$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C2E45C64051B11EEA9671C47C4F9AE02.roa File: C2E45C64051B11EEA9671C47C4F9AE02.roa (raw, json) Hash identifier: jwMkGx40fsZxpR3mLt8jk4n+ELNdPhGjxlD8lqCBu4I= Subject key identifier: EA:8B:F7:19:26:69:CD:B2:2C:19:43:B1:3F:F7:3F:2B:15:97:5F:B4 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 737C Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C2E45C64051B11EEA9671C47C4F9AE02.roa Signing time: Wed 07 Jun 2023 10:12:09 +0000 ROA not before: Wed 07 Jun 2023 10:12:09 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 149226 IP address blocks: 103.123.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29564 (0x737c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jun 7 10:12:09 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=648057f9-10ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:db:ba:1f:a2:cb:5c:64:ce:e1:c9:b9:14:7e: 07:b2:28:12:ab:60:b9:1e:06:27:46:87:ab:88:43: 46:ee:61:d4:a4:d4:22:1b:91:71:f8:32:4e:4e:41: e5:49:e7:f9:b1:2a:8e:cc:7d:9b:61:2a:83:9e:c6: 81:61:dc:9d:a2:45:17:7e:a9:e3:99:e9:f0:b8:5b: cc:d8:d8:ec:23:dd:2f:16:96:91:e6:92:ce:ac:ae: 87:53:cb:a0:6f:8e:f6:e3:c9:cb:10:36:dd:7b:11: 98:2c:0d:03:66:ac:c6:4f:fd:49:1c:0c:56:f7:e8: 31:53:c8:fe:4f:bb:83:5d:0a:c2:e6:ef:c4:35:5e: 80:d2:6d:ca:e8:68:d6:46:7a:c2:3c:cf:7f:43:c9: 49:92:62:8d:c7:e7:df:23:fe:80:85:a3:3f:a6:fa: ec:52:86:d4:b7:53:17:2d:51:9f:7e:24:17:41:9f: 17:7c:9d:84:12:02:d4:22:0b:31:b8:8c:07:c7:f7: c4:2c:e6:c5:d2:b2:98:4b:3a:55:05:ac:07:ea:18: 8c:34:7b:df:24:23:dd:14:72:7b:03:35:18:7e:30: 23:a4:5f:eb:91:bc:3f:6e:67:25:4f:55:05:5b:a5: 41:83:df:29:1a:17:45:e5:0c:81:83:4a:b2:da:6c: 60:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:8B:F7:19:26:69:CD:B2:2C:19:43:B1:3F:F7:3F:2B:15:97:5F:B4 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C2E45C64051B11EEA9671C47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.123.172.0/23 Signature Algorithm: sha256WithRSAEncryption 1f:44:9c:d5:13:94:4c:6c:2d:6f:34:ec:a3:05:bf:fb:99:ea: 8c:c3:ee:9c:f2:81:bd:6c:4b:a4:f8:db:87:ce:b2:d4:c5:71: 13:58:e2:21:a3:10:8f:96:0f:f5:e1:c1:69:f0:d1:0f:4c:45: 6c:9b:29:83:06:9b:ab:b1:bb:41:9d:ea:4f:cd:05:d1:5d:2e: 16:c3:ee:4f:5e:04:73:e2:19:89:d3:bc:ed:fa:a4:a7:b8:b8: 9e:fb:e2:c7:62:db:ba:72:2c:6a:a6:24:e6:2a:6d:08:1c:b1: 79:ce:ee:b9:76:68:65:97:14:b8:04:8e:1a:64:44:0f:b2:4d: e3:8f:a7:4b:17:df:4b:30:9c:6a:e7:f6:00:a1:2d:bd:55:5c: 35:d9:c7:89:0a:91:76:5f:6e:2d:5b:08:c3:ea:4c:38:c9:1f: 27:b5:6f:0b:8f:fc:45:d2:21:35:b1:a1:46:6b:a1:65:da:83: ae:e1:a1:26:7e:f7:a3:a4:6c:f7:ce:b2:5f:04:bc:c9:5e:c5: fd:43:89:3c:17:4f:54:cd:d1:96:04:15:d9:c7:77:9c:0a:a1: 47:24:7f:9e:64:b1:a4:06:84:7c:e9:26:ca:54:71:39:44:64: b9:77:db:1a:b5:b8:e6:69:73:f6:f4:02:ea:85:cd:08:d2:64: 4f:8c:d7:21 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICc3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNjA3MTAxMjA5WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDgwNTdmOS0xMGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Nu6H6LLXGTO4cm5FH4HsigSq2C5HgYnRoeriENG7mHUpNQiG5Fx+DJOTkHl Sef5sSqOzH2bYSqDnsaBYdydokUXfqnjmenwuFvM2NjsI90vFpaR5pLOrK6HU8ug b47248nLEDbdexGYLA0DZqzGT/1JHAxW9+gxU8j+T7uDXQrC5u/ENV6A0m3K6GjW RnrCPM9/Q8lJkmKNx+ffI/6AhaM/pvrsUobUt1MXLVGffiQXQZ8XfJ2EEgLUIgsx uIwHx/fELObF0rKYSzpVBawH6hiMNHvfJCPdFHJ7AzUYfjAjpF/rkbw/bmclT1UF W6VBg98pGhdF5QyBg0qy2mxgFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOqL9xkm ac2yLBlDsT/3PysVl1+0MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQzJFNDVDNjQw NTFCMTFFRUE5NjcxQzQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFne6wwDQYJKoZIhvcNAQELBQADggEBAB9EnNUTlExsLW80 7KMFv/uZ6ozD7pzygb1sS6T424fOstTFcRNY4iGjEI+WD/XhwWnw0Q9MRWybKYMG m6uxu0Gd6k/NBdFdLhbD7k9eBHPiGYnTvO36pKe4uJ774sdi27pyLGqmJOYqbQgc sXnO7rl2aGWXFLgEjhpkRA+yTeOPp0sX30swnGrn9gChLb1VXDXZx4kKkXZfbi1b CMPqTDjJHye1bwuP/EXSITWxoUZroWXag67hoSZ+96OkbPfOsl8EvMlexf1DiTwX T1TN0ZYEFdnHd5wKoUckf55ksaQGhHzpJspUcTlEZLl32xq1uOZpc/b0AuqFzQjS ZE+M1yE= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:45 2024 by rpki-client on console-ams.rpki-client.org