$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CE3B92003C2311EEA8267557C4F9AE02.roa File: CE3B92003C2311EEA8267557C4F9AE02.roa (raw, json) Hash identifier: SqBD2ku+Cr6P314EvpjqClQ3oMm9hvcQaqcdM8XQNUo= Subject key identifier: A9:76:5B:1A:46:C5:BB:38:6B:94:A9:F9:DE:DD:7B:94:D5:59:AA:3C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 77CC Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CE3B92003C2311EEA8267557C4F9AE02.roa Signing time: Wed 16 Aug 2023 10:58:18 +0000 ROA not before: Wed 16 Aug 2023 10:58:18 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 146922 IP address blocks: 103.171.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30668 (0x77cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Aug 16 10:58:18 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64dcabc9-9aa2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d5:eb:2b:d4:11:da:60:ce:68:7f:01:49:22: ca:b1:4e:69:22:b5:1d:ca:3c:44:8c:df:7d:4f:3c: 0d:60:7c:40:07:de:3b:49:3f:76:3f:df:88:13:88: 2c:13:36:3e:a7:b6:90:02:3c:da:ef:1b:51:09:38: 3e:fb:8c:4c:e8:5e:12:09:34:df:f9:75:c7:35:8c: 00:cb:e8:92:3f:f5:f9:cb:56:fe:7c:25:b3:36:6c: 25:41:8c:fd:d1:36:69:83:54:ce:79:aa:ad:5a:a6: 78:18:6f:a7:88:fc:6f:85:7a:42:b7:6e:9f:9c:15: fb:97:05:6a:6a:6a:93:f9:79:eb:98:d0:f4:a0:90: dc:b5:c9:5e:9f:b0:94:bb:d3:6d:40:cc:fb:60:fa: fe:13:68:ef:40:46:8f:ec:a4:bd:02:50:18:c3:83: a9:53:f1:9f:ed:b7:c6:da:20:48:f7:df:4f:7a:58: 63:8a:87:5a:33:67:23:2a:f1:0c:66:b8:5a:e5:73: 15:d5:38:ea:66:f5:f6:96:c1:e9:28:cb:0e:1b:80: b2:d0:4c:18:ee:d5:aa:52:e3:ce:a6:59:84:e0:8b: a0:ad:39:8e:bd:ea:2e:9e:18:9b:06:20:95:a6:ce: fd:e8:04:80:5e:63:1f:14:f0:d9:8a:96:d3:ef:05: 14:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:76:5B:1A:46:C5:BB:38:6B:94:A9:F9:DE:DD:7B:94:D5:59:AA:3C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CE3B92003C2311EEA8267557C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.171.172.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:7f:9a:7b:e9:b5:47:fb:2c:fd:e4:97:c5:12:2d:95:52:dc: ff:c1:6a:92:5c:88:10:7e:28:ae:29:73:89:d1:87:ed:77:6d: 5b:5f:5c:37:e2:06:a6:a1:76:80:4d:61:96:49:ca:d8:93:08: a9:bd:f4:d2:8a:8a:9d:82:68:24:ed:f7:8c:17:4d:99:8c:e4: 68:4e:0c:97:11:75:0d:96:f1:30:35:e0:a2:92:64:f4:d3:a3: 7c:36:35:ba:0d:f8:7f:1d:99:e7:8e:6f:5c:ea:2d:10:d6:94: b4:71:1e:84:df:3f:fd:7c:b7:4d:d6:dd:db:fe:9d:9c:57:48: e7:31:82:40:63:53:5a:73:1d:b5:bd:56:73:99:40:56:72:13: 6c:bf:d7:03:a3:2d:4b:9b:86:a0:47:3f:a5:9e:d3:4c:bf:76: fe:a7:61:fa:19:44:c8:f2:e5:e1:b2:a3:ae:73:6f:5a:d7:84: 99:9e:2a:98:44:a9:48:c7:80:1b:24:ed:10:86:e5:52:c5:c9: 3c:e8:ac:ba:cc:fd:ae:ec:5b:2c:ea:3e:84:03:5e:02:90:72: 87:48:a3:d3:4a:cd:0b:37:43:ee:57:cb:b4:7e:58:45:ed:41: e3:2a:19:a4:1c:27:6e:87:2a:63:aa:05:e0:45:f6:e1:bb:fa: 75:70:91:92 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICd8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwODE2MTA1ODE4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRjYWJjOS05YWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1NXrK9QR2mDOaH8BSSLKsU5pIrUdyjxEjN99TzwNYHxAB947ST92P9+IE4gs EzY+p7aQAjza7xtRCTg++4xM6F4SCTTf+XXHNYwAy+iSP/X5y1b+fCWzNmwlQYz9 0TZpg1TOeaqtWqZ4GG+niPxvhXpCt26fnBX7lwVqamqT+XnrmND0oJDctclen7CU u9NtQMz7YPr+E2jvQEaP7KS9AlAYw4OpU/Gf7bfG2iBI999PelhjiodaM2cjKvEM Zrha5XMV1TjqZvX2lsHpKMsOG4Cy0EwY7tWqUuPOplmE4IugrTmOveounhibBiCV ps796ASAXmMfFPDZipbT7wUU6QIDAQABo4IClTCCApEwHQYDVR0OBBYEFKl2WxpG xbs4a5Sp+d7de5TVWao8MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQ0UzQjkyMDAz QzIzMTFFRUE4MjY3NTU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnq6wwDQYJKoZIhvcNAQELBQADggEBAAx/mnvptUf7LP3k l8USLZVS3P/BapJciBB+KK4pc4nRh+13bVtfXDfiBqahdoBNYZZJytiTCKm99NKK ip2CaCTt94wXTZmM5GhODJcRdQ2W8TA14KKSZPTTo3w2NboN+H8dmeeOb1zqLRDW lLRxHoTfP/18t03W3dv+nZxXSOcxgkBjU1pzHbW9VnOZQFZyE2y/1wOjLUubhqBH P6We00y/dv6nYfoZRMjy5eGyo65zb1rXhJmeKphEqUjHgBsk7RCG5VLFyTzorLrM /a7sWyzqPoQDXgKQcodIo9NKzQs3Q+5Xy7R+WEXtQeMqGaQcJ26HKmOqBeBF9uG7 +nVwkZI= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:46 2024 by rpki-client on console-ams.rpki-client.org