$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A0E938C858FA11ED88EAAD1CC4F9AE02.roa File: A0E938C858FA11ED88EAAD1CC4F9AE02.roa (raw, json) Hash identifier: 3G9u+AzOgcxN+ofte+pgzYoSo4VL7687mi6PTVI4gNU= Subject key identifier: 28:AF:7F:FE:12:06:53:AE:B4:CC:3E:C8:81:D3:47:CF:BF:22:93:A5 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 72A4 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A0E938C858FA11ED88EAAD1CC4F9AE02.roa Signing time: Tue 23 May 2023 13:52:04 +0000 ROA not before: Tue 23 May 2023 13:52:04 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 150063 IP address blocks: 103.19.120.0/23 maxlen: 24 2001:df1:6fc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29348 (0x72a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 23 13:52:04 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=646cc504-3c47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9f:b3:51:80:1f:b9:67:1f:c7:4e:b6:c8:2a: fa:2a:70:2c:65:63:19:36:19:7b:d3:d7:c5:f3:c9: d0:20:52:05:75:23:15:da:fb:80:61:f9:93:1c:7a: b7:6f:1d:12:be:53:04:80:76:90:0a:47:9a:32:ed: 4e:a3:6a:41:56:8c:fe:c0:d7:dc:01:74:c7:b7:c7: 98:94:dd:ad:a3:ef:01:eb:35:42:00:a5:ac:29:dc: 0d:5b:5e:ef:01:85:f1:de:b3:8e:62:d1:c6:ad:58: fe:5f:97:3c:21:85:2c:fe:37:af:5f:97:0c:3e:65: ee:d6:26:36:51:1e:80:cb:10:cd:ee:72:52:ff:d1: d7:bd:fe:64:4e:8a:e2:8b:34:30:2c:b0:fe:87:a1: ef:c7:e4:22:36:56:ba:7e:cf:89:c0:68:fa:d9:2b: 2c:c2:8d:fc:12:e6:07:0c:69:97:eb:5d:00:c9:05: 8f:15:9c:00:47:92:9e:73:54:80:3a:7e:87:d6:f0: 23:95:30:10:92:94:57:6f:ba:02:f8:dd:01:e3:5b: 2b:82:09:dc:df:23:3e:ba:59:32:05:f9:41:cb:d1: 5e:b1:4c:3c:19:d3:1c:16:77:9d:34:81:ec:c4:c1: 38:cb:75:24:f9:a7:88:e6:18:75:f7:e5:b5:d8:bd: 5e:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:AF:7F:FE:12:06:53:AE:B4:CC:3E:C8:81:D3:47:CF:BF:22:93:A5 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A0E938C858FA11ED88EAAD1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.19.120.0/23 IPv6: 2001:df1:6fc0::/48 Signature Algorithm: sha256WithRSAEncryption 1a:20:b9:c8:3d:47:0b:3b:3d:c7:e3:8c:24:19:03:32:a3:0c: 56:7c:24:d6:9e:e6:8f:52:04:a7:ae:eb:4d:2d:80:83:29:28: 3d:11:36:9c:03:cd:0a:52:3a:62:eb:8e:2b:07:c2:d0:94:9b: 8d:38:24:0b:75:0e:6c:64:fa:b4:f0:49:2f:22:45:fe:1a:a1: 80:c7:69:62:dd:0f:ea:72:5f:35:cf:4e:e5:92:52:1a:60:be: b3:f6:b2:02:19:3a:87:7d:43:3f:93:61:b4:1f:5c:ac:24:29: 06:e0:ac:4e:ad:0b:bb:6c:bc:04:51:49:89:4e:e6:91:95:3b: 97:cd:bd:c4:66:5d:69:21:fa:e3:0f:21:bd:13:72:8a:ce:9c: 0a:75:3d:44:82:6b:7e:ea:6a:24:25:a0:af:cb:82:1f:94:6a: 8a:d7:e4:3d:47:49:c4:c2:4c:6d:c2:2f:40:5c:3f:dc:f1:d1: c8:34:13:9a:04:c6:34:77:e4:79:2e:99:cd:ed:e7:eb:67:f7: be:39:55:20:53:a5:af:c6:81:a9:15:5f:49:a0:9a:a3:cd:8e: d4:1b:b0:4c:f3:bc:51:11:d5:0b:65:d5:da:7c:91:fe:fc:ad: e6:9f:3f:93:af:8d:db:23:7d:a1:51:2d:f9:42:ec:83:72:56: be:f8:43:b5 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICcqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTIzMTM1MjA0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDZjYzUwNC0zYzQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtp+zUYAfuWcfx062yCr6KnAsZWMZNhl709fF88nQIFIFdSMV2vuAYfmTHHq3 bx0SvlMEgHaQCkeaMu1Oo2pBVoz+wNfcAXTHt8eYlN2to+8B6zVCAKWsKdwNW17v AYXx3rOOYtHGrVj+X5c8IYUs/jevX5cMPmXu1iY2UR6AyxDN7nJS/9HXvf5kTori izQwLLD+h6Hvx+QiNla6fs+JwGj62Ssswo38EuYHDGmX610AyQWPFZwAR5Kec1SA On6H1vAjlTAQkpRXb7oC+N0B41srggnc3yM+ulkyBflBy9FesUw8GdMcFnedNIHs xME4y3Uk+aeI5hh19+W12L1ezQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCivf/4S BlOutMw+yIHTR8+/IpOlMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQTBFOTM4Qzg1 OEZBMTFFRDg4RUFBRDFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnE3gwDwQCAAIwCQMHACABDfFvwDANBgkqhkiG9w0BAQsF AAOCAQEAGiC5yD1HCzs9x+OMJBkDMqMMVnwk1p7mj1IEp67rTS2AgykoPRE2nAPN ClI6YuuOKwfC0JSbjTgkC3UObGT6tPBJLyJF/hqhgMdpYt0P6nJfNc9O5ZJSGmC+ s/ayAhk6h31DP5NhtB9crCQpBuCsTq0Lu2y8BFFJiU7mkZU7l829xGZdaSH64w8h vRNyis6cCnU9RIJrfupqJCWgr8uCH5RqitfkPUdJxMJMbcIvQFw/3PHRyDQTmgTG NHfkeS6Zze3n62f3vjlVIFOlr8aBqRVfSaCao82O1BuwTPO8URHVC2XV2nyR/vyt 5p8/k6+N2yN9oVEt+ULsg3JWvvhDtQ== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:40 2024 by rpki-client on console-ams.rpki-client.org