$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/98DFBF1685AC11EC8348CC48C4F9AE02.roa File: 98DFBF1685AC11EC8348CC48C4F9AE02.roa (raw, json) Hash identifier: 9SWmPBAe+QVW6njEB8rGvdu9QWIVKeNhg9UycpzihZ4= Subject key identifier: 68:57:89:01:19:FE:74:64:4A:FE:F6:27:10:D5:61:DB:27:9B:1E:DA Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 704D Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/98DFBF1685AC11EC8348CC48C4F9AE02.roa Signing time: Wed 10 May 2023 16:42:58 +0000 ROA not before: Wed 10 May 2023 16:42:58 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 149258 IP address blocks: 103.138.232.0/23 maxlen: 24 103.179.192.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28749 (0x704d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:42:58 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc991-8abf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6f:a3:26:3d:81:47:4f:14:bd:d0:34:9d:2b: 65:49:35:ff:39:33:07:bf:6e:e7:c9:5a:fa:4f:88: 40:0c:35:1e:22:76:1f:aa:7f:ce:41:07:19:b9:15: 27:a9:76:fe:22:3c:ff:ea:af:2d:27:bb:ad:58:7e: 44:21:31:6e:04:75:c6:9c:ae:d6:cd:8f:7c:9e:0f: 43:49:d6:31:01:75:65:6b:9c:30:82:b5:e5:99:1c: 25:9c:53:92:b8:e9:82:1b:52:99:15:91:09:4b:ee: 03:2a:f0:11:8b:ea:d9:d1:ed:ab:53:c9:b6:c2:04: 73:3b:55:b3:51:63:62:91:c0:1a:ed:6b:ef:d0:74: d5:7f:8a:9f:7f:2c:77:04:bb:22:45:31:e7:1d:56: 96:96:d1:26:99:8b:6a:e0:58:f5:0a:d2:24:20:47: 03:b6:87:b1:05:96:2c:ca:16:3f:e5:c3:55:88:eb: ae:36:89:6a:7e:71:7f:64:9f:4f:7a:13:d1:a3:f4: 51:11:9b:62:74:0b:4f:0a:4e:c1:9a:6a:49:68:4f: 60:26:2e:b1:97:0b:b7:0b:d3:ca:7e:c9:bf:de:81: db:98:01:24:50:a7:82:cb:de:63:1a:83:74:0b:06: e2:64:74:5f:05:e7:65:e9:4a:39:ae:5c:ff:90:46: a0:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:57:89:01:19:FE:74:64:4A:FE:F6:27:10:D5:61:DB:27:9B:1E:DA X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/98DFBF1685AC11EC8348CC48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.232.0/23 103.179.192.0/23 Signature Algorithm: sha256WithRSAEncryption 63:1a:7e:c8:5f:3c:7d:75:40:f4:3d:b0:0a:33:da:aa:2d:5c: 36:2b:7c:fa:e0:1d:dd:f4:38:56:51:ae:6c:1d:93:79:86:dd: c0:e9:03:33:f3:ab:7a:5f:c8:9f:8e:57:e3:18:42:3c:fe:8a: 0e:35:08:7c:b5:2c:d1:65:e4:f2:b1:2b:7d:2f:aa:d8:da:8d: 36:99:82:93:a3:8a:91:a5:5c:72:31:d8:dd:9b:dd:43:96:43: 4a:81:c3:27:d1:45:02:81:ef:d1:35:bb:8a:b9:c3:9a:ee:bd: 26:20:f6:d8:e8:16:1e:3c:09:44:0f:64:f8:b3:b8:03:a1:58: 22:1e:37:4e:96:fd:d4:1f:c6:a1:14:7e:2e:04:0c:c5:79:bc: 79:8e:65:be:da:38:62:d6:de:98:3a:a5:08:37:b1:65:87:fd: 1a:92:2a:c9:68:27:be:c2:b2:8f:d2:45:2d:3e:86:a8:79:05: c5:e9:10:56:6c:8c:64:b4:c8:26:99:77:22:a8:45:d5:17:76: 29:fb:d1:09:60:1b:00:ad:e4:8f:0d:f3:58:8a:38:33:60:47: 88:0b:45:0f:d4:ef:8c:23:af:cf:c2:22:af:7c:cf:bf:cf:bf: bc:0f:92:24:1f:9b:04:6f:85:95:72:69:0b:66:62:36:ae:2c: a6:7d:12:99 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICcE0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0MjU4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzk5MS04YWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu2+jJj2BR08UvdA0nStlSTX/OTMHv27nyVr6T4hADDUeInYfqn/OQQcZuRUn qXb+Ijz/6q8tJ7utWH5EITFuBHXGnK7WzY98ng9DSdYxAXVla5wwgrXlmRwlnFOS uOmCG1KZFZEJS+4DKvARi+rZ0e2rU8m2wgRzO1WzUWNikcAa7Wvv0HTVf4qffyx3 BLsiRTHnHVaWltEmmYtq4Fj1CtIkIEcDtoexBZYsyhY/5cNViOuuNolqfnF/ZJ9P ehPRo/RREZtidAtPCk7BmmpJaE9gJi6xlwu3C9PKfsm/3oHbmAEkUKeCy95jGoN0 CwbiZHRfBedl6Uo5rlz/kEagPwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGhXiQEZ /nRkSv72JxDVYdsnmx7aMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOThERkJGMTY4 NUFDMTFFQzgzNDhDQzQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFniugDBAFns8AwDQYJKoZIhvcNAQELBQADggEBAGMafshf PH11QPQ9sAoz2qotXDYrfPrgHd30OFZRrmwdk3mG3cDpAzPzq3pfyJ+OV+MYQjz+ ig41CHy1LNFl5PKxK30vqtjajTaZgpOjipGlXHIx2N2b3UOWQ0qBwyfRRQKB79E1 u4q5w5ruvSYg9tjoFh48CUQPZPizuAOhWCIeN06W/dQfxqEUfi4EDMV5vHmOZb7a OGLW3pg6pQg3sWWH/RqSKsloJ77Cso/SRS0+hqh5BcXpEFZsjGS0yCaZdyKoRdUX din70QlgGwCt5I8N81iKODNgR4gLRQ/U74wjr8/CIq98z7/Pv7wPkiQfmwRvhZVy aQtmYjauLKZ9Epk= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:40 2024 by rpki-client on console-ams.rpki-client.org