$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BBBF15C0C32E11ED82655C36C4F9AE02.roa File: BBBF15C0C32E11ED82655C36C4F9AE02.roa (raw, json) Hash identifier: DvPRDGfsN36CbxC+Vd56T/lPtpfM+HV76+Zed64sQwc= Subject key identifier: 39:43:5C:DD:8A:B0:3F:A1:16:B8:42:D2:1A:EB:79:6B:68:80:5C:87 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6A6F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BBBF15C0C32E11ED82655C36C4F9AE02.roa Signing time: Wed 10 May 2023 16:14:46 +0000 ROA not before: Wed 10 May 2023 16:14:46 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 133278 IP address blocks: 27.123.248.0/22 maxlen: 24 103.37.80.0/22 maxlen: 24 103.113.38.0/23 maxlen: 24 103.230.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27247 (0x6a6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:14:46 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc2f5-b72f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:91:84:a3:4e:e6:7f:06:fb:4e:29:bf:68:32: 32:9b:f0:1b:44:bb:2a:c1:df:cb:20:7a:ef:45:49: 96:f6:9b:9c:59:8a:97:3f:09:bb:98:6b:16:51:d4: bd:da:14:fc:17:a8:df:9c:30:ec:88:a3:76:60:31: 7e:7f:90:8a:b7:3b:dc:e2:0f:6d:91:b5:2c:bc:d7: c9:4c:a0:ba:81:8b:0c:64:86:41:7e:8a:b6:89:32: 12:7f:55:a6:e4:b0:38:f5:8c:82:40:40:1c:9a:fc: 03:2a:a3:df:0c:fe:54:f7:fa:e3:21:09:da:46:ca: 5a:d6:b3:c6:7f:29:66:49:3a:11:2a:44:65:17:87: c6:4d:db:2c:cd:ae:99:bb:08:c3:83:61:a5:6d:02: 3f:e9:6c:3e:d2:42:c6:e9:e1:c2:ca:0e:06:8a:e6: 3a:33:f2:1b:6c:81:4a:90:68:95:c2:a9:49:f5:66: 05:2d:0c:cf:bb:52:2f:d0:ca:84:83:d2:bc:ce:be: 80:05:90:dd:1b:d6:28:db:b3:2b:d3:b6:06:ed:5d: 93:e9:ea:91:2d:3a:d0:c8:5a:ba:f2:a6:36:7d:14: 20:4b:6a:0d:a8:63:3e:4c:15:1f:35:a6:9e:be:ba: d5:d4:9f:d1:11:ba:b0:38:16:22:28:f6:28:fa:a9: 73:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:43:5C:DD:8A:B0:3F:A1:16:B8:42:D2:1A:EB:79:6B:68:80:5C:87 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BBBF15C0C32E11ED82655C36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.123.248.0/22 103.37.80.0/22 103.113.38.0/23 103.230.152.0/22 Signature Algorithm: sha256WithRSAEncryption 3a:81:dc:d2:b4:41:af:bc:05:61:d6:e7:bd:ff:9e:54:24:a4: 73:03:68:58:8e:2a:04:3e:ed:f4:50:18:fc:9a:c6:ec:19:65: 0c:17:ee:4c:22:bc:05:4c:fb:bf:53:e0:a3:0a:92:61:09:16: c6:03:e6:cd:22:1b:f8:7a:a5:03:fe:a6:94:17:35:a7:d5:a1: 11:6a:dc:00:19:43:9b:c2:32:b1:87:a9:d1:c5:7f:4f:b2:aa: f8:2f:9b:da:1f:5c:3f:c9:10:84:35:60:31:4f:97:32:48:96: 74:bc:af:9e:04:a0:d9:2d:a7:35:b9:72:ba:51:d7:e7:2a:8e: 89:14:4e:5c:46:6a:1e:98:4a:3b:cd:ed:76:14:fa:43:cf:ff: fa:9e:96:1e:36:2f:ee:55:67:d8:8b:5f:d8:3f:e8:4f:be:d0: f4:a0:61:f9:54:69:0c:6a:ca:27:09:a7:e6:89:a0:f1:ac:3a: c0:09:83:cb:d3:ac:de:53:98:f5:b8:88:af:65:af:b7:5c:85: 1a:3b:8f:1e:e8:6a:61:23:db:1b:a2:79:82:2d:f8:26:df:95: 31:a8:d8:31:9b:7e:2a:25:90:fd:03:5a:97:af:96:c2:4f:41: 80:08:d5:ac:c9:89:e3:91:53:c0:92:02:3a:7b:1b:e2:ea:5d: 91:39:9f:c4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICam8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxNDQ2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzJmNS1iNzJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq5GEo07mfwb7Tim/aDIym/AbRLsqwd/LIHrvRUmW9pucWYqXPwm7mGsWUdS9 2hT8F6jfnDDsiKN2YDF+f5CKtzvc4g9tkbUsvNfJTKC6gYsMZIZBfoq2iTISf1Wm 5LA49YyCQEAcmvwDKqPfDP5U9/rjIQnaRspa1rPGfylmSToRKkRlF4fGTdssza6Z uwjDg2GlbQI/6Ww+0kLG6eHCyg4GiuY6M/IbbIFKkGiVwqlJ9WYFLQzPu1Iv0MqE g9K8zr6ABZDdG9Yo27Mr07YG7V2T6eqRLTrQyFq68qY2fRQgS2oNqGM+TBUfNaae vrrV1J/REbqwOBYiKPYo+qlzYwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFDlDXN2K sD+hFrhC0hrreWtogFyHMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQkJCRjE1QzBD MzJFMTFFRDgyNjU1QzM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAIbe/gDBAJnJVADBAFncSYDBAJn5pgwDQYJKoZIhvcNAQEL BQADggEBADqB3NK0Qa+8BWHW573/nlQkpHMDaFiOKgQ+7fRQGPyaxuwZZQwX7kwi vAVM+79T4KMKkmEJFsYD5s0iG/h6pQP+ppQXNafVoRFq3AAZQ5vCMrGHqdHFf0+y qvgvm9ofXD/JEIQ1YDFPlzJIlnS8r54EoNktpzW5crpR1+cqjokUTlxGah6YSjvN 7XYU+kPP//qelh42L+5VZ9iLX9g/6E++0PSgYflUaQxqyicJp+aJoPGsOsAJg8vT rN5TmPW4iK9lr7dchRo7jx7oamEj2xuieYIt+CbflTGo2DGbfiolkP0DWpevlsJP QYAI1azJieORU8CSAjp7G+LqXZE5n8Q= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:44 2024 by rpki-client on console-ams.rpki-client.org