$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C5E7C6EC43A511EB8DC4923AC4F9AE02.roa File: C5E7C6EC43A511EB8DC4923AC4F9AE02.roa (raw, json) Hash identifier: e309sMjNBjkrcU1v/R/NzK0VC0CZvmNWb8noCK4YTX4= Subject key identifier: 39:6D:D3:CB:D9:52:9F:9F:D0:D5:40:20:B5:F8:FC:95:DF:F3:AD:D1 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6E65 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C5E7C6EC43A511EB8DC4923AC4F9AE02.roa Signing time: Wed 10 May 2023 16:33:51 +0000 ROA not before: Wed 10 May 2023 16:33:51 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141260 IP address blocks: 103.160.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28261 (0x6e65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:33:51 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc76f-39f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:94:14:63:36:0e:1d:4e:9f:bc:a3:5a:da:d1: 90:76:34:e0:2b:2f:f8:b5:aa:f4:77:8b:e7:34:69: 3d:30:f9:65:ca:6f:cf:2b:06:16:aa:a2:a3:19:38: e6:ba:ee:fe:24:2f:58:6a:f9:f6:8f:52:b3:e4:e6: a8:ed:3b:81:b0:1c:43:6c:e8:40:dc:94:a8:ab:f9: 62:6a:f3:8c:94:7b:e8:31:72:4b:50:5b:1c:64:c4: b8:29:7c:76:68:8a:af:66:8a:60:fb:8e:08:a9:04: 44:bc:0e:3a:cc:e7:d8:5d:4a:1f:a9:49:e9:b3:a7: 51:2c:89:26:91:e8:dd:55:3a:46:67:e8:fd:cf:a4: db:61:d5:b8:51:d2:f8:28:a2:72:84:20:6e:92:d7: 1b:c8:28:b5:32:ef:32:27:ee:37:db:73:1d:45:db: 16:c3:fa:b0:4e:f0:1a:3f:ef:58:5d:15:a1:e1:26: e2:63:0e:1e:b9:db:26:ce:74:ff:23:ae:78:35:a1: ba:96:63:49:38:a8:42:b9:c3:54:6b:19:2c:31:9e: 58:b4:34:2b:71:de:a7:25:dc:2d:1e:0a:36:12:e6: fe:d7:1d:77:cd:88:de:85:f7:9c:7e:17:22:95:c3: 42:51:5c:58:90:73:46:a7:5f:a1:74:6f:52:79:8c: fc:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:6D:D3:CB:D9:52:9F:9F:D0:D5:40:20:B5:F8:FC:95:DF:F3:AD:D1 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C5E7C6EC43A511EB8DC4923AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.188.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:66:98:b2:ff:cd:d1:f4:ef:f9:d2:97:23:75:44:fe:fb:32: d4:16:1c:14:fc:cf:5a:87:bf:fc:ea:b1:ec:a3:b7:6e:c3:e0: 98:2e:bd:a8:02:35:c5:72:a7:53:13:c8:81:e7:f2:8c:e8:d5: 54:34:32:6a:3c:ec:60:cd:a4:37:bc:f2:05:12:77:ec:06:05: 13:d9:f7:52:7b:1e:98:5d:7c:8c:3f:08:63:75:ea:9b:c1:f7: ae:c4:2d:c7:35:39:89:81:e3:6b:ad:5f:c3:1e:71:02:02:38: d7:67:54:a6:73:22:2c:8a:20:16:f9:07:40:ee:bb:b0:bd:ba: 5c:db:09:ac:23:88:a2:0b:d8:3c:07:1a:d6:c0:88:3d:0b:1e: 33:87:12:07:e6:b6:b1:e9:c9:f6:c9:ac:c8:71:9c:5e:57:af: e2:87:77:5f:72:cd:c7:b7:24:65:71:5e:ac:cd:06:1f:4a:c5: 22:ff:7f:15:07:16:68:30:64:47:f1:7c:30:be:18:fc:aa:e4: 07:4c:dc:bb:4e:b2:cf:91:70:cb:19:e7:36:98:3e:62:cc:cd: 00:8c:07:47:b7:25:79:7e:bb:90:00:54:d4:97:b1:6e:16:7c: b1:94:f8:c2:89:f1:83:86:43:81:92:b9:d1:bd:49:45:50:52: 54:92:63:c1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzMzUxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzc2Zi0zOWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx5QUYzYOHU6fvKNa2tGQdjTgKy/4tar0d4vnNGk9MPllym/PKwYWqqKjGTjm uu7+JC9Yavn2j1Kz5Oao7TuBsBxDbOhA3JSoq/liavOMlHvoMXJLUFscZMS4KXx2 aIqvZopg+44IqQREvA46zOfYXUofqUnps6dRLIkmkejdVTpGZ+j9z6TbYdW4UdL4 KKJyhCBuktcbyCi1Mu8yJ+4323MdRdsWw/qwTvAaP+9YXRWh4SbiYw4eudsmznT/ I654NaG6lmNJOKhCucNUaxksMZ5YtDQrcd6nJdwtHgo2Eub+1x13zYjehfecfhci lcNCUVxYkHNGp1+hdG9SeYz8cwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDlt08vZ Up+f0NVAILX4/JXf863RMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQzVFN0M2RUM0 M0E1MTFFQjhEQzQ5MjNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnoLwwDQYJKoZIhvcNAQELBQADggEBAJ5mmLL/zdH07/nS lyN1RP77MtQWHBT8z1qHv/zqseyjt27D4JguvagCNcVyp1MTyIHn8ozo1VQ0Mmo8 7GDNpDe88gUSd+wGBRPZ91J7HphdfIw/CGN16pvB967ELcc1OYmB42utX8MecQIC ONdnVKZzIiyKIBb5B0Duu7C9ulzbCawjiKIL2DwHGtbAiD0LHjOHEgfmtrHpyfbJ rMhxnF5Xr+KHd19yzce3JGVxXqzNBh9KxSL/fxUHFmgwZEfxfDC+GPyq5AdM3LtO ss+RcMsZ5zaYPmLMzQCMB0e3JXl+u5AAVNSXsW4WfLGU+MKJ8YOGQ4GSudG9SUVQ UlSSY8E= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:45 2024 by rpki-client on console-ams.rpki-client.org