$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D5F819E28A9311ED9F4B8F13C4F9AE02.roa File: D5F819E28A9311ED9F4B8F13C4F9AE02.roa (raw, json) Hash identifier: HhouZYCyYIqILAYnP/UpP1DXL1kTUs04VsiOr3QgaT8= Subject key identifier: 3E:FF:B8:C9:49:33:B8:CC:86:CD:E8:E6:23:6B:ED:43:1C:4D:BA:B4 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6E2D Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D5F819E28A9311ED9F4B8F13C4F9AE02.roa Signing time: Wed 10 May 2023 16:32:51 +0000 ROA not before: Wed 10 May 2023 16:32:51 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 140158 IP address blocks: 103.149.196.0/23 maxlen: 24 103.182.158.0/24 maxlen: 24 103.182.159.0/24 maxlen: 24 2407:96c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28205 (0x6e2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:32:51 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc733-b668 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:74:27:2a:5b:53:9a:6c:d1:94:47:57:ab:64: a1:23:14:84:a1:f2:b3:1e:6e:c2:d7:86:1c:2e:b0: 26:24:9b:1f:38:11:50:79:ef:93:31:9b:2f:f5:e2: 3f:a8:06:4c:64:2a:c1:91:e2:b7:0f:59:78:f7:b1: 64:b4:d5:a7:da:29:b0:6c:b0:8b:d8:30:ae:6d:2f: 02:87:dd:86:d7:d3:6f:6d:d8:c3:62:ed:55:71:35: 37:ed:63:30:f0:08:d4:f6:45:6d:f2:1e:c4:7d:4d: 8f:a6:c9:c7:bc:54:09:af:bd:f6:38:86:bf:e4:b8: 8b:c8:ad:99:d5:89:7a:3c:a4:ca:5f:11:35:ca:32: 63:4a:8a:05:99:c9:64:f5:17:05:ae:3e:78:3f:db: 3c:42:15:ba:fe:5c:cd:21:4a:ea:50:4f:07:13:db: c5:ec:2c:82:a2:d4:e0:2d:e8:ff:2c:ee:ed:9a:e7: 3a:7f:6c:bb:6d:ad:35:19:85:0f:99:3f:ca:3e:5c: bb:35:ad:59:d8:ae:2d:66:d6:34:97:07:94:33:a2: 73:b2:cb:71:c0:51:ce:22:4d:b8:d9:c4:c9:a4:70: f7:fd:0f:ed:f5:a4:78:e6:a5:48:c7:29:87:25:fc: 7f:a7:cf:0c:1f:0c:b6:39:91:8e:d6:bd:87:a1:9d: 82:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:FF:B8:C9:49:33:B8:CC:86:CD:E8:E6:23:6B:ED:43:1C:4D:BA:B4 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D5F819E28A9311ED9F4B8F13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.196.0/23 103.182.158.0/23 IPv6: 2407:96c0::/32 Signature Algorithm: sha256WithRSAEncryption b2:8e:a5:fb:92:e2:17:f6:64:d8:7d:4f:fe:40:1d:57:6b:dd: 22:36:a8:39:e4:60:e2:11:96:8c:90:13:e7:c2:e1:08:d1:9d: 4a:e0:a7:e0:ec:b1:17:98:f8:ae:5a:f2:ee:75:d7:cc:0b:72: dd:5a:fd:e9:d2:41:61:d2:25:2c:63:19:20:0b:36:3d:29:4a: ea:2c:21:81:84:18:82:59:e9:68:47:95:87:87:30:a4:9e:01: 0a:df:17:cf:ce:83:8c:c7:c7:17:be:d9:a8:ab:b8:90:1d:cf: 2b:f1:79:45:06:63:ee:54:a6:18:91:7e:29:0d:23:f9:92:1b: 9e:13:f4:32:27:5c:6e:ce:56:6b:f9:20:7a:c0:b2:66:af:f1: 63:e5:a7:96:2c:ed:f2:11:6a:db:93:ba:d0:34:69:ee:3b:22: 5f:a2:b2:69:33:7d:ba:64:12:de:96:5d:5f:99:42:a8:be:53: c1:e4:1b:85:e7:c3:37:9e:a3:bb:7f:36:a4:72:63:d7:ed:ef: ec:21:69:b3:88:67:63:8d:0c:5c:c7:af:11:a9:80:f5:50:de: 36:40:9b:17:59:d7:c9:7b:01:56:aa:5b:6e:15:d9:5a:26:bb: dc:46:55:33:ed:19:5c:ff:0a:af:47:55:74:8b:e0:fb:51:73: 84:fc:6a:de -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICbi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzMjUxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzczMy1iNjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7nQnKltTmmzRlEdXq2ShIxSEofKzHm7C14YcLrAmJJsfOBFQee+TMZsv9eI/ qAZMZCrBkeK3D1l497FktNWn2imwbLCL2DCubS8Ch92G19NvbdjDYu1VcTU37WMw 8AjU9kVt8h7EfU2PpsnHvFQJr732OIa/5LiLyK2Z1Yl6PKTKXxE1yjJjSooFmclk 9RcFrj54P9s8QhW6/lzNIUrqUE8HE9vF7CyCotTgLej/LO7tmuc6f2y7ba01GYUP mT/KPly7Na1Z2K4tZtY0lweUM6JzsstxwFHOIk242cTJpHD3/Q/t9aR45qVIxymH Jfx/p88MHwy2OZGO1r2HoZ2CBQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFD7/uMlJ M7jMhs3o5iNr7UMcTbq0MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRDVGODE5RTI4 QTkzMTFFRDlGNEI4RjEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFnlcQDBAFntp4wDQQCAAIwBwMFACQHlsAwDQYJKoZIhvcN AQELBQADggEBALKOpfuS4hf2ZNh9T/5AHVdr3SI2qDnkYOIRloyQE+fC4QjRnUrg p+DssReY+K5a8u5118wLct1a/enSQWHSJSxjGSALNj0pSuosIYGEGIJZ6WhHlYeH MKSeAQrfF8/Og4zHxxe+2airuJAdzyvxeUUGY+5UphiRfikNI/mSG54T9DInXG7O Vmv5IHrAsmav8WPlp5Ys7fIRatuTutA0ae47Il+ismkzfbpkEt6WXV+ZQqi+U8Hk G4Xnwzeeo7t/NqRyY9ft7+whabOIZ2ONDFzHrxGpgPVQ3jZAmxdZ18l7AVaqW24V 2Vomu9xGVTPtGVz/Cq9HVXSL4PtRc4T8at4= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:46 2024 by rpki-client on console-ams.rpki-client.org