$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CAD0657A590511EDAAEC2857C4F9AE02.roa File: CAD0657A590511EDAAEC2857C4F9AE02.roa (raw, json) Hash identifier: VQFDaUW7IT01ADl0ATGIKPs8s0HKMyMIdk9YznguUZs= Subject key identifier: E7:70:E0:51:BE:32:9F:CF:CD:4E:D6:38:DE:5C:31:54:52:52:58:18 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 70EB Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CAD0657A590511EDAAEC2857C4F9AE02.roa Signing time: Wed 10 May 2023 16:45:48 +0000 ROA not before: Wed 10 May 2023 16:45:48 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 150092 IP address blocks: 103.20.230.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28907 (0x70eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:45:48 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bca3c-c90c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:bf:cc:8e:ee:3a:bd:27:42:c2:9f:ac:a7:c2: 40:6d:34:0d:59:2b:4e:ee:3e:e4:98:2e:27:7f:f3: f9:75:85:fc:f9:5c:8a:8a:96:7d:ab:10:00:c3:9c: a9:da:38:ba:72:65:04:cc:41:70:08:a1:d8:68:93: 2a:c4:e2:32:58:3b:16:b2:53:0a:4b:67:dd:28:15: 25:1f:7b:41:08:de:7c:60:e6:b4:06:4d:c5:eb:20: f7:6a:91:45:5e:92:25:63:a7:de:27:e3:44:aa:a4: 7d:13:10:69:52:8a:b9:ae:5a:7e:0c:f4:7e:4f:e7: fb:c9:ae:2a:b2:c3:0b:e6:97:44:07:bc:27:b4:b3: ad:a1:53:36:2c:f6:91:ab:f8:05:bc:fe:6f:ed:a0: 9d:a5:0a:48:d1:ce:06:73:4e:56:39:bc:87:3a:90: 61:15:13:dd:ef:96:49:78:8f:fa:89:90:4a:b2:f2: 5e:1d:bc:60:81:6f:84:92:c4:97:92:99:67:72:4b: 0f:48:8c:7e:2c:14:3b:21:64:b5:b8:af:cb:56:d4: 79:87:a8:02:91:bb:21:58:18:e0:00:40:80:5c:a6: 42:dc:c5:41:63:04:e4:10:6b:65:d7:38:85:10:31: c9:2a:ba:34:14:04:26:74:0b:f1:d0:12:0a:3f:f5: f2:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:70:E0:51:BE:32:9F:CF:CD:4E:D6:38:DE:5C:31:54:52:52:58:18 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CAD0657A590511EDAAEC2857C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.230.0/23 Signature Algorithm: sha256WithRSAEncryption 0d:03:5e:a8:30:45:bf:b1:a0:1b:95:19:63:04:3b:c3:22:9f: ad:57:9a:63:3e:34:53:19:11:f2:35:d2:14:ab:8c:9f:87:6d: ad:ce:a8:a0:03:e3:61:7d:88:ee:4b:e3:81:24:ae:af:17:76: 00:ee:76:75:85:71:01:74:e6:d9:af:e1:5c:4b:47:e6:0f:df: d6:48:ef:7c:8b:ba:19:c2:68:a5:29:bc:6a:69:6b:62:2f:6b: 74:e4:aa:44:1a:01:4b:dc:cd:0e:a5:10:f2:e0:40:62:f5:f2: 6a:12:34:54:5d:e2:12:d3:e8:36:c9:2e:40:f7:cf:64:b1:5d: 1a:45:d4:1e:6d:0d:90:ab:4b:00:05:bd:0f:aa:2a:3f:59:eb: 62:94:07:68:eb:c7:9b:86:d3:35:67:30:2a:58:b2:0d:a9:56: d2:8a:a0:95:8c:e4:fd:af:f8:af:26:01:fd:4f:91:ea:bb:6a: 71:d5:b3:8b:f8:6f:41:7e:a4:18:bf:a7:99:73:22:d6:bd:a8: eb:82:29:e3:60:9e:00:7f:86:cd:29:ab:11:e3:20:f5:8b:03: ca:76:34:96:7b:75:d5:25:30:25:78:e1:06:e0:00:24:c4:53: 65:21:ea:81:0f:7f:e1:eb:b6:3e:25:f8:e3:c8:bb:ae:3f:38: 4b:dc:17:31 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICcOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0NTQ4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViY2EzYy1jOTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAob/Mju46vSdCwp+sp8JAbTQNWStO7j7kmC4nf/P5dYX8+VyKipZ9qxAAw5yp 2ji6cmUEzEFwCKHYaJMqxOIyWDsWslMKS2fdKBUlH3tBCN58YOa0Bk3F6yD3apFF XpIlY6feJ+NEqqR9ExBpUoq5rlp+DPR+T+f7ya4qssML5pdEB7wntLOtoVM2LPaR q/gFvP5v7aCdpQpI0c4Gc05WObyHOpBhFRPd75ZJeI/6iZBKsvJeHbxggW+EksSX kplncksPSIx+LBQ7IWS1uK/LVtR5h6gCkbshWBjgAECAXKZC3MVBYwTkEGtl1ziF EDHJKro0FAQmdAvx0BIKP/XyOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOdw4FG+ Mp/PzU7WON5cMVRSUlgYMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQ0FEMDY1N0E1 OTA1MTFFREFBRUMyODU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnFOYwDQYJKoZIhvcNAQELBQADggEBAA0DXqgwRb+xoBuV GWMEO8Min61XmmM+NFMZEfI10hSrjJ+Hba3OqKAD42F9iO5L44Ekrq8XdgDudnWF cQF05tmv4VxLR+YP39ZI73yLuhnCaKUpvGppa2Iva3TkqkQaAUvczQ6lEPLgQGL1 8moSNFRd4hLT6DbJLkD3z2SxXRpF1B5tDZCrSwAFvQ+qKj9Z62KUB2jrx5uG0zVn MCpYsg2pVtKKoJWM5P2v+K8mAf1Pkeq7anHVs4v4b0F+pBi/p5lzIta9qOuCKeNg ngB/hs0pqxHjIPWLA8p2NJZ7ddUlMCV44QbgACTEU2Uh6oEPf+Hrtj4l+OPIu64/ OEvcFzE= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:46 2024 by rpki-client on console-ams.rpki-client.org