$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D85F7F0028A611EBAB193C69C4F9AE02.roa File: D85F7F0028A611EBAB193C69C4F9AE02.roa (raw, json) Hash identifier: AJb7yiavbGUQV98aYwaglgasBTOSPXuBGX9f6UH1nig= Subject key identifier: 56:F9:EA:71:41:6C:21:B3:DB:83:F4:5C:AB:70:E1:25:E0:D8:25:2C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6A42 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D85F7F0028A611EBAB193C69C4F9AE02.roa Signing time: Wed 10 May 2023 16:13:54 +0000 ROA not before: Wed 10 May 2023 16:13:54 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 132991 IP address blocks: 103.243.28.0/22 maxlen: 23 103.243.29.0/24 maxlen: 24 103.243.30.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27202 (0x6a42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:13:54 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc2c1-3bbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:94:6a:13:2f:1c:b1:65:02:4c:aa:53:76:e7: 23:b3:d8:5e:32:cd:6c:8b:2b:4a:c6:88:9e:0d:d1: 68:fe:7c:2b:e3:05:31:0a:f5:5c:30:ce:9d:e2:5c: 7f:09:f7:43:ce:34:5d:0e:d1:9b:d7:44:03:6f:50: 38:54:5e:8b:8a:77:ae:d7:4b:03:83:cf:19:4d:99: b4:de:c8:52:6b:26:62:16:62:4f:2a:bc:78:c9:42: 9e:fc:cd:6d:e5:39:27:f2:d6:3c:2f:ce:fd:51:f6: c8:60:85:de:68:f2:37:2c:bd:fb:34:ce:1a:81:16: 0b:bf:0c:30:1a:c3:ca:89:bf:91:3b:78:71:e5:da: 00:6b:69:1e:42:1e:9f:09:65:59:68:43:29:41:f2: e2:a1:d6:c2:72:a7:f7:5a:8e:e4:a0:c6:3f:b3:0c: e1:ec:ee:e1:4e:36:c1:5e:b2:d5:2d:14:d2:3d:97: 9d:4b:d8:74:04:d8:3d:7b:c7:ba:19:1f:3f:44:e6: 60:38:01:be:9f:f5:6d:09:b9:bc:53:45:94:0b:8b: 96:3b:55:fc:c3:8d:c5:f5:17:e2:56:cc:b5:41:cf: a5:f8:5d:1d:88:61:69:2b:54:cf:e1:dc:f0:53:66: dc:ee:d6:cf:ba:5c:19:ec:4f:72:e5:e9:3b:6f:38: da:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:F9:EA:71:41:6C:21:B3:DB:83:F4:5C:AB:70:E1:25:E0:D8:25:2C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D85F7F0028A611EBAB193C69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.243.28.0/22 Signature Algorithm: sha256WithRSAEncryption 92:75:64:76:3d:15:b2:01:4f:ac:78:cf:f6:30:07:31:89:e0: 1b:53:88:6e:99:9c:82:d1:a3:1e:e5:96:24:c8:a0:43:86:65: 94:63:f2:02:b0:83:16:a8:9d:8c:cb:a4:25:aa:35:6c:7f:34: a4:34:d0:e0:3b:49:37:48:06:87:5b:b9:18:c7:79:ef:ba:ae: 19:65:78:27:c9:b5:f9:f7:0f:5c:8e:65:69:b4:0b:3e:75:c0: cd:b9:b3:61:94:a6:58:89:ae:22:cf:c6:8b:9d:86:ab:00:a8: 6b:f1:1f:41:df:d2:71:d0:a1:b6:a5:d4:3b:51:36:03:34:d0: e7:94:6c:83:86:b3:98:b0:5b:72:2d:9c:87:65:e8:31:17:75: a3:db:6f:e5:23:31:37:92:24:1a:bc:04:0f:ae:e5:d8:ed:3b: aa:62:fb:48:7f:bc:72:25:91:ed:0b:61:8e:26:32:e1:78:b7: a7:85:49:5d:26:f0:00:43:8c:93:22:cc:4d:c4:51:ef:eb:46: 20:a1:be:88:3a:45:48:da:b1:f2:99:cb:09:15:8d:8c:41:45: fe:5c:15:80:c2:39:b0:33:3c:f3:bb:d5:45:f5:ad:45:76:9e: 59:fe:15:01:e9:00:35:01:e8:bc:a8:0a:b8:1e:98:12:77:1b: c7:c4:19:c2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICakIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxMzU0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzJjMS0zYmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmZRqEy8csWUCTKpTducjs9heMs1siytKxoieDdFo/nwr4wUxCvVcMM6d4lx/ CfdDzjRdDtGb10QDb1A4VF6Lineu10sDg88ZTZm03shSayZiFmJPKrx4yUKe/M1t 5Tkn8tY8L879UfbIYIXeaPI3LL37NM4agRYLvwwwGsPKib+RO3hx5doAa2keQh6f CWVZaEMpQfLiodbCcqf3Wo7koMY/swzh7O7hTjbBXrLVLRTSPZedS9h0BNg9e8e6 GR8/ROZgOAG+n/VtCbm8U0WUC4uWO1X8w43F9RfiVsy1Qc+l+F0diGFpK1TP4dzw U2bc7tbPulwZ7E9y5ek7bzjaVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFb56nFB bCGz24P0XKtw4SXg2CUsMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRDg1RjdGMDAy OEE2MTFFQkFCMTkzQzY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn8xwwDQYJKoZIhvcNAQELBQADggEBAJJ1ZHY9FbIBT6x4 z/YwBzGJ4BtTiG6ZnILRox7lliTIoEOGZZRj8gKwgxaonYzLpCWqNWx/NKQ00OA7 STdIBodbuRjHee+6rhlleCfJtfn3D1yOZWm0Cz51wM25s2GUpliJriLPxoudhqsA qGvxH0Hf0nHQobal1DtRNgM00OeUbIOGs5iwW3ItnIdl6DEXdaPbb+UjMTeSJBq8 BA+u5djtO6pi+0h/vHIlke0LYY4mMuF4t6eFSV0m8ABDjJMizE3EUe/rRiChvog6 RUjasfKZywkVjYxBRf5cFYDCObAzPPO71UX1rUV2nln+FQHpADUB6LyoCrgemBJ3 G8fEGcI= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:47 2024 by rpki-client on console-ams.rpki-client.org