$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DBD7CFF4854C11EBBA917284C4F9AE02.roa File: DBD7CFF4854C11EBBA917284C4F9AE02.roa (raw, json) Hash identifier: YjyGqLX0WsU3UqNDGnxo4x4T8urPJW7bd0b4SfnPDUI= Subject key identifier: 06:9E:9F:9A:D7:67:C8:74:49:39:52:A2:8A:F2:10:F5:1A:32:D6:DF Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6EF8 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DBD7CFF4854C11EBBA917284C4F9AE02.roa Signing time: Wed 10 May 2023 16:36:33 +0000 ROA not before: Wed 10 May 2023 16:36:33 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141787 IP address blocks: 103.164.19.0/24 maxlen: 24 2001:df6:3a80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28408 (0x6ef8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:36:33 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc811-f081 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:68:ef:f1:4e:95:71:1f:82:c6:36:da:cc:bf: a4:ee:93:07:07:7c:52:74:39:da:1d:b5:f2:b2:95: bb:ae:b8:6a:76:be:7c:b9:11:87:46:0a:ba:a8:f7: 1d:dc:34:48:0c:5f:ca:08:27:64:58:54:df:bb:55: ff:cd:66:30:e4:97:7f:ed:f5:9f:d2:53:53:3e:13: 16:ca:c6:9e:1b:f9:80:fb:c6:d2:8b:f6:58:90:86: e6:1e:46:b9:73:80:87:c4:dc:8c:9f:e3:39:5c:2f: 49:3e:81:71:35:6b:e6:e4:e0:9d:7c:e3:16:3d:ac: 55:1b:bf:37:b9:0c:96:79:9c:79:9c:10:28:72:20: 10:e9:e7:9f:a7:d8:88:59:42:66:f0:83:85:b8:2e: d0:ee:55:93:ef:da:f8:97:b2:49:1b:1f:f3:f1:6b: 44:e3:fd:45:63:5a:07:2f:65:25:da:1f:56:ae:e1: 4d:55:3a:68:6d:91:09:69:0e:61:47:9b:32:74:d8: f8:f8:6a:77:be:14:9e:27:81:e2:f6:d7:ad:4f:3b: e2:51:60:e5:73:7e:41:d1:d2:e9:d2:f0:00:4e:06: 1f:ef:f4:2b:78:b8:90:a8:49:12:18:55:4f:b2:46: b0:38:eb:71:65:1e:22:d9:e8:c7:61:be:46:c0:d3: 18:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:9E:9F:9A:D7:67:C8:74:49:39:52:A2:8A:F2:10:F5:1A:32:D6:DF X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DBD7CFF4854C11EBBA917284C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.164.19.0/24 IPv6: 2001:df6:3a80::/48 Signature Algorithm: sha256WithRSAEncryption 60:40:84:27:3f:59:76:90:9b:86:76:3f:81:07:d3:1b:83:9e: 8e:55:cd:2e:65:c9:b3:7a:af:db:5a:13:79:76:1e:6e:07:48: 9e:81:20:bb:72:5f:7e:ea:33:30:2d:50:e6:6c:8a:2c:36:cc: d3:d1:2b:a4:d3:7c:ae:d4:fb:e9:24:22:53:fb:92:85:2f:02: 2e:fb:29:74:26:2b:65:22:37:d4:f8:c2:2e:5a:d6:f3:83:c1: 35:f0:b0:d0:fc:69:45:49:b0:63:d9:48:f5:87:d1:bd:41:fb: 3b:b0:38:e4:de:e8:b3:b7:e3:41:89:b0:0e:ee:2b:95:9c:84: 45:64:4f:ff:7a:de:79:ee:d6:9c:6a:60:be:19:ca:37:ca:ef: 1f:1b:28:72:b7:d6:b4:47:5b:92:d8:24:d2:8c:4d:5d:ac:a2: 2b:5b:48:de:29:47:64:5c:04:7d:c4:e0:37:8e:f2:ca:5d:c5: 9b:f3:2f:88:50:22:2f:ec:f5:df:66:57:9c:01:41:9b:6e:9e: 02:a7:e4:64:c7:8a:96:c1:1b:33:8c:ac:9e:fb:9c:42:a9:3d: 35:a3:54:37:db:58:82:3e:44:b3:c4:da:e1:2a:0b:c2:ab:64: 30:de:dc:f8:d4:58:1b:92:0d:0e:82:13:b7:06:49:a0:d5:98: 93:7d:0a:d1 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICbvgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzNjMzWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzgxMS1mMDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmjv8U6VcR+CxjbazL+k7pMHB3xSdDnaHbXyspW7rrhqdr58uRGHRgq6qPcd 3DRIDF/KCCdkWFTfu1X/zWYw5Jd/7fWf0lNTPhMWysaeG/mA+8bSi/ZYkIbmHka5 c4CHxNyMn+M5XC9JPoFxNWvm5OCdfOMWPaxVG783uQyWeZx5nBAociAQ6eefp9iI WUJm8IOFuC7Q7lWT79r4l7JJGx/z8WtE4/1FY1oHL2Ul2h9WruFNVTpobZEJaQ5h R5sydNj4+Gp3vhSeJ4Hi9tetTzviUWDlc35B0dLp0vAATgYf7/QreLiQqEkSGFVP skawOOtxZR4i2ejHYb5GwNMYiQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAaen5rX Z8h0STlSooryEPUaMtbfMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvREJEN0NGRjQ4 NTRDMTFFQkJBOTE3Mjg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnpBMwDwQCAAIwCQMHACABDfY6gDANBgkqhkiG9w0BAQsF AAOCAQEAYECEJz9ZdpCbhnY/gQfTG4OejlXNLmXJs3qv21oTeXYebgdInoEgu3Jf fuozMC1Q5myKLDbM09ErpNN8rtT76SQiU/uShS8CLvspdCYrZSI31PjCLlrW84PB NfCw0PxpRUmwY9lI9YfRvUH7O7A45N7os7fjQYmwDu4rlZyERWRP/3reee7WnGpg vhnKN8rvHxsocrfWtEdbktgk0oxNXayiK1tI3ilHZFwEfcTgN47yyl3Fm/MviFAi L+z132ZXnAFBm26eAqfkZMeKlsEbM4ysnvucQqk9NaNUN9tYgj5Es8Ta4SoLwqtk MN7c+NRYG5INDoITtwZJoNWYk30K0Q== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:47 2024 by rpki-client on console-ams.rpki-client.org