$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D8A2BA4E8A9311ED9F4B8F13C4F9AE02.roa File: D8A2BA4E8A9311ED9F4B8F13C4F9AE02.roa (raw, json) Hash identifier: fWysO+i9Mj8+NV0UCHJnA8nT5YKNFuzBfaryP0Nt4OA= Subject key identifier: 81:6A:E0:0A:BD:30:77:57:1D:88:61:06:C1:83:3A:4D:41:3D:06:83 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7094 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D8A2BA4E8A9311ED9F4B8F13C4F9AE02.roa Signing time: Wed 10 May 2023 16:44:15 +0000 ROA not before: Wed 10 May 2023 16:44:15 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 149601 IP address blocks: 103.83.86.0/23 maxlen: 24 103.189.86.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28820 (0x7094) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:44:15 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc9df-5ed7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:af:d6:d4:6e:7e:30:f8:32:8e:11:9b:2f:b5: 1a:5e:03:7d:3b:59:9f:f4:1a:66:bf:b1:2c:a4:ae: 15:1a:7c:71:f1:c6:c1:60:cb:e9:a8:55:8d:21:f0: 35:8e:f7:14:3f:a0:9a:04:97:ab:18:26:e9:fb:df: 61:ca:8b:c2:dd:e6:0d:67:45:31:c1:7b:53:5a:5b: fd:7b:01:ad:31:98:a9:70:53:c8:01:2d:fd:56:76: 7d:ad:c6:73:a0:9b:fe:e2:af:3b:d4:65:f1:93:2e: 24:3d:84:18:1e:fb:7a:c2:37:61:95:3b:77:6c:21: 08:6a:81:c4:64:be:cc:67:ed:48:94:25:a1:d3:a2: f0:0b:8a:2f:e4:0f:13:57:b5:a1:34:f9:d1:4e:f3: d8:9c:48:c4:63:e6:d1:50:9d:20:52:25:a2:7a:53: 77:48:8e:fd:12:78:6d:82:a6:de:cc:18:6f:d3:bb: 58:68:f8:44:5a:21:72:cb:1d:c0:2a:38:17:fe:fe: bc:1e:f2:55:5d:0f:45:4d:10:05:f7:f2:b0:a4:09: 5d:e7:02:51:1d:7a:94:6d:90:2a:ea:62:7e:17:2d: e4:1e:de:b3:2a:56:b2:21:5d:4e:07:17:c1:17:fc: 07:6d:1c:bc:11:6c:1f:73:69:f7:4d:19:2d:ec:ec: 6c:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:6A:E0:0A:BD:30:77:57:1D:88:61:06:C1:83:3A:4D:41:3D:06:83 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D8A2BA4E8A9311ED9F4B8F13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.83.86.0/23 103.189.86.0/23 Signature Algorithm: sha256WithRSAEncryption 17:98:b3:d3:21:8f:a4:fb:b7:1c:3c:9c:ac:9a:3c:99:c1:dd: 0b:8e:dd:ca:8c:a4:a8:71:2a:37:ec:d7:3b:99:ea:be:fc:94: f2:16:bd:5f:da:35:e6:9e:5f:18:4b:4b:0a:b3:c0:db:f6:84: ea:72:81:1e:ba:0e:f0:6f:70:c8:aa:73:07:41:de:4f:e3:69: e2:54:c8:0e:f5:b4:36:6a:ae:8b:78:9a:e7:1c:b9:37:7b:84: e9:23:e2:ca:8e:66:fd:3f:ce:ef:1e:08:7f:ee:34:fd:a3:9b: 72:d9:3a:0a:c5:ff:76:d6:1e:f3:23:2f:0e:ce:83:fc:5a:dd: b6:59:92:37:de:ff:88:d1:42:f2:cf:c0:75:0b:da:5b:4e:24: 41:82:8b:65:6c:83:8a:58:75:72:9a:6e:73:25:51:77:97:f2: 49:e7:0f:49:0f:22:76:f9:18:56:dc:b3:0e:6a:a8:ba:36:69: 02:5c:7b:e8:08:d3:b7:89:6e:3b:d0:43:e6:cd:c7:5a:ad:0d: 33:34:6a:b4:ef:14:53:15:21:73:58:f5:00:1f:f7:ef:80:43: a5:5d:30:0c:d8:b2:10:e3:bb:08:6b:36:72:cf:55:04:3b:81: e2:66:13:d6:11:6c:c0:51:67:63:5a:82:33:eb:aa:c1:69:dc: f0:c2:5c:a8 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICcJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0NDE1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzlkZi01ZWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAya/W1G5+MPgyjhGbL7UaXgN9O1mf9Bpmv7EspK4VGnxx8cbBYMvpqFWNIfA1 jvcUP6CaBJerGCbp+99hyovC3eYNZ0UxwXtTWlv9ewGtMZipcFPIAS39VnZ9rcZz oJv+4q871GXxky4kPYQYHvt6wjdhlTt3bCEIaoHEZL7MZ+1IlCWh06LwC4ov5A8T V7WhNPnRTvPYnEjEY+bRUJ0gUiWielN3SI79EnhtgqbezBhv07tYaPhEWiFyyx3A KjgX/v68HvJVXQ9FTRAF9/KwpAld5wJRHXqUbZAq6mJ+Fy3kHt6zKlayIV1OBxfB F/wHbRy8EWwfc2n3TRkt7OxsGQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIFq4Aq9 MHdXHYhhBsGDOk1BPQaDMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRDhBMkJBNEU4 QTkzMTFFRDlGNEI4RjEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnU1YDBAFnvVYwDQYJKoZIhvcNAQELBQADggEBABeYs9Mh j6T7txw8nKyaPJnB3QuO3cqMpKhxKjfs1zuZ6r78lPIWvV/aNeaeXxhLSwqzwNv2 hOpygR66DvBvcMiqcwdB3k/jaeJUyA71tDZqrot4muccuTd7hOkj4sqOZv0/zu8e CH/uNP2jm3LZOgrF/3bWHvMjLw7Og/xa3bZZkjfe/4jRQvLPwHUL2ltOJEGCi2Vs g4pYdXKabnMlUXeX8knnD0kPInb5GFbcsw5qqLo2aQJce+gI07eJbjvQQ+bNx1qt DTM0arTvFFMVIXNY9QAf9++AQ6VdMAzYshDjuwhrNnLPVQQ7geJmE9YRbMBRZ2Na gjPrqsFp3PDCXKg= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:47 2024 by rpki-client on console-ams.rpki-client.org