$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B2A38DB2865011EBBBF1446DC4F9AE02.roa File: B2A38DB2865011EBBBF1446DC4F9AE02.roa (raw, json) Hash identifier: 7zbYXJ1AU6gRjovG9PrsZZvJfGmvNLZmSfbj+N+K0+U= Subject key identifier: 31:A1:27:D0:72:C1:FC:4A:EE:55:AA:87:B9:45:AF:3C:10:CA:6B:FC Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6E88 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B2A38DB2865011EBBBF1446DC4F9AE02.roa Signing time: Wed 10 May 2023 16:34:30 +0000 ROA not before: Wed 10 May 2023 16:34:30 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141305 IP address blocks: 103.159.208.0/24 maxlen: 24 103.159.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28296 (0x6e88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:34:30 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc795-2525 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f7:81:50:13:a9:6f:86:9c:f4:05:09:b0:88: 22:d2:51:c7:26:eb:73:5f:a8:37:03:c3:ae:fd:09: 0c:8e:c3:6a:3e:16:fe:87:79:f9:29:fa:ae:ca:dd: 98:5e:62:10:2c:de:81:c5:e3:ee:31:fb:2b:18:48: a1:4a:f6:f3:44:2a:e8:51:36:cc:ce:40:0d:a7:cd: e8:b4:57:f0:65:4a:79:65:ee:07:27:09:17:9a:c8: bf:21:bc:f8:56:97:eb:c4:f5:44:6e:67:63:24:9c: f5:6f:ee:c0:7b:46:d0:c5:10:a4:40:b3:16:c7:85: 2c:9d:91:d5:e8:5b:5f:58:46:62:c5:27:0f:0e:21: 3b:71:15:86:16:00:e7:b2:16:8e:a7:ff:74:ea:ae: e3:b6:43:8e:19:7c:8d:b1:ba:80:cc:7f:6d:da:2c: 67:22:42:45:7d:11:d2:73:b3:20:ea:4c:48:3f:e3: 89:71:19:8a:f9:d4:7a:b9:9d:41:f3:28:b7:44:1d: ca:04:61:41:4a:82:25:2e:cf:6c:1a:c2:43:ca:80: e8:04:a2:4a:c1:57:f9:de:7b:a6:9f:fd:b6:01:66: f2:58:26:f4:0c:be:40:ca:53:4d:86:29:3b:fb:c9: 7d:38:6f:84:47:b5:9e:a3:1b:a5:31:72:71:1d:66: d8:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:A1:27:D0:72:C1:FC:4A:EE:55:AA:87:B9:45:AF:3C:10:CA:6B:FC X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B2A38DB2865011EBBBF1446DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.208.0/23 Signature Algorithm: sha256WithRSAEncryption 17:c8:88:19:11:62:28:a0:d0:12:04:a9:29:6e:91:5c:a0:b6: b6:ff:62:27:4b:37:1f:63:5f:5e:de:36:d1:36:0e:63:03:d3: 47:99:3e:56:63:89:b9:10:51:a0:b4:23:a8:72:33:83:1a:58: 3e:0c:cb:99:30:0f:99:c4:e4:8b:81:72:d6:86:cb:8a:12:db: 61:35:60:97:33:48:41:3c:de:87:78:1d:78:da:32:89:d6:1e: 1c:50:53:a8:e7:dd:ca:7d:06:29:f4:f9:09:cd:a8:6f:60:07: a8:bf:fe:ca:d3:6b:c1:89:c2:a2:38:b2:9f:13:5a:cf:e4:56: 2a:14:6e:cf:d4:3e:47:7e:2a:7e:0c:d1:2a:b8:25:31:0f:e1: fb:4e:ee:51:6e:e0:0a:33:f0:a5:d0:f2:a4:80:b0:7a:7d:d2: 6f:17:6e:4a:50:96:cc:cd:7b:51:72:02:a6:13:ba:69:43:21: 4c:d9:c1:0d:78:fc:c3:fa:9e:4c:5c:71:80:57:f2:91:0f:53: f3:b9:e5:17:0e:75:70:ae:81:fa:e6:3b:06:b3:b2:64:22:84: 68:93:90:83:fd:8b:d1:08:55:21:a3:40:e3:0b:f3:17:0b:93: f6:c1:e8:b0:44:4a:a2:7e:d8:0f:6a:2b:7a:d4:ec:3e:18:ae: b7:f4:e9:10 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbogwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzNDMwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzc5NS0yNTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuveBUBOpb4ac9AUJsIgi0lHHJutzX6g3A8Ou/QkMjsNqPhb+h3n5Kfquyt2Y XmIQLN6BxePuMfsrGEihSvbzRCroUTbMzkANp83otFfwZUp5Ze4HJwkXmsi/Ibz4 VpfrxPVEbmdjJJz1b+7Ae0bQxRCkQLMWx4UsnZHV6FtfWEZixScPDiE7cRWGFgDn shaOp/906q7jtkOOGXyNsbqAzH9t2ixnIkJFfRHSc7Mg6kxIP+OJcRmK+dR6uZ1B 8yi3RB3KBGFBSoIlLs9sGsJDyoDoBKJKwVf53numn/22AWbyWCb0DL5AylNNhik7 +8l9OG+ER7WeoxulMXJxHWbYawIDAQABo4IClTCCApEwHQYDVR0OBBYEFDGhJ9By wfxK7lWqh7lFrzwQymv8MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQjJBMzhEQjI4 NjUwMTFFQkJCRjE0NDZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnn9AwDQYJKoZIhvcNAQELBQADggEBABfIiBkRYiig0BIE qSlukVygtrb/YidLNx9jX17eNtE2DmMD00eZPlZjibkQUaC0I6hyM4MaWD4My5kw D5nE5IuBctaGy4oS22E1YJczSEE83od4HXjaMonWHhxQU6jn3cp9Bin0+QnNqG9g B6i//srTa8GJwqI4sp8TWs/kVioUbs/UPkd+Kn4M0Sq4JTEP4ftO7lFu4Aoz8KXQ 8qSAsHp90m8XbkpQlszNe1FyAqYTumlDIUzZwQ14/MP6nkxccYBX8pEPU/O55RcO dXCugfrmOwazsmQihGiTkIP9i9EIVSGjQOML8xcLk/bB6LBESqJ+2A9qK3rU7D4Y rrf06RA= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:42 2024 by rpki-client on console-ams.rpki-client.org