$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A5AEC4084FF211EBB552EE6EC4F9AE02.roa File: A5AEC4084FF211EBB552EE6EC4F9AE02.roa (raw, json) Hash identifier: coP891/F+M02xhlgEbJCmwfkFgJGNPVz9TCZzms88XY= Subject key identifier: D9:C8:0A:5C:E0:56:1C:EB:9A:46:9B:9B:CB:EB:01:43:C1:F2:42:66 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6DBA Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A5AEC4084FF211EBB552EE6EC4F9AE02.roa Signing time: Wed 10 May 2023 16:30:45 +0000 ROA not before: Wed 10 May 2023 16:30:45 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 138776 IP address blocks: 103.161.25.0/24 maxlen: 24 2001:df1:4940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28090 (0x6dba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:30:45 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc6b5-0051 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c9:64:b9:24:e1:78:f4:51:a0:44:84:6d:2c: 01:0c:b6:7d:06:ad:f5:27:2f:3d:55:c4:dd:59:72: 68:c8:61:9f:f7:98:22:f2:a2:c1:f4:b9:f7:f5:4e: 62:b9:44:cc:52:88:d6:dc:e4:ad:d2:6f:d1:63:70: 38:ca:47:d8:23:11:da:27:ae:3f:b2:2c:b1:61:5d: 56:9d:8d:fb:2b:4b:57:2c:78:94:26:01:4f:15:9a: 95:d1:fe:40:86:fe:30:2c:36:26:1e:5c:02:a6:47: c9:c8:c2:56:69:85:0b:90:e6:de:7b:54:83:5d:d5: 9f:c5:df:6d:61:db:60:29:bd:0a:1c:4c:08:67:1b: b0:9a:65:82:a0:df:03:4c:94:fe:c7:e6:5f:a0:bd: 9c:70:24:40:38:d7:08:bc:67:8b:75:d2:81:6d:8e: 4b:f1:17:48:ef:80:d4:1f:de:fc:ee:5f:b7:2a:8a: dd:fa:e8:99:3c:dc:8c:54:92:2d:2e:0a:6c:3e:78: b1:4a:c2:00:76:6c:d3:ad:d2:4c:fb:81:73:43:c3: 92:4b:be:64:df:22:68:20:e0:2f:f9:6e:70:3f:f0: 23:20:3b:97:ce:a9:1d:f9:cb:2c:af:c5:92:f9:02: 96:3b:34:e9:36:ab:21:69:8f:b8:07:a1:d9:1a:5a: c2:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:C8:0A:5C:E0:56:1C:EB:9A:46:9B:9B:CB:EB:01:43:C1:F2:42:66 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A5AEC4084FF211EBB552EE6EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.161.25.0/24 IPv6: 2001:df1:4940::/48 Signature Algorithm: sha256WithRSAEncryption 95:c4:77:89:7b:af:36:84:7d:d4:a8:c3:54:b9:89:4b:d0:af: 3b:ae:76:d2:11:de:1d:5a:03:db:a2:ca:86:de:d4:b9:b4:02: f5:be:e3:08:77:9a:a1:93:3f:30:3c:38:3b:c0:9f:19:ea:a1: 9c:94:42:2d:c4:e1:37:c7:a4:60:fe:e0:d2:81:81:26:8a:58: 29:22:19:51:bd:7f:32:76:c6:f8:bb:dd:f3:e0:15:48:b0:cf: 14:fb:5a:f0:f1:d7:b7:74:29:6d:ee:8a:3d:1d:9f:e5:10:06: 98:52:2f:8a:e5:11:28:47:4b:e9:43:98:18:e3:21:67:8a:04: 27:30:dc:5a:eb:11:32:07:d2:91:1d:92:b6:f2:73:af:ba:03: 4f:2c:b6:8f:16:6f:23:10:8c:93:f0:ac:8f:ac:8e:c1:a2:35: de:4e:f1:20:37:d0:0e:47:1b:b8:7d:b8:7b:21:1c:15:41:df: 21:0f:96:36:80:50:53:9d:d3:34:73:01:f7:58:0e:69:95:7f: c1:0b:9e:17:66:15:dd:76:5f:86:ea:66:c1:44:15:2f:9c:88: c6:a4:aa:c6:92:86:dd:dd:48:e1:8e:93:ce:58:c8:67:87:b6: 4d:b7:0d:93:5a:27:b9:b7:fb:91:92:a0:34:99:15:37:53:b6: 1c:d1:cb:fd -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICbbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzMDQ1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzZiNS0wMDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvclkuSThePRRoESEbSwBDLZ9Bq31Jy89VcTdWXJoyGGf95gi8qLB9Ln39U5i uUTMUojW3OSt0m/RY3A4ykfYIxHaJ64/siyxYV1WnY37K0tXLHiUJgFPFZqV0f5A hv4wLDYmHlwCpkfJyMJWaYULkObee1SDXdWfxd9tYdtgKb0KHEwIZxuwmmWCoN8D TJT+x+ZfoL2ccCRAONcIvGeLddKBbY5L8RdI74DUH9787l+3Kord+uiZPNyMVJIt LgpsPnixSsIAdmzTrdJM+4FzQ8OSS75k3yJoIOAv+W5wP/AjIDuXzqkd+cssr8WS +QKWOzTpNqshaY+4B6HZGlrCzwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNnIClzg Vhzrmkabm8vrAUPB8kJmMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQTVBRUM0MDg0 RkYyMTFFQkI1NTJFRTZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnoRkwDwQCAAIwCQMHACABDfFJQDANBgkqhkiG9w0BAQsF AAOCAQEAlcR3iXuvNoR91KjDVLmJS9CvO6520hHeHVoD26LKht7UubQC9b7jCHea oZM/MDw4O8CfGeqhnJRCLcThN8ekYP7g0oGBJopYKSIZUb1/MnbG+Lvd8+AVSLDP FPta8PHXt3Qpbe6KPR2f5RAGmFIviuURKEdL6UOYGOMhZ4oEJzDcWusRMgfSkR2S tvJzr7oDTyy2jxZvIxCMk/Csj6yOwaI13k7xIDfQDkcbuH24eyEcFUHfIQ+WNoBQ U53TNHMB91gOaZV/wQueF2YV3XZfhupmwUQVL5yIxqSqxpKG3d1I4Y6TzljIZ4e2 TbcNk1onubf7kZKgNJkVN1O2HNHL/Q== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:41 2024 by rpki-client on console-ams.rpki-client.org