$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DDBF6384746711EDBEC36764C4F9AE02.roa File: DDBF6384746711EDBEC36764C4F9AE02.roa (raw, json) Hash identifier: Q594kvhF2SeGvBfaC9Qr/FK8oDfkICc7b6mAUGwBvAk= Subject key identifier: E5:31:19:B3:64:56:5B:39:F3:5A:65:68:4F:6B:1B:C6:97:D2:63:2B Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6F59 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DDBF6384746711EDBEC36764C4F9AE02.roa Signing time: Wed 10 May 2023 16:38:22 +0000 ROA not before: Wed 10 May 2023 16:38:22 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 142465 IP address blocks: 103.102.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28505 (0x6f59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:38:22 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc87e-bf6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6e:42:bc:3d:19:62:ce:61:09:33:cd:1e:63: eb:f5:f0:f7:3a:5d:40:40:96:5b:e6:28:3a:92:bf: 39:b9:f0:b4:da:57:9f:60:00:80:58:e0:b4:0f:95: 55:8f:b0:ba:a7:5a:27:d8:58:42:c4:fd:8d:c0:6a: 1f:76:42:5b:8b:f3:7f:af:75:3d:3d:21:35:95:eb: a1:79:39:f9:26:09:1b:b0:2b:7f:d4:c0:86:b0:2e: 33:4e:e5:ad:56:53:db:88:e0:e7:2a:46:c9:98:48: 10:dc:61:8d:b1:24:82:a9:aa:9c:45:d5:0a:35:59: 87:81:28:e9:20:ba:1c:e7:17:d2:8a:f9:17:37:7b: e7:ff:e0:d9:4c:46:6c:21:6c:88:86:45:ab:d6:0d: 4a:ec:93:f2:28:c4:d1:a7:2a:45:7d:40:ce:9a:d7: d9:78:6b:90:f3:a3:b2:26:88:ed:f3:90:f9:c3:9a: d3:a6:e4:ba:0c:98:b4:38:50:c3:b6:2a:a5:a3:f3: 19:28:7d:0b:c0:66:ab:31:99:e1:d8:fb:32:c8:34: 56:92:90:d2:99:80:25:a2:ab:8b:de:f9:9e:93:93: ae:d9:b5:55:a4:bd:3e:0c:31:99:38:4b:0c:db:44: b5:e3:b4:7b:fa:b4:ae:a7:f3:0a:4d:16:8c:a9:31: 10:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:31:19:B3:64:56:5B:39:F3:5A:65:68:4F:6B:1B:C6:97:D2:63:2B X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DDBF6384746711EDBEC36764C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.102.85.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:f8:49:97:1f:8c:62:38:a9:79:19:6f:7e:80:fb:12:b4:32: dc:f8:bf:85:e3:95:2f:d9:d7:e9:46:d5:c5:58:95:57:7e:9f: 5f:ee:c9:0e:20:73:20:2d:f7:35:ad:57:7b:a0:d3:d7:7e:9e: 1c:97:b1:71:c0:90:79:66:38:f8:2d:7a:3b:5c:25:b3:e4:d6: 67:7a:51:37:f1:8f:81:de:89:bb:a9:62:f0:ee:e8:7b:9c:4c: 6b:4e:38:63:49:b5:65:70:3f:69:19:18:8d:f5:1f:6f:88:84: ae:89:22:81:dd:2b:17:cd:23:bb:16:da:4d:c5:fe:22:07:42: 4c:11:20:79:60:e4:ed:b5:bb:3a:e9:38:1b:fd:c7:99:3b:c0: 74:22:48:7f:5f:ee:41:52:0b:25:0b:e8:e6:23:2c:f5:45:2a: 41:37:40:da:09:b4:43:1a:e7:82:0b:39:c6:c4:cf:00:28:54: 0c:16:59:08:66:e4:77:a0:12:73:4e:4c:41:db:28:e4:f4:a2: 8f:d3:fa:b0:30:83:04:5a:29:ce:93:cb:25:cc:68:2a:6c:e5: 40:24:b3:e4:7a:61:42:71:c5:98:a7:44:45:35:83:57:be:4b: 20:d6:21:bf:0a:7a:6d:1a:66:45:cb:71:04:d0:69:fa:39:c4: 01:aa:79:8a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICb1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzODIyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzg3ZS1iZjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAym5CvD0ZYs5hCTPNHmPr9fD3Ol1AQJZb5ig6kr85ufC02lefYACAWOC0D5VV j7C6p1on2FhCxP2NwGofdkJbi/N/r3U9PSE1leuheTn5JgkbsCt/1MCGsC4zTuWt VlPbiODnKkbJmEgQ3GGNsSSCqaqcRdUKNVmHgSjpILoc5xfSivkXN3vn/+DZTEZs IWyIhkWr1g1K7JPyKMTRpypFfUDOmtfZeGuQ86OyJojt85D5w5rTpuS6DJi0OFDD tiqlo/MZKH0LwGarMZnh2PsyyDRWkpDSmYAloquL3vmek5Ou2bVVpL0+DDGZOEsM 20S147R7+rSup/MKTRaMqTEQ/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFOUxGbNk Vls581plaE9rG8aX0mMrMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRERCRjYzODQ3 NDY3MTFFREJFQzM2NzY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnZlUwDQYJKoZIhvcNAQELBQADggEBABr4SZcfjGI4qXkZ b36A+xK0Mtz4v4XjlS/Z1+lG1cVYlVd+n1/uyQ4gcyAt9zWtV3ug09d+nhyXsXHA kHlmOPgtejtcJbPk1md6UTfxj4HeibupYvDu6HucTGtOOGNJtWVwP2kZGI31H2+I hK6JIoHdKxfNI7sW2k3F/iIHQkwRIHlg5O21uzrpOBv9x5k7wHQiSH9f7kFSCyUL 6OYjLPVFKkE3QNoJtEMa54ILOcbEzwAoVAwWWQhm5HegEnNOTEHbKOT0oo/T+rAw gwRaKc6TyyXMaCps5UAks+R6YUJxxZinREU1g1e+SyDWIb8Kem0aZkXLcQTQafo5 xAGqeYo= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:47 2024 by rpki-client on console-ams.rpki-client.org