$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/96BF9F76399811EDBC466941C4F9AE02.roa File: 96BF9F76399811EDBC466941C4F9AE02.roa (raw, json) Hash identifier: I+gwkKX1d3Z8q2g2R/1TfbPJQHwqia1KLnfm5CSKHMw= Subject key identifier: 9A:C4:7A:39:EB:10:56:86:FF:E2:00:F6:9B:1E:3B:ED:BB:4D:B0:69 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 70BC Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/96BF9F76399811EDBC466941C4F9AE02.roa Signing time: Wed 10 May 2023 16:44:56 +0000 ROA not before: Wed 10 May 2023 16:44:56 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 150035 IP address blocks: 103.137.48.0/22 maxlen: 24 2001:df0:1480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28860 (0x70bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:44:56 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bca08-570c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7a:1d:82:2f:7f:db:57:e8:51:a6:e5:fe:84: 9f:d3:30:2c:29:72:cd:29:72:e1:1a:a9:68:9e:95: a8:f9:b0:13:e2:69:c2:b9:28:52:6f:d9:bd:3b:08: 7d:ed:50:fb:ab:ec:e0:2b:94:cf:6f:06:65:a6:18: 94:67:37:8d:83:4e:86:d5:3c:4f:e8:e2:82:c6:5a: f1:f4:b9:d9:a0:d0:f4:5a:67:7f:59:29:96:2d:97: ab:a1:0b:97:a6:be:7b:32:ab:80:45:b8:52:a0:81: 00:4b:f2:a0:af:8f:22:a3:39:62:a4:a3:cf:db:7f: e3:7a:08:bc:16:34:d6:15:bc:af:bc:bb:39:03:78: 44:39:c7:66:a4:86:fe:99:3d:ac:3e:c8:fa:58:33: cb:a0:e9:9e:b9:1a:cf:99:37:e6:fe:95:4f:0e:12: d7:36:1c:3b:0c:be:ea:0b:3c:0e:69:c1:19:42:96: 32:97:7a:1c:18:2d:3d:9e:1d:b8:76:95:fe:56:96: cc:e2:44:c6:02:6a:17:52:36:32:f6:9e:ca:ae:81: 78:2a:31:be:e2:39:95:f4:3c:59:39:5f:fd:24:2b: c0:8e:b1:0d:d7:84:14:53:12:30:f9:cd:9b:e2:85: 2f:22:20:46:93:96:8d:bd:f4:a9:95:1e:3e:0a:1c: f5:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:C4:7A:39:EB:10:56:86:FF:E2:00:F6:9B:1E:3B:ED:BB:4D:B0:69 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/96BF9F76399811EDBC466941C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.48.0/22 IPv6: 2001:df0:1480::/48 Signature Algorithm: sha256WithRSAEncryption 67:da:ee:1f:99:85:57:18:66:58:bb:67:19:06:0b:1d:37:a1: a7:53:7c:53:1c:60:cf:55:82:ad:a4:38:7d:6a:8f:e9:82:26: 35:53:f2:1b:d0:d0:23:94:df:c7:8b:c1:31:06:d4:2a:fc:d2: 85:d5:a4:fe:99:af:0e:a8:27:36:51:4e:bf:2a:2b:90:46:46: 25:15:8a:14:74:ab:dd:d4:b0:f4:29:f2:7c:92:d2:d6:62:b1: 1d:57:9b:77:04:38:e3:27:98:af:a0:f2:47:e5:d8:1f:25:e5: d2:c1:4f:a5:7e:12:90:2d:bd:41:f5:7a:89:bf:b2:52:34:8d: a0:7b:b2:83:e0:b3:29:a3:78:fe:8a:8d:1e:72:d8:f6:2a:68: 88:5d:b6:de:1c:39:30:4b:21:06:e9:6a:a5:8d:d1:c2:d5:3d: da:5f:9e:3c:20:28:8c:41:ad:89:01:b3:93:bc:e2:11:10:f2: b7:a2:13:f5:45:2a:56:de:d7:15:45:4d:09:87:aa:39:05:de: af:9d:79:f5:4f:54:f3:26:0b:f8:c4:3f:c3:0e:1f:55:84:dd: 1c:67:cd:0d:6d:c6:79:56:f3:d9:30:d8:4f:41:99:ea:87:67: cc:a6:c2:1c:ad:30:4d:94:4a:2a:eb:07:66:59:7d:05:fb:4c: b4:1a:37:92 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICcLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0NDU2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViY2EwOC01NzBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3odgi9/21foUabl/oSf0zAsKXLNKXLhGqlonpWo+bAT4mnCuShSb9m9Owh9 7VD7q+zgK5TPbwZlphiUZzeNg06G1TxP6OKCxlrx9LnZoND0Wmd/WSmWLZeroQuX pr57MquARbhSoIEAS/Kgr48iozlipKPP23/jegi8FjTWFbyvvLs5A3hEOcdmpIb+ mT2sPsj6WDPLoOmeuRrPmTfm/pVPDhLXNhw7DL7qCzwOacEZQpYyl3ocGC09nh24 dpX+VpbM4kTGAmoXUjYy9p7KroF4KjG+4jmV9DxZOV/9JCvAjrEN14QUUxIw+c2b 4oUvIiBGk5aNvfSplR4+Chz1IwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJrEejnr EFaG/+IA9pseO+27TbBpMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOTZCRjlGNzYz OTk4MTFFREJDNDY2OTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJniTAwDwQCAAIwCQMHACABDfAUgDANBgkqhkiG9w0BAQsF AAOCAQEAZ9ruH5mFVxhmWLtnGQYLHTehp1N8Uxxgz1WCraQ4fWqP6YImNVPyG9DQ I5Tfx4vBMQbUKvzShdWk/pmvDqgnNlFOvyorkEZGJRWKFHSr3dSw9CnyfJLS1mKx HVebdwQ44yeYr6DyR+XYHyXl0sFPpX4SkC29QfV6ib+yUjSNoHuyg+CzKaN4/oqN HnLY9ipoiF223hw5MEshBulqpY3RwtU92l+ePCAojEGtiQGzk7ziERDyt6IT9UUq Vt7XFUVNCYeqOQXer5159U9U8yYL+MQ/ww4fVYTdHGfNDW3GeVbz2TDYT0GZ6odn zKbCHK0wTZRKKusHZll9BftMtBo3kg== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:39 2024 by rpki-client on console-ams.rpki-client.org