$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C43E28E619EB11ECB996CC4FC4F9AE02.roa File: C43E28E619EB11ECB996CC4FC4F9AE02.roa (raw, json) Hash identifier: 8tNgRNN4p3A2R93HYrfwrZZDzjXs04AhawLlYGvPLv0= Subject key identifier: 53:81:EB:CF:75:B6:85:C9:A9:8B:0B:09:6E:B7:51:02:D5:27:7C:BD Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6F90 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C43E28E619EB11ECB996CC4FC4F9AE02.roa Signing time: Wed 10 May 2023 16:39:23 +0000 ROA not before: Wed 10 May 2023 16:39:23 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 142537 IP address blocks: 103.169.58.0/23 maxlen: 24 2001:df6:eb80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28560 (0x6f90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:39:23 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc8bb-3c92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:34:0d:a6:7f:38:a5:e6:49:7b:ef:e4:06:07: 66:92:91:23:ea:ae:91:83:c6:b5:c3:b0:87:04:9f: a5:b2:cb:75:89:e9:cd:69:41:f8:57:00:86:ae:bd: f2:c5:96:33:9c:ca:ce:7f:66:70:b1:fa:6b:04:8d: a1:30:55:b9:58:57:08:9c:55:0f:23:aa:bf:83:b8: 8e:01:26:45:49:17:18:d3:be:49:b1:df:76:a0:67: c1:c0:cf:71:f6:f0:c3:7a:ce:0f:28:0d:71:88:36: dd:85:b6:18:6b:b6:10:29:c1:42:49:d6:9a:2d:6f: bc:9f:bf:56:7c:e0:37:aa:70:ec:1b:7a:32:a8:dc: 92:92:6d:9f:a8:ed:cf:34:ff:f8:90:a6:57:ee:38: 44:93:ff:e2:e4:1b:5a:c0:b9:82:41:e8:3b:f3:f9: e6:ce:d7:02:f6:c7:70:07:bb:ae:32:b7:1f:fa:4e: 97:76:bd:25:9e:87:0c:c2:e5:32:85:3e:19:61:fd: 28:03:d6:fb:20:c5:35:c2:df:e5:52:7e:02:37:fb: f5:59:31:82:a4:49:12:bc:9b:7b:cb:aa:09:63:e6: 09:4d:60:73:16:1e:e8:cc:2d:9f:c4:00:19:99:ff: 9b:12:cd:d8:27:a4:48:ce:56:f6:00:7d:11:59:7c: ab:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:81:EB:CF:75:B6:85:C9:A9:8B:0B:09:6E:B7:51:02:D5:27:7C:BD X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C43E28E619EB11ECB996CC4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.169.58.0/23 IPv6: 2001:df6:eb80::/48 Signature Algorithm: sha256WithRSAEncryption 15:14:f1:c4:27:09:af:ba:c4:30:9b:33:64:c4:61:69:37:ea: 7f:27:40:b8:e3:6c:8f:43:c8:d6:7a:42:18:5b:aa:da:eb:3d: c2:33:5b:7e:cd:d0:f5:4c:ae:7f:7a:54:96:35:95:0a:75:ac: ce:19:c0:c6:c4:86:a8:32:ff:8b:fb:46:b9:9d:1c:15:e7:2a: 5a:67:4b:0d:17:9e:7b:36:8f:b4:2d:aa:3d:83:c5:26:51:49: 20:53:7e:b5:61:97:d5:c2:dc:af:fc:7c:cd:d2:b3:91:e1:a5: 00:60:86:5b:70:2b:84:87:c6:01:22:63:05:69:ff:98:69:3d: 06:dd:fc:3a:b3:91:d3:e7:52:2f:e7:47:f5:ce:e5:f1:13:af: f5:38:9b:50:00:75:b6:aa:5d:b6:92:52:7b:0f:af:e0:3f:d7: ff:92:27:05:af:f1:ea:b5:59:22:df:33:0a:7f:49:15:f9:8c: 85:60:ba:67:72:6b:e9:70:5f:0e:99:27:97:c9:23:40:7d:a6: 35:92:c9:8d:fd:e3:73:e7:83:a0:aa:55:7e:a0:43:8f:59:82: 82:32:d7:a9:2c:e5:b6:d8:fb:07:e4:6c:57:11:24:2d:1b:a0: 66:94:c8:63:91:df:4b:27:5d:76:f5:ef:e2:fc:55:01:63:ae: e4:f7:0c:a9 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICb5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzOTIzWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzhiYi0zYzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjQNpn84peZJe+/kBgdmkpEj6q6Rg8a1w7CHBJ+lsst1ienNaUH4VwCGrr3y xZYznMrOf2ZwsfprBI2hMFW5WFcInFUPI6q/g7iOASZFSRcY075Jsd92oGfBwM9x 9vDDes4PKA1xiDbdhbYYa7YQKcFCSdaaLW+8n79WfOA3qnDsG3oyqNySkm2fqO3P NP/4kKZX7jhEk//i5BtawLmCQeg78/nmztcC9sdwB7uuMrcf+k6Xdr0lnocMwuUy hT4ZYf0oA9b7IMU1wt/lUn4CN/v1WTGCpEkSvJt7y6oJY+YJTWBzFh7ozC2fxAAZ mf+bEs3YJ6RIzlb2AH0RWXyrkwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFOB6891 toXJqYsLCW63UQLVJ3y9MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQzQzRTI4RTYx OUVCMTFFQ0I5OTZDQzRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnqTowDwQCAAIwCQMHACABDfbrgDANBgkqhkiG9w0BAQsF AAOCAQEAFRTxxCcJr7rEMJszZMRhaTfqfydAuONsj0PI1npCGFuq2us9wjNbfs3Q 9Uyuf3pUljWVCnWszhnAxsSGqDL/i/tGuZ0cFecqWmdLDReeezaPtC2qPYPFJlFJ IFN+tWGX1cLcr/x8zdKzkeGlAGCGW3ArhIfGASJjBWn/mGk9Bt38OrOR0+dSL+dH 9c7l8ROv9TibUAB1tqpdtpJSew+v4D/X/5InBa/x6rVZIt8zCn9JFfmMhWC6Z3Jr 6XBfDpknl8kjQH2mNZLJjf3jc+eDoKpVfqBDj1mCgjLXqSzlttj7B+RsVxEkLRug ZpTIY5HfSydddvXv4vxVAWOu5PcMqQ== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:45 2024 by rpki-client on console-ams.rpki-client.org