$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D9ED5484FD8E11EA884D0443C4F9AE02.roa File: D9ED5484FD8E11EA884D0443C4F9AE02.roa (raw, json) Hash identifier: OGQQy6gV5s0TuhAcz7vURQAXfDkSfj5uSJ96rwE/Pho= Subject key identifier: C7:C9:14:1D:9C:DE:85:DD:E6:22:B0:63:07:4F:8F:0D:E7:EE:9E:FD Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6DD3 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D9ED5484FD8E11EA884D0443C4F9AE02.roa Signing time: Wed 10 May 2023 16:31:14 +0000 ROA not before: Wed 10 May 2023 16:31:14 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 139494 IP address blocks: 103.144.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28115 (0x6dd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:31:14 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc6d1-8462 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:e9:69:d6:ba:14:64:87:25:f8:f9:00:b4:64: 7c:4f:bd:ce:56:e5:44:38:86:fd:51:cc:eb:d0:cc: 50:1b:30:fd:9c:e7:66:8f:bd:a2:08:77:4f:0a:7e: 24:50:df:38:2e:3d:50:ef:c0:48:5c:b2:07:51:47: f3:6a:35:e5:37:31:14:48:b9:db:ba:3f:c7:ff:05: 8b:c0:a6:89:ce:0b:61:6c:cb:ef:e9:6d:d8:e7:83: e8:6e:45:e1:a1:a5:b6:e8:ed:f8:f9:90:a6:29:99: be:42:15:48:ec:86:ef:7c:19:88:30:38:96:03:f3: 06:f9:39:32:ae:30:2a:82:b4:f7:38:6e:87:c8:12: fe:0a:26:d8:e4:e3:cd:da:75:ce:05:52:60:29:fd: de:4f:a5:04:20:c8:02:74:ef:45:a8:c2:47:34:e8: a8:b2:83:16:e7:26:48:e5:17:a0:ff:ef:26:e7:cf: 84:c5:6d:07:6c:ea:21:b9:9b:09:1a:8c:88:b7:45: 8e:ec:7e:1a:4f:8d:3f:fd:b8:ed:44:42:c6:59:e1: 91:7f:94:ff:c6:d1:ad:f6:ee:e8:65:0c:21:c2:dd: 5f:b2:be:1c:d1:98:9d:99:dc:53:94:08:77:09:5b: 70:cd:81:59:d2:db:cc:e7:4d:dd:01:44:58:d0:8a: f6:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:C9:14:1D:9C:DE:85:DD:E6:22:B0:63:07:4F:8F:0D:E7:EE:9E:FD X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D9ED5484FD8E11EA884D0443C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.144.111.0/24 Signature Algorithm: sha256WithRSAEncryption 19:6d:6b:b0:1d:5d:5f:90:be:24:c6:55:dc:4c:ee:fc:72:79: e9:00:bc:94:60:5c:8c:73:e6:19:6b:1e:58:3b:f4:63:70:e4: f9:ae:a3:d3:1e:3a:33:8d:9d:60:20:3d:65:b3:1b:f7:35:7a: b3:56:71:3e:d3:3a:75:ad:d2:70:8e:5b:92:ac:4c:31:a3:37: d6:67:cf:85:d0:b2:4f:18:22:63:ef:62:cd:75:2e:58:04:bc: 45:ea:8c:2d:a4:eb:6f:b7:83:54:2e:3b:4a:14:e3:1d:45:2a: 03:7f:49:00:dd:d0:f4:e7:d7:42:69:21:e1:31:ea:0f:b0:73: 3d:f2:62:24:f6:43:3a:1b:e2:e9:e2:4f:59:ab:8f:d4:7c:f4: 15:67:24:6a:f6:6d:82:4a:ae:d7:82:56:7b:c9:07:db:29:bf: 13:4c:74:7d:83:42:3f:be:e9:a8:28:d3:e1:52:52:ce:86:96: 68:28:f2:50:42:f9:a6:8c:c8:0f:9e:3c:53:99:bf:c1:b7:07: 20:f3:c9:01:c4:f8:f5:42:56:7b:25:49:66:96:2d:57:20:f2: 9a:a5:2a:96:dd:4b:9f:06:4a:02:ab:16:7c:4b:1d:e4:21:0c: 9d:6d:6f:1b:a8:a8:af:0f:b1:20:71:ce:3d:36:89:78:b5:f1: df:09:c0:c1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzMTE0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzZkMS04NDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9Olp1roUZIcl+PkAtGR8T73OVuVEOIb9Uczr0MxQGzD9nOdmj72iCHdPCn4k UN84Lj1Q78BIXLIHUUfzajXlNzEUSLnbuj/H/wWLwKaJzgthbMvv6W3Y54PobkXh oaW26O34+ZCmKZm+QhVI7IbvfBmIMDiWA/MG+TkyrjAqgrT3OG6HyBL+CibY5OPN 2nXOBVJgKf3eT6UEIMgCdO9FqMJHNOiosoMW5yZI5Reg/+8m58+ExW0HbOohuZsJ GoyIt0WO7H4aT40//bjtRELGWeGRf5T/xtGt9u7oZQwhwt1fsr4c0ZidmdxTlAh3 CVtwzYFZ0tvM503dAURY0Ir2uwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMfJFB2c 3oXd5iKwYwdPjw3n7p79MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRDlFRDU0ODRG RDhFMTFFQTg4NEQwNDQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnkG8wDQYJKoZIhvcNAQELBQADggEBABlta7AdXV+QviTG VdxM7vxyeekAvJRgXIxz5hlrHlg79GNw5Pmuo9MeOjONnWAgPWWzG/c1erNWcT7T OnWt0nCOW5KsTDGjN9Znz4XQsk8YImPvYs11LlgEvEXqjC2k62+3g1QuO0oU4x1F KgN/SQDd0PTn10JpIeEx6g+wcz3yYiT2Qzob4uniT1mrj9R89BVnJGr2bYJKrteC VnvJB9spvxNMdH2DQj++6ago0+FSUs6Glmgo8lBC+aaMyA+ePFOZv8G3ByDzyQHE +PVCVnslSWaWLVcg8pqlKpbdS58GSgKrFnxLHeQhDJ1tbxuoqK8PsSBxzj02iXi1 8d8JwME= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:47 2024 by rpki-client on console-ams.rpki-client.org