$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B6FF2D00AD2511EDB34D7E28C4F9AE02.roa File: B6FF2D00AD2511EDB34D7E28C4F9AE02.roa (raw, json) Hash identifier: YOfbTKMpiECspB5Ym6XcPTd013Ks+0+SEhaAJVa1KdU= Subject key identifier: CA:67:01:01:17:5F:FD:94:77:81:3A:6F:F0:68:8E:2A:31:E4:1F:A3 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7119 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B6FF2D00AD2511EDB34D7E28C4F9AE02.roa Signing time: Wed 10 May 2023 16:46:36 +0000 ROA not before: Wed 10 May 2023 16:46:36 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 150606 IP address blocks: 103.61.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28953 (0x7119) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:46:36 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bca6c-cbcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:6b:13:a5:73:51:fc:cc:16:40:96:d6:df:1f: be:ae:3b:a8:2c:bc:5b:c4:a1:80:b2:c4:84:88:70: 86:06:5b:c3:72:90:58:ee:7b:ff:38:7b:d2:16:6e: 34:c4:ba:8d:14:80:1e:f6:38:69:96:0e:b1:7e:69: f5:ba:25:79:f2:1b:22:48:22:b6:63:82:4b:42:69: 66:8a:fd:b0:dd:93:33:b7:14:eb:fa:88:59:5f:2c: b1:07:b5:b5:22:44:ab:7f:58:03:7f:7c:f5:b0:7f: 6c:3c:96:e7:e8:df:68:68:e9:89:78:92:83:4d:54: fc:25:0b:04:91:15:c1:dc:ba:9f:3a:24:ce:b4:57: f2:26:41:ec:1d:60:40:f0:a2:d5:63:a1:ab:64:da: 27:b3:9e:10:d8:04:b5:37:f9:50:66:36:ea:c7:76: 72:3d:6a:ca:8c:55:22:28:89:9a:09:be:85:07:2a: f7:6a:ac:2e:1b:e8:28:74:be:3a:53:14:2e:75:06: af:60:c3:4b:12:d6:b1:ca:25:40:57:58:0d:70:1d: 0c:06:fe:2b:82:48:e5:d6:20:8c:b2:58:ec:29:cc: 75:c9:94:fa:43:aa:86:14:bd:a1:41:cb:57:2c:49: d8:68:17:9c:10:d0:f4:4c:fe:76:7d:30:54:52:84: 28:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:67:01:01:17:5F:FD:94:77:81:3A:6F:F0:68:8E:2A:31:E4:1F:A3 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B6FF2D00AD2511EDB34D7E28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.61.243.0/24 Signature Algorithm: sha256WithRSAEncryption 03:88:3f:7e:44:8a:44:72:07:51:75:28:cc:56:ba:3f:8a:68: 9a:28:78:d4:47:21:39:f4:22:8f:c8:dd:df:8a:3f:6c:94:e3: 52:55:bc:f5:ca:db:08:54:3e:9f:fd:10:92:d1:7c:21:8d:a4: 49:7e:20:ea:31:3c:dd:83:a8:cd:ad:ba:6a:72:98:31:71:d4: d2:4f:a0:3f:75:08:4c:2c:60:04:20:4c:0a:74:b6:4b:91:f3: 18:39:43:8f:1e:50:1c:4d:67:14:ac:ff:eb:c7:9c:30:09:a7: 18:58:00:01:52:4f:22:c1:21:49:9e:f7:64:c5:8f:24:ec:c0: 17:78:47:0e:2c:5c:c7:d6:1c:63:7c:62:02:42:fa:25:62:d8: e9:2c:45:ba:fb:4b:90:be:49:99:99:91:28:af:ae:c1:9a:11: 41:03:7c:7b:dc:09:50:8d:de:0f:d6:28:d7:02:ca:28:2e:57: 7b:b2:af:d8:d3:26:08:f4:53:50:3d:0d:b8:9b:76:52:d2:a7: f1:73:63:81:b1:a4:fb:ac:59:e5:b9:9a:a0:58:e5:33:3c:b0: 6c:61:bb:11:d1:7d:b7:87:42:c4:d5:f5:1a:c5:98:24:bd:35: 83:2c:c6:64:ef:8d:5b:fa:03:84:a5:39:22:22:6a:dc:2d:6d: e2:9f:9f:48 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICcRkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0NjM2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViY2E2Yy1jYmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArGsTpXNR/MwWQJbW3x++rjuoLLxbxKGAssSEiHCGBlvDcpBY7nv/OHvSFm40 xLqNFIAe9jhplg6xfmn1uiV58hsiSCK2Y4JLQmlmiv2w3ZMztxTr+ohZXyyxB7W1 IkSrf1gDf3z1sH9sPJbn6N9oaOmJeJKDTVT8JQsEkRXB3LqfOiTOtFfyJkHsHWBA 8KLVY6GrZNons54Q2AS1N/lQZjbqx3ZyPWrKjFUiKImaCb6FByr3aqwuG+godL46 UxQudQavYMNLEtaxyiVAV1gNcB0MBv4rgkjl1iCMsljsKcx1yZT6Q6qGFL2hQctX LEnYaBecEND0TP52fTBUUoQowQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMpnAQEX X/2Ud4E6b/Bojiox5B+jMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQjZGRjJEMDBB RDI1MTFFREIzNEQ3RTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnPfMwDQYJKoZIhvcNAQELBQADggEBAAOIP35EikRyB1F1 KMxWuj+KaJooeNRHITn0Io/I3d+KP2yU41JVvPXK2whUPp/9EJLRfCGNpEl+IOox PN2DqM2tumpymDFx1NJPoD91CEwsYAQgTAp0tkuR8xg5Q48eUBxNZxSs/+vHnDAJ pxhYAAFSTyLBIUme92TFjyTswBd4Rw4sXMfWHGN8YgJC+iVi2OksRbr7S5C+SZmZ kSivrsGaEUEDfHvcCVCN3g/WKNcCyiguV3uyr9jTJgj0U1A9DbibdlLSp/FzY4Gx pPusWeW5mqBY5TM8sGxhuxHRfbeHQsTV9RrFmCS9NYMsxmTvjVv6A4SlOSIiatwt beKfn0g= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:42 2024 by rpki-client on console-ams.rpki-client.org