$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AF752C4A507411EE9ECFEE7BC4F9AE02.roa File: AF752C4A507411EE9ECFEE7BC4F9AE02.roa (raw, json) Hash identifier: Rm6S+Qnr9lF5NNPmtxtPSrCOBzRgE8nl9X0Upm6vDDk= Subject key identifier: 64:5B:F1:C4:A1:7C:7A:19:96:64:4F:B3:06:AD:B3:B5:99:BC:10:20 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 79EC Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AF752C4A507411EE9ECFEE7BC4F9AE02.roa Signing time: Mon 11 Sep 2023 07:27:39 +0000 ROA not before: Mon 11 Sep 2023 07:27:39 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 135727 IP address blocks: 103.250.110.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31212 (0x79ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Sep 11 07:27:39 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64fec16a-96c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a0:9c:82:c8:46:0d:96:d8:e9:c1:77:47:2d: 19:28:ba:dc:27:36:0a:b8:4f:33:a8:b5:97:23:69: 22:8e:55:c3:8f:f6:17:fe:7d:46:0b:01:bd:c6:d7: 57:d6:11:c8:57:68:1e:ae:d6:40:3b:98:5f:88:5d: 48:40:97:f8:dc:ac:89:7e:73:50:03:38:d7:91:fb: 80:80:47:e9:54:98:a2:e2:3b:e8:ef:5b:61:4f:9c: d8:e8:d4:a6:5e:bf:e3:2b:f1:f6:01:74:cd:a7:0e: 57:a1:ef:f9:b7:9d:75:28:94:f5:92:5b:05:99:b0: 60:ff:36:f3:98:43:e3:99:20:55:60:c9:99:0a:b4: 58:bf:42:91:c2:65:7c:7d:ce:32:b1:74:ba:e9:af: a4:dc:99:86:ce:08:dc:c1:44:40:04:e7:71:1f:3a: ec:8b:cc:42:43:d9:14:d2:7f:4f:ba:83:00:ee:f3: cc:ea:17:da:c4:dc:64:f4:06:44:ee:db:84:aa:e3: 7c:21:ed:29:86:98:b1:ff:93:18:81:7f:ee:be:99: 78:db:38:5f:16:4f:e3:9f:ce:e0:cb:ec:37:0d:bc: a4:22:5e:61:a7:15:2a:dc:7d:6d:7c:02:fa:07:27: 1f:2c:aa:8d:37:60:08:8b:18:4c:67:12:d5:e0:6f: eb:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:5B:F1:C4:A1:7C:7A:19:96:64:4F:B3:06:AD:B3:B5:99:BC:10:20 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AF752C4A507411EE9ECFEE7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.250.110.0/23 Signature Algorithm: sha256WithRSAEncryption 94:35:51:a9:78:3b:65:ba:ee:97:a3:44:42:26:22:08:b6:49: 50:df:63:ac:b0:76:47:2c:7f:a6:8b:97:e9:9e:70:12:cf:72: dd:a6:19:82:3d:ff:90:83:b1:6c:2d:94:26:70:31:21:fe:db: 97:ef:92:97:9a:a2:70:9d:0f:7c:69:ae:ad:3d:32:fd:98:72: 9b:76:12:95:ac:ca:e0:36:df:ce:5a:04:24:16:af:10:68:ae: 48:d3:34:14:ad:ef:80:bf:6a:c3:e6:83:f2:0c:bc:0a:58:ce: 3d:81:f5:55:93:e5:1d:a9:12:8d:cc:a6:ea:a7:ff:c1:1a:d0: 3d:2a:b9:ce:f0:a1:d9:68:2d:dc:a2:64:18:97:97:97:4b:76: 7a:3d:a3:d4:3f:f2:6f:e6:9a:85:9e:e8:8b:4e:4a:9e:ae:f7: 72:24:e4:2a:97:77:b5:86:cb:3d:c2:d5:bd:9f:e9:51:31:e6: 31:db:9a:1f:75:58:11:e7:0d:af:37:83:8c:e8:3b:2b:be:c8: 48:99:a6:7e:2d:81:b8:5f:22:29:17:53:03:ba:c7:40:ae:e5: a0:dd:e2:bb:8c:8f:56:2a:9e:c5:c1:c2:84:eb:12:39:d2:f3: fc:ce:aa:0d:c1:1d:8c:ce:d3:a3:70:4d:b1:d5:2f:b9:0c:da: 6e:96:d7:41 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICeewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwOTExMDcyNzM5WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGZlYzE2YS05NmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6CcgshGDZbY6cF3Ry0ZKLrcJzYKuE8zqLWXI2kijlXDj/YX/n1GCwG9xtdX 1hHIV2gertZAO5hfiF1IQJf43KyJfnNQAzjXkfuAgEfpVJii4jvo71thT5zY6NSm Xr/jK/H2AXTNpw5Xoe/5t511KJT1klsFmbBg/zbzmEPjmSBVYMmZCrRYv0KRwmV8 fc4ysXS66a+k3JmGzgjcwURABOdxHzrsi8xCQ9kU0n9PuoMA7vPM6hfaxNxk9AZE 7tuEquN8Ie0phpix/5MYgX/uvpl42zhfFk/jn87gy+w3DbykIl5hpxUq3H1tfAL6 BycfLKqNN2AIixhMZxLV4G/rkwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGRb8cSh fHoZlmRPswats7WZvBAgMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQUY3NTJDNEE1 MDc0MTFFRTlFQ0ZFRTdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn+m4wDQYJKoZIhvcNAQELBQADggEBAJQ1Ual4O2W67pej REImIgi2SVDfY6ywdkcsf6aLl+mecBLPct2mGYI9/5CDsWwtlCZwMSH+25fvkpea onCdD3xprq09Mv2Ycpt2EpWsyuA2385aBCQWrxBorkjTNBSt74C/asPmg/IMvApY zj2B9VWT5R2pEo3Mpuqn/8Ea0D0quc7wodloLdyiZBiXl5dLdno9o9Q/8m/mmoWe 6ItOSp6u93Ik5CqXd7WGyz3C1b2f6VEx5jHbmh91WBHnDa83g4zoOyu+yEiZpn4t gbhfIikXUwO6x0Cu5aDd4ruMj1YqnsXBwoTrEjnS8/zOqg3BHYzO06NwTbHVL7kM 2m6W10E= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:41 2024 by rpki-client on console-ams.rpki-client.org