$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CF2CD7A86E1D11ECAE815360C4F9AE02.roa File: CF2CD7A86E1D11ECAE815360C4F9AE02.roa (raw, json) Hash identifier: kt/r8Rmp1+XRZp38gBNYf0yCgbBpjQaaEYXD53hbufA= Subject key identifier: 12:46:3F:9A:A1:D9:6E:7A:B3:D9:87:EA:8F:F7:B1:E4:32:2E:2E:FA Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6AFA Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CF2CD7A86E1D11ECAE815360C4F9AE02.roa Signing time: Wed 10 May 2023 16:17:26 +0000 ROA not before: Wed 10 May 2023 16:17:26 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134046 IP address blocks: 103.170.52.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27386 (0x6afa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:17:26 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc396-e273 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:27:d4:79:78:1e:13:2f:ab:5b:b3:e4:4b:3d: 1e:58:86:fb:86:91:67:08:8a:cf:34:9b:1c:f9:d7: 4a:d6:61:b7:53:d7:31:0a:aa:2c:b8:3a:a1:99:b5: d9:5e:74:d6:e8:ad:3b:67:24:b6:1e:3f:ef:b6:69: 57:92:00:11:45:44:39:ba:b8:24:75:2d:7c:ba:cd: 91:fc:c3:c5:3d:97:d2:ec:25:b7:63:2e:74:88:4d: 1e:b2:7b:95:df:ed:c2:ca:f3:bb:e5:f2:04:bb:2a: 78:eb:c5:08:53:35:93:a0:48:ae:1e:da:06:75:e4: 1f:b4:bb:c3:b9:dc:3d:82:14:19:3e:51:2e:60:b8: b4:17:46:df:80:a9:8e:6a:7d:98:5a:7c:20:89:ab: 4f:0b:e8:46:81:f1:a2:e3:5a:23:11:03:f4:5c:52: 44:5a:29:f3:6d:e8:13:38:67:65:9f:85:62:74:1b: fd:20:64:d9:7c:b0:84:d3:9a:53:4f:c2:c7:38:9f: 00:12:74:4b:e5:19:9a:0a:76:ed:04:2e:3a:a2:b5: ef:95:a2:79:39:00:cc:c2:15:06:b1:39:f6:08:9f: 46:8c:3c:18:a7:d7:19:e0:66:86:3f:61:f5:02:99: ac:30:ab:0f:74:4f:ab:12:73:f5:29:aa:02:f9:2d: 57:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:46:3F:9A:A1:D9:6E:7A:B3:D9:87:EA:8F:F7:B1:E4:32:2E:2E:FA X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CF2CD7A86E1D11ECAE815360C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.52.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:48:5b:db:f7:2e:a8:eb:ef:c8:df:e2:22:60:05:06:fb:d7: 50:25:ff:20:f9:fc:24:66:aa:f6:58:fc:c4:9f:80:6e:ad:67: 57:60:c6:19:65:50:0b:3f:2b:17:6f:74:67:72:36:a1:76:e5: 7d:93:04:ee:ff:f6:96:2f:c1:fc:c8:ba:03:82:5c:b7:63:8e: 92:e6:05:3d:6c:62:38:21:32:f7:73:bc:e3:8b:0f:f5:ad:12: 1f:55:72:62:c1:d6:38:33:2a:0a:8b:64:a9:25:d2:c3:91:d7: 76:ad:99:85:9f:44:0f:10:a8:48:ed:13:9c:f5:3c:24:50:f7: 3b:70:99:6f:f2:42:05:3e:9d:58:91:9a:da:10:20:a1:e3:1f: 0f:c9:de:ef:f5:dd:e5:f9:7d:1c:65:12:2b:d3:4e:0a:ac:31: c7:00:14:19:00:eb:0b:44:6a:e8:be:b9:a2:4f:89:b6:b3:c8: a7:4e:ab:f9:dd:07:e1:eb:b4:2b:1a:5c:cf:8e:67:48:59:61: ee:6d:82:af:47:82:fd:d3:bb:f3:50:01:f6:d9:b1:f4:f6:c0: 52:9c:2b:2b:29:3b:22:13:ee:da:6a:50:94:d4:6f:ff:de:f4: a2:50:9c:c5:40:fb:40:81:84:27:cd:d9:4a:bb:07:4d:48:65: c7:63:ea:60 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICavowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxNzI2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzM5Ni1lMjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzCfUeXgeEy+rW7PkSz0eWIb7hpFnCIrPNJsc+ddK1mG3U9cxCqosuDqhmbXZ XnTW6K07ZyS2Hj/vtmlXkgARRUQ5urgkdS18us2R/MPFPZfS7CW3Yy50iE0esnuV 3+3CyvO75fIEuyp468UIUzWToEiuHtoGdeQftLvDudw9ghQZPlEuYLi0F0bfgKmO an2YWnwgiatPC+hGgfGi41ojEQP0XFJEWinzbegTOGdln4VidBv9IGTZfLCE05pT T8LHOJ8AEnRL5RmaCnbtBC46orXvlaJ5OQDMwhUGsTn2CJ9GjDwYp9cZ4GaGP2H1 ApmsMKsPdE+rEnP1KaoC+S1XGwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBJGP5qh 2W56s9mH6o/3seQyLi76MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQ0YyQ0Q3QTg2 RTFEMTFFQ0FFODE1MzYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnqjQwDQYJKoZIhvcNAQELBQADggEBAIxIW9v3Lqjr78jf 4iJgBQb711Al/yD5/CRmqvZY/MSfgG6tZ1dgxhllUAs/KxdvdGdyNqF25X2TBO7/ 9pYvwfzIugOCXLdjjpLmBT1sYjghMvdzvOOLD/WtEh9VcmLB1jgzKgqLZKkl0sOR 13atmYWfRA8QqEjtE5z1PCRQ9ztwmW/yQgU+nViRmtoQIKHjHw/J3u/13eX5fRxl EivTTgqsMccAFBkA6wtEaui+uaJPibazyKdOq/ndB+HrtCsaXM+OZ0hZYe5tgq9H gv3Tu/NQAfbZsfT2wFKcKyspOyIT7tpqUJTUb//e9KJQnMVA+0CBhCfN2Uq7B01I Zcdj6mA= -----END CERTIFICATE-----Generated at Sun Apr 28 15:51:37 2024 by rpki-client on console-fra.rpki-client.org