$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C3E84DC40E3A11ED893B557EC4F9AE02.roa File: C3E84DC40E3A11ED893B557EC4F9AE02.roa (raw, json) Hash identifier: aHKsJ0/n9lNBwukgakAzwR8YDQiU8fRU94pmb5tIOgc= Subject key identifier: F5:79:93:C3:2A:A4:C5:2E:37:F2:82:A4:C7:D0:A5:9D:E9:64:17:70 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6D78 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C3E84DC40E3A11ED893B557EC4F9AE02.roa Signing time: Wed 10 May 2023 16:29:29 +0000 ROA not before: Wed 10 May 2023 16:29:29 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 138289 IP address blocks: 103.123.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28024 (0x6d78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:29:29 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc669-426b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:69:76:79:83:97:e7:5a:9b:7b:bd:ad:f1:65: 27:e0:60:69:10:4d:0d:8f:5b:b5:7c:ea:d3:3e:ce: 41:ad:b7:97:89:14:6d:8a:02:78:ad:fd:72:fa:8f: 69:cd:91:ae:dc:0c:5d:02:06:71:2b:85:31:99:a2: df:d4:13:7b:0b:b2:cb:ba:52:88:a3:e0:56:db:ac: b5:60:dc:ea:19:fa:89:25:c7:d4:6e:70:02:d3:fe: ec:58:fe:9f:6b:c1:e5:95:c4:54:f8:3d:58:4f:0d: fb:02:9d:d2:4b:46:33:04:e6:d1:6f:86:47:57:9e: d1:ff:f4:5e:ce:54:bb:de:65:a2:64:40:95:58:e7: db:10:ef:2f:5b:f9:d7:ca:81:6f:4e:03:04:43:31: 50:32:05:b8:17:ac:13:8b:dc:b2:2d:71:65:9a:f2: a2:dd:45:fb:c4:38:c1:b3:71:96:9d:8c:93:b8:f9: 6d:7c:c4:88:2e:35:63:52:ce:4c:c5:2e:f5:38:5a: 8d:d9:06:a7:fa:bc:07:8f:c5:00:dd:be:d7:e1:91: 72:cd:20:2b:91:52:f5:e4:8b:63:cc:75:e5:56:13: 99:25:56:68:b8:64:93:aa:a9:d7:8a:c1:8d:56:26: 96:d6:f4:1f:59:0d:22:25:f2:5e:3a:8a:10:b3:14: d5:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:79:93:C3:2A:A4:C5:2E:37:F2:82:A4:C7:D0:A5:9D:E9:64:17:70 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C3E84DC40E3A11ED893B557EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.123.52.0/22 Signature Algorithm: sha256WithRSAEncryption 26:0a:52:2b:86:fa:ef:4e:d3:2f:48:de:b0:3a:ab:45:35:ad: 64:47:1e:4b:69:36:17:3d:69:79:a6:d7:2a:39:6f:15:36:33: b7:dd:87:4b:ab:45:8c:cb:0e:f1:bf:aa:44:15:61:06:0b:24: 15:1f:68:3d:79:99:9a:21:ea:00:8b:0b:82:60:00:f3:eb:c8: f8:eb:85:1e:84:bb:db:3a:60:b3:05:79:64:50:77:a6:d7:db: f0:91:4f:69:50:29:ef:e3:c7:90:aa:4c:ac:54:0f:d7:b8:1d: 08:33:9f:d0:ae:00:d9:81:0f:9a:55:b6:6b:d6:eb:a4:84:6e: eb:5b:c9:14:cf:2f:0b:bf:97:7c:7a:5a:42:80:c4:52:2a:85: 95:60:34:22:de:f1:a2:26:be:8b:93:f7:64:46:c8:23:54:29: 91:e3:bc:38:9a:bf:4d:2f:8f:6e:71:48:4b:01:40:93:84:2b: 77:7e:99:7a:0a:18:30:9a:33:9c:36:45:6f:88:31:29:84:fa: c9:e4:de:d5:a7:02:89:bb:ff:ee:5c:e2:35:86:49:04:87:85: 51:21:48:8b:aa:4b:d3:71:5c:e6:17:36:d9:0c:4e:b1:26:29: 55:83:16:b8:78:03:8b:a8:b8:08:e5:c4:ad:c0:14:f5:a3:8e: dc:6b:84:0f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyOTI5WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzY2OS00MjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2l2eYOX51qbe72t8WUn4GBpEE0Nj1u1fOrTPs5BrbeXiRRtigJ4rf1y+o9p zZGu3AxdAgZxK4UxmaLf1BN7C7LLulKIo+BW26y1YNzqGfqJJcfUbnAC0/7sWP6f a8HllcRU+D1YTw37Ap3SS0YzBObRb4ZHV57R//RezlS73mWiZECVWOfbEO8vW/nX yoFvTgMEQzFQMgW4F6wTi9yyLXFlmvKi3UX7xDjBs3GWnYyTuPltfMSILjVjUs5M xS71OFqN2Qan+rwHj8UA3b7X4ZFyzSArkVL15ItjzHXlVhOZJVZouGSTqqnXisGN ViaW1vQfWQ0iJfJeOooQsxTVowIDAQABo4IClTCCApEwHQYDVR0OBBYEFPV5k8Mq pMUuN/KCpMfQpZ3pZBdwMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQzNFODREQzQw RTNBMTFFRDg5M0I1NTdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnezQwDQYJKoZIhvcNAQELBQADggEBACYKUiuG+u9O0y9I 3rA6q0U1rWRHHktpNhc9aXmm1yo5bxU2M7fdh0urRYzLDvG/qkQVYQYLJBUfaD15 mZoh6gCLC4JgAPPryPjrhR6Eu9s6YLMFeWRQd6bX2/CRT2lQKe/jx5CqTKxUD9e4 HQgzn9CuANmBD5pVtmvW66SEbutbyRTPLwu/l3x6WkKAxFIqhZVgNCLe8aImvouT 92RGyCNUKZHjvDiav00vj25xSEsBQJOEK3d+mXoKGDCaM5w2RW+IMSmE+snk3tWn Aom7/+5c4jWGSQSHhVEhSIuqS9NxXOYXNtkMTrEmKVWDFrh4A4uouAjlxK3AFPWj jtxrhA8= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:45 2024 by rpki-client on console-ams.rpki-client.org