$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A0976C4CBFE311ECBC869578C4F9AE02.roa File: A0976C4CBFE311ECBC869578C4F9AE02.roa (raw, json) Hash identifier: h2+H4zYPXNQeY6k/n8/2BIBgLrmDFcCNrHrF/xm7Vhk= Subject key identifier: 03:2A:1E:88:AC:4E:CD:BB:26:66:06:7B:2C:55:95:B1:FF:26:14:0C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6B52 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A0976C4CBFE311ECBC869578C4F9AE02.roa Signing time: Wed 10 May 2023 16:19:07 +0000 ROA not before: Wed 10 May 2023 16:19:07 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134873 IP address blocks: 103.204.164.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27474 (0x6b52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:19:07 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc3fa-69ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:bb:65:fb:43:6b:ec:a2:36:dd:b2:0f:b2:e6: c5:92:68:69:49:94:23:90:99:3b:c1:d4:76:86:fb: 51:5f:45:a1:b3:3a:1b:4b:dd:75:8e:64:52:98:b3: d1:ae:b6:b4:69:ff:5d:f3:4f:6b:19:36:a0:75:e6: 63:a5:f7:c8:7a:76:d2:9a:9a:d3:fc:3b:ea:b3:a9: cb:0c:96:b0:c3:d8:17:b4:b1:5b:0c:c4:5a:cd:43: fd:d7:b9:84:59:85:9f:d2:56:4a:35:e3:c0:13:67: 5e:4a:05:20:26:9a:db:75:17:5a:b1:87:e8:5a:5e: 4c:b1:e3:c3:86:7f:51:f0:fc:81:d0:12:20:16:b9: 85:37:e0:ea:30:53:e8:0c:77:00:ed:80:89:6f:88: bf:72:8f:6a:4d:ae:a2:2f:15:f4:3f:0a:a4:e2:2b: 57:c8:0c:13:6a:02:9a:0f:78:d7:c0:1b:2c:00:26: 6d:a9:8b:86:48:db:6d:d3:f8:8d:82:b2:ca:ca:f1: 1e:3d:fa:63:78:93:19:2c:7b:89:89:93:fb:de:23: 2c:79:98:5f:05:40:36:e8:71:31:82:27:50:89:b0: 6d:27:11:fa:bf:83:f1:2b:17:c8:36:8d:4a:09:df: ba:ba:4a:33:fb:6c:5a:f6:9f:c0:bb:2f:00:03:89: 47:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:2A:1E:88:AC:4E:CD:BB:26:66:06:7B:2C:55:95:B1:FF:26:14:0C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A0976C4CBFE311ECBC869578C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.204.164.0/22 Signature Algorithm: sha256WithRSAEncryption 3a:15:4e:ca:fd:eb:4d:36:67:5a:69:e6:ed:86:cb:c3:d9:f1: 7e:0d:bd:02:0e:53:32:43:8c:c3:30:50:a3:8f:f2:6a:3a:4d: 45:a5:27:e6:02:1b:07:4c:66:d1:81:c2:fb:a7:ff:7d:06:5d: b6:e9:22:2a:5d:0c:b5:2d:4a:97:11:c7:ec:ef:10:fe:3c:87: 29:79:c7:12:bc:51:79:1a:bd:81:63:d3:14:16:bf:58:cb:f0: b7:6b:0e:eb:7f:27:bd:df:c8:0d:9f:7d:6b:84:cc:33:c9:22: e0:26:0f:a0:8b:67:b6:6e:f5:7f:fa:19:38:18:ad:c0:9a:de: 0a:96:0c:6c:fe:a3:1c:32:87:88:12:fe:0a:1a:d8:42:49:1c: 4f:22:ce:6a:da:b2:f1:0c:1a:a6:99:a4:d4:98:71:f1:e5:14: e4:cd:48:4b:b8:8b:d7:e8:5d:8e:d5:55:d2:4c:14:8d:2c:38: e8:45:b6:1b:5c:1a:a8:34:fa:1c:67:27:69:46:0c:0f:33:04: 0d:42:98:eb:4f:bf:02:5f:9f:40:3c:f7:e1:d3:0d:74:fd:4b: f4:33:d6:77:58:5e:6c:01:b5:78:bd:d1:46:75:5e:d6:08:fe: 4b:ca:31:b5:d7:99:15:a2:8c:f2:6b:f7:69:7e:fb:4c:14:85: 51:90:ef:73 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICa1IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxOTA3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzNmYS02OWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0rtl+0Nr7KI23bIPsubFkmhpSZQjkJk7wdR2hvtRX0WhszobS911jmRSmLPR rra0af9d809rGTagdeZjpffIenbSmprT/Dvqs6nLDJaww9gXtLFbDMRazUP917mE WYWf0lZKNePAE2deSgUgJprbdRdasYfoWl5MsePDhn9R8PyB0BIgFrmFN+DqMFPo DHcA7YCJb4i/co9qTa6iLxX0Pwqk4itXyAwTagKaD3jXwBssACZtqYuGSNtt0/iN grLKyvEePfpjeJMZLHuJiZP73iMseZhfBUA26HExgidQibBtJxH6v4PxKxfINo1K Cd+6ukoz+2xa9p/Auy8AA4lH3wIDAQABo4IClTCCApEwHQYDVR0OBBYEFAMqHois Ts27JmYGeyxVlbH/JhQMMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQTA5NzZDNENC RkUzMTFFQ0JDODY5NTc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnzKQwDQYJKoZIhvcNAQELBQADggEBADoVTsr96002Z1pp 5u2Gy8PZ8X4NvQIOUzJDjMMwUKOP8mo6TUWlJ+YCGwdMZtGBwvun/30GXbbpIipd DLUtSpcRx+zvEP48hyl5xxK8UXkavYFj0xQWv1jL8LdrDut/J73fyA2ffWuEzDPJ IuAmD6CLZ7Zu9X/6GTgYrcCa3gqWDGz+oxwyh4gS/goa2EJJHE8izmrasvEMGqaZ pNSYcfHlFOTNSEu4i9foXY7VVdJMFI0sOOhFthtcGqg0+hxnJ2lGDA8zBA1CmOtP vwJfn0A89+HTDXT9S/Qz1ndYXmwBtXi90UZ1XtYI/kvKMbXXmRWijPJr92l++0wU hVGQ73M= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:40 2024 by rpki-client on console-ams.rpki-client.org