$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D48F723C607C11EB842ADF86C4F9AE02.roa File: D48F723C607C11EB842ADF86C4F9AE02.roa (raw, json) Hash identifier: mgsbVfMokRhSQD00X+mfLtpQ6tOfqJapwKsSjVbuaeE= Subject key identifier: E4:D6:3D:89:14:F6:FB:AA:87:83:6D:2E:C9:3B:42:68:30:92:D7:32 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6C96 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D48F723C607C11EB842ADF86C4F9AE02.roa Signing time: Wed 10 May 2023 16:25:15 +0000 ROA not before: Wed 10 May 2023 16:25:15 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136656 IP address blocks: 103.97.108.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27798 (0x6c96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:25:15 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc56b-eb08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c2:22:1e:c3:a1:b3:4b:67:16:cf:39:0c:52: c4:d4:68:81:0b:5c:83:28:44:38:24:e7:df:d2:12: 61:50:a1:bf:86:0d:96:ba:01:fc:a6:05:15:7a:da: ad:8d:1e:7f:b9:d8:f1:8b:4e:04:3b:81:dc:1d:0d: 43:60:b9:54:0a:d8:e3:02:38:c7:8a:a6:4f:ce:e1: 75:2d:05:24:fc:71:0b:d5:30:a0:de:d0:6f:da:71: f4:4b:b4:68:e7:2e:cb:aa:3b:a3:ef:08:b9:bd:21: d9:5b:b4:26:12:2d:9d:6e:6a:63:3d:44:16:25:c8: 1c:81:be:36:5c:58:ce:4a:be:b3:46:92:f4:13:0a: b3:f5:3a:3b:b0:54:0a:b1:6a:10:ba:85:d3:16:dd: 61:b3:64:4e:43:87:e3:55:60:3c:b4:a4:31:9e:2d: e1:38:66:b4:f3:5d:db:8e:61:f0:51:1a:11:e0:a0: 84:02:d3:d3:f2:08:fd:94:0c:3c:36:86:f3:11:7b: e6:7e:e8:17:79:d2:8f:33:ac:60:5b:f2:c7:62:57: a4:ef:13:56:39:8b:b3:25:d9:dd:09:cc:1a:ce:83: d8:1e:aa:9c:8d:b1:ff:be:2c:4f:55:92:e7:68:ac: 9a:9c:a0:38:72:80:18:70:65:7c:f5:2a:ce:7a:75: c3:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:D6:3D:89:14:F6:FB:AA:87:83:6D:2E:C9:3B:42:68:30:92:D7:32 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D48F723C607C11EB842ADF86C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.97.108.0/23 Signature Algorithm: sha256WithRSAEncryption 09:ab:17:3d:c2:2c:ef:80:98:8e:3a:3a:ce:9e:05:84:42:81: 42:ad:0a:66:4e:05:9d:41:6f:9e:f1:d2:bd:f8:20:ab:52:9e: c4:c3:c8:16:24:eb:9a:07:b8:84:af:43:03:b7:4d:8a:8c:08: 74:32:70:48:62:2f:f3:30:e0:f4:63:58:80:94:5e:c3:13:9a: de:11:53:7a:f6:1e:c5:d4:94:60:9a:dd:13:d9:fa:53:0f:d9: ad:0a:fc:c5:95:d4:ba:26:eb:ee:a8:c5:7c:b1:a9:c2:48:8a: c2:4b:bf:f7:cc:33:3d:86:21:58:47:22:e0:fa:e5:a8:63:95: 6c:10:5b:c6:bb:13:18:cf:a7:85:23:20:78:d2:32:d4:55:eb: b8:12:0c:0e:6f:78:6d:fc:a9:87:8b:e0:8d:47:a2:6a:ac:62: b3:63:f6:71:f4:75:60:7e:f7:5f:e9:75:6c:a8:2a:ff:f9:99: a0:ed:ac:a3:b5:24:11:03:a2:ac:24:c4:fa:a1:08:5b:99:f8: 80:97:90:bf:69:62:3f:0c:3f:00:5e:22:5e:48:b7:bb:f8:c5: f7:f3:f5:b8:f8:3d:58:b9:92:ac:e5:c7:58:6e:0e:d6:eb:9b: cc:a7:69:a5:a5:58:27:9f:57:24:89:5f:e6:78:24:cf:a5:00: 18:8a:6b:a6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNTE1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzU2Yi1lYjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArsIiHsOhs0tnFs85DFLE1GiBC1yDKEQ4JOff0hJhUKG/hg2WugH8pgUVetqt jR5/udjxi04EO4HcHQ1DYLlUCtjjAjjHiqZPzuF1LQUk/HEL1TCg3tBv2nH0S7Ro 5y7Lqjuj7wi5vSHZW7QmEi2dbmpjPUQWJcgcgb42XFjOSr6zRpL0Ewqz9To7sFQK sWoQuoXTFt1hs2ROQ4fjVWA8tKQxni3hOGa0813bjmHwURoR4KCEAtPT8gj9lAw8 NobzEXvmfugXedKPM6xgW/LHYlek7xNWOYuzJdndCcwazoPYHqqcjbH/vixPVZLn aKyanKA4coAYcGV89SrOenXDQQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOTWPYkU 9vuqh4NtLsk7QmgwktcyMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRDQ4RjcyM0M2 MDdDMTFFQjg0MkFERjg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnYWwwDQYJKoZIhvcNAQELBQADggEBAAmrFz3CLO+AmI46 Os6eBYRCgUKtCmZOBZ1Bb57x0r34IKtSnsTDyBYk65oHuISvQwO3TYqMCHQycEhi L/Mw4PRjWICUXsMTmt4RU3r2HsXUlGCa3RPZ+lMP2a0K/MWV1Lom6+6oxXyxqcJI isJLv/fMMz2GIVhHIuD65ahjlWwQW8a7ExjPp4UjIHjSMtRV67gSDA5veG38qYeL 4I1HomqsYrNj9nH0dWB+91/pdWyoKv/5maDtrKO1JBEDoqwkxPqhCFuZ+ICXkL9p Yj8MPwBeIl5It7v4xffz9bj4PVi5kqzlx1huDtbrm8ynaaWlWCefVySJX+Z4JM+l ABiKa6Y= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:46 2024 by rpki-client on console-ams.rpki-client.org