$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9BE04C4AB18911EC892E2662C4F9AE02.roa File: 9BE04C4AB18911EC892E2662C4F9AE02.roa (raw, json) Hash identifier: tJ9ySaoJJOCtaWXAvTYI8LsbdSRHnsuUNuXKVxa45wc= Subject key identifier: CD:B9:09:8A:FC:1D:8F:63:CA:B2:CB:F5:F8:26:81:8C:05:47:F2:B5 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6D3D Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9BE04C4AB18911EC892E2662C4F9AE02.roa Signing time: Wed 10 May 2023 16:28:21 +0000 ROA not before: Wed 10 May 2023 16:28:21 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 137658 IP address blocks: 103.181.118.0/23 maxlen: 24 2001:df1:3540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27965 (0x6d3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:28:21 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc625-b8cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:66:6d:4f:fb:47:59:4e:25:df:42:9c:f6:9a: b6:a8:d6:27:f0:d1:00:be:4a:12:8a:48:7f:07:70: 33:35:12:aa:19:87:72:3e:5c:4d:e5:56:23:cd:34: ca:3d:2f:c3:70:28:b9:c0:b0:35:0e:cb:0c:c0:9a: d7:36:e0:ad:bc:df:f6:91:6b:e0:cb:5b:42:c1:d5: c6:0a:59:5f:cd:43:12:e2:95:5a:40:21:fd:a9:63: e0:2e:b4:a8:e4:86:5f:1a:0c:b5:47:2c:1c:1e:57: 23:21:6e:e8:85:8d:0a:ac:10:4f:ef:e0:bd:e8:14: d5:79:9b:5b:02:f0:dc:0a:81:51:ff:5b:55:3a:48: 5d:56:da:af:09:20:07:d8:fa:5f:2a:b2:ce:7f:8e: 9f:ca:13:37:84:50:95:5e:fd:25:b5:22:53:38:24: 99:b1:0d:81:b3:97:6e:87:be:c9:11:f2:8b:27:35: 9f:37:f2:a8:76:e2:5e:c3:f3:76:03:3b:50:c6:04: d8:9b:ce:e4:98:56:61:42:40:b0:5d:dc:78:43:8d: a9:23:a8:62:f0:9b:df:bb:12:c9:a5:0b:2a:50:b7: ec:59:41:5f:dd:95:8b:66:13:8c:2b:34:3d:ba:a2: 08:eb:13:55:e6:6c:ef:ec:9b:bf:34:4f:cf:aa:a8: 79:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:B9:09:8A:FC:1D:8F:63:CA:B2:CB:F5:F8:26:81:8C:05:47:F2:B5 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9BE04C4AB18911EC892E2662C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.181.118.0/23 IPv6: 2001:df1:3540::/48 Signature Algorithm: sha256WithRSAEncryption 8c:e1:76:04:ba:bd:4b:aa:b1:01:7d:8a:4f:2f:0b:c3:88:6a: 98:b6:eb:ba:c2:72:1d:d5:a5:55:6b:45:04:88:da:ac:17:d6: 8f:be:5a:b9:f2:81:af:e4:2e:94:5f:eb:6c:36:c3:3d:70:c0: de:03:38:25:da:ba:19:94:b9:84:d4:0a:f1:1c:6e:86:f9:ac: 5a:04:58:d8:96:f4:09:6d:86:2a:f3:50:ec:dd:00:66:1b:9e: 50:bd:b1:1f:84:5e:b5:84:85:76:c3:fb:05:b3:69:da:3f:e0: 77:dc:e1:7f:70:8e:da:b6:12:12:dd:de:d7:e0:6b:55:dc:4c: 14:fb:5f:fa:8d:d8:db:e1:3a:5e:2a:f1:d1:44:dc:88:77:77: 22:3f:55:7b:b2:08:95:9d:d2:57:e4:ff:31:8c:aa:3e:9e:f7: 7b:a2:c8:e7:3a:61:b8:42:6c:e1:19:76:1d:6d:f5:45:12:44: c2:00:af:09:b5:35:fe:29:cc:98:c0:42:d6:be:3d:85:e6:22: 58:1a:06:19:97:e2:d9:39:a1:cb:9f:18:98:d2:e1:e1:28:db: 88:a5:92:60:c7:d0:b4:d3:37:de:8e:fb:b8:df:ad:92:a6:c1: dd:4d:8b:4f:37:dc:0d:25:68:5d:39:20:10:be:fd:fe:18:29: b1:11:d7:56 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICbT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyODIxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzYyNS1iOGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnGZtT/tHWU4l30Kc9pq2qNYn8NEAvkoSikh/B3AzNRKqGYdyPlxN5VYjzTTK PS/DcCi5wLA1DssMwJrXNuCtvN/2kWvgy1tCwdXGCllfzUMS4pVaQCH9qWPgLrSo 5IZfGgy1RywcHlcjIW7ohY0KrBBP7+C96BTVeZtbAvDcCoFR/1tVOkhdVtqvCSAH 2PpfKrLOf46fyhM3hFCVXv0ltSJTOCSZsQ2Bs5duh77JEfKLJzWfN/KoduJew/N2 AztQxgTYm87kmFZhQkCwXdx4Q42pI6hi8JvfuxLJpQsqULfsWUFf3ZWLZhOMKzQ9 uqII6xNV5mzv7Ju/NE/Pqqh5JQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFM25CYr8 HY9jyrLL9fgmgYwFR/K1MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOUJFMDRDNEFC MTg5MTFFQzg5MkUyNjYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFntXYwDwQCAAIwCQMHACABDfE1QDANBgkqhkiG9w0BAQsF AAOCAQEAjOF2BLq9S6qxAX2KTy8Lw4hqmLbrusJyHdWlVWtFBIjarBfWj75aufKB r+QulF/rbDbDPXDA3gM4Jdq6GZS5hNQK8RxuhvmsWgRY2Jb0CW2GKvNQ7N0AZhue UL2xH4RetYSFdsP7BbNp2j/gd9zhf3CO2rYSEt3e1+BrVdxMFPtf+o3Y2+E6Xirx 0UTciHd3Ij9Ve7IIlZ3SV+T/MYyqPp73e6LI5zphuEJs4Rl2HW31RRJEwgCvCbU1 /inMmMBC1r49heYiWBoGGZfi2Tmhy58YmNLh4SjbiKWSYMfQtNM33o77uN+tkqbB 3U2LTzfcDSVoXTkgEL79/hgpsRHXVg== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:40 2024 by rpki-client on console-ams.rpki-client.org