$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A0954B185D7011EC969EDD4BC4F9AE02.roa File: A0954B185D7011EC969EDD4BC4F9AE02.roa (raw, json) Hash identifier: +OlxSH1amT/ULKmko6ytgJ7DXEmSVrQTblCjHjA9Y3U= Subject key identifier: 79:E8:CB:90:0B:ED:DE:BA:E9:8C:AE:77:FE:98:20:EE:B4:62:F9:67 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6D1D Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A0954B185D7011EC969EDD4BC4F9AE02.roa Signing time: Wed 10 May 2023 16:27:44 +0000 ROA not before: Wed 10 May 2023 16:27:44 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 137612 IP address blocks: 103.117.38.0/24 maxlen: 24 103.117.39.0/24 maxlen: 24 2001:df1:acc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27933 (0x6d1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:27:44 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc600-2056 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ff:0c:1f:fa:0c:53:76:46:67:06:cf:76:f3: b2:34:b1:0c:44:1c:65:19:29:45:f7:90:74:14:d6: 1d:ee:60:82:dd:28:bb:46:7f:51:ac:f0:33:ca:2d: 80:16:1d:3d:1f:e2:8d:4c:ec:98:46:1b:f2:9b:d0: e9:60:04:63:d6:7d:34:ae:d5:20:91:a8:71:a8:22: fe:ad:3d:b0:27:97:9e:20:c5:5f:e7:17:e4:ab:73: dd:66:62:93:d4:6d:d8:3f:2e:c0:c2:a2:af:cb:d8: ac:b7:1c:37:be:db:f5:0e:dc:50:ca:13:ff:ed:23: 83:70:5d:f2:51:78:83:34:9e:03:25:00:f2:8c:f1: c3:97:fe:d9:da:c4:d1:a5:8d:cb:59:92:b2:4f:cf: b0:ba:99:14:81:30:e3:f4:72:2b:0e:45:e5:d5:61: 78:ca:f8:a4:e8:b4:6e:47:a3:b7:4a:4f:d8:40:89: ca:66:d2:a1:8b:91:67:3e:68:f6:83:e1:71:ad:5e: df:67:9d:91:15:57:99:a7:80:0b:f9:ea:2b:3c:d0: 06:c8:15:ca:80:fa:99:07:32:09:d9:95:bc:9c:08: e1:e9:27:65:96:f6:42:be:4d:13:e2:1e:54:36:52: 73:02:39:05:a7:05:45:3c:07:0b:58:f3:61:1a:c8: c7:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:E8:CB:90:0B:ED:DE:BA:E9:8C:AE:77:FE:98:20:EE:B4:62:F9:67 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A0954B185D7011EC969EDD4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.38.0/23 IPv6: 2001:df1:acc0::/48 Signature Algorithm: sha256WithRSAEncryption aa:c1:67:20:92:8b:7d:36:d2:8e:fc:ca:8e:75:0a:97:55:0e: d0:14:3a:64:95:7e:e0:60:f0:f9:3b:66:49:f1:fe:83:9b:ff: 28:96:a0:15:7c:55:69:85:83:69:fa:b2:bb:dc:fb:2a:2e:a4: e6:e5:96:8a:b8:d8:fa:02:a4:c9:70:b9:5a:6c:95:56:75:dc: 8f:1a:af:8f:da:52:4e:ac:2e:6f:ad:28:1f:95:09:e5:de:53: 36:60:bd:4c:5c:fd:86:79:2a:be:a1:9e:50:0a:f5:c4:b5:ae: 82:08:18:50:6e:59:3d:1d:ba:f7:0c:eb:9d:d8:e3:f1:c9:41: 11:dc:34:54:2e:b0:a6:ab:fd:36:c4:d0:8f:5f:82:e5:15:68: a5:b0:9d:65:9f:ee:ad:76:7c:16:45:f8:cb:6d:34:cf:ab:6f: 4b:ca:26:92:db:ad:37:89:88:57:d8:ec:ad:fb:a6:fe:d1:8c: c0:60:20:ea:53:d7:4e:83:4d:7f:26:d3:e5:97:7d:ff:f2:b6: ef:b6:ce:01:99:fe:8e:13:1d:51:52:3f:61:51:a9:7f:d6:9e: 15:e4:6b:67:36:79:fc:a4:db:ce:4c:d4:e3:71:81:4d:32:3e: fb:3e:30:1b:ab:d9:53:82:c0:3a:b2:66:ea:e7:8e:bd:22:0b: 48:fd:38:36 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICbR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNzQ0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzYwMC0yMDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwf8MH/oMU3ZGZwbPdvOyNLEMRBxlGSlF95B0FNYd7mCC3Si7Rn9RrPAzyi2A Fh09H+KNTOyYRhvym9DpYARj1n00rtUgkahxqCL+rT2wJ5eeIMVf5xfkq3PdZmKT 1G3YPy7AwqKvy9istxw3vtv1DtxQyhP/7SODcF3yUXiDNJ4DJQDyjPHDl/7Z2sTR pY3LWZKyT8+wupkUgTDj9HIrDkXl1WF4yvik6LRuR6O3Sk/YQInKZtKhi5FnPmj2 g+FxrV7fZ52RFVeZp4AL+eorPNAGyBXKgPqZBzIJ2ZW8nAjh6SdllvZCvk0T4h5U NlJzAjkFpwVFPAcLWPNhGsjHcwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHnoy5AL 7d666Yyud/6YIO60YvlnMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQTA5NTRCMTg1 RDcwMTFFQzk2OUVERDRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFndSYwDwQCAAIwCQMHACABDfGswDANBgkqhkiG9w0BAQsF AAOCAQEAqsFnIJKLfTbSjvzKjnUKl1UO0BQ6ZJV+4GDw+TtmSfH+g5v/KJagFXxV aYWDafqyu9z7Ki6k5uWWirjY+gKkyXC5WmyVVnXcjxqvj9pSTqwub60oH5UJ5d5T NmC9TFz9hnkqvqGeUAr1xLWugggYUG5ZPR269wzrndjj8clBEdw0VC6wpqv9NsTQ j1+C5RVopbCdZZ/urXZ8FkX4y200z6tvS8omktutN4mIV9jsrfum/tGMwGAg6lPX ToNNfybT5Zd9//K277bOAZn+jhMdUVI/YVGpf9aeFeRrZzZ5/KTbzkzU43GBTTI+ +z4wG6vZU4LAOrJm6ueOvSILSP04Ng== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:40 2024 by rpki-client on console-ams.rpki-client.org