$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D65557A20BE411EDA3980F75C4F9AE02.roa File: D65557A20BE411EDA3980F75C4F9AE02.roa (raw, json) Hash identifier: XKwPudb901u+gpJNlYAbCZujann8Wu5wb9DymDBuH+k= Subject key identifier: 4D:1B:40:14:7F:B5:20:01:EF:E2:5C:E1:F0:FD:D0:77:C5:B0:78:D4 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6BAB Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D65557A20BE411EDA3980F75C4F9AE02.roa Signing time: Wed 10 May 2023 16:20:48 +0000 ROA not before: Wed 10 May 2023 16:20:48 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 135236 IP address blocks: 103.189.56.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27563 (0x6bab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:20:48 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc460-8116 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:68:a1:98:c4:1b:1e:2f:0c:8f:e3:a9:26:63: 91:83:0b:c0:ca:96:76:cf:2d:43:1c:e5:19:e1:3f: 54:16:a4:34:d2:06:d0:90:91:05:d7:fb:13:94:e6: 46:15:60:20:28:f6:79:93:94:cf:f8:be:8b:4d:66: a5:ae:9e:a1:2a:bb:bf:88:17:c2:2e:e3:8e:48:fe: 24:3c:d5:a2:3f:fe:7b:d3:13:d5:f3:a9:8c:d5:8a: 30:1c:59:2e:3d:bb:4a:5c:4a:bf:91:53:a7:bc:e9: 93:92:9f:48:1e:89:15:7b:53:b7:cd:88:86:83:24: 1e:a7:b8:09:67:13:6f:ff:59:f5:20:fa:d1:fd:85: 22:b0:ca:b1:d7:f9:9a:8a:0f:d1:bb:0a:dd:e9:5a: 58:27:78:aa:92:d0:0b:89:5d:d4:1a:d8:06:d2:26: 44:bf:cb:be:60:1d:00:9d:cf:80:f3:4e:bf:7e:9d: 75:31:00:22:26:a3:ee:fa:f2:00:4e:4b:7f:2c:1f: 2c:3a:55:ae:08:65:63:60:46:8d:07:b7:b9:4b:d4: 69:17:ba:8e:34:d6:08:80:0c:3d:2c:7d:83:c9:20: e2:c0:0e:3f:6c:37:09:83:ca:4f:fb:86:1b:eb:4a: 82:b0:f4:3b:06:5e:af:41:04:84:e4:a6:ec:fe:7c: 52:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:1B:40:14:7F:B5:20:01:EF:E2:5C:E1:F0:FD:D0:77:C5:B0:78:D4 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D65557A20BE411EDA3980F75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.56.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:63:2f:32:e0:d0:40:dc:df:9a:ed:1b:f1:11:7c:c7:89:1f: b8:8a:e3:74:86:67:7c:1a:50:92:8a:97:06:8e:a7:92:1d:db: 6c:04:41:6f:47:e6:ff:0f:43:e6:c7:4d:ad:7a:85:2a:0a:d7: d5:57:f6:5e:88:c8:4b:e7:60:56:49:0c:65:06:05:85:af:8f: e5:bb:18:ed:67:3a:0d:9e:90:4c:99:51:68:a8:9a:7d:c1:5e: be:2c:64:25:41:ee:a1:9e:b8:00:1a:01:f6:c4:f5:da:15:e6: 26:69:43:9a:58:18:f8:56:a1:36:61:60:08:d5:f6:aa:17:27: 47:e6:fb:7c:a8:3d:99:ea:66:d0:62:c0:52:aa:a6:de:34:73: 57:fd:57:39:23:0e:b4:5d:a2:2f:8d:e1:b6:c8:0b:e8:71:44: 23:08:8c:a1:18:76:21:e5:dc:2a:bd:a4:12:ea:f9:53:16:7b: 33:8b:e8:fb:ab:af:24:5c:b3:6e:57:38:d4:8e:cb:f3:2b:fa: 37:31:f0:0c:88:1b:bd:b8:f8:4b:3a:06:f7:eb:2b:29:5f:f6: 48:d3:dc:31:b0:9c:e9:ca:e7:68:bf:da:ed:39:ad:f6:e4:b3: be:dd:c9:41:00:e4:70:a3:bf:4e:c6:7d:49:94:36:83:b2:df: 49:d1:9b:47 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICa6swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyMDQ4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzQ2MC04MTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmihmMQbHi8Mj+OpJmORgwvAypZ2zy1DHOUZ4T9UFqQ00gbQkJEF1/sTlOZG FWAgKPZ5k5TP+L6LTWalrp6hKru/iBfCLuOOSP4kPNWiP/570xPV86mM1YowHFku PbtKXEq/kVOnvOmTkp9IHokVe1O3zYiGgyQep7gJZxNv/1n1IPrR/YUisMqx1/ma ig/Ruwrd6VpYJ3iqktALiV3UGtgG0iZEv8u+YB0Anc+A806/fp11MQAiJqPu+vIA Tkt/LB8sOlWuCGVjYEaNB7e5S9RpF7qONNYIgAw9LH2DySDiwA4/bDcJg8pP+4Yb 60qCsPQ7Bl6vQQSE5Kbs/nxShQIDAQABo4IClTCCApEwHQYDVR0OBBYEFE0bQBR/ tSAB7+Jc4fD90HfFsHjUMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRDY1NTU3QTIw QkU0MTFFREEzOTgwRjc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnvTgwDQYJKoZIhvcNAQELBQADggEBAI9jLzLg0EDc35rt G/ERfMeJH7iK43SGZ3waUJKKlwaOp5Id22wEQW9H5v8PQ+bHTa16hSoK19VX9l6I yEvnYFZJDGUGBYWvj+W7GO1nOg2ekEyZUWiomn3BXr4sZCVB7qGeuAAaAfbE9doV 5iZpQ5pYGPhWoTZhYAjV9qoXJ0fm+3yoPZnqZtBiwFKqpt40c1f9VzkjDrRdoi+N 4bbIC+hxRCMIjKEYdiHl3Cq9pBLq+VMWezOL6PurryRcs25XONSOy/Mr+jcx8AyI G724+Es6BvfrKylf9kjT3DGwnOnK52i/2u05rfbks77dyUEA5HCjv07GfUmUNoOy 30nRm0c= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:46 2024 by rpki-client on console-ams.rpki-client.org