$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DE8A72E8179511ECB7F7A075C4F9AE02.roa File: DE8A72E8179511ECB7F7A075C4F9AE02.roa (raw, json) Hash identifier: QfGwX2fBxsQ+gabrsMsfmywiW2J4i6xTgs41q1CPZMU= Subject key identifier: 52:90:C5:B4:3A:7D:A6:B6:74:86:29:A2:52:27:E0:ED:85:57:66:CB Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6F1F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DE8A72E8179511ECB7F7A075C4F9AE02.roa Signing time: Wed 10 May 2023 16:37:18 +0000 ROA not before: Wed 10 May 2023 16:37:18 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141837 IP address blocks: 103.167.244.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28447 (0x6f1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:37:18 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc83d-dd5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:19:a4:44:76:da:e0:58:a9:a7:6e:ba:75:a5: 2e:95:dc:64:8d:c0:ae:2d:7d:6d:cb:ed:16:31:3e: da:2b:2b:44:01:d0:a3:4c:b9:04:06:a0:c8:bb:04: bf:c4:ac:d3:d9:1e:13:d4:77:56:16:37:6f:d8:b2: 82:e5:b5:1d:19:6a:20:93:38:19:05:77:34:25:9f: b4:ed:89:3e:86:b9:b4:07:ad:4d:65:8e:21:ac:8e: fb:33:8e:de:78:ae:ca:5f:f8:e4:55:5c:3d:09:83: c2:17:1c:a3:71:03:02:ce:a2:00:e9:a4:d5:45:25: 04:6d:ba:51:e4:47:50:11:c9:19:90:59:13:29:c0: f5:94:b7:d3:e1:4a:33:30:7e:00:59:33:b2:2e:52: 73:94:e0:27:e6:9c:a7:97:92:db:89:ee:40:65:77: 08:11:e7:92:28:b6:f7:90:e7:a2:0e:74:69:f8:ad: 3b:ef:0d:35:22:91:cd:98:3d:fd:92:14:48:d3:01: 57:17:c1:39:b1:e7:fc:6c:0b:f3:15:08:23:6d:76: 17:da:a9:1f:7d:ab:0e:cc:93:81:ef:2f:77:d8:8d: f0:a7:db:88:2d:31:c7:06:d6:a5:25:ff:94:51:5d: bd:d4:30:9e:8c:f8:da:e4:95:f5:7e:c8:4c:9a:cd: 77:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:90:C5:B4:3A:7D:A6:B6:74:86:29:A2:52:27:E0:ED:85:57:66:CB X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DE8A72E8179511ECB7F7A075C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.244.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:07:e5:5b:7c:8d:b3:b0:2c:39:55:a0:a6:67:6d:cd:d8:90: 4a:4c:00:16:65:41:e8:22:e2:3a:20:5e:1e:c3:c5:e7:ab:85: 87:f8:04:2f:77:58:7c:c3:15:a6:76:5f:1c:e3:89:d0:2a:7a: 69:c6:75:5c:30:10:a7:26:36:28:9f:c4:bf:c5:65:3f:7f:36: d7:94:dd:a2:7b:08:a7:ca:b7:e3:f8:ac:2c:3a:5b:f1:8c:ac: 1f:72:a5:09:7f:4b:84:5c:cb:da:6d:14:e0:e6:18:57:e2:33: 6b:30:34:d0:77:1d:b9:49:80:ab:83:fe:67:12:af:08:89:f5: 82:cd:24:d5:c8:ad:be:4b:aa:e4:51:65:80:3c:75:00:08:2b: ad:de:45:00:82:a8:38:20:f3:3f:2a:14:0a:c0:37:02:12:cf: c5:26:f5:e5:2e:6d:6d:f5:d3:19:3a:eb:2a:a5:5b:71:aa:f4: bf:f4:b2:41:bf:b8:75:0d:2d:ca:df:79:dd:ea:4d:21:a8:f0: 9b:a3:d3:cc:8f:3a:66:4d:ee:ca:c2:60:4c:57:15:a3:c3:d2: c2:a7:55:35:d3:69:75:53:93:30:c3:b5:8c:34:a7:e8:39:97: d5:8b:14:47:12:74:13:e2:bc:41:97:23:bf:84:28:80:f3:4a: e8:17:77:88 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzNzE4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzgzZC1kZDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArBmkRHba4Fipp266daUuldxkjcCuLX1ty+0WMT7aKytEAdCjTLkEBqDIuwS/ xKzT2R4T1HdWFjdv2LKC5bUdGWogkzgZBXc0JZ+07Yk+hrm0B61NZY4hrI77M47e eK7KX/jkVVw9CYPCFxyjcQMCzqIA6aTVRSUEbbpR5EdQEckZkFkTKcD1lLfT4Uoz MH4AWTOyLlJzlOAn5pynl5Lbie5AZXcIEeeSKLb3kOeiDnRp+K077w01IpHNmD39 khRI0wFXF8E5sef8bAvzFQgjbXYX2qkffasOzJOB7y932I3wp9uILTHHBtalJf+U UV291DCejPja5JX1fshMms13lwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFKQxbQ6 faa2dIYpolIn4O2FV2bLMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvREU4QTcyRTgx Nzk1MTFFQ0I3RjdBMDc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnp/QwDQYJKoZIhvcNAQELBQADggEBADsH5Vt8jbOwLDlV oKZnbc3YkEpMABZlQegi4jogXh7DxeerhYf4BC93WHzDFaZ2XxzjidAqemnGdVww EKcmNiifxL/FZT9/NteU3aJ7CKfKt+P4rCw6W/GMrB9ypQl/S4Rcy9ptFODmGFfi M2swNNB3HblJgKuD/mcSrwiJ9YLNJNXIrb5LquRRZYA8dQAIK63eRQCCqDgg8z8q FArANwISz8Um9eUubW310xk66yqlW3Gq9L/0skG/uHUNLcrfed3qTSGo8Juj08yP OmZN7srCYExXFaPD0sKnVTXTaXVTkzDDtYw0p+g5l9WLFEcSdBPivEGXI7+EKIDz SugXd4g= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:47 2024 by rpki-client on console-ams.rpki-client.org