$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C23A5982E81311ED8E3D6035C4F9AE02.roa File: C23A5982E81311ED8E3D6035C4F9AE02.roa (raw, json) Hash identifier: Ersg7509Q2KIP93CGrn+3ejnrxe3P4sNxIjbTcGUuHM= Subject key identifier: AB:11:8D:41:BC:B1:4B:70:48:7F:32:26:DD:AF:16:70:40:64:96:E6 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6B39 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C23A5982E81311ED8E3D6035C4F9AE02.roa Signing time: Wed 10 May 2023 16:18:37 +0000 ROA not before: Wed 10 May 2023 16:18:37 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134343 IP address blocks: 103.110.102.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27449 (0x6b39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:18:37 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc3dc-33dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:07:de:9d:03:69:19:78:79:9e:6d:87:22:6e: 1c:a0:e8:9d:fc:86:22:93:f3:dd:13:53:b3:34:b1: d8:be:8f:34:19:d7:ca:8a:d3:66:a4:7c:8b:05:ff: 95:7a:92:bf:f4:bc:a3:bb:55:af:8c:6c:49:20:c9: 75:ed:c9:53:69:6e:ac:e0:95:de:5e:56:3b:ab:d8: 15:4c:fa:6a:b5:05:c4:7a:cb:9f:96:84:86:84:32: 7d:f9:27:20:16:42:29:f7:c2:5a:71:49:73:67:4f: 4d:66:4c:08:ac:27:4e:fd:d4:c1:11:b5:fc:5a:c8: 46:3b:c9:ba:79:e4:37:9f:8b:f2:07:4d:a2:33:91: ac:88:49:0f:10:2c:8b:96:9a:c9:89:1b:ce:c1:4d: 8d:f1:20:cb:90:de:19:b3:6e:25:3b:f2:a1:63:c6: ea:93:86:6c:34:fa:cd:ed:ec:8c:06:fc:d7:1f:e3: 14:5e:68:11:81:7b:4f:b9:4f:43:be:69:28:82:07: 80:0f:f4:16:9e:67:46:f9:a5:8f:6e:0a:7b:67:38: 79:10:bf:e3:3a:98:c0:6a:14:c0:56:83:70:30:fc: 2e:d8:73:85:ac:45:88:8e:ce:f7:6c:b9:ac:f9:2d: 4b:98:98:99:f2:0a:8d:93:c5:df:f4:99:d0:95:5c: 06:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:11:8D:41:BC:B1:4B:70:48:7F:32:26:DD:AF:16:70:40:64:96:E6 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C23A5982E81311ED8E3D6035C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.110.102.0/23 Signature Algorithm: sha256WithRSAEncryption 01:d9:4b:20:2f:26:8a:74:cb:5f:27:4a:ef:20:f1:ec:aa:f5: 08:8a:11:e6:ea:10:e0:9c:3a:8c:d8:21:a7:a9:58:0e:80:f1: a5:d9:a3:1d:a8:fd:35:89:20:27:1f:a4:15:12:db:9d:49:06: 0e:ae:51:4f:9c:40:b2:49:64:2c:15:29:fa:25:3c:6b:70:f2: 12:88:55:91:17:9f:fe:42:03:9f:73:e0:4b:c6:7d:4f:1c:fe: b4:e9:76:55:f5:41:2e:70:b8:46:d6:a8:12:27:23:d7:f3:c5: 55:34:c3:dd:e3:14:d8:ec:22:be:af:4e:c2:41:73:82:3c:a7: 02:fa:2f:19:62:8e:cf:38:6d:d3:6c:9f:9c:2d:6f:cd:9a:c4: f2:27:f1:87:47:a5:1b:d0:f1:d1:4c:ac:7e:68:e1:17:ea:ee: 86:18:bc:2f:25:ef:1c:96:43:3b:cc:ba:06:f3:95:f2:46:99: 1f:3d:49:56:17:6c:8c:35:4d:12:e2:35:1a:14:09:85:0c:b9: bf:18:68:85:69:5f:73:ef:e4:c6:ce:de:77:55:e2:70:51:fb: 4e:ae:2e:c4:0d:10:8f:da:17:b2:f1:20:d2:fc:52:f2:75:3e: f3:20:db:79:55:6a:2e:32:9c:22:c9:8f:41:e9:95:fb:0f:da: e5:3b:e0:a1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICazkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxODM3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzNkYy0zM2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqwfenQNpGXh5nm2HIm4coOid/IYik/PdE1OzNLHYvo80GdfKitNmpHyLBf+V epK/9Lyju1WvjGxJIMl17clTaW6s4JXeXlY7q9gVTPpqtQXEesufloSGhDJ9+Scg FkIp98JacUlzZ09NZkwIrCdO/dTBEbX8WshGO8m6eeQ3n4vyB02iM5GsiEkPECyL lprJiRvOwU2N8SDLkN4Zs24lO/KhY8bqk4ZsNPrN7eyMBvzXH+MUXmgRgXtPuU9D vmkoggeAD/QWnmdG+aWPbgp7Zzh5EL/jOpjAahTAVoNwMPwu2HOFrEWIjs73bLms +S1LmJiZ8gqNk8Xf9JnQlVwG0wIDAQABo4IClTCCApEwHQYDVR0OBBYEFKsRjUG8 sUtwSH8yJt2vFnBAZJbmMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQzIzQTU5ODJF ODEzMTFFRDhFM0Q2MDM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnbmYwDQYJKoZIhvcNAQELBQADggEBAAHZSyAvJop0y18n Su8g8eyq9QiKEebqEOCcOozYIaepWA6A8aXZox2o/TWJICcfpBUS251JBg6uUU+c QLJJZCwVKfolPGtw8hKIVZEXn/5CA59z4EvGfU8c/rTpdlX1QS5wuEbWqBInI9fz xVU0w93jFNjsIr6vTsJBc4I8pwL6Lxlijs84bdNsn5wtb82axPIn8YdHpRvQ8dFM rH5o4Rfq7oYYvC8l7xyWQzvMugbzlfJGmR89SVYXbIw1TRLiNRoUCYUMub8YaIVp X3Pv5MbO3ndV4nBR+06uLsQNEI/aF7LxINL8UvJ1PvMg23lVai4ynCLJj0HplfsP 2uU74KE= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:45 2024 by rpki-client on console-ams.rpki-client.org