$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9095CAFCAD0C11EDABA62D22C4F9AE02.roa File: 9095CAFCAD0C11EDABA62D22C4F9AE02.roa (raw, json) Hash identifier: JiuMtq2fgH20Bs9XA6IEFXAUUmSE1ujuqLTpMKZTcH4= Subject key identifier: 21:7F:8F:3D:DC:84:B9:EE:6B:00:5C:A1:AF:C2:01:A3:AA:11:62:9C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7135 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9095CAFCAD0C11EDABA62D22C4F9AE02.roa Signing time: Wed 10 May 2023 16:47:08 +0000 ROA not before: Wed 10 May 2023 16:47:08 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 150649 IP address blocks: 103.72.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28981 (0x7135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:47:08 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bca8c-a2c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:52:77:f4:d3:ab:c5:76:38:40:a7:d4:da:ae: 64:38:c2:4e:54:ea:8a:2b:b5:61:8f:85:91:66:d5: e8:07:70:f3:c4:4b:04:10:74:57:d9:48:93:c2:18: 79:86:18:50:01:bb:78:63:63:be:5e:0d:86:82:a3: f3:7a:85:f6:4a:76:3f:e7:12:28:2d:54:37:57:23: 6b:4f:86:cd:d2:95:fe:0e:e0:e5:01:d2:61:cc:29: 12:7f:38:ad:f7:83:56:db:d6:6a:bd:8e:c0:a6:a5: 17:5b:15:6d:a8:16:3d:4f:0d:fc:08:1d:f9:a3:85: 99:b8:c9:1a:7f:08:ec:47:8e:72:3b:0a:e5:fc:8b: 72:bb:79:02:08:f3:99:8e:f2:5d:89:39:f3:55:c8: 17:46:d9:84:9f:61:13:ac:d5:2c:c9:12:2a:0d:3a: cb:9f:21:0d:95:b0:89:ae:87:c7:c2:96:da:6c:7b: 74:be:21:97:e8:ea:cc:5c:da:cb:e7:21:a8:a8:5e: 57:54:67:38:6f:ac:f4:21:df:cc:21:d9:a8:d7:29: e6:73:a1:66:1a:c6:f0:93:01:81:76:52:1d:e6:03: 17:62:f6:9d:80:58:e0:53:41:25:21:97:35:8f:61: 9c:9a:70:fa:ab:99:0d:22:49:d5:cf:52:6f:67:91: 1d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:7F:8F:3D:DC:84:B9:EE:6B:00:5C:A1:AF:C2:01:A3:AA:11:62:9C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9095CAFCAD0C11EDABA62D22C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.72.106.0/23 Signature Algorithm: sha256WithRSAEncryption 17:99:6a:8e:87:77:59:13:c1:10:47:1b:f1:b9:f6:ad:17:45: 7b:ce:40:8f:1f:45:ab:8a:44:7f:b2:3d:5a:35:e9:3f:7d:37: 45:f1:0d:16:34:3e:d8:36:d8:e0:33:a3:6b:ec:a8:ae:08:10: 2c:02:e5:24:e8:50:eb:70:e8:c8:a4:37:cf:e1:8e:02:f1:be: 92:7a:26:8a:9f:41:f6:45:05:9f:ef:6b:56:63:f5:1a:fc:a5: 1b:68:cb:da:81:4c:31:69:00:e1:90:95:54:b2:2a:db:2c:c0: 54:66:5a:20:ed:3a:0b:02:cf:cf:b1:02:a1:3a:7d:8e:e3:60: 05:f8:a9:5d:a7:61:8b:0f:b5:c3:76:89:a6:20:83:93:5a:62: d2:c5:57:09:20:03:fb:e1:b3:ac:a6:60:57:e4:c2:c4:52:10: d3:a1:12:b4:53:ca:31:26:35:4a:47:76:d5:60:b1:28:df:36: f8:5e:1e:57:20:b8:e7:3f:61:19:bc:f9:ae:58:57:eb:16:d0: cc:66:85:f5:b7:eb:b6:13:07:d4:a3:b4:6c:ff:8e:f9:5f:1c: 4b:67:11:66:12:64:d7:42:ad:f3:9a:81:b4:d6:36:1b:b9:1f: bf:8b:6e:ac:d2:86:34:e2:30:79:9d:e8:09:95:49:bd:f3:ee: 0a:b5:48:07 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICcTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0NzA4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViY2E4Yy1hMmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAylJ39NOrxXY4QKfU2q5kOMJOVOqKK7Vhj4WRZtXoB3DzxEsEEHRX2UiTwhh5 hhhQAbt4Y2O+Xg2GgqPzeoX2SnY/5xIoLVQ3VyNrT4bN0pX+DuDlAdJhzCkSfzit 94NW29ZqvY7ApqUXWxVtqBY9Tw38CB35o4WZuMkafwjsR45yOwrl/Ityu3kCCPOZ jvJdiTnzVcgXRtmEn2ETrNUsyRIqDTrLnyENlbCJrofHwpbabHt0viGX6OrMXNrL 5yGoqF5XVGc4b6z0Id/MIdmo1ynmc6FmGsbwkwGBdlId5gMXYvadgFjgU0ElIZc1 j2GcmnD6q5kNIknVz1JvZ5EdEQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCF/jz3c hLnuawBcoa/CAaOqEWKcMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOTA5NUNBRkNB RDBDMTFFREFCQTYyRDIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnSGowDQYJKoZIhvcNAQELBQADggEBABeZao6Hd1kTwRBH G/G59q0XRXvOQI8fRauKRH+yPVo16T99N0XxDRY0Ptg22OAzo2vsqK4IECwC5STo UOtw6MikN8/hjgLxvpJ6JoqfQfZFBZ/va1Zj9Rr8pRtoy9qBTDFpAOGQlVSyKtss wFRmWiDtOgsCz8+xAqE6fY7jYAX4qV2nYYsPtcN2iaYgg5NaYtLFVwkgA/vhs6ym YFfkwsRSENOhErRTyjEmNUpHdtVgsSjfNvheHlcguOc/YRm8+a5YV+sW0MxmhfW3 67YTB9SjtGz/jvlfHEtnEWYSZNdCrfOagbTWNhu5H7+LbqzShjTiMHmd6AmVSb3z 7gq1SAc= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:39 2024 by rpki-client on console-ams.rpki-client.org