$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B7F9CC44800611EC85523762C4F9AE02.roa File: B7F9CC44800611EC85523762C4F9AE02.roa (raw, json) Hash identifier: fHwuAaG0yPSNkgMMHdpK55NHsTdL8X+ZLVtF6U77Vzg= Subject key identifier: A7:35:36:99:F2:CF:F1:A4:D2:EF:CB:C1:D5:1F:9F:20:C1:4A:FE:98 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 704F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B7F9CC44800611EC85523762C4F9AE02.roa Signing time: Wed 10 May 2023 16:43:00 +0000 ROA not before: Wed 10 May 2023 16:42:59 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 149260 IP address blocks: 103.180.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28751 (0x704f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:42:59 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc993-fb77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:64:00:06:b0:dd:f4:e1:98:56:de:1e:18:cb: 75:2b:70:61:00:b7:05:0b:1e:2f:30:51:7b:81:e6: 38:07:d2:0f:b7:21:00:8c:67:3b:b8:27:7d:5d:d5: bc:ba:40:1a:64:c8:a2:97:c0:21:e8:5e:df:34:d1: 73:48:75:11:59:e4:26:bd:29:01:3f:1d:7b:c6:5d: a0:d3:ea:82:34:d0:ce:df:6a:8d:16:f6:ff:a9:f4: d6:8f:b9:a9:8e:b5:eb:51:90:b8:44:0f:8c:ba:fd: a0:cd:0e:64:e8:7b:c1:63:0c:d7:33:26:f7:34:d6: 99:26:2c:7c:5d:5c:77:a5:e3:71:ef:84:9e:5d:55: 4c:74:8a:29:f2:8d:45:7c:c8:0c:24:27:9d:93:2a: a5:81:7e:50:d6:3f:7a:5d:d9:ec:d6:3d:a9:26:d6: 29:61:01:c0:53:5c:f0:5c:cd:aa:54:1e:e7:06:33: 6d:21:20:ee:ea:d9:1e:0a:54:2d:7a:ae:5f:e0:3c: f3:ad:10:2f:ac:e8:17:89:02:2f:55:97:a6:46:a9: 6a:3c:09:a5:57:da:3c:b9:5f:88:c7:87:86:6a:cc: 7c:72:b8:23:e0:09:40:24:5d:b6:8b:e8:d3:93:a8: c6:7f:d2:a4:e7:0a:8d:04:60:db:ea:a2:af:5c:3e: ff:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:35:36:99:F2:CF:F1:A4:D2:EF:CB:C1:D5:1F:9F:20:C1:4A:FE:98 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B7F9CC44800611EC85523762C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.180.67.0/24 Signature Algorithm: sha256WithRSAEncryption 74:9b:ac:82:32:4e:3d:79:38:0a:c2:97:7a:cb:39:ed:60:bf: 30:66:46:b6:e5:67:fb:f8:2f:87:92:fa:13:1a:10:6e:2c:a0: 27:af:e1:ee:9d:8f:df:a1:e7:64:98:85:d7:25:c0:48:80:8e: ab:6e:c8:2a:85:e8:f3:79:e4:a7:b6:76:5b:b6:4d:d0:c2:c0: 51:bf:2f:1c:88:b9:c2:a5:95:e4:a7:94:06:04:6c:e3:0e:4d: ca:4f:dd:19:f0:0e:7c:8f:a6:50:ce:cd:3a:ef:a4:c2:cf:a8: b6:14:74:d4:27:9c:8f:ae:9e:d9:63:2a:ce:0a:12:a3:44:04: d2:3e:8c:6c:b6:72:78:0f:3d:64:c5:54:8c:00:41:87:f9:3c: 39:18:0a:a5:2c:57:6e:fd:4b:8c:aa:14:ca:3f:c0:d6:1a:25: 50:cf:35:d5:d2:2b:d2:95:96:f6:d3:33:fc:eb:3f:ed:8b:e2: 49:4c:90:88:e9:91:a7:00:70:f6:0a:67:58:01:21:f7:21:d4: c7:5e:07:33:c0:52:a5:3d:70:5f:f2:a3:79:5d:62:e2:cb:93: e4:52:4b:c9:59:a7:7d:ab:a7:3d:19:2a:fe:95:88:d1:5a:b8: 31:50:07:22:5e:7e:34:27:d4:4c:9b:e1:12:99:09:a4:f6:ac: 30:76:f7:02 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICcE8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0MjU5WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzk5My1mYjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA52QABrDd9OGYVt4eGMt1K3BhALcFCx4vMFF7geY4B9IPtyEAjGc7uCd9XdW8 ukAaZMiil8Ah6F7fNNFzSHURWeQmvSkBPx17xl2g0+qCNNDO32qNFvb/qfTWj7mp jrXrUZC4RA+Muv2gzQ5k6HvBYwzXMyb3NNaZJix8XVx3peNx74SeXVVMdIop8o1F fMgMJCedkyqlgX5Q1j96Xdns1j2pJtYpYQHAU1zwXM2qVB7nBjNtISDu6tkeClQt eq5f4DzzrRAvrOgXiQIvVZemRqlqPAmlV9o8uV+Ix4eGasx8crgj4AlAJF22i+jT k6jGf9Kk5wqNBGDb6qKvXD7/EQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKc1Npny z/Gk0u/LwdUfnyDBSv6YMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQjdGOUNDNDQ4 MDA2MTFFQzg1NTIzNzYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABntEMwDQYJKoZIhvcNAQELBQADggEBAHSbrIIyTj15OArC l3rLOe1gvzBmRrblZ/v4L4eS+hMaEG4soCev4e6dj9+h52SYhdclwEiAjqtuyCqF 6PN55Ke2dlu2TdDCwFG/LxyIucKlleSnlAYEbOMOTcpP3RnwDnyPplDOzTrvpMLP qLYUdNQnnI+untljKs4KEqNEBNI+jGy2cngPPWTFVIwAQYf5PDkYCqUsV279S4yq FMo/wNYaJVDPNdXSK9KVlvbTM/zrP+2L4klMkIjpkacAcPYKZ1gBIfch1MdeBzPA UqU9cF/yo3ldYuLLk+RSS8lZp32rpz0ZKv6ViNFauDFQByJefjQn1Eyb4RKZCaT2 rDB29wI= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:44 2024 by rpki-client on console-ams.rpki-client.org