$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E098AA8888C811ECB5D6F11BC4F9AE02.roa File: E098AA8888C811ECB5D6F11BC4F9AE02.roa (raw, json) Hash identifier: Itb4KtMjSnGWqZkEZmHvLGiVnPs56OLac4KeNMjSvhg= Subject key identifier: 22:1D:D9:78:BE:68:7C:0D:E5:43:71:B1:90:8F:DB:8A:AC:51:BE:66 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6B8D Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E098AA8888C811ECB5D6F11BC4F9AE02.roa Signing time: Wed 10 May 2023 16:20:14 +0000 ROA not before: Wed 10 May 2023 16:20:14 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 135186 IP address blocks: 103.180.40.0/23 maxlen: 24 2001:df2:dc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27533 (0x6b8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:20:14 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc43e-e760 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3e:16:41:14:d5:e1:df:66:3c:26:7b:0d:b1: f9:a0:2a:2c:49:59:49:c8:d5:71:8c:16:04:dd:fb: 92:87:10:d9:b5:34:5b:3b:97:1c:d9:67:fb:34:dc: 2d:22:af:d9:7a:c3:14:a5:3c:15:7a:c8:e7:bc:7e: 20:1b:00:e6:c8:24:1c:80:d9:cd:22:c9:6d:8d:24: 0f:f6:9d:0b:af:16:29:53:a2:2b:b1:2a:ff:2f:64: 4d:9f:5b:96:d2:d7:c1:68:8e:cc:16:c1:a7:f8:27: fc:3d:23:5e:c4:26:aa:fa:38:12:ae:69:26:6e:15: f6:dd:d9:2a:ab:ad:cb:92:ff:3f:0f:99:73:f7:44: ec:e8:6b:85:18:c8:66:62:c9:22:87:80:27:5d:5d: 88:fe:ca:39:1d:f1:52:e4:4c:d3:87:22:a9:b4:93: 50:74:aa:db:7e:fc:a7:09:cd:6d:40:20:1c:29:72: e7:a7:07:8f:93:15:12:fe:8d:94:f1:e8:41:02:70: 9d:89:f9:cc:d5:81:9e:af:9d:7e:8e:b2:0b:d3:f8: 17:74:2a:06:47:3a:a3:d0:2f:69:c2:64:33:92:84: 6c:63:18:24:83:7f:7a:30:90:f1:8d:b0:12:e4:0c: 77:8f:dd:25:28:9c:54:cd:44:b0:af:ad:29:31:83: 4d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:1D:D9:78:BE:68:7C:0D:E5:43:71:B1:90:8F:DB:8A:AC:51:BE:66 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E098AA8888C811ECB5D6F11BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.180.40.0/23 IPv6: 2001:df2:dc0::/48 Signature Algorithm: sha256WithRSAEncryption 2c:c3:a9:81:b0:fe:b5:d5:f5:8b:82:57:b9:ba:97:c5:58:c9: 86:e5:8e:7a:ff:a4:dc:4b:45:b6:9a:a8:08:b6:0f:2d:61:ed: d3:06:b3:09:7b:b5:12:d2:19:23:cf:a4:51:3e:89:c6:9a:25: c2:57:75:5e:5a:4c:e1:ae:62:d8:14:17:58:5d:00:a0:c2:51: ea:46:63:ab:b3:f1:03:fa:e4:e3:fb:b5:8a:37:4f:f1:00:69: 81:4f:27:ed:e2:61:95:8d:fd:fa:82:6a:3b:d7:d7:fc:bc:2f: 63:91:92:62:50:17:08:09:79:0d:04:73:53:c6:ee:d9:d1:94: 22:1e:1b:c2:8e:63:1d:19:eb:9f:45:3b:ae:a1:92:c9:db:06: ae:9f:f2:c8:d4:25:e5:e8:cd:d8:aa:65:97:21:9f:86:d5:f5: 88:04:c7:e3:66:47:21:50:1b:c4:a1:22:bf:35:d6:3d:b9:47: ad:b0:ec:56:a7:1d:04:7b:1b:92:c0:10:37:6e:54:41:f1:3b: cf:c1:83:e1:62:4b:93:40:97:fc:71:99:d5:56:dd:a1:52:db: d5:88:12:2c:4c:ed:29:01:3e:5b:83:b4:2e:ba:7f:0e:c7:95: 27:63:13:29:d5:2a:f5:4f:55:25:bc:0a:cb:5c:18:48:d0:5d: 5a:9c:f9:6f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICa40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyMDE0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzQzZS1lNzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxz4WQRTV4d9mPCZ7DbH5oCosSVlJyNVxjBYE3fuShxDZtTRbO5cc2Wf7NNwt Iq/ZesMUpTwVesjnvH4gGwDmyCQcgNnNIsltjSQP9p0LrxYpU6IrsSr/L2RNn1uW 0tfBaI7MFsGn+Cf8PSNexCaq+jgSrmkmbhX23dkqq63Lkv8/D5lz90Ts6GuFGMhm Yskih4AnXV2I/so5HfFS5EzThyKptJNQdKrbfvynCc1tQCAcKXLnpwePkxUS/o2U 8ehBAnCdifnM1YGer51+jrIL0/gXdCoGRzqj0C9pwmQzkoRsYxgkg396MJDxjbAS 5Ax3j90lKJxUzUSwr60pMYNN7wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCId2Xi+ aHwN5UNxsZCP24qsUb5mMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRTA5OEFBODg4 OEM4MTFFQ0I1RDZGMTFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFntCgwDwQCAAIwCQMHACABDfINwDANBgkqhkiG9w0BAQsF AAOCAQEALMOpgbD+tdX1i4JXubqXxVjJhuWOev+k3EtFtpqoCLYPLWHt0wazCXu1 EtIZI8+kUT6Jxpolwld1XlpM4a5i2BQXWF0AoMJR6kZjq7PxA/rk4/u1ijdP8QBp gU8n7eJhlY39+oJqO9fX/LwvY5GSYlAXCAl5DQRzU8bu2dGUIh4bwo5jHRnrn0U7 rqGSydsGrp/yyNQl5ejN2KpllyGfhtX1iATH42ZHIVAbxKEivzXWPblHrbDsVqcd BHsbksAQN25UQfE7z8GD4WJLk0CX/HGZ1VbdoVLb1YgSLEztKQE+W4O0Lrp/DseV J2MTKdUq9U9VJbwKy1wYSNBdWpz5bw== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:47 2024 by rpki-client on console-ams.rpki-client.org