$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C892F92C780F11EBA1552785C4F9AE02.roa File: C892F92C780F11EBA1552785C4F9AE02.roa (raw, json) Hash identifier: +8x2/aCtDnQGJqik/Ep29ypoC4tNPUtWJH5cPp3mCcg= Subject key identifier: 73:F2:90:58:08:DF:96:D4:9D:97:A1:64:69:96:20:A6:F0:CA:17:D8 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6A3F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C892F92C780F11EBA1552785C4F9AE02.roa Signing time: Wed 10 May 2023 16:13:50 +0000 ROA not before: Wed 10 May 2023 16:13:50 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 132987 IP address blocks: 103.160.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27199 (0x6a3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:13:50 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc2be-76a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:83:bf:c2:19:36:fc:95:4d:84:4e:55:5d:8b: 29:89:0c:a8:aa:a6:70:c3:56:4a:a4:bf:54:72:3e: 86:fa:47:18:06:f3:d5:6b:6f:c2:61:65:e7:83:18: 00:26:8c:f9:8a:59:12:e5:98:0e:ea:7e:0a:a9:ba: c3:97:fa:1a:3f:6d:22:b9:20:75:d6:d8:61:31:f2: af:7c:10:27:92:8d:e9:8e:d5:43:fb:83:64:0f:e8: c5:20:9a:50:5c:26:02:7b:c1:8d:35:54:73:7c:92: ce:4e:02:f4:77:7d:53:a2:37:0b:ad:f7:c5:5f:26: 98:d8:fe:c8:83:d2:70:08:26:33:82:1f:d3:7d:e7: 9e:f0:41:16:10:b8:e1:f7:9a:de:84:52:73:88:39: 11:f9:12:8f:23:8c:e6:0b:30:36:2a:12:dc:39:0b: 0a:3f:bd:7e:fc:0d:e0:a7:c4:69:f3:06:bb:45:11: 72:9d:3f:15:11:8a:96:ae:8c:35:d9:f2:0a:fd:1d: 1d:2f:ea:57:5e:ad:10:2b:8f:37:4f:cf:3e:22:e4: ed:a3:9b:46:5b:d9:b4:c0:ab:28:96:6a:8f:b3:e2: 37:76:3d:76:66:ce:3f:25:f9:6d:fa:eb:43:47:12: cb:fc:03:2e:0a:14:d7:9f:71:12:64:1a:9c:a9:ee: 31:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:F2:90:58:08:DF:96:D4:9D:97:A1:64:69:96:20:A6:F0:CA:17:D8 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C892F92C780F11EBA1552785C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.134.0/23 Signature Algorithm: sha256WithRSAEncryption 62:1a:4b:55:2a:4b:c4:28:5f:12:9e:fe:4a:07:90:9d:ab:32: 34:2f:9d:9e:f7:92:f6:33:8a:36:14:f8:3b:57:f7:1d:8f:38: 5d:66:1a:a6:50:bb:5a:97:c1:ed:8d:aa:ed:f5:95:7c:a6:6a: da:bf:6b:71:8e:0f:30:30:f2:ea:0d:a8:5b:29:48:b6:28:f8: cc:37:80:aa:66:b4:c2:27:52:7f:6e:a1:e9:56:57:af:6d:7d: e9:a2:4e:ef:86:94:c4:cc:cf:5d:90:a6:58:d9:82:f2:21:b1: d0:ae:63:f9:6c:ca:76:ea:4d:cd:cf:29:03:ba:8d:73:34:99: 13:78:73:ac:df:d0:0b:73:65:21:86:2a:49:fe:af:ba:0b:f5: f3:54:de:8f:62:7f:aa:de:0d:c4:28:d2:8f:10:81:9e:78:84: f9:e1:30:69:55:6c:43:70:37:28:32:84:18:c3:b3:5f:93:15: 65:da:ca:8a:5a:7c:99:0e:8b:44:f7:e6:91:63:1a:62:05:91: 19:8b:27:08:da:86:e1:1e:06:fd:b1:fd:b7:5d:2c:86:b0:fb: 4a:9d:c6:f8:ba:57:d8:3e:c3:0b:a0:11:b4:17:3b:98:7a:14: 1a:e9:f9:6d:32:88:44:49:a1:da:d1:8c:b0:8d:31:db:c5:68: a5:24:22:c9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICaj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxMzUwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzJiZS03NmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtIO/whk2/JVNhE5VXYspiQyoqqZww1ZKpL9Ucj6G+kcYBvPVa2/CYWXngxgA Joz5ilkS5ZgO6n4KqbrDl/oaP20iuSB11thhMfKvfBAnko3pjtVD+4NkD+jFIJpQ XCYCe8GNNVRzfJLOTgL0d31TojcLrffFXyaY2P7Ig9JwCCYzgh/Tfeee8EEWELjh 95rehFJziDkR+RKPI4zmCzA2KhLcOQsKP71+/A3gp8Rp8wa7RRFynT8VEYqWrow1 2fIK/R0dL+pXXq0QK483T88+IuTto5tGW9m0wKsolmqPs+I3dj12Zs4/Jflt+utD RxLL/AMuChTXn3ESZBqcqe4xYQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHPykFgI 35bUnZehZGmWIKbwyhfYMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQzg5MkY5MkM3 ODBGMTFFQkExNTUyNzg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnoIYwDQYJKoZIhvcNAQELBQADggEBAGIaS1UqS8QoXxKe /koHkJ2rMjQvnZ73kvYzijYU+DtX9x2POF1mGqZQu1qXwe2Nqu31lXymatq/a3GO DzAw8uoNqFspSLYo+Mw3gKpmtMInUn9uoelWV69tfemiTu+GlMTMz12QpljZgvIh sdCuY/lsynbqTc3PKQO6jXM0mRN4c6zf0AtzZSGGKkn+r7oL9fNU3o9if6reDcQo 0o8QgZ54hPnhMGlVbENwNygyhBjDs1+TFWXayopafJkOi0T35pFjGmIFkRmLJwja huEeBv2x/bddLIaw+0qdxvi6V9g+wwugEbQXO5h6FBrp+W0yiERJodrRjLCNMdvF aKUkIsk= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:45 2024 by rpki-client on console-ams.rpki-client.org