$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D4DD0980711011EB97D2DD2FC4F9AE02.roa File: D4DD0980711011EB97D2DD2FC4F9AE02.roa (raw, json) Hash identifier: C6WXQqOkwcBdHXWAQksj7Koeb+m8AvO0kHp8uCrz78g= Subject key identifier: CA:DD:C8:6B:FD:C1:90:73:CC:43:22:57:67:DB:C1:11:F3:CF:4E:54 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6ECF Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D4DD0980711011EB97D2DD2FC4F9AE02.roa Signing time: Wed 10 May 2023 16:35:48 +0000 ROA not before: Wed 10 May 2023 16:35:48 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141530 IP address blocks: 103.162.156.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 15:26:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28367 (0x6ecf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:35:48 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc7e4-da96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:61:d8:2b:94:68:7a:ab:8b:dc:3d:b8:03:ea: b0:4c:dd:db:76:3b:42:dd:54:59:e0:aa:01:bd:ec: 62:1c:0b:4a:c7:63:88:8c:02:56:eb:66:d4:1f:74: c6:7d:94:f1:49:40:b1:c5:8e:e8:b4:75:b6:03:3c: a7:91:6c:47:a9:9a:72:9b:0b:bd:23:3a:1e:36:11: 7f:dd:87:10:b1:f7:ff:94:28:e6:6a:97:25:76:36: 1d:62:2d:cf:fc:7a:0f:0f:85:0a:da:c7:73:21:4c: 13:a4:f3:8f:34:b4:b8:d7:2e:f0:e9:ff:89:c8:a8: 08:1d:50:be:f3:5d:ab:1b:92:1f:75:8b:72:8a:3c: ba:1e:65:3e:ff:e9:08:7c:06:ec:bd:88:91:c3:69: 39:01:8b:f5:bc:ea:bb:d1:92:76:53:20:41:bb:69: 48:09:45:9e:29:97:88:33:e8:b6:85:70:af:33:3f: 43:2c:3a:a5:c8:19:48:ad:76:2e:dd:78:63:33:c2: 5e:f3:0f:b0:9d:f3:14:b9:2e:ea:54:20:ed:4b:45: 68:9a:c3:82:68:20:a8:3d:5d:e6:c0:3b:56:6f:0a: c0:b4:84:64:7d:a8:9f:eb:a6:5d:02:2b:cc:52:8b: ea:03:3f:a0:97:37:42:df:bf:78:cb:a7:95:c2:4a: a6:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:DD:C8:6B:FD:C1:90:73:CC:43:22:57:67:DB:C1:11:F3:CF:4E:54 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D4DD0980711011EB97D2DD2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.156.0/23 Signature Algorithm: sha256WithRSAEncryption 54:1b:73:58:62:36:d0:96:4b:aa:2e:69:4e:62:ea:84:1c:1a: 39:2a:65:15:6b:35:1e:9c:cd:cc:9e:a4:73:be:00:2c:99:e7: 5f:38:94:93:f8:83:06:5d:13:e4:09:d1:54:7c:3a:ff:ca:51: c3:4d:92:40:dc:94:7f:0d:0f:32:af:58:ef:47:e2:e5:fb:08: f6:72:98:65:00:16:cd:4e:3c:88:14:54:3a:11:28:ec:53:96: 24:9a:fd:f1:a9:bc:f9:4e:ec:39:c9:1b:a4:3d:f9:8c:b7:47: 26:f2:3a:f3:e2:13:e7:6c:c7:20:85:1d:cf:36:ed:16:d2:9b: f1:2a:bf:9e:9c:3f:31:fa:fe:d6:74:eb:24:e2:b0:ef:fc:77: 9b:40:fc:0c:26:58:f9:77:d3:90:cc:79:79:d0:12:dc:71:95: 17:17:01:ef:bf:25:09:2e:f5:71:2f:c9:0a:b0:ad:ef:ce:c9: ff:7b:11:62:f1:96:17:9b:cd:21:a5:51:06:a7:c9:77:48:cc: 23:4d:e4:f1:4e:28:4f:a1:b4:b0:63:b5:ec:47:53:92:06:98: 15:22:df:0d:bd:b1:75:9c:de:ad:f7:6e:0c:78:7b:0a:7f:d1: f1:74:f0:eb:d6:5c:da:0c:f1:4e:7b:fe:0c:ba:9e:83:42:0a: 2e:89:d2:57 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzNTQ4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzdlNC1kYTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2HYK5RoequL3D24A+qwTN3bdjtC3VRZ4KoBvexiHAtKx2OIjAJW62bUH3TG fZTxSUCxxY7otHW2AzynkWxHqZpymwu9IzoeNhF/3YcQsff/lCjmapcldjYdYi3P /HoPD4UK2sdzIUwTpPOPNLS41y7w6f+JyKgIHVC+812rG5IfdYtyijy6HmU+/+kI fAbsvYiRw2k5AYv1vOq70ZJ2UyBBu2lICUWeKZeIM+i2hXCvMz9DLDqlyBlIrXYu 3XhjM8Je8w+wnfMUuS7qVCDtS0VomsOCaCCoPV3mwDtWbwrAtIRkfaif66ZdAivM UovqAz+glzdC3794y6eVwkqmAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMrdyGv9 wZBzzEMiV2fbwRHzz05UMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRDRERDA5ODA3 MTEwMTFFQjk3RDJERDJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnopwwDQYJKoZIhvcNAQELBQADggEBAFQbc1hiNtCWS6ou aU5i6oQcGjkqZRVrNR6czcyepHO+ACyZ5184lJP4gwZdE+QJ0VR8Ov/KUcNNkkDc lH8NDzKvWO9H4uX7CPZymGUAFs1OPIgUVDoRKOxTliSa/fGpvPlO7DnJG6Q9+Yy3 RybyOvPiE+dsxyCFHc827RbSm/Eqv56cPzH6/tZ06yTisO/8d5tA/AwmWPl305DM eXnQEtxxlRcXAe+/JQku9XEvyQqwre/Oyf97EWLxlhebzSGlUQanyXdIzCNN5PFO KE+htLBjtexHU5IGmBUi3w29sXWc3q33bgx4ewp/0fF08OvWXNoM8U57/gy6noNC Ci6J0lc= -----END CERTIFICATE-----Generated at Sun Apr 28 16:49:34 2024 by rpki-client on console-ams.rpki-client.org