$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A5F41E1625AF11ECA3AE8F70C4F9AE02.roa File: A5F41E1625AF11ECA3AE8F70C4F9AE02.roa (raw, json) Hash identifier: 9yR5uSIsdeCYpYuF0QLhwl04li7EiFyizZBuzOJxT1c= Subject key identifier: 31:FE:BA:F2:8D:7C:87:0A:9D:B8:49:8C:5F:58:2A:92:8D:2C:FE:C4 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6F54 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A5F41E1625AF11ECA3AE8F70C4F9AE02.roa Signing time: Wed 10 May 2023 16:38:17 +0000 ROA not before: Wed 10 May 2023 16:38:17 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 142455 IP address blocks: 103.170.92.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28500 (0x6f54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:38:17 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc879-6e53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:15:2c:fa:0f:04:33:a2:29:86:52:cb:ef:de: 13:59:2f:8e:02:16:6b:a2:5a:1a:fc:0a:d2:c5:c7: 31:3a:2b:14:2d:bf:6d:1e:f9:e8:88:9c:09:9b:f0: ba:24:ac:52:c1:36:32:a2:44:9a:05:db:46:79:78: 0e:bd:6d:e6:dd:58:18:96:03:e6:ae:d9:dd:e9:b5: 53:98:a0:cb:44:01:22:bc:61:fa:73:52:54:ac:25: 02:33:c1:72:2a:e5:08:2d:76:e5:a9:28:6b:a3:34: 11:f2:d4:96:85:64:b8:8f:2d:84:ef:ff:19:dd:5b: 9d:ac:03:45:87:57:74:3c:18:ee:ab:fc:bc:73:cd: 7f:5d:75:98:2f:e7:5a:81:49:2f:d5:04:56:03:dc: 2c:c9:11:a0:c0:3d:f6:82:9c:42:90:a8:17:42:3d: 0b:db:c5:e2:f2:0e:e1:bb:0c:2a:c2:44:db:38:e2: b8:c0:77:87:74:f3:a6:7b:d5:ec:90:a3:f0:be:0a: 98:60:83:ce:1a:8c:d4:9c:7c:aa:41:2b:8d:02:1d: e8:66:4a:44:f0:a7:94:73:cb:15:a0:75:9d:61:e0: af:38:c1:78:bc:87:1d:27:e8:ed:d7:96:0c:56:45: be:1d:42:4c:40:4b:b6:25:2f:2b:d8:4b:f8:84:6f: 79:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:FE:BA:F2:8D:7C:87:0A:9D:B8:49:8C:5F:58:2A:92:8D:2C:FE:C4 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A5F41E1625AF11ECA3AE8F70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.92.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:a5:63:4d:8f:8f:a7:9b:c9:38:74:ee:91:c9:b3:28:cf:b5: 2d:6e:50:e6:09:6c:e5:8b:dd:12:c0:fd:5f:06:f4:24:7c:c0: 3c:c1:f7:8b:f7:09:b4:31:a1:60:37:a8:7b:f9:27:20:14:da: 31:1a:8d:68:3d:13:d1:3d:42:de:84:66:14:dc:ad:bb:d8:1c: 72:cf:f6:53:1c:08:ea:6c:21:30:5c:99:cc:31:0d:b2:db:7a: ee:70:d7:fe:46:fa:46:a3:ae:87:f2:33:38:ab:f9:ff:fd:c3: a0:df:df:5b:b5:16:5a:1c:e8:0a:73:4b:d9:de:4b:3a:d0:5f: bd:c5:b7:5e:e7:1d:0f:2d:5c:4b:49:12:86:1f:1a:5b:bf:59: 7a:4c:9f:4e:5f:63:b9:00:a5:ca:df:33:bb:d9:bd:77:6e:1f: 86:35:7d:3c:f8:a6:8a:42:ba:8d:3d:7f:be:90:f0:34:43:3c: 2f:c8:19:db:9d:2d:5b:35:4d:98:8d:ee:a8:22:2c:06:b3:70: 38:c9:31:48:9e:ad:ac:94:7a:5e:ac:2b:7d:e7:bf:01:6c:7a: 54:f1:dc:c3:94:4a:58:2f:c1:00:3a:40:7b:c5:a3:8c:d8:d3: 57:d3:41:fb:dd:02:f9:58:b9:27:ea:23:6d:a1:f9:a6:4e:ed: 4b:75:77:e5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICb1QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzODE3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzg3OS02ZTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApxUs+g8EM6IphlLL794TWS+OAhZroloa/ArSxccxOisULb9tHvnoiJwJm/C6 JKxSwTYyokSaBdtGeXgOvW3m3VgYlgPmrtnd6bVTmKDLRAEivGH6c1JUrCUCM8Fy KuUILXblqShrozQR8tSWhWS4jy2E7/8Z3VudrANFh1d0PBjuq/y8c81/XXWYL+da gUkv1QRWA9wsyRGgwD32gpxCkKgXQj0L28Xi8g7huwwqwkTbOOK4wHeHdPOme9Xs kKPwvgqYYIPOGozUnHyqQSuNAh3oZkpE8KeUc8sVoHWdYeCvOMF4vIcdJ+jt15YM VkW+HUJMQEu2JS8r2Ev4hG95NwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDH+uvKN fIcKnbhJjF9YKpKNLP7EMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQTVGNDFFMTYy NUFGMTFFQ0EzQUU4RjcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnqlwwDQYJKoZIhvcNAQELBQADggEBAIqlY02Pj6ebyTh0 7pHJsyjPtS1uUOYJbOWL3RLA/V8G9CR8wDzB94v3CbQxoWA3qHv5JyAU2jEajWg9 E9E9Qt6EZhTcrbvYHHLP9lMcCOpsITBcmcwxDbLbeu5w1/5G+kajrofyMzir+f/9 w6Df31u1Floc6ApzS9neSzrQX73Ft17nHQ8tXEtJEoYfGlu/WXpMn05fY7kApcrf M7vZvXduH4Y1fTz4popCuo09f76Q8DRDPC/IGdudLVs1TZiN7qgiLAazcDjJMUie rayUel6sK33nvwFselTx3MOUSlgvwQA6QHvFo4zY01fTQfvdAvlYuSfqI22h+aZO 7Ut1d+U= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:41 2024 by rpki-client on console-ams.rpki-client.org