$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/907AFA3A0A0511EB95D99051C4F9AE02.roa File: 907AFA3A0A0511EB95D99051C4F9AE02.roa (raw, json) Hash identifier: UDWrj0q85XhIsyn4m+9eZhy6zx1dKh9fg8kzc8lUEM0= Subject key identifier: FC:C5:B8:B1:10:C1:00:72:63:4A:F5:8B:BB:C3:2B:B0:58:D8:DC:C3 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6A0B Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/907AFA3A0A0511EB95D99051C4F9AE02.roa Signing time: Wed 10 May 2023 16:12:49 +0000 ROA not before: Wed 10 May 2023 16:12:49 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 132758 IP address blocks: 103.156.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27147 (0x6a0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:12:49 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc280-d275 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:36:82:e6:9f:ba:c1:a6:e4:4e:03:3e:c8:8c: 74:90:19:b1:46:db:74:b2:7c:36:a0:4c:89:a2:02: 45:f5:72:aa:8e:57:22:50:64:ae:84:82:fb:0e:67: df:29:fc:1f:60:4a:80:b6:e3:41:40:9b:fa:9a:2e: ec:66:bb:c8:65:a5:20:dc:dc:44:34:69:ff:29:11: ae:e9:67:5f:db:fd:81:5b:37:bc:35:05:32:ab:9a: f8:0c:5f:66:6f:7e:af:ee:0f:28:99:64:26:97:5e: 7e:36:44:15:76:7f:8f:89:d3:12:fd:c8:e1:33:28: c9:04:4a:c5:30:4e:c8:37:83:4e:26:31:9c:13:4e: 3e:c7:a3:fb:37:54:36:f2:53:7b:87:71:43:fd:cc: 10:23:67:89:36:f7:29:14:c7:e7:e8:cb:24:6a:8a: ae:3a:3a:e4:e5:07:8a:16:f3:92:de:8d:73:e1:c1: 7b:a1:d4:55:d3:94:04:50:97:21:d0:c3:21:e1:77: 32:e0:88:74:f6:55:e9:34:59:4a:39:8d:08:98:4b: 19:65:de:6b:47:99:f0:0b:a6:d1:0c:ea:eb:e6:dd: 59:b8:7c:25:3d:4c:85:34:66:17:ee:36:cc:bf:ff: af:df:4c:86:44:ae:a1:3a:1f:ca:22:e7:50:09:52: 99:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:C5:B8:B1:10:C1:00:72:63:4A:F5:8B:BB:C3:2B:B0:58:D8:DC:C3 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/907AFA3A0A0511EB95D99051C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.156.202.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:8f:79:53:81:cd:c4:3e:9d:d4:2f:f9:07:30:de:ab:64:a1: 62:5d:ca:89:d9:0c:fa:a9:4c:d9:0c:43:5e:fe:28:25:1e:6b: 71:aa:e8:3f:04:6a:55:23:01:4b:2d:4b:9e:0e:0e:e7:35:0a: 6d:e4:08:a5:1e:ad:8a:bf:1e:7a:09:f2:e3:73:0f:65:7d:ef: 09:3b:5b:4c:86:99:0c:9f:05:cb:36:7b:e0:80:d3:78:34:ba: eb:81:d7:49:19:9f:b4:dd:22:75:58:2d:6c:0a:5f:50:e2:7b: 22:b3:26:a8:43:28:5b:37:c2:27:96:f8:9d:23:61:a2:fe:a9: 4b:23:3b:d1:75:7f:ab:a8:83:42:3f:38:f1:e2:a4:b2:91:0b: cb:85:ed:66:08:12:8d:c6:e8:43:5b:4a:06:ab:98:24:cf:7c: 93:41:1a:33:3c:bc:92:c5:6f:3e:9c:9b:8d:2f:21:4e:8c:3f: 52:ef:13:4e:33:ba:28:b2:22:57:da:ee:bb:1a:c7:12:9d:9d: a2:11:27:63:c7:6c:c6:0a:70:08:72:c8:c1:d7:b4:ce:cd:8d: e7:39:5d:3a:11:a9:36:63:1d:f8:81:ed:61:69:a6:26:80:4d: ab:90:77:f4:69:d6:b7:51:2a:c2:3c:f0:97:1d:d0:12:f5:a9: 88:0c:4b:60 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICagswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxMjQ5WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzI4MC1kMjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvDaC5p+6wabkTgM+yIx0kBmxRtt0snw2oEyJogJF9XKqjlciUGSuhIL7Dmff KfwfYEqAtuNBQJv6mi7sZrvIZaUg3NxENGn/KRGu6Wdf2/2BWze8NQUyq5r4DF9m b36v7g8omWQml15+NkQVdn+PidMS/cjhMyjJBErFME7IN4NOJjGcE04+x6P7N1Q2 8lN7h3FD/cwQI2eJNvcpFMfn6MskaoquOjrk5QeKFvOS3o1z4cF7odRV05QEUJch 0MMh4Xcy4Ih09lXpNFlKOY0ImEsZZd5rR5nwC6bRDOrr5t1ZuHwlPUyFNGYX7jbM v/+v30yGRK6hOh/KIudQCVKZCQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPzFuLEQ wQByY0r1i7vDK7BY2NzDMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOTA3QUZBM0Ew QTA1MTFFQjk1RDk5MDUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnnMowDQYJKoZIhvcNAQELBQADggEBAIqPeVOBzcQ+ndQv +Qcw3qtkoWJdyonZDPqpTNkMQ17+KCUea3Gq6D8EalUjAUstS54ODuc1Cm3kCKUe rYq/HnoJ8uNzD2V97wk7W0yGmQyfBcs2e+CA03g0uuuB10kZn7TdInVYLWwKX1Di eyKzJqhDKFs3wieW+J0jYaL+qUsjO9F1f6uog0I/OPHipLKRC8uF7WYIEo3G6ENb SgarmCTPfJNBGjM8vJLFbz6cm40vIU6MP1LvE04zuiiyIlfa7rsaxxKdnaIRJ2PH bMYKcAhyyMHXtM7Njec5XToRqTZjHfiB7WFppiaATauQd/Rp1rdRKsI88Jcd0BL1 qYgMS2A= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:39 2024 by rpki-client on console-ams.rpki-client.org