$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B15E7DFCB80F11ED9E4CC631C4F9AE02.roa File: B15E7DFCB80F11ED9E4CC631C4F9AE02.roa (raw, json) Hash identifier: aHwYsOoPCv2/4WYA4rPE+Yg78PjVLVG7jTZ5608LKNU= Subject key identifier: E5:CA:01:69:A9:A0:38:03:02:44:95:72:2E:0C:41:F4:76:C8:A1:85 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7130 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B15E7DFCB80F11ED9E4CC631C4F9AE02.roa Signing time: Wed 10 May 2023 16:47:02 +0000 ROA not before: Wed 10 May 2023 16:47:02 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 150640 IP address blocks: 103.206.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28976 (0x7130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:47:02 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bca86-a305 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:45:8c:0b:89:79:f0:00:34:65:f2:aa:a7:a7: ed:1a:a2:f7:f5:a6:6a:d5:5a:d0:82:62:e2:e3:3d: ba:76:27:c6:8e:6d:63:54:ea:21:50:64:c7:c4:88: 84:23:82:b3:da:23:22:6b:80:3d:67:58:19:4c:4b: d9:f4:3e:24:b3:a7:0d:d8:bc:b3:bc:7c:89:33:24: 8e:65:73:09:c3:c7:6b:b1:63:cb:cf:ef:a9:34:e4: 3c:79:5a:ad:15:4e:7e:e7:14:f8:81:1e:08:19:dd: 6a:11:67:8f:6d:32:cd:04:28:c2:7b:8c:2e:8f:c2: 7b:15:c6:d2:e9:0d:3c:69:3a:0d:ed:71:4f:c4:52: aa:9b:98:80:cc:11:9a:83:c3:ac:be:59:88:1e:38: ae:3f:18:84:02:ef:99:fb:09:c5:5a:31:8c:24:15: ce:1a:f7:de:88:dc:bc:65:d2:7c:d5:56:f0:61:ba: f0:fa:e6:e5:1f:15:6a:e4:6f:dd:08:03:e0:19:91: 6f:4f:8a:ca:73:d2:2d:a3:f6:6e:14:5c:a8:be:39: ce:87:77:7a:29:a6:21:9d:fe:e6:71:1b:14:53:4b: 1c:74:26:5d:cd:53:d1:f2:78:17:35:e8:bf:77:c3: f6:dc:80:09:0c:0d:86:c1:44:2c:d8:3c:f8:df:35: a7:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:CA:01:69:A9:A0:38:03:02:44:95:72:2E:0C:41:F4:76:C8:A1:85 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B15E7DFCB80F11ED9E4CC631C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.206.29.0/24 Signature Algorithm: sha256WithRSAEncryption 08:b0:64:ca:fd:d2:61:d1:33:3b:59:e9:82:45:56:e3:86:77: 40:ce:58:25:bb:7d:81:55:e7:07:ef:7a:c1:ae:cf:0a:67:2c: ea:a2:9c:26:29:fc:ba:11:87:51:46:ca:36:17:f0:6c:be:d1: 49:de:cf:b7:68:05:c3:dd:df:ae:3c:c6:b2:a3:a2:c3:2f:e5: 68:f6:66:63:22:b9:c4:44:de:0c:bc:49:ac:2f:9f:d7:48:c1: af:9c:4f:f8:49:19:a7:ec:d9:09:5d:e3:7e:ef:27:68:93:b7: d6:27:9f:ef:08:94:8e:e1:68:a7:03:99:59:89:34:e5:31:15: 9a:e9:79:50:ba:e5:e0:b2:40:f7:65:9e:98:3c:17:00:6b:b1: f1:5d:32:bc:94:33:ab:b0:e3:7e:ea:06:45:f3:c7:ed:d6:ac: 56:f6:d3:b8:06:96:fb:46:20:3d:de:d4:ed:8f:15:d6:d6:9a: 59:c1:8f:64:f8:1a:9c:28:41:f1:11:4a:1e:da:0a:44:24:7c: b1:28:c0:16:9c:43:ed:94:40:03:5f:83:8f:7a:6f:a9:05:9c: 57:c2:81:42:30:a5:91:af:44:3f:bf:9b:1b:0d:ee:18:ad:a9: 51:a6:41:c7:19:86:af:5a:57:d2:55:b1:ce:16:4a:19:51:9a: 65:a4:06:14 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICcTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0NzAyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViY2E4Ni1hMzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo0WMC4l58AA0ZfKqp6ftGqL39aZq1VrQgmLi4z26difGjm1jVOohUGTHxIiE I4Kz2iMia4A9Z1gZTEvZ9D4ks6cN2LyzvHyJMySOZXMJw8drsWPLz++pNOQ8eVqt FU5+5xT4gR4IGd1qEWePbTLNBCjCe4wuj8J7FcbS6Q08aToN7XFPxFKqm5iAzBGa g8OsvlmIHjiuPxiEAu+Z+wnFWjGMJBXOGvfeiNy8ZdJ81VbwYbrw+ublHxVq5G/d CAPgGZFvT4rKc9Ito/ZuFFyovjnOh3d6KaYhnf7mcRsUU0scdCZdzVPR8ngXNei/ d8P23IAJDA2GwUQs2Dz43zWn3QIDAQABo4IClTCCApEwHQYDVR0OBBYEFOXKAWmp oDgDAkSVci4MQfR2yKGFMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQjE1RTdERkNC ODBGMTFFRDlFNENDNjMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnzh0wDQYJKoZIhvcNAQELBQADggEBAAiwZMr90mHRMztZ 6YJFVuOGd0DOWCW7fYFV5wfvesGuzwpnLOqinCYp/LoRh1FGyjYX8Gy+0Unez7do BcPd3648xrKjosMv5Wj2ZmMiucRE3gy8Sawvn9dIwa+cT/hJGafs2Qld437vJ2iT t9Ynn+8IlI7haKcDmVmJNOUxFZrpeVC65eCyQPdlnpg8FwBrsfFdMryUM6uw437q BkXzx+3WrFb207gGlvtGID3e1O2PFdbWmlnBj2T4GpwoQfERSh7aCkQkfLEowBac Q+2UQANfg496b6kFnFfCgUIwpZGvRD+/mxsN7hitqVGmQccZhq9aV9JVsc4WShlR mmWkBhQ= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:42 2024 by rpki-client on console-ams.rpki-client.org