$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B3FC6DCA97CC11EDB7D5B312C4F9AE02.roa File: B3FC6DCA97CC11EDB7D5B312C4F9AE02.roa (raw, json) Hash identifier: ydt0ewNOdWxF8/Q0+ncfnFiiA27aXdhj5abKN/2XOuQ= Subject key identifier: 0B:AE:3E:2E:09:AD:08:BD:7C:54:B0:05:BC:F6:C3:2B:50:3C:89:7F Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 702E Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B3FC6DCA97CC11EDB7D5B312C4F9AE02.roa Signing time: Wed 10 May 2023 16:42:21 +0000 ROA not before: Wed 10 May 2023 16:42:21 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 149211 IP address blocks: 103.178.128.0/24 maxlen: 24 103.178.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28718 (0x702e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:42:21 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc96d-4b58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ac:dc:67:f1:32:53:b8:6a:66:40:d3:92:47: ac:0e:64:48:f3:26:82:e3:19:f0:64:87:da:15:2b: 44:49:ad:41:3c:65:d2:b8:12:8d:46:44:cc:0f:11: 8f:c4:33:51:ac:9d:73:b9:42:c9:6b:fc:07:14:55: 9f:cf:de:86:f6:14:2f:90:ec:75:3a:4f:23:f5:53: 02:1c:9e:a9:1f:23:60:bf:46:7f:6b:c0:b4:09:ab: 42:8e:f2:f4:5b:fc:26:9e:2c:ef:55:aa:ba:fa:22: 52:57:f6:2f:bc:19:67:30:49:5c:e9:76:75:02:fa: 0d:2e:88:0b:e0:5f:63:c2:08:d4:7e:01:d7:93:49: 1e:b5:4c:6b:5b:48:ba:0c:24:98:5a:7f:c2:a8:48: d8:66:13:8f:a6:f9:65:62:82:0d:91:11:d4:40:af: 96:13:48:0a:77:66:3a:d0:b7:cb:9c:be:ce:5c:fe: 3d:64:d3:3b:97:0b:7d:2b:43:43:79:10:d7:56:38: 80:a5:df:53:d0:4f:f4:41:b4:60:ef:d4:b9:ee:b2: 4a:77:54:0e:be:da:f9:c2:44:d3:66:85:de:fc:0f: b4:f1:c1:fc:32:19:41:1e:ae:d3:c1:6f:dc:66:d7: b8:ee:1a:13:78:c4:5a:54:ac:90:e6:e5:e5:ee:38: bd:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:AE:3E:2E:09:AD:08:BD:7C:54:B0:05:BC:F6:C3:2B:50:3C:89:7F X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B3FC6DCA97CC11EDB7D5B312C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.178.128.0/23 Signature Algorithm: sha256WithRSAEncryption b8:30:a7:7d:ac:5b:af:ed:b0:e9:b5:d4:28:f7:6e:1a:3f:44: 6c:95:f4:f1:63:17:d4:d4:55:47:17:33:f7:25:3b:41:02:2c: 1f:51:9a:5f:43:39:d6:10:9e:60:12:e3:b9:bc:5f:4f:be:6c: 6f:80:3d:27:87:d9:3e:2a:e8:25:bf:91:5a:97:1e:1f:75:2e: d9:fa:47:c4:e1:8d:10:b9:a3:5a:df:31:c0:a2:b7:d2:97:cc: 15:86:a6:0e:f7:06:cd:8f:13:b5:ab:9c:1c:ec:33:27:7a:c8: 19:30:a5:d4:ff:02:8f:85:8f:41:8f:3c:82:84:ee:89:90:e9: 24:57:71:d9:be:e2:71:93:7a:d2:b4:91:5f:38:f3:ed:ca:42: 34:1f:ae:d7:42:e4:97:ac:cc:cd:8a:41:4b:c4:a8:61:72:61: fe:a8:86:0f:b5:52:95:ef:3f:21:e7:25:88:84:cd:88:e1:30: 58:02:48:5f:96:77:f2:be:c9:ad:e2:92:2f:00:84:1b:d1:cd: bf:1c:89:48:a6:f4:be:79:dd:3b:57:86:bb:07:1a:1c:a7:96: 5b:cf:bd:6a:4e:21:16:d7:2e:0e:dd:18:c6:3b:be:53:49:cf: e2:73:1c:2f:dc:0a:e4:67:e9:b7:f1:e1:4a:80:b0:ef:d3:5d: ef:a8:22:3d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICcC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0MjIxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzk2ZC00YjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6zcZ/EyU7hqZkDTkkesDmRI8yaC4xnwZIfaFStESa1BPGXSuBKNRkTMDxGP xDNRrJ1zuULJa/wHFFWfz96G9hQvkOx1Ok8j9VMCHJ6pHyNgv0Z/a8C0CatCjvL0 W/wmnizvVaq6+iJSV/YvvBlnMElc6XZ1AvoNLogL4F9jwgjUfgHXk0ketUxrW0i6 DCSYWn/CqEjYZhOPpvllYoINkRHUQK+WE0gKd2Y60LfLnL7OXP49ZNM7lwt9K0ND eRDXVjiApd9T0E/0QbRg79S57rJKd1QOvtr5wkTTZoXe/A+08cH8MhlBHq7TwW/c Zte47hoTeMRaVKyQ5uXl7ji92QIDAQABo4IClTCCApEwHQYDVR0OBBYEFAuuPi4J rQi9fFSwBbz2wytQPIl/MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQjNGQzZEQ0E5 N0NDMTFFREI3RDVCMzEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnsoAwDQYJKoZIhvcNAQELBQADggEBALgwp32sW6/tsOm1 1Cj3bho/RGyV9PFjF9TUVUcXM/clO0ECLB9Rml9DOdYQnmAS47m8X0++bG+APSeH 2T4q6CW/kVqXHh91Ltn6R8ThjRC5o1rfMcCit9KXzBWGpg73Bs2PE7WrnBzsMyd6 yBkwpdT/Ao+Fj0GPPIKE7omQ6SRXcdm+4nGTetK0kV848+3KQjQfrtdC5JeszM2K QUvEqGFyYf6ohg+1UpXvPyHnJYiEzYjhMFgCSF+Wd/K+ya3iki8AhBvRzb8ciUim 9L553TtXhrsHGhynllvPvWpOIRbXLg7dGMY7vlNJz+JzHC/cCuRn6bfx4UqAsO/T Xe+oIj0= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:42 2024 by rpki-client on console-ams.rpki-client.org