$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D298F31CBDD011EA9702FC12C4F9AE02.roa File: D298F31CBDD011EA9702FC12C4F9AE02.roa (raw, json) Hash identifier: FltlQ7uIz4XhAAsxX2h0ze+atGMADv0bFcRqY3tr1Ts= Subject key identifier: D5:3D:45:F8:19:10:1A:C8:28:76:AE:F6:3C:C3:AD:98:DB:B5:0D:4B Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6B56 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D298F31CBDD011EA9702FC12C4F9AE02.roa Signing time: Wed 10 May 2023 16:19:11 +0000 ROA not before: Wed 10 May 2023 16:19:11 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134880 IP address blocks: 103.148.182.0/23 maxlen: 24 103.187.230.0/23 maxlen: 24 2001:df0:c0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27478 (0x6b56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:19:11 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc3ff-e9d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4c:7b:b1:0a:79:9b:a6:1b:b9:73:97:cd:96: 87:2f:fe:ae:01:4a:33:16:8b:14:45:d3:84:90:95: 4e:66:41:d9:68:3c:2c:20:95:d5:4e:f4:70:ff:98: cb:cc:b2:8f:74:ef:3e:4b:87:a5:fa:01:78:e9:51: 7b:54:fa:7b:9c:8a:28:26:e1:10:a2:66:10:cd:2c: 40:39:69:0b:b2:29:3f:91:86:73:c5:a6:04:73:3a: 77:4e:19:75:44:f6:16:df:fd:1b:54:af:89:57:34: 49:89:d0:3d:49:d9:0c:da:6b:b5:3c:9f:7c:a6:6d: 29:07:04:5c:b5:45:ae:0e:85:2c:ae:23:de:a3:3a: de:9a:b0:41:ba:34:a5:d0:db:86:27:0b:7a:2f:2d: b3:21:05:be:cc:b5:f5:a2:66:c8:0e:eb:65:a3:58: 85:28:1f:d9:ef:87:a2:3d:29:87:bc:1b:8e:e3:5b: 08:2b:8f:8b:bf:96:49:7d:7b:17:33:31:fc:c3:28: 72:0e:64:43:c3:5e:80:05:79:df:4f:70:d2:50:59: c3:b1:a6:a1:6c:dd:59:41:72:31:f2:4b:7e:10:c8: 29:db:05:34:9d:48:54:b7:34:19:b1:f4:13:3a:eb: ed:2e:e9:a7:dc:4b:88:54:3e:28:1a:b7:35:e9:11: 0a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:3D:45:F8:19:10:1A:C8:28:76:AE:F6:3C:C3:AD:98:DB:B5:0D:4B X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D298F31CBDD011EA9702FC12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.182.0/23 103.187.230.0/23 IPv6: 2001:df0:c0c0::/48 Signature Algorithm: sha256WithRSAEncryption 11:90:24:18:07:a8:3b:e2:f6:79:fc:b8:90:4a:2d:30:c8:67: a6:d7:fd:78:f9:58:f7:d6:f1:08:d4:82:f0:14:bc:de:e3:26: 78:c9:01:aa:1a:c4:01:87:97:f3:e9:33:f7:bd:76:b1:18:91: 06:db:72:f2:e2:83:0c:d2:4b:c2:04:ce:aa:df:20:1e:19:58: 01:8b:82:66:de:6a:d9:4a:96:91:5b:5e:40:f7:ba:d7:77:93: be:b1:f6:11:fd:9b:8b:7e:73:81:80:94:07:bd:30:79:90:0a: ce:58:e1:65:7e:c4:0d:3f:0e:b6:3f:28:8d:cf:61:d6:95:b7: 28:45:0a:48:4a:b1:38:8a:33:09:fa:cb:37:d2:30:5d:3a:d2: eb:4a:49:fe:b8:d9:03:26:1d:7b:13:75:38:7c:e8:45:1f:f2: c9:ad:89:8d:19:62:80:2c:74:ff:3b:69:01:b3:36:ee:b0:03: 95:5f:40:32:31:5a:9b:2e:2a:57:1d:61:c5:06:d9:64:ff:e8: 48:1a:76:d2:9a:d9:ce:42:37:a6:3f:62:f4:e0:6e:a6:ac:70: 39:56:29:69:f6:f8:88:5f:41:a6:f5:06:f4:2e:b7:29:e5:66: 2f:a1:f9:8c:4c:76:64:70:d5:84:34:04:e0:f7:bf:72:6f:de: 27:da:9c:cd -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICa1YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxOTExWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzNmZi1lOWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0x7sQp5m6YbuXOXzZaHL/6uAUozFosURdOEkJVOZkHZaDwsIJXVTvRw/5jL zLKPdO8+S4el+gF46VF7VPp7nIooJuEQomYQzSxAOWkLsik/kYZzxaYEczp3Thl1 RPYW3/0bVK+JVzRJidA9SdkM2mu1PJ98pm0pBwRctUWuDoUsriPeozremrBBujSl 0NuGJwt6Ly2zIQW+zLX1ombIDutlo1iFKB/Z74eiPSmHvBuO41sIK4+Lv5ZJfXsX MzH8wyhyDmRDw16ABXnfT3DSUFnDsaahbN1ZQXIx8kt+EMgp2wU0nUhUtzQZsfQT OuvtLumn3EuIVD4oGrc16REK7QIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFNU9RfgZ EBrIKHau9jzDrZjbtQ1LMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRDI5OEYzMUNC REQwMTFFQTk3MDJGQzEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAFnlLYDBAFnu+YwDwQCAAIwCQMHACABDfDAwDANBgkqhkiG 9w0BAQsFAAOCAQEAEZAkGAeoO+L2efy4kEotMMhnptf9ePlY99bxCNSC8BS83uMm eMkBqhrEAYeX8+kz9712sRiRBtty8uKDDNJLwgTOqt8gHhlYAYuCZt5q2UqWkVte QPe613eTvrH2Ef2bi35zgYCUB70weZAKzljhZX7EDT8Otj8ojc9h1pW3KEUKSEqx OIozCfrLN9IwXTrS60pJ/rjZAyYdexN1OHzoRR/yya2JjRligCx0/ztpAbM27rAD lV9AMjFamy4qVx1hxQbZZP/oSBp20prZzkI3pj9i9OBupqxwOVYpafb4iF9BpvUG 9C63KeVmL6H5jEx2ZHDVhDQE4Pe/cm/eJ9qczQ== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:46 2024 by rpki-client on console-ams.rpki-client.org