$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CBDD58BC960811EC8BB4F586C4F9AE02.roa File: CBDD58BC960811EC8BB4F586C4F9AE02.roa (raw, json) Hash identifier: eSGO/5k6ke9J9yudzKOnF+5t2Isg9R/5t4EcW9I7SXE= Subject key identifier: B3:4D:DB:60:F6:A9:7A:23:B4:9E:DB:FE:F6:23:0A:0C:1A:5A:F3:73 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6BA1 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CBDD58BC960811EC8BB4F586C4F9AE02.roa Signing time: Wed 10 May 2023 16:20:37 +0000 ROA not before: Wed 10 May 2023 16:20:36 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 135221 IP address blocks: 103.181.156.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27553 (0x6ba1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:20:36 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc454-ddb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2e:6f:e5:a7:9e:a5:ac:2d:4f:d0:f7:3d:74: e5:2f:70:fc:59:06:9b:8f:8d:8e:36:3e:91:29:80: c6:7d:7d:ed:40:8f:80:b1:ce:89:3b:f6:60:05:ce: a1:1a:19:7a:0c:85:bf:62:43:e5:f1:71:2e:ee:43: bf:13:71:79:25:93:19:1d:4e:64:c3:0b:42:3b:2a: b6:b4:82:db:80:14:97:6e:8a:2f:04:91:72:4a:e2: 94:f2:c8:89:21:91:73:cd:65:dd:d9:ff:4d:e1:f6: 4f:44:4d:84:63:1a:01:d4:ef:71:ea:b0:2a:e5:bf: 48:e7:80:01:8f:0f:f2:85:3c:dc:99:f1:62:8c:ee: ce:32:b7:09:fa:4d:bd:70:a1:d8:f0:53:50:0e:4a: e7:57:49:aa:32:3f:f6:f4:f3:b9:b3:e2:f3:31:c1: 72:ea:d9:e7:9a:65:cf:5a:be:37:e6:31:96:1e:cd: 6b:c8:03:dc:a2:46:9e:23:7a:8e:8b:5c:4f:6e:a7: 71:70:77:93:2a:b0:f7:14:1c:b0:fb:db:d9:65:58: 54:32:72:91:c1:9a:18:7a:6a:ca:06:f0:95:de:3c: 22:08:ea:9b:37:02:07:81:a7:26:72:e6:f1:d5:11: 62:45:8b:cf:c0:52:dc:ff:4e:84:84:23:94:1d:25: f0:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:4D:DB:60:F6:A9:7A:23:B4:9E:DB:FE:F6:23:0A:0C:1A:5A:F3:73 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CBDD58BC960811EC8BB4F586C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.181.156.0/23 Signature Algorithm: sha256WithRSAEncryption 45:f4:73:f8:63:d1:39:93:19:e4:55:67:82:bd:e1:85:1c:bc: 44:53:44:d9:88:0c:61:1f:ec:86:1d:af:de:6e:52:02:40:27: 2d:ec:cf:e2:2d:2a:c1:dc:21:77:f6:13:2c:79:e6:95:1c:ae: d6:b5:83:fa:a9:18:76:c2:2e:f8:a4:f4:3b:fa:dc:ca:81:04: 92:7c:5c:ab:b3:aa:3b:6e:7d:2a:b3:42:fe:83:36:e6:1b:72: 12:bd:29:1e:a2:d8:d0:87:25:5b:e0:5c:ec:e7:c5:d6:51:0a: 47:d8:71:8e:9a:cd:ac:7a:37:ae:87:7d:ed:9c:4d:57:30:e0: 95:db:4f:2b:2e:24:b0:db:44:78:1c:b2:96:3f:fb:9f:f3:0e: 66:5f:dd:96:cc:a1:33:a6:50:76:c1:cd:7b:ef:a4:74:c4:19: 47:35:c0:78:1f:bf:52:0a:fc:a3:43:f8:30:dd:25:ea:b7:92: c2:09:ce:65:d9:25:60:63:23:2e:88:15:b5:22:d6:26:88:b0: 84:05:c0:bb:5c:42:6f:87:50:ba:44:47:5e:34:e9:a6:ed:1d: cc:0a:fb:83:f3:a4:5c:b7:69:26:98:c4:78:6c:d4:17:85:9b: 2e:26:66:63:78:ec:38:30:18:b2:2f:c4:35:93:61:bb:20:67: eb:9c:4e:d4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICa6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyMDM2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzQ1NC1kZGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyi5v5aeepawtT9D3PXTlL3D8WQabj42ONj6RKYDGfX3tQI+Asc6JO/ZgBc6h Ghl6DIW/YkPl8XEu7kO/E3F5JZMZHU5kwwtCOyq2tILbgBSXboovBJFySuKU8siJ IZFzzWXd2f9N4fZPRE2EYxoB1O9x6rAq5b9I54ABjw/yhTzcmfFijO7OMrcJ+k29 cKHY8FNQDkrnV0mqMj/29PO5s+LzMcFy6tnnmmXPWr435jGWHs1ryAPcokaeI3qO i1xPbqdxcHeTKrD3FByw+9vZZVhUMnKRwZoYemrKBvCV3jwiCOqbNwIHgacmcubx 1RFiRYvPwFLc/06EhCOUHSXw9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFLNN22D2 qXojtJ7b/vYjCgwaWvNzMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQ0JERDU4QkM5 NjA4MTFFQzhCQjRGNTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFntZwwDQYJKoZIhvcNAQELBQADggEBAEX0c/hj0TmTGeRV Z4K94YUcvERTRNmIDGEf7IYdr95uUgJAJy3sz+ItKsHcIXf2Eyx55pUcrta1g/qp GHbCLvik9Dv63MqBBJJ8XKuzqjtufSqzQv6DNuYbchK9KR6i2NCHJVvgXOznxdZR CkfYcY6azax6N66Hfe2cTVcw4JXbTysuJLDbRHgcspY/+5/zDmZf3ZbMoTOmUHbB zXvvpHTEGUc1wHgfv1IK/KND+DDdJeq3ksIJzmXZJWBjIy6IFbUi1iaIsIQFwLtc Qm+HULpER1406abtHcwK+4PzpFy3aSaYxHhs1BeFmy4mZmN47DgwGLIvxDWTYbsg Z+ucTtQ= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:46 2024 by rpki-client on console-ams.rpki-client.org