$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BEFD637C976611EB8499EA1CC4F9AE02.roa File: BEFD637C976611EB8499EA1CC4F9AE02.roa (raw, json) Hash identifier: b2HmF2mOiiwHq85urJE8GS1m+hVKvmKk1EfpW8SRrdk= Subject key identifier: D8:2D:BB:10:F1:66:CA:83:DD:7B:DD:14:47:A1:3E:33:F7:24:44:4C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6C52 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BEFD637C976611EB8499EA1CC4F9AE02.roa Signing time: Wed 10 May 2023 16:23:58 +0000 ROA not before: Wed 10 May 2023 16:23:58 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136305 IP address blocks: 103.92.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27730 (0x6c52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:23:58 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc51e-3e47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a1:8c:19:bd:28:e4:0c:71:78:e1:82:9d:41: 34:8b:33:45:3b:c0:5a:ab:03:c0:ba:d9:ba:76:2f: c9:1a:32:87:22:93:a3:f9:8b:b6:57:60:a8:50:75: 26:3d:3d:c3:4f:6e:a5:f1:ae:27:3a:a1:8d:79:64: 01:78:02:9a:34:74:58:1e:2c:3c:d9:55:5f:dd:8d: 23:a4:ac:58:18:cc:05:80:00:22:2b:74:0a:9e:cc: fb:70:6e:d5:e7:ed:40:3d:06:f3:e3:e3:6b:6c:64: 01:48:a2:a6:85:dd:d1:92:39:99:3b:e3:fb:7b:f4: 15:f8:35:19:26:61:26:6e:dd:a5:2c:5c:60:ee:17: ce:eb:00:33:7a:1d:56:39:53:29:9c:c3:43:64:f4: ce:0a:53:04:7e:4c:35:bd:e4:c6:4c:e5:78:e6:fc: 8c:6e:e8:9a:21:77:c6:08:42:4e:a9:e6:f8:f4:2b: e3:12:cc:ce:5b:d1:a4:60:aa:9a:ba:3e:96:fe:64: 0e:42:a9:60:db:5c:4e:e8:51:12:63:44:2d:01:34: 6d:df:a6:83:e0:b1:be:ef:71:07:b0:52:51:d4:69: 77:28:04:1a:0a:84:1d:0e:73:06:c7:18:44:5e:00: 1d:9b:45:0e:c0:6b:21:87:88:62:b1:a4:bd:f8:46: 55:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:2D:BB:10:F1:66:CA:83:DD:7B:DD:14:47:A1:3E:33:F7:24:44:4C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BEFD637C976611EB8499EA1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.92.112.0/22 Signature Algorithm: sha256WithRSAEncryption ae:a4:59:c8:b5:80:a7:36:50:44:ad:d0:12:df:9f:aa:4a:75: d6:65:77:14:69:d3:98:8a:5a:e3:8d:47:09:fe:34:e9:23:71: 70:11:96:96:01:25:7b:54:b8:57:1c:2a:6b:b1:d6:ed:62:ab: bf:78:e2:a1:e9:da:6f:5a:7b:54:fe:b2:67:bf:ea:13:54:12: ef:cc:32:d3:36:62:f2:17:3e:8c:c9:b9:3d:f7:8b:aa:c4:32: 4e:ef:b1:7b:0c:1a:6c:9d:cb:72:1c:9d:d5:85:8d:6c:77:da: 40:f3:aa:6a:04:8d:a1:1f:95:ae:8e:b4:64:b0:8d:c7:0f:16: 95:e3:28:77:cf:fe:8b:d7:e7:cd:8e:f6:88:0c:41:dc:3c:a7: c5:86:d3:64:d6:3e:5b:66:fe:cc:b5:fe:28:39:85:c7:d8:ec: 9b:bb:15:65:d7:d4:6c:8d:ac:94:94:61:3b:f0:06:60:dd:68: 71:6f:f2:0c:63:a4:8a:42:b6:cd:34:3d:17:fd:99:48:d4:ca: 1f:d5:3b:96:01:b2:39:23:2f:a7:fa:6e:d6:02:bf:23:65:63: bb:5c:aa:82:a6:59:18:b6:f9:c4:72:10:16:10:5f:88:9b:91: 80:92:95:13:56:9c:4a:4b:e4:82:79:71:e1:0f:10:27:65:6d: a0:78:c1:1f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbFIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyMzU4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzUxZS0zZTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0KGMGb0o5AxxeOGCnUE0izNFO8BaqwPAutm6di/JGjKHIpOj+Yu2V2CoUHUm PT3DT26l8a4nOqGNeWQBeAKaNHRYHiw82VVf3Y0jpKxYGMwFgAAiK3QKnsz7cG7V 5+1APQbz4+NrbGQBSKKmhd3RkjmZO+P7e/QV+DUZJmEmbt2lLFxg7hfO6wAzeh1W OVMpnMNDZPTOClMEfkw1veTGTOV45vyMbuiaIXfGCEJOqeb49CvjEszOW9GkYKqa uj6W/mQOQqlg21xO6FESY0QtATRt36aD4LG+73EHsFJR1Gl3KAQaCoQdDnMGxxhE XgAdm0UOwGshh4hisaS9+EZVMwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNgtuxDx ZsqD3XvdFEehPjP3JERMMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQkVGRDYzN0M5 NzY2MTFFQjg0OTlFQTFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnXHAwDQYJKoZIhvcNAQELBQADggEBAK6kWci1gKc2UESt 0BLfn6pKddZldxRp05iKWuONRwn+NOkjcXARlpYBJXtUuFccKmux1u1iq7944qHp 2m9ae1T+sme/6hNUEu/MMtM2YvIXPozJuT33i6rEMk7vsXsMGmydy3IcndWFjWx3 2kDzqmoEjaEfla6OtGSwjccPFpXjKHfP/ovX582O9ogMQdw8p8WG02TWPltm/sy1 /ig5hcfY7Ju7FWXX1GyNrJSUYTvwBmDdaHFv8gxjpIpCts00PRf9mUjUyh/VO5YB sjkjL6f6btYCvyNlY7tcqoKmWRi2+cRyEBYQX4ibkYCSlRNWnEpL5IJ5ceEPECdl baB4wR8= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:45 2024 by rpki-client on console-ams.rpki-client.org