$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AF4E9C6A0F9A11EBBF58BB60C4F9AE02.roa File: AF4E9C6A0F9A11EBBF58BB60C4F9AE02.roa (raw, json) Hash identifier: 8CYZreMiX9/hYGROxwwWJpWj7F9fJF9I1D+D91DIQFQ= Subject key identifier: BA:24:87:21:AD:12:BD:76:03:7F:28:B2:EF:74:5B:C1:0E:70:1B:DE Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6A75 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AF4E9C6A0F9A11EBBF58BB60C4F9AE02.roa Signing time: Wed 10 May 2023 16:14:52 +0000 ROA not before: Wed 10 May 2023 16:14:52 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 133288 IP address blocks: 103.228.50.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27253 (0x6a75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:14:52 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc2fc-037c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:23:e2:22:47:b9:cd:75:64:4e:2a:ae:4c:f0: 7e:f4:5b:67:34:f0:b0:9c:eb:e3:b2:fb:16:e5:7c: 07:7c:b8:94:ee:b7:ca:2d:6c:d4:80:5d:71:01:4d: 96:73:11:c4:bb:a2:26:e3:2e:6d:a7:1e:d8:0b:05: 90:5a:1f:38:44:d6:82:fd:d5:c5:7f:23:13:c3:b5: b5:d4:db:b7:70:da:dd:38:55:4d:78:63:2b:38:53: ab:00:0d:03:eb:9d:4e:5c:18:1b:dd:f8:a7:72:f0: 51:19:d7:81:19:3c:fc:83:e8:66:0d:75:ec:eb:d5: 83:79:14:70:6f:f4:e8:4a:95:87:d3:66:3f:ec:ca: d3:03:b4:9c:26:6e:88:4b:5a:37:89:ca:42:92:34: 90:38:9b:3d:2b:f9:4f:21:f3:7c:38:da:c6:f1:69: 0f:13:cf:ab:01:a2:c8:35:0c:89:da:b4:44:62:45: b9:a5:00:8b:8c:84:5c:af:28:9b:98:c7:01:5b:0b: ad:a1:e7:02:77:b2:a9:7e:4d:41:16:63:f4:f5:b0: ee:29:79:ad:7b:19:93:d0:1c:c1:98:02:33:1e:19: 58:fd:cc:70:d5:cd:f4:5b:e7:d3:d0:40:90:e5:b0: 10:91:86:a5:e0:72:33:2d:f5:fe:5b:c7:45:9a:0b: 9c:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:24:87:21:AD:12:BD:76:03:7F:28:B2:EF:74:5B:C1:0E:70:1B:DE X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AF4E9C6A0F9A11EBBF58BB60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.228.50.0/23 Signature Algorithm: sha256WithRSAEncryption 00:4c:a8:77:eb:dc:ad:3a:fa:ec:63:26:1e:b0:e2:85:f4:4e: 44:a2:bb:cd:00:f7:81:42:16:74:48:c3:1c:e5:b1:0f:ec:85: b4:08:53:79:ff:38:bc:5d:9a:5b:36:36:b9:67:d1:8f:31:c3: 2d:c4:87:7f:ed:bc:16:3c:80:af:17:6d:53:bd:61:d3:ae:6f: 5e:21:2e:99:29:c7:1d:5d:47:43:e4:6f:54:d2:40:bf:65:be: e7:99:b7:44:09:78:d2:87:77:71:56:b3:e4:aa:3f:0d:08:5a: bb:ae:06:57:26:8c:c5:53:01:cb:03:0b:b1:17:e3:da:57:91: 07:61:08:91:b7:e0:9c:d5:b5:58:d3:1b:10:fc:21:bd:11:30: 03:00:52:d9:81:11:85:10:a6:6b:e8:d2:7e:40:ea:33:4b:5c: 31:05:69:75:92:a6:ec:a1:8e:fd:97:6f:f1:56:0d:59:bb:aa: c1:45:75:18:bb:8e:af:0d:9e:0c:c1:4e:b6:ee:ef:ee:ed:4b: 26:84:a6:ee:b1:fd:70:2e:3d:a8:e0:4e:e4:a0:27:7c:29:95: 8f:5b:e7:e2:44:1c:59:f8:7b:6e:3c:08:96:58:12:04:c1:09: 0c:b4:8c:87:db:59:ee:bd:84:01:b7:57:93:3e:91:8f:36:ae: 5f:12:1a:0a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICanUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxNDUyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzJmYy0wMzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCPiIke5zXVkTiquTPB+9FtnNPCwnOvjsvsW5XwHfLiU7rfKLWzUgF1xAU2W cxHEu6Im4y5tpx7YCwWQWh84RNaC/dXFfyMTw7W11Nu3cNrdOFVNeGMrOFOrAA0D 651OXBgb3fincvBRGdeBGTz8g+hmDXXs69WDeRRwb/ToSpWH02Y/7MrTA7ScJm6I S1o3icpCkjSQOJs9K/lPIfN8ONrG8WkPE8+rAaLINQyJ2rREYkW5pQCLjIRcryib mMcBWwutoecCd7Kpfk1BFmP09bDuKXmtexmT0BzBmAIzHhlY/cxw1c30W+fT0ECQ 5bAQkYal4HIzLfX+W8dFmgucvwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLokhyGt Er12A38osu90W8EOcBveMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQUY0RTlDNkEw RjlBMTFFQkJGNThCQjYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn5DIwDQYJKoZIhvcNAQELBQADggEBAABMqHfr3K06+uxj Jh6w4oX0TkSiu80A94FCFnRIwxzlsQ/shbQIU3n/OLxdmls2Nrln0Y8xwy3Eh3/t vBY8gK8XbVO9YdOub14hLpkpxx1dR0Pkb1TSQL9lvueZt0QJeNKHd3FWs+SqPw0I WruuBlcmjMVTAcsDC7EX49pXkQdhCJG34JzVtVjTGxD8Ib0RMAMAUtmBEYUQpmvo 0n5A6jNLXDEFaXWSpuyhjv2Xb/FWDVm7qsFFdRi7jq8NngzBTrbu7+7tSyaEpu6x /XAuPajgTuSgJ3wplY9b5+JEHFn4e248CJZYEgTBCQy0jIfbWe69hAG3V5M+kY82 rl8SGgo= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:41 2024 by rpki-client on console-ams.rpki-client.org