$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DBE298DE45E111ECB7263A7DC4F9AE02.roa File: DBE298DE45E111ECB7263A7DC4F9AE02.roa (raw, json) Hash identifier: Yj9osn7FodUpZ4xuDkp3xKaix8tX0ZuD186iMu0Fpnw= Subject key identifier: 8A:54:02:75:15:08:57:59:FF:FC:D6:BC:BF:76:CD:A1:B3:7C:0C:0D Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6FE0 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DBE298DE45E111ECB7263A7DC4F9AE02.roa Signing time: Wed 10 May 2023 16:40:54 +0000 ROA not before: Wed 10 May 2023 16:40:54 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 147210 IP address blocks: 43.231.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28640 (0x6fe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:40:54 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc915-185e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2a:cb:4e:72:9b:bf:86:02:4c:52:47:94:f9: b4:ff:37:72:2a:0d:d3:80:fe:55:a6:57:ca:dd:6e: 49:a9:f0:a3:84:d6:ae:f7:65:09:be:4f:89:b0:09: be:53:a9:4c:33:70:53:10:fb:07:78:9a:23:8f:62: 5b:7d:77:8a:c2:04:60:4a:ab:51:e2:9c:57:ee:62: 82:fe:ff:eb:d9:07:fe:76:61:b1:a9:d9:3c:2e:7f: bc:b1:60:e8:82:5c:b4:9c:18:9f:c0:9e:05:36:05: 2f:fe:4f:a0:34:02:30:c5:a8:41:55:82:38:ec:66: 52:8a:24:04:95:e5:37:aa:a5:32:68:10:df:f7:27: bd:92:86:17:18:2a:7e:12:19:13:51:0d:74:4f:44: ce:92:c0:76:bd:e1:6a:54:77:f6:92:da:75:41:72: ee:aa:8e:24:77:20:00:9a:34:da:b9:47:94:55:de: 5b:d4:e8:40:50:bd:7c:40:65:bf:49:b0:c8:da:8c: fe:47:6f:76:be:74:5b:96:f8:5c:c1:79:2e:dc:1c: f0:2e:45:b1:25:02:04:fb:93:0c:10:16:86:d2:ab: 10:e5:98:99:ad:42:a3:3a:2b:e2:ce:8c:d8:19:86: 37:32:3c:12:ce:ae:af:ec:a7:b2:00:3b:5d:68:8f: 59:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:54:02:75:15:08:57:59:FF:FC:D6:BC:BF:76:CD:A1:B3:7C:0C:0D X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DBE298DE45E111ECB7263A7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.231.52.0/22 Signature Algorithm: sha256WithRSAEncryption 8d:86:c0:be:de:9e:2c:33:68:82:6a:bf:20:2e:b3:e9:3b:68: b7:36:35:64:5d:d7:dd:06:9b:91:5a:a7:1d:01:e2:d6:1e:ee: 19:f9:40:80:bd:96:b4:0d:25:07:f3:33:af:fb:ba:98:fe:07: da:dc:df:4d:19:29:27:97:2a:7c:3b:4b:3d:73:bb:0d:bb:80: 1a:9c:17:bc:fe:c2:30:2c:94:86:be:e6:3c:2c:12:50:43:23: 12:9b:cd:39:17:30:00:84:b1:8b:7a:d7:f0:ba:26:67:2b:b2: 8c:9b:a6:c9:fd:a0:d2:9b:10:fe:f8:f0:b1:3b:94:33:1c:c9: e1:74:7b:1f:19:50:f2:0a:36:8e:f0:94:f0:be:4f:89:19:29: ea:60:a6:62:b5:0c:ad:74:e8:17:be:ce:97:8f:ff:d3:fb:b8: 84:af:a9:04:ba:b7:c0:64:53:23:fa:4d:58:24:bd:a1:99:7f: 3c:88:41:51:df:17:dc:97:7f:14:69:b2:8c:b3:63:46:8e:e6: e8:a8:aa:4b:d0:b0:04:d9:73:a9:45:9e:f1:a2:cc:e5:d3:33: b6:73:4b:66:e8:34:36:24:64:62:4e:2a:c7:54:08:a6:9b:3e: 6f:c9:a8:22:5f:5b:07:7a:6d:b0:54:fe:ec:d5:36:66:04:5d: 5b:0c:d8:ab -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICb+AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0MDU0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzkxNS0xODVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxCrLTnKbv4YCTFJHlPm0/zdyKg3TgP5VplfK3W5JqfCjhNau92UJvk+JsAm+ U6lMM3BTEPsHeJojj2JbfXeKwgRgSqtR4pxX7mKC/v/r2Qf+dmGxqdk8Ln+8sWDo gly0nBifwJ4FNgUv/k+gNAIwxahBVYI47GZSiiQEleU3qqUyaBDf9ye9koYXGCp+ EhkTUQ10T0TOksB2veFqVHf2ktp1QXLuqo4kdyAAmjTauUeUVd5b1OhAUL18QGW/ SbDI2oz+R292vnRblvhcwXku3BzwLkWxJQIE+5MMEBaG0qsQ5ZiZrUKjOivizozY GYY3MjwSzq6v7KeyADtdaI9ZIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIpUAnUV CFdZ//zWvL92zaGzfAwNMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvREJFMjk4REU0 NUUxMTFFQ0I3MjYzQTdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAIr5zQwDQYJKoZIhvcNAQELBQADggEBAI2GwL7eniwzaIJq vyAus+k7aLc2NWRd190Gm5Fapx0B4tYe7hn5QIC9lrQNJQfzM6/7upj+B9rc300Z KSeXKnw7Sz1zuw27gBqcF7z+wjAslIa+5jwsElBDIxKbzTkXMACEsYt61/C6Jmcr soybpsn9oNKbEP748LE7lDMcyeF0ex8ZUPIKNo7wlPC+T4kZKepgpmK1DK106Be+ zpeP/9P7uISvqQS6t8BkUyP6TVgkvaGZfzyIQVHfF9yXfxRpsoyzY0aO5uioqkvQ sATZc6lFnvGizOXTM7ZzS2boNDYkZGJOKsdUCKabPm/JqCJfWwd6bbBU/uzVNmYE XVsM2Ks= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:47 2024 by rpki-client on console-ams.rpki-client.org