$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9DFF02D4BD2C11EBBF4ADC26C4F9AE02.roa File: 9DFF02D4BD2C11EBBF4ADC26C4F9AE02.roa (raw, json) Hash identifier: uYRcEVC5jxH8Cr7Uuve6NP2BbneOEKxlE1l93FuW9S0= Subject key identifier: 67:FE:8C:E4:0B:66:3E:A0:3F:C7:00:54:F9:7F:CE:9A:B2:54:04:38 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6C9A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9DFF02D4BD2C11EBBF4ADC26C4F9AE02.roa Signing time: Wed 10 May 2023 16:25:20 +0000 ROA not before: Wed 10 May 2023 16:25:20 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136667 IP address blocks: 103.99.192.0/22 maxlen: 24 2001:df0:4840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27802 (0x6c9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:25:20 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc56f-5b80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:3e:b5:bb:25:8b:da:fb:b3:c3:32:49:3b:8b: a2:fd:8b:fd:06:dc:c4:fb:43:5e:a9:35:90:90:f8: 90:20:a3:79:b4:70:fa:fe:21:31:f4:2a:cd:c8:9d: 35:5c:33:10:e3:d0:de:c9:53:cf:a8:3b:c6:bd:78: b9:25:a3:5e:44:f2:b3:81:22:22:07:b5:16:f0:f8: 6e:67:b8:2d:18:a2:3a:07:ea:7b:a6:a3:fd:9e:aa: 49:87:bf:60:c5:f2:a5:08:be:5e:56:5e:54:23:7a: 6b:49:99:db:b4:67:25:7f:8c:bd:4f:44:2c:c9:0c: 28:7a:d1:36:74:b9:b4:61:7e:86:a1:55:95:7a:4e: a3:87:ff:b1:df:29:0f:ca:85:f5:fd:20:e2:b4:fc: 57:56:a7:01:32:3d:cd:c3:ae:50:2d:9e:00:c0:7d: 30:fe:5e:45:cd:4d:b0:27:47:95:2d:e1:22:e9:16: 28:3e:57:6a:9c:76:5c:ed:e1:af:24:f6:30:5d:4c: 41:fb:b3:ad:ab:43:8c:fa:4b:1e:1b:6c:cf:d4:3f: 56:cb:61:83:58:77:5f:b5:66:c4:47:86:ef:3a:f4: a6:c5:12:f0:a0:1c:dc:e9:11:b9:c5:65:1a:14:a9: 74:4f:d2:8d:37:8f:3c:3d:db:4a:01:fe:39:39:45: 09:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:FE:8C:E4:0B:66:3E:A0:3F:C7:00:54:F9:7F:CE:9A:B2:54:04:38 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9DFF02D4BD2C11EBBF4ADC26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.192.0/22 IPv6: 2001:df0:4840::/48 Signature Algorithm: sha256WithRSAEncryption 1a:a5:9e:44:eb:8f:9b:37:ca:b1:d5:08:35:80:80:be:3a:11: 7e:3a:3b:5e:f7:f8:54:0d:a0:58:a2:ea:c8:e0:01:48:f5:5e: 87:d0:a2:f6:dd:c1:3a:3a:f1:87:43:e9:a3:5a:1f:cc:a7:61: e7:f4:b0:bd:8a:0b:6e:55:ad:e7:8e:e1:68:a3:91:5c:6e:69: 9a:ae:e3:04:23:0e:2c:ed:25:25:56:ce:82:cf:c8:d2:d4:0d: c4:5c:cb:a0:7f:dd:ff:26:fe:cb:14:46:ea:58:ef:4a:6b:be: a0:e2:69:01:bf:e4:79:d9:c2:ef:84:6f:a3:17:03:36:c2:f8: a4:8d:6b:18:60:25:48:33:67:1c:b5:fb:34:74:fe:5f:9c:dd: e6:bc:f0:34:6d:2e:ed:a1:8f:0d:60:4f:0f:3d:98:86:dd:4a: a9:df:03:e3:a8:58:45:95:89:6d:b0:98:88:04:a2:3b:59:b5: 1a:d4:50:60:88:a2:94:11:46:47:32:b1:68:f0:a9:35:d4:b0: e8:30:8e:99:c4:94:4a:c9:17:0a:49:95:8f:88:2a:81:b6:c3: 85:c5:b7:68:08:b7:cc:4a:3d:f3:39:d5:9c:25:30:3e:68:23: 79:72:38:3d:db:12:58:a9:72:e0:d7:7a:21:35:47:45:57:e7: 07:10:e0:99 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICbJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNTIwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzU2Zi01YjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2z61uyWL2vuzwzJJO4ui/Yv9BtzE+0NeqTWQkPiQIKN5tHD6/iEx9CrNyJ01 XDMQ49DeyVPPqDvGvXi5JaNeRPKzgSIiB7UW8PhuZ7gtGKI6B+p7pqP9nqpJh79g xfKlCL5eVl5UI3prSZnbtGclf4y9T0QsyQwoetE2dLm0YX6GoVWVek6jh/+x3ykP yoX1/SDitPxXVqcBMj3Nw65QLZ4AwH0w/l5FzU2wJ0eVLeEi6RYoPldqnHZc7eGv JPYwXUxB+7Otq0OM+kseG2zP1D9Wy2GDWHdftWbER4bvOvSmxRLwoBzc6RG5xWUa FKl0T9KNN488PdtKAf45OUUJcQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGf+jOQL Zj6gP8cAVPl/zpqyVAQ4MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOURGRjAyRDRC RDJDMTFFQkJGNEFEQzI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnY8AwDwQCAAIwCQMHACABDfBIQDANBgkqhkiG9w0BAQsF AAOCAQEAGqWeROuPmzfKsdUINYCAvjoRfjo7Xvf4VA2gWKLqyOABSPVeh9Ci9t3B Ojrxh0Ppo1ofzKdh5/SwvYoLblWt547haKORXG5pmq7jBCMOLO0lJVbOgs/I0tQN xFzLoH/d/yb+yxRG6ljvSmu+oOJpAb/kednC74RvoxcDNsL4pI1rGGAlSDNnHLX7 NHT+X5zd5rzwNG0u7aGPDWBPDz2Yht1Kqd8D46hYRZWJbbCYiASiO1m1GtRQYIii lBFGRzKxaPCpNdSw6DCOmcSUSskXCkmVj4gqgbbDhcW3aAi3zEo98znVnCUwPmgj eXI4PdsSWKly4Nd6ITVHRVfnBxDgmQ== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:40 2024 by rpki-client on console-ams.rpki-client.org