$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9A277F485FEB11ED9401BC43C4F9AE02.roa File: 9A277F485FEB11ED9401BC43C4F9AE02.roa (raw, json) Hash identifier: 1fmWgwBSRN2KwOn+dtl3RMm+VazMnXxU1COzBuRlR1U= Subject key identifier: 9B:C9:97:C0:9E:0F:C4:A0:EE:0F:B6:48:97:4E:EC:56:BF:26:FA:33 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6B11 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9A277F485FEB11ED9401BC43C4F9AE02.roa Signing time: Wed 10 May 2023 16:17:51 +0000 ROA not before: Wed 10 May 2023 16:17:51 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134277 IP address blocks: 103.81.88.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27409 (0x6b11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:17:51 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc3af-e40b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d5:29:29:87:1e:81:1d:7f:95:f1:4c:88:57: 95:45:c5:60:00:5d:28:47:82:06:af:6c:12:bb:64: 53:f4:31:54:3f:b9:93:d1:d2:13:b6:33:78:fe:42: 2b:0d:f8:d4:91:76:5d:60:ef:cb:0e:b5:d0:fb:2a: dc:8f:18:15:e5:d7:8f:cb:c6:f3:66:bc:35:dc:61: 10:02:5a:04:f7:e7:55:a7:99:90:1d:2b:a2:a4:07: 5c:83:55:ed:1d:7a:d2:37:0a:2b:6a:32:82:dc:45: d7:43:35:fc:fc:92:5c:fb:6e:b5:09:47:85:dd:f3: 94:27:9f:61:1f:bc:e2:dc:b7:86:de:80:d5:94:ae: c6:0a:87:9d:a8:c8:4c:cc:74:ab:b1:50:37:04:7f: 71:67:c6:75:ef:89:9d:6b:1c:05:27:43:d6:b4:11: ed:aa:b0:f2:86:72:f2:03:6d:c2:50:05:08:ae:34: f2:c6:6d:cb:b9:72:17:25:e1:93:55:f4:09:84:c6: 6b:a0:34:12:02:98:c2:1b:ac:c8:c2:88:1b:dd:1e: d4:9d:d1:9e:6e:5d:d3:73:4d:dd:7d:60:51:68:d8: 14:b7:74:c6:93:20:2b:14:6e:1c:41:0d:70:1b:42: bf:63:52:84:60:3c:64:56:ca:f9:9f:60:88:78:74: 62:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:C9:97:C0:9E:0F:C4:A0:EE:0F:B6:48:97:4E:EC:56:BF:26:FA:33 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9A277F485FEB11ED9401BC43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.81.88.0/22 Signature Algorithm: sha256WithRSAEncryption 9f:a2:81:30:af:e1:48:77:8c:8c:93:01:88:fe:a6:8b:0b:7c: 93:11:ff:a9:5f:0a:52:04:72:d2:a2:f8:46:2c:11:03:e7:78: bf:50:d8:07:32:23:a8:07:b2:76:7f:2b:e7:c6:13:6f:cf:c2: 85:a4:ba:84:b3:b9:db:e4:7b:ea:83:42:f7:6e:5d:03:c8:61: 74:9e:5a:2b:cf:8f:13:86:95:6b:0b:b0:7d:36:00:25:a3:cb: 3f:28:0a:6b:8c:d7:aa:b8:99:19:1a:b2:88:b1:c5:51:90:80: 24:49:1b:3d:d1:94:e7:d1:94:85:62:30:20:8d:d1:a0:5f:08: bf:38:85:8b:b8:1b:75:17:b4:4d:76:81:df:4d:d6:53:9f:c2: a7:43:d9:b1:23:35:cf:dd:b4:a1:85:48:7c:41:55:b2:cb:12: 7f:ee:04:0d:9b:e0:a1:98:b5:ac:2a:29:7d:5a:c8:07:02:eb: 27:c4:21:a8:28:03:f5:70:24:14:83:ab:b4:90:b0:60:e2:fb: 3f:b8:a9:eb:18:b3:39:ea:05:cc:55:a2:ee:c5:63:c3:fb:3f: 35:5d:d9:20:bc:9b:28:55:e0:9b:b3:cd:91:07:58:32:32:78: b1:c1:99:52:e6:fa:d3:a2:81:1a:6d:86:de:f1:6f:45:d3:df: 1a:35:e6:f8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICaxEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxNzUxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzNhZi1lNDBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdUpKYcegR1/lfFMiFeVRcVgAF0oR4IGr2wSu2RT9DFUP7mT0dITtjN4/kIr DfjUkXZdYO/LDrXQ+yrcjxgV5dePy8bzZrw13GEQAloE9+dVp5mQHSuipAdcg1Xt HXrSNworajKC3EXXQzX8/JJc+261CUeF3fOUJ59hH7zi3LeG3oDVlK7GCoedqMhM zHSrsVA3BH9xZ8Z174mdaxwFJ0PWtBHtqrDyhnLyA23CUAUIrjTyxm3LuXIXJeGT VfQJhMZroDQSApjCG6zIwogb3R7UndGebl3Tc03dfWBRaNgUt3TGkyArFG4cQQ1w G0K/Y1KEYDxkVsr5n2CIeHRiVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJvJl8Ce D8Sg7g+2SJdO7Fa/JvozMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOUEyNzdGNDg1 RkVCMTFFRDk0MDFCQzQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnUVgwDQYJKoZIhvcNAQELBQADggEBAJ+igTCv4Uh3jIyT AYj+posLfJMR/6lfClIEctKi+EYsEQPneL9Q2AcyI6gHsnZ/K+fGE2/PwoWkuoSz udvke+qDQvduXQPIYXSeWivPjxOGlWsLsH02ACWjyz8oCmuM16q4mRkasoixxVGQ gCRJGz3RlOfRlIViMCCN0aBfCL84hYu4G3UXtE12gd9N1lOfwqdD2bEjNc/dtKGF SHxBVbLLEn/uBA2b4KGYtawqKX1ayAcC6yfEIagoA/VwJBSDq7SQsGDi+z+4qesY sznqBcxVou7FY8P7PzVd2SC8myhV4JuzzZEHWDIyeLHBmVLm+tOigRptht7xb0XT 3xo15vg= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:40 2024 by rpki-client on console-ams.rpki-client.org