$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AC555064D5B711ECB09BCC49C4F9AE02.roa File: AC555064D5B711ECB09BCC49C4F9AE02.roa (raw, json) Hash identifier: G9une+x92jsb6kk9s5bcZgm5e6EK5jFt1EenlB5emvg= Subject key identifier: 49:73:CD:21:18:BF:FA:C2:10:3B:F4:F3:16:8D:AF:CA:B3:0D:AF:76 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7008 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AC555064D5B711ECB09BCC49C4F9AE02.roa Signing time: Wed 10 May 2023 16:41:39 +0000 ROA not before: Wed 10 May 2023 16:41:39 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 147268 IP address blocks: 103.176.254.0/24 maxlen: 24 103.176.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28680 (0x7008) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:41:39 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc943-76d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:3c:8e:76:ff:89:93:b7:b0:cc:3d:b2:d5:94: 78:04:17:6c:20:bb:a8:c3:d8:a7:8f:8b:f2:ec:2b: ec:e3:00:3a:a8:7d:69:17:05:82:53:f4:ee:67:de: a8:aa:f2:e9:2f:c9:9c:ae:2c:0c:ba:b9:7c:61:87: 76:a9:6e:e3:50:fd:ef:0b:e7:09:02:e4:99:d6:01: ed:00:92:43:01:fa:f2:44:7f:8a:8a:73:46:01:2d: dc:f0:64:50:f6:34:33:84:5e:d3:f1:67:1c:2c:52: e4:7e:cc:f2:91:6f:ce:ce:0a:c0:fe:3f:95:ac:c3: 67:7c:56:f2:6b:25:cd:0e:60:08:6c:32:a4:35:35: a4:cd:f6:b1:74:d4:67:f2:f3:28:11:da:19:80:df: 5f:9d:41:32:6b:08:27:38:f0:3e:a5:c0:00:21:4c: 75:07:39:03:9a:dd:52:4e:1a:2a:2e:fa:34:a4:0a: cc:1c:ef:38:61:3e:2f:21:fc:99:53:6b:80:10:10: de:ab:c6:41:bf:4b:f9:f4:38:58:97:53:66:34:d0: 98:ce:42:0b:ad:9c:42:bc:d6:28:2e:14:72:56:c5: b8:31:98:cb:07:ae:6e:d5:1b:5b:18:6c:3f:03:1a: 0d:97:c8:32:10:69:eb:aa:d3:24:12:4f:1d:98:5f: b6:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:73:CD:21:18:BF:FA:C2:10:3B:F4:F3:16:8D:AF:CA:B3:0D:AF:76 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AC555064D5B711ECB09BCC49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.176.254.0/23 Signature Algorithm: sha256WithRSAEncryption 27:f4:20:fd:3a:77:c5:f4:30:78:f6:6d:47:08:36:a7:94:de: 8a:a7:a6:9e:d6:b7:6d:f9:13:f7:dd:19:87:d6:31:92:06:aa: 67:3e:96:5f:33:7c:16:e5:2b:5d:0d:1f:db:e1:86:eb:65:0c: 18:a7:81:2a:33:38:0b:6b:90:16:ce:b6:57:c3:06:9c:6c:f9: 6a:86:c7:16:c6:ef:b0:6e:da:6f:10:96:71:db:50:7a:f8:6d: 48:4f:20:08:5f:56:40:d7:0c:0f:41:7c:fb:a1:c6:1d:fc:c7: 0e:1d:e1:38:bd:ed:4b:78:e9:8b:e2:82:de:98:aa:3b:ac:96: 97:ed:d2:98:6b:91:64:07:e5:e8:63:78:00:86:87:68:9f:49: d9:57:3a:54:69:f3:c0:80:4b:92:7b:6d:4f:f0:29:98:41:a3: b0:2d:98:8d:5f:81:af:d3:26:0a:d5:d0:42:65:01:3e:94:9c: 73:80:06:98:39:a5:25:35:84:86:40:b0:e3:91:51:4c:ed:90: 79:27:a2:ba:58:6b:33:a7:30:48:2a:1a:95:73:79:27:4f:25: 58:d8:ce:3e:38:a3:6f:27:3c:1b:02:d1:ce:e6:ee:11:7d:44: ae:b3:c0:fb:54:55:89:f7:79:da:4b:48:f0:74:52:fd:a8:d3: 82:4f:f6:77 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICcAgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0MTM5WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzk0My03NmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1zyOdv+Jk7ewzD2y1ZR4BBdsILuow9inj4vy7Cvs4wA6qH1pFwWCU/TuZ96o qvLpL8mcriwMurl8YYd2qW7jUP3vC+cJAuSZ1gHtAJJDAfryRH+KinNGAS3c8GRQ 9jQzhF7T8WccLFLkfszykW/OzgrA/j+VrMNnfFbyayXNDmAIbDKkNTWkzfaxdNRn 8vMoEdoZgN9fnUEyawgnOPA+pcAAIUx1BzkDmt1SThoqLvo0pArMHO84YT4vIfyZ U2uAEBDeq8ZBv0v59DhYl1NmNNCYzkILrZxCvNYoLhRyVsW4MZjLB65u1RtbGGw/ AxoNl8gyEGnrqtMkEk8dmF+29QIDAQABo4IClTCCApEwHQYDVR0OBBYEFElzzSEY v/rCEDv08xaNr8qzDa92MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQUM1NTUwNjRE NUI3MTFFQ0IwOUJDQzQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnsP4wDQYJKoZIhvcNAQELBQADggEBACf0IP06d8X0MHj2 bUcINqeU3oqnpp7Wt235E/fdGYfWMZIGqmc+ll8zfBblK10NH9vhhutlDBingSoz OAtrkBbOtlfDBpxs+WqGxxbG77Bu2m8QlnHbUHr4bUhPIAhfVkDXDA9BfPuhxh38 xw4d4Ti97Ut46Yvigt6Yqjuslpft0phrkWQH5ehjeACGh2ifSdlXOlRp88CAS5J7 bU/wKZhBo7AtmI1fga/TJgrV0EJlAT6UnHOABpg5pSU1hIZAsOORUUztkHknorpY azOnMEgqGpVzeSdPJVjYzj44o28nPBsC0c7m7hF9RK6zwPtUVYn3edpLSPB0Uv2o 04JP9nc= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:41 2024 by rpki-client on console-ams.rpki-client.org