$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AA9D339E694D11ECB6F9B541C4F9AE02.roa File: AA9D339E694D11ECB6F9B541C4F9AE02.roa (raw, json) Hash identifier: wefJDoypXT8ygiZ7gl64GXTfyG+yvmid/DL1/A0gvBM= Subject key identifier: 05:6F:FE:E5:97:AE:73:55:35:21:D7:CA:BF:07:67:6D:18:74:81:46 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6D34 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AA9D339E694D11ECB6F9B541C4F9AE02.roa Signing time: Wed 10 May 2023 16:28:10 +0000 ROA not before: Wed 10 May 2023 16:28:10 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 137649 IP address blocks: 103.120.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27956 (0x6d34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:28:10 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc61a-c9e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:71:f7:c2:77:55:28:51:63:6c:9b:02:17:e0: 5b:29:5a:93:01:59:84:08:2f:87:08:07:cf:cd:20: 05:46:89:41:92:d1:d7:87:a0:8f:3a:c9:40:ab:12: 83:76:84:a1:35:2c:3f:77:12:7b:2f:a8:1e:a1:e3: f1:6b:37:36:c3:cc:9c:69:d0:8d:3f:83:f7:13:8f: 0d:d4:31:1e:96:f0:61:37:a2:46:cb:3a:35:b9:63: 06:47:bd:3b:6a:8e:78:0e:bb:c8:95:25:ab:25:8c: 29:50:50:35:12:41:59:79:f9:47:7f:54:e5:6c:87: f0:65:4a:81:97:ce:c7:63:ca:dc:2f:ed:83:05:ec: 19:41:d7:46:e5:9a:3d:20:0f:23:af:f0:29:df:79: f2:ec:af:3f:88:eb:b0:99:db:aa:50:21:2a:55:4e: 4e:db:43:95:d3:a9:b9:a9:f8:46:4b:a6:39:3e:27: 7d:28:19:76:b1:a6:d8:a2:49:3a:29:1a:9a:61:4d: 26:5f:c1:81:34:59:12:1b:2b:36:92:de:6d:85:cf: 90:fe:c6:42:f0:d2:7e:5b:0a:01:34:bd:02:d6:6f: a0:7c:2e:b9:f6:32:98:cd:a5:31:1f:d0:6c:80:f5: 5d:5a:37:ba:18:88:18:f0:94:98:39:b1:f1:d0:bf: dd:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:6F:FE:E5:97:AE:73:55:35:21:D7:CA:BF:07:67:6D:18:74:81:46 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AA9D339E694D11ECB6F9B541C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.0.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:26:86:30:01:7e:24:13:34:d1:fe:11:fb:9d:34:77:47:f5: a9:a8:68:d1:b9:c8:7c:db:31:26:8b:56:7b:b4:69:64:ea:31: 8e:3f:0a:83:38:1b:e9:91:4b:26:e4:7a:30:42:51:51:68:da: 7b:4d:3f:f3:ae:a3:38:d5:76:19:96:50:c6:f8:e3:3c:38:53: 2e:a4:ed:2d:ab:a4:93:fd:d8:75:99:6c:50:10:a9:61:9f:5c: 89:43:72:f1:49:67:0a:3c:be:45:68:99:65:c4:16:c7:ba:bc: bc:a7:97:cd:1b:58:27:ff:b3:79:09:36:7f:ab:c2:9e:87:6d: b7:bb:40:5c:f9:e0:60:38:21:c2:48:f8:03:c4:eb:04:d7:4e: 8c:03:db:f1:fa:62:b3:ab:6a:75:6c:66:c8:e5:39:3d:7e:4c: ce:f2:51:ad:73:0a:fc:6e:84:c5:74:60:19:55:f4:b0:26:10: 94:94:e3:5b:2d:1c:2e:7b:57:2c:64:86:17:7f:36:58:87:2a: b9:26:34:7a:df:2f:ea:fc:e5:c5:7a:b9:27:2e:02:ef:8e:59: ec:9d:19:a8:7b:86:b0:ab:83:3c:ba:20:5f:b9:49:33:68:e9: 99:33:5d:7f:e1:e0:9d:f9:f7:88:eb:5f:7f:68:67:5c:a9:ba: f2:2f:0b:7d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbTQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyODEwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzYxYS1jOWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3H3wndVKFFjbJsCF+BbKVqTAVmECC+HCAfPzSAFRolBktHXh6CPOslAqxKD doShNSw/dxJ7L6geoePxazc2w8ycadCNP4P3E48N1DEelvBhN6JGyzo1uWMGR707 ao54DrvIlSWrJYwpUFA1EkFZeflHf1TlbIfwZUqBl87HY8rcL+2DBewZQddG5Zo9 IA8jr/Ap33ny7K8/iOuwmduqUCEqVU5O20OV06m5qfhGS6Y5Pid9KBl2sabYokk6 KRqaYU0mX8GBNFkSGys2kt5thc+Q/sZC8NJ+WwoBNL0C1m+gfC659jKYzaUxH9Bs gPVdWje6GIgY8JSYObHx0L/dEwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAVv/uWX rnNVNSHXyr8HZ20YdIFGMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQUE5RDMzOUU2 OTREMTFFQ0I2RjlCNTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJneAAwDQYJKoZIhvcNAQELBQADggEBABomhjABfiQTNNH+ EfudNHdH9amoaNG5yHzbMSaLVnu0aWTqMY4/CoM4G+mRSybkejBCUVFo2ntNP/Ou ozjVdhmWUMb44zw4Uy6k7S2rpJP92HWZbFAQqWGfXIlDcvFJZwo8vkVomWXEFse6 vLynl80bWCf/s3kJNn+rwp6Hbbe7QFz54GA4IcJI+APE6wTXTowD2/H6YrOranVs ZsjlOT1+TM7yUa1zCvxuhMV0YBlV9LAmEJSU41stHC57Vyxkhhd/NliHKrkmNHrf L+r85cV6uScuAu+OWeydGah7hrCrgzy6IF+5STNo6ZkzXX/h4J3594jrX39oZ1yp uvIvC30= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:41 2024 by rpki-client on console-ams.rpki-client.org