$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BF5EC186177711EBB878D12AC4F9AE02.roa File: BF5EC186177711EBB878D12AC4F9AE02.roa (raw, json) Hash identifier: hra950Wa3Jyl765HMwEi6MC55SM6DY/G4a2bLRr/srQ= Subject key identifier: 19:EF:F1:E2:87:18:8D:E6:B7:86:B1:AC:F2:68:8D:32:C0:49:04:DC Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6CAF Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BF5EC186177711EBB878D12AC4F9AE02.roa Signing time: Wed 10 May 2023 16:25:44 +0000 ROA not before: Wed 10 May 2023 16:25:44 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136699 IP address blocks: 103.103.2.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27823 (0x6caf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:25:44 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc588-a871 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:69:c2:11:33:b3:93:72:97:cf:22:a6:e2:48: 15:d3:ce:e1:64:31:be:9b:e1:bc:ae:34:cc:72:f9: 4f:7f:69:85:81:7f:7d:c8:0b:b8:f4:29:6e:84:fa: e2:27:4a:17:79:65:5d:b5:40:8b:f6:e8:23:43:b3: 1f:dd:b4:cc:5d:d4:e7:02:a7:a5:ba:59:41:1a:ae: a9:1c:d7:f7:ab:83:c4:98:d9:2b:1f:7b:eb:fc:ca: 07:88:3d:20:7e:df:4b:3b:3d:8c:d3:d7:0a:58:92: 51:d1:05:8a:dd:48:c9:94:c4:b2:8f:8b:3e:db:21: e8:cf:3f:d4:f6:0e:24:b6:e1:38:6d:3e:ed:d5:c7: 26:e7:59:36:fe:b6:35:d7:d3:e7:49:22:f9:97:f0: de:4f:1e:67:02:1b:36:e3:75:0f:41:a2:04:e4:f6: e8:b1:d9:4f:f7:80:29:28:62:bb:bb:14:bc:27:03: 9d:2b:0f:dd:21:12:95:44:74:68:e8:e7:74:9c:fa: 20:ce:94:e0:a3:05:b1:63:59:f0:34:d2:91:ff:2c: 26:08:fe:c0:b2:50:18:19:45:0d:c6:c5:fc:0c:28: ac:71:b1:43:1d:5c:4e:83:74:19:5f:e1:1b:8e:e2: b3:14:02:5f:25:38:d1:40:1a:96:4b:c4:35:2f:1f: b6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:EF:F1:E2:87:18:8D:E6:B7:86:B1:AC:F2:68:8D:32:C0:49:04:DC X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BF5EC186177711EBB878D12AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.103.2.0/23 Signature Algorithm: sha256WithRSAEncryption 16:e6:a1:fa:49:6a:65:03:74:1d:58:21:62:61:c0:f8:a7:fe: 1f:12:f2:35:f8:5b:1d:c3:e4:d0:d8:70:92:55:9b:e3:fa:b5: 58:21:dd:be:9f:aa:9a:e3:7e:ac:f4:d8:9d:81:63:57:b3:db: 0d:f2:af:05:5f:73:b7:30:80:3d:4e:4f:cf:89:07:98:e8:f2: 7d:3f:08:79:22:7d:05:24:a8:13:12:c9:ac:56:ba:31:df:59: 01:65:94:65:87:69:71:7d:33:31:5b:06:78:df:99:3c:e9:91: 54:e1:2b:ab:7f:d9:f2:66:02:ec:38:31:b9:dd:38:8f:aa:b5: 6f:d9:ad:d0:80:3b:59:bb:c7:ad:6f:c5:30:35:5d:36:05:ad: 20:7d:1b:e5:03:f0:d3:cf:4e:64:f6:91:3d:b4:06:dd:98:cb: 67:a0:b8:27:50:34:52:9b:70:29:42:f4:09:bd:d5:c6:60:f0: 67:f3:5f:f0:9d:38:53:fb:0d:26:d0:bc:e3:80:19:aa:a3:5d: 31:ff:78:99:ca:6c:5e:4e:9d:4c:fa:e8:92:83:ff:a8:ec:5a: b6:89:01:90:ef:0b:d1:81:a9:4e:24:1f:38:88:05:cd:24:0c: b2:e7:6e:48:85:21:b6:75:11:60:e9:ef:9d:46:53:7b:a7:e6: 5d:d2:95:d8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNTQ0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzU4OC1hODcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsWnCETOzk3KXzyKm4kgV087hZDG+m+G8rjTMcvlPf2mFgX99yAu49CluhPri J0oXeWVdtUCL9ugjQ7Mf3bTMXdTnAqelullBGq6pHNf3q4PEmNkrH3vr/MoHiD0g ft9LOz2M09cKWJJR0QWK3UjJlMSyj4s+2yHozz/U9g4ktuE4bT7t1ccm51k2/rY1 19PnSSL5l/DeTx5nAhs243UPQaIE5PbosdlP94ApKGK7uxS8JwOdKw/dIRKVRHRo 6Od0nPogzpTgowWxY1nwNNKR/ywmCP7AslAYGUUNxsX8DCiscbFDHVxOg3QZX+Eb juKzFAJfJTjRQBqWS8Q1Lx+2vQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBnv8eKH GI3mt4axrPJojTLASQTcMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQkY1RUMxODYx Nzc3MTFFQkI4NzhEMTJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnZwIwDQYJKoZIhvcNAQELBQADggEBABbmofpJamUDdB1Y IWJhwPin/h8S8jX4Wx3D5NDYcJJVm+P6tVgh3b6fqprjfqz02J2BY1ez2w3yrwVf c7cwgD1OT8+JB5jo8n0/CHkifQUkqBMSyaxWujHfWQFllGWHaXF9MzFbBnjfmTzp kVThK6t/2fJmAuw4MbndOI+qtW/ZrdCAO1m7x61vxTA1XTYFrSB9G+UD8NPPTmT2 kT20Bt2Yy2eguCdQNFKbcClC9Am91cZg8GfzX/CdOFP7DSbQvOOAGaqjXTH/eJnK bF5OnUz66JKD/6jsWraJAZDvC9GBqU4kHziIBc0kDLLnbkiFIbZ1EWDp751GU3un 5l3Sldg= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:45 2024 by rpki-client on console-ams.rpki-client.org