$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D181C048CF8111EC82B62361C4F9AE02.roa File: D181C048CF8111EC82B62361C4F9AE02.roa (raw, json) Hash identifier: KyMRAdVLyro2e6wlMecz1fJaSw/fLOFNZv9YZn/UWqs= Subject key identifier: F3:29:03:2E:BB:74:C6:BE:30:DB:B8:B6:FC:09:45:24:40:51:21:BA Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6E01 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D181C048CF8111EC82B62361C4F9AE02.roa Signing time: Wed 10 May 2023 16:32:04 +0000 ROA not before: Wed 10 May 2023 16:32:04 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 139558 IP address blocks: 103.148.96.0/23 maxlen: 24 2001:df1:fac0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28161 (0x6e01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:32:04 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc704-8a9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c8:15:3a:2e:d4:7c:b2:80:88:88:9c:24:01: 79:31:89:fe:70:d9:17:98:7d:2d:f3:84:f8:da:97: fa:40:e3:81:e8:97:f0:bf:d4:b1:49:36:0a:84:87: 96:e3:57:6c:06:ee:8a:43:89:21:ef:2a:f8:af:19: f9:37:82:9d:05:46:e6:74:8c:61:50:ce:e2:70:7d: c9:0e:f4:af:29:e6:b4:0b:7a:1e:81:ec:5a:f5:07: c9:3c:e0:61:76:86:5c:df:ca:3c:a7:9f:fc:34:9f: b2:98:5f:e1:c0:22:e6:89:c9:1d:10:c4:2f:48:7e: 46:55:48:47:ca:91:00:72:3a:80:0a:75:06:b0:dd: 1a:78:a8:f7:ce:96:ee:11:f8:c5:32:8e:c5:65:a7: e5:57:31:78:81:5e:57:11:13:e7:3e:cc:bf:aa:02: 31:77:f8:11:c8:6e:67:c2:7a:be:f8:cd:55:21:4b: db:fe:86:17:98:f5:d0:a7:89:94:99:51:ac:c8:c1: 08:9c:e1:a9:11:aa:1b:59:26:62:9f:5e:3c:9a:b0: 6f:d4:09:38:9d:13:1b:5d:be:e1:29:87:3f:fa:ee: b4:9d:35:61:dc:4d:88:3c:d2:c9:f6:56:0e:f1:22: f5:09:ac:f0:df:c3:12:c5:72:11:dc:db:be:c1:dd: 17:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:29:03:2E:BB:74:C6:BE:30:DB:B8:B6:FC:09:45:24:40:51:21:BA X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D181C048CF8111EC82B62361C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.96.0/23 IPv6: 2001:df1:fac0::/48 Signature Algorithm: sha256WithRSAEncryption 59:d9:33:83:82:2e:de:be:ea:44:a0:93:ae:1e:3d:0a:66:bb: 10:9f:cd:5d:ba:96:e5:f5:88:d0:07:80:a0:37:dd:c6:5b:dd: f8:4b:66:28:ee:d0:4f:56:18:f9:fb:85:d0:e7:89:40:5c:74: aa:a6:49:31:85:f9:cf:82:95:58:2d:db:32:82:03:7d:50:90: 95:e4:77:5c:79:4e:ae:ed:46:e0:d0:0b:78:00:fb:ee:84:87: 55:22:8a:5f:da:f6:b6:58:84:3f:eb:e5:94:d0:1a:8a:b9:c4: 22:fb:6f:c9:8a:0a:7c:84:dd:4a:18:bf:40:e1:4b:e4:a2:13: 4b:88:37:e7:bd:58:87:0d:54:e1:c7:e2:ee:70:11:3a:4d:ba: b4:70:93:0d:47:bf:f3:07:27:20:61:8c:2a:39:bf:e0:b0:f0: 47:3c:19:ed:49:91:7b:4c:06:22:46:84:3e:da:1e:39:17:13: 4e:bf:26:dc:57:c1:36:eb:27:22:ee:44:4f:28:58:b7:7e:92: b7:54:88:c1:35:3d:e5:8a:b4:07:93:bf:ca:b2:51:67:0d:93: 8f:c1:80:33:8f:de:19:38:a9:9f:d7:e6:ed:ae:45:b2:bf:82: 76:88:3e:56:77:c5:21:c6:0c:5a:38:cc:dd:95:04:f7:ba:6e: 6d:3b:73:37 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICbgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzMjA0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzcwNC04YTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8gVOi7UfLKAiIicJAF5MYn+cNkXmH0t84T42pf6QOOB6Jfwv9SxSTYKhIeW 41dsBu6KQ4kh7yr4rxn5N4KdBUbmdIxhUM7icH3JDvSvKea0C3oegexa9QfJPOBh doZc38o8p5/8NJ+ymF/hwCLmickdEMQvSH5GVUhHypEAcjqACnUGsN0aeKj3zpbu EfjFMo7FZaflVzF4gV5XERPnPsy/qgIxd/gRyG5nwnq++M1VIUvb/oYXmPXQp4mU mVGsyMEInOGpEaobWSZin148mrBv1Ak4nRMbXb7hKYc/+u60nTVh3E2IPNLJ9lYO 8SL1Cazw38MSxXIR3Nu+wd0XkwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPMpAy67 dMa+MNu4tvwJRSRAUSG6MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRDE4MUMwNDhD RjgxMTFFQzgyQjYyMzYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnlGAwDwQCAAIwCQMHACABDfH6wDANBgkqhkiG9w0BAQsF AAOCAQEAWdkzg4Iu3r7qRKCTrh49Cma7EJ/NXbqW5fWI0AeAoDfdxlvd+EtmKO7Q T1YY+fuF0OeJQFx0qqZJMYX5z4KVWC3bMoIDfVCQleR3XHlOru1G4NALeAD77oSH VSKKX9r2tliEP+vllNAairnEIvtvyYoKfITdShi/QOFL5KITS4g3571Yhw1U4cfi 7nAROk26tHCTDUe/8wcnIGGMKjm/4LDwRzwZ7UmRe0wGIkaEPtoeORcTTr8m3FfB NusnIu5ETyhYt36St1SIwTU95Yq0B5O/yrJRZw2Tj8GAM4/eGTipn9fm7a5Fsr+C dog+VnfFIcYMWjjM3ZUE97pubTtzNw== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:46 2024 by rpki-client on console-ams.rpki-client.org