$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B8645BF291A011EDA6B67334C4F9AE02.roa File: B8645BF291A011EDA6B67334C4F9AE02.roa (raw, json) Hash identifier: RlhIn66vsncK7yQtNViOSQLqu7gGpFsMX+XKDPqdH/A= Subject key identifier: 11:84:30:53:F6:F9:9B:1D:2B:92:5B:58:D6:33:F8:39:A9:4D:FB:8E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 70F9 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B8645BF291A011EDA6B67334C4F9AE02.roa Signing time: Wed 10 May 2023 16:46:03 +0000 ROA not before: Wed 10 May 2023 16:46:03 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 150562 IP address blocks: 103.85.132.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28921 (0x70f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:46:03 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bca4a-d753 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a2:28:c3:f2:24:62:00:d3:e2:7d:0c:cf:94: 64:b6:e4:04:75:da:e0:08:e5:ee:61:b5:d5:11:b9: 0f:5c:d7:e5:8c:2b:f8:26:72:d6:8e:2c:21:65:26: 14:a0:2a:09:58:5d:fb:07:81:d4:3c:98:39:28:47: 7c:93:8d:b6:c1:51:4a:fe:36:14:27:b6:9c:00:b9: 72:79:c7:04:5d:66:b2:97:78:2c:46:cd:d1:7d:dc: 45:74:15:a4:28:71:c2:1f:c7:16:6c:44:69:aa:0c: 5f:b9:20:b0:5b:14:b3:b6:4c:53:f4:c9:2f:f1:a1: 24:0c:b6:a1:b9:d2:8f:e8:3a:25:39:57:2d:e1:cc: bd:94:a8:62:86:09:1d:63:d4:cb:43:0b:31:bd:54: 70:22:7c:da:d9:f5:d9:e3:6f:c4:db:8c:f9:4e:de: 49:90:ac:7a:56:7d:f7:37:33:ed:1c:20:66:70:58: ab:fe:d0:bc:7f:f9:75:08:a6:d5:e4:89:b4:98:6c: 58:57:d1:de:4c:f3:69:24:ff:02:5f:2d:ef:d8:70: f8:d6:b2:f4:43:0b:21:85:16:fc:e8:bb:e1:d1:ef: 0a:ff:ae:ad:2d:a0:a3:15:34:64:1e:56:73:7f:39: 42:73:f1:59:70:45:88:26:62:75:fa:f7:e9:77:e7: c5:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:84:30:53:F6:F9:9B:1D:2B:92:5B:58:D6:33:F8:39:A9:4D:FB:8E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B8645BF291A011EDA6B67334C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.85.132.0/23 Signature Algorithm: sha256WithRSAEncryption 35:c0:9b:93:9d:b0:23:f5:41:e5:9e:27:64:67:c3:ec:1d:f6: db:9a:93:67:b8:26:e7:3d:8d:a4:7a:66:bb:ed:1b:06:b4:0a: f9:71:5e:20:e0:42:93:ac:a4:60:f2:7f:17:8e:40:87:ae:0b: fc:86:f4:c5:9e:db:94:12:77:81:b5:40:bf:ef:b9:77:c8:f1: 7b:07:59:4a:18:9d:a6:e5:fa:7b:77:30:0e:04:70:a8:19:a8: fa:4b:90:19:b5:e6:d6:f1:40:ff:90:c8:3d:7d:c9:85:9a:41: 02:a2:c3:f9:85:44:e6:b7:dc:55:53:22:16:57:2c:ef:2e:fb: 81:1f:a8:15:9a:84:ad:7f:3b:2d:1c:87:e7:ec:dc:32:c8:cf: e6:c3:b3:1b:55:77:ca:4b:86:6b:df:79:ef:0c:17:22:1f:37: 62:cf:22:d8:4c:e0:94:22:c1:f9:de:52:27:cd:98:05:aa:42: 21:2e:c6:4e:2f:c1:25:8a:a6:77:5c:fe:ab:9a:5b:99:be:5c: b6:40:c5:b8:31:39:0f:65:13:c3:f7:b5:c5:d2:2f:99:8d:fc: cc:16:7e:ae:8f:9b:91:a3:b9:48:4f:af:99:d1:11:e3:80:af: b3:51:2a:99:33:5c:78:f8:9a:a0:b4:2f:01:b3:65:b1:6c:28: e5:ce:9a:a0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICcPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0NjAzWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViY2E0YS1kNzUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1KIow/IkYgDT4n0Mz5RktuQEddrgCOXuYbXVEbkPXNfljCv4JnLWjiwhZSYU oCoJWF37B4HUPJg5KEd8k422wVFK/jYUJ7acALlyeccEXWayl3gsRs3RfdxFdBWk KHHCH8cWbERpqgxfuSCwWxSztkxT9Mkv8aEkDLahudKP6DolOVct4cy9lKhihgkd Y9TLQwsxvVRwInza2fXZ42/E24z5Tt5JkKx6Vn33NzPtHCBmcFir/tC8f/l1CKbV 5Im0mGxYV9HeTPNpJP8CXy3v2HD41rL0QwshhRb86Lvh0e8K/66tLaCjFTRkHlZz fzlCc/FZcEWIJmJ1+vfpd+fFtwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBGEMFP2 +ZsdK5JbWNYz+DmpTfuOMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQjg2NDVCRjI5 MUEwMTFFREE2QjY3MzM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnVYQwDQYJKoZIhvcNAQELBQADggEBADXAm5OdsCP1QeWe J2Rnw+wd9tuak2e4Juc9jaR6ZrvtGwa0CvlxXiDgQpOspGDyfxeOQIeuC/yG9MWe 25QSd4G1QL/vuXfI8XsHWUoYnabl+nt3MA4EcKgZqPpLkBm15tbxQP+QyD19yYWa QQKiw/mFROa33FVTIhZXLO8u+4EfqBWahK1/Oy0ch+fs3DLIz+bDsxtVd8pLhmvf ee8MFyIfN2LPIthM4JQiwfneUifNmAWqQiEuxk4vwSWKpndc/quaW5m+XLZAxbgx OQ9lE8P3tcXSL5mN/MwWfq6Pm5GjuUhPr5nREeOAr7NRKpkzXHj4mqC0LwGzZbFs KOXOmqA= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:44 2024 by rpki-client on console-ams.rpki-client.org