$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B4048BBE145111EBAE42E981C4F9AE02.roa File: B4048BBE145111EBAE42E981C4F9AE02.roa (raw, json) Hash identifier: HNApvfISvvMPSA9jtlrmI/a8bXAsuti1GOEVLGuu8bY= Subject key identifier: 08:B3:19:D7:3E:9C:6E:43:F3:2A:B9:C0:9D:17:FF:AB:A7:86:53:02 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6BAC Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B4048BBE145111EBAE42E981C4F9AE02.roa Signing time: Wed 10 May 2023 16:20:49 +0000 ROA not before: Wed 10 May 2023 16:20:49 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 135237 IP address blocks: 103.154.206.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27564 (0x6bac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:20:49 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc461-4dc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:8a:70:95:81:11:76:e4:3e:95:fe:cb:c4:57: 47:40:e9:f5:27:85:2c:4a:2c:2a:ec:a0:0d:19:68: 35:08:1a:c8:63:03:5c:18:42:e7:b0:13:58:da:d3: cd:cf:0b:6a:32:35:f8:96:c4:34:f3:49:8a:ad:de: 43:2e:0d:d9:ac:bc:e8:e5:e6:28:54:52:69:1e:da: af:6d:c3:cc:64:42:a7:1e:be:de:15:a5:11:b8:73: 8b:93:0a:89:5b:39:26:c2:c2:77:af:3b:8f:4b:09: c3:61:d9:58:50:a2:ac:0c:3f:15:a1:0c:9a:dd:5b: 67:cd:31:48:73:6d:5e:0f:1b:37:47:8c:15:a9:44: 52:d6:8f:b9:7f:c4:c7:a0:bd:41:e3:68:05:92:89: de:0c:a0:16:a0:79:ea:18:50:1c:25:9d:1e:74:f0: 66:ce:2c:89:52:22:1b:41:be:b1:1c:25:64:b6:0a: cc:1e:89:75:a8:bc:c8:62:c9:21:54:b0:53:ef:39: c2:34:d3:b0:0a:17:05:d2:62:3c:9f:cb:f6:53:db: 2f:77:40:98:01:8d:e4:b6:93:28:69:e6:5f:48:27: 41:27:4e:26:28:cf:ef:c0:10:75:96:e3:75:ab:ae: f8:83:a3:2e:cd:5b:6d:2d:4f:55:f9:1f:63:7d:ba: f1:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:B3:19:D7:3E:9C:6E:43:F3:2A:B9:C0:9D:17:FF:AB:A7:86:53:02 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B4048BBE145111EBAE42E981C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.206.0/23 Signature Algorithm: sha256WithRSAEncryption 66:58:cd:41:00:32:91:3f:07:da:9f:68:d0:fb:c7:35:e1:d2: ea:41:c6:c1:6a:94:e0:20:e3:86:99:cb:37:1c:ff:df:b7:b4: 80:63:62:2f:58:30:4f:95:d1:1e:9c:0e:4f:02:03:bb:33:ce: ef:9d:44:22:76:96:44:3e:2e:94:e8:57:1c:ca:9d:e2:bd:30: a3:f6:4f:c4:25:d8:3b:ea:66:bf:d6:ce:1b:6e:a2:8e:a5:c6: 38:09:13:78:d5:e2:c3:88:e5:2f:3c:3a:e3:e2:6e:02:7c:fb: 43:cf:7e:be:79:9e:5d:b1:7a:1e:14:c4:d3:9a:c8:4f:27:a9: 41:a2:28:50:7e:b9:bc:5b:78:cf:15:cb:ae:05:54:f7:19:57: 05:65:f3:3a:e7:a4:6b:43:5b:79:88:aa:79:0e:71:87:79:4a: e7:1a:52:df:00:5a:2b:01:8c:37:7a:d7:0f:bb:92:eb:65:b2: 21:aa:37:ce:39:fd:42:85:f3:5a:2f:22:7b:d8:1c:55:46:7d: 10:76:b7:08:f5:f3:81:a4:8a:07:2e:c8:27:36:67:73:c6:fb: 19:93:f7:4e:7e:3b:6a:6f:c3:83:45:4c:92:c4:a6:30:be:4c: 04:db:61:6d:ad:a4:fc:d9:55:b5:c4:e1:f4:03:2a:28:1a:a5: 56:30:2b:df -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICa6wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyMDQ5WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzQ2MS00ZGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4YpwlYERduQ+lf7LxFdHQOn1J4UsSiwq7KANGWg1CBrIYwNcGELnsBNY2tPN zwtqMjX4lsQ080mKrd5DLg3ZrLzo5eYoVFJpHtqvbcPMZEKnHr7eFaURuHOLkwqJ WzkmwsJ3rzuPSwnDYdlYUKKsDD8VoQya3VtnzTFIc21eDxs3R4wVqURS1o+5f8TH oL1B42gFkoneDKAWoHnqGFAcJZ0edPBmziyJUiIbQb6xHCVktgrMHol1qLzIYskh VLBT7znCNNOwChcF0mI8n8v2U9svd0CYAY3ktpMoaeZfSCdBJ04mKM/vwBB1luN1 q674g6MuzVttLU9V+R9jfbrxcwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAizGdc+ nG5D8yq5wJ0X/6unhlMCMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQjQwNDhCQkUx NDUxMTFFQkFFNDJFOTgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnms4wDQYJKoZIhvcNAQELBQADggEBAGZYzUEAMpE/B9qf aND7xzXh0upBxsFqlOAg44aZyzcc/9+3tIBjYi9YME+V0R6cDk8CA7szzu+dRCJ2 lkQ+LpToVxzKneK9MKP2T8Ql2DvqZr/Wzhtuoo6lxjgJE3jV4sOI5S88OuPibgJ8 +0PPfr55nl2xeh4UxNOayE8nqUGiKFB+ubxbeM8Vy64FVPcZVwVl8zrnpGtDW3mI qnkOcYd5SucaUt8AWisBjDd61w+7kutlsiGqN845/UKF81ovInvYHFVGfRB2twj1 84GkigcuyCc2Z3PG+xmT905+O2pvw4NFTJLEpjC+TATbYW2tpPzZVbXE4fQDKiga pVYwK98= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:42 2024 by rpki-client on console-ams.rpki-client.org