$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B7F8F5086EC211ECB8E7492BC4F9AE02.roa File: B7F8F5086EC211ECB8E7492BC4F9AE02.roa (raw, json) Hash identifier: J7CK52d3HAa/KWJdXHb3rOKfrmIp1FgaFlNm1ySarjI= Subject key identifier: 65:6B:7E:8F:83:12:B8:FA:49:27:58:23:70:8A:92:18:B8:7D:8C:A7 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7BAF Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B7F8F5086EC211ECB8E7492BC4F9AE02.roa Signing time: Thu 12 Oct 2023 05:51:58 +0000 ROA not before: Thu 12 Oct 2023 05:51:58 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 149221 IP address blocks: 103.178.254.0/23 maxlen: 24 103.214.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31663 (0x7baf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Oct 12 05:51:58 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=6527897d-ec43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9d:30:be:65:85:6b:f9:68:f5:7c:d7:8c:33: 35:1a:c6:18:f3:01:fa:ad:04:ff:5d:b6:41:ba:e1: 5e:4c:89:eb:d0:d5:9b:08:42:a3:79:7f:f8:19:85: a8:f7:81:93:16:3e:58:8e:c6:36:18:41:36:16:fe: 55:8b:85:f2:64:66:0f:67:bb:8f:75:55:5d:0a:f0: 60:c4:0e:bb:d4:36:9e:ce:03:5d:42:fa:fb:f1:da: 8d:45:47:ec:02:26:2f:1e:5c:fa:6c:4f:3f:6b:3b: af:91:f3:84:78:fe:a6:1f:2e:dc:c7:61:5b:9b:17: 0f:5e:a8:5b:1c:59:cd:67:2f:a8:73:0a:b2:f6:8f: d4:d0:41:f2:7b:ba:66:4a:b1:75:0f:3d:de:22:32: 6d:ab:23:a4:cb:95:5d:79:a4:a8:48:ba:90:49:1e: 78:bf:4c:e1:95:1b:5a:6f:f2:9f:a9:ff:8f:b4:15: cf:f0:39:39:82:f2:a0:e9:ee:a5:a7:b5:aa:5f:62: 40:f3:b7:ab:ba:65:c9:7a:aa:f9:68:7a:e2:4f:5f: 94:a7:be:08:35:3e:da:e6:29:fa:86:39:1a:fd:47: 70:ce:2c:d1:da:38:ce:4f:c4:c4:a6:9d:90:88:e5: e8:4d:8b:ca:40:d8:db:13:e3:c3:b4:92:d4:96:a6: 94:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:6B:7E:8F:83:12:B8:FA:49:27:58:23:70:8A:92:18:B8:7D:8C:A7 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B7F8F5086EC211ECB8E7492BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.178.254.0/23 103.214.162.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:d3:36:b0:27:4d:b0:84:36:2b:05:95:f0:d1:38:f6:70:40: da:12:3b:e9:bc:1d:3f:6d:b2:f5:9b:36:2b:23:1b:8a:33:6b: 90:20:0b:27:aa:29:10:2c:dd:31:48:d0:a9:5d:7c:7b:4f:af: d6:f9:03:f4:8c:a5:5d:7b:bc:fe:36:9a:1d:af:0f:0c:8d:63: e0:be:52:b8:02:58:ce:04:79:69:75:e6:22:fe:c6:42:79:44: 85:83:73:62:d7:8e:b5:b9:be:d0:a3:c2:c2:7a:bc:f5:f2:07: 9e:22:69:85:a5:6e:18:01:d1:c0:17:41:6f:05:50:55:19:6d: 80:ec:e9:6a:31:87:09:d2:4f:c4:a4:f9:b0:91:40:d1:47:77: d4:d4:39:5b:b0:97:09:68:43:4b:d7:db:94:7b:0c:e0:12:9a: df:ad:22:89:b5:01:69:17:18:45:42:ae:12:23:01:18:b2:2b: 53:e0:8f:d4:d0:36:61:5d:af:84:81:73:41:d4:c7:bd:23:13: 67:3f:55:c8:21:05:00:3c:a6:f1:ae:77:ca:58:4a:1e:a5:20: 2d:17:95:80:ec:58:d7:08:c8:01:e2:49:d4:40:cf:db:30:db: 70:64:22:39:13:bc:49:7b:d3:f8:97:c7:94:0f:24:c6:6b:d2: be:7c:e6:6a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICe68wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMxMDEyMDU1MTU4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTI3ODk3ZC1lYzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzZ0wvmWFa/lo9XzXjDM1GsYY8wH6rQT/XbZBuuFeTInr0NWbCEKjeX/4GYWo 94GTFj5YjsY2GEE2Fv5Vi4XyZGYPZ7uPdVVdCvBgxA671DaezgNdQvr78dqNRUfs AiYvHlz6bE8/azuvkfOEeP6mHy7cx2FbmxcPXqhbHFnNZy+ocwqy9o/U0EHye7pm SrF1Dz3eIjJtqyOky5VdeaSoSLqQSR54v0zhlRtab/Kfqf+PtBXP8Dk5gvKg6e6l p7WqX2JA87erumXJeqr5aHriT1+Up74INT7a5in6hjka/UdwzizR2jjOT8TEpp2Q iOXoTYvKQNjbE+PDtJLUlqaUyQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGVrfo+D Erj6SSdYI3CKkhi4fYynMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQjdGOEY1MDg2 RUMyMTFFQ0I4RTc0OTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnsv4DBABn1qIwDQYJKoZIhvcNAQELBQADggEBAJzTNrAn TbCENisFlfDROPZwQNoSO+m8HT9tsvWbNisjG4oza5AgCyeqKRAs3TFI0KldfHtP r9b5A/SMpV17vP42mh2vDwyNY+C+UrgCWM4EeWl15iL+xkJ5RIWDc2LXjrW5vtCj wsJ6vPXyB54iaYWlbhgB0cAXQW8FUFUZbYDs6WoxhwnST8Sk+bCRQNFHd9TUOVuw lwloQ0vX25R7DOASmt+tIom1AWkXGEVCrhIjARiyK1Pgj9TQNmFdr4SBc0HUx70j E2c/VcghBQA8pvGud8pYSh6lIC0XlYDsWNcIyAHiSdRAz9sw23BkIjkTvEl70/iX x5QPJMZr0r585mo= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:44 2024 by rpki-client on console-ams.rpki-client.org