqfbYeMEuDS EtryHKQngFRBeOIMO8qOrcuj3hRyKTUnoOrS4+gmN1Yz8LB44/pCT+UP7uRHzfWu e1cs+dlhpuyVn0VZstJorpXiGJBBsA== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:39 2024 by rpki-client on console-ams.rpki-client.org