$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E245BFD8A1AB11EB90DED67EC4F9AE02.roa File: E245BFD8A1AB11EB90DED67EC4F9AE02.roa (raw, json) Hash identifier: g+HPaA+jCWWFaHRjdnzxgGZzh0JUNn1DwwQzjpLvqVc= Subject key identifier: D8:DC:32:09:41:62:C8:45:28:51:CE:C4:37:DB:99:17:6B:3B:1D:2A Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6F26 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E245BFD8A1AB11EB90DED67EC4F9AE02.roa Signing time: Wed 10 May 2023 16:37:25 +0000 ROA not before: Wed 10 May 2023 16:37:25 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141847 IP address blocks: 103.165.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28454 (0x6f26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:37:25 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc845-c10d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:34:0f:fe:8a:3a:41:0e:52:0c:5c:27:c7:3c: 6a:33:23:94:16:78:08:51:2c:40:23:21:7d:4e:2a: 24:6d:2c:ce:23:47:e4:94:a1:81:30:b8:15:49:0f: c5:68:25:63:f6:99:e8:36:64:b5:29:1f:14:0e:41: ea:27:45:3c:37:e9:2b:fc:c8:e4:e1:72:da:69:52: 29:e5:68:ea:bc:f7:b4:0f:83:6e:06:d1:d5:68:cb: 25:ff:d6:9e:76:0e:ee:5f:d0:b3:b5:dc:1a:ae:f2: 66:b8:db:94:83:48:4b:b6:99:f5:df:50:1f:27:88: 9c:55:f7:bc:08:8d:25:91:56:d7:f7:06:ff:b5:7e: 68:81:b3:83:44:c9:9c:3e:5d:96:de:da:e8:7f:f5: 16:f5:ea:14:21:26:71:93:4e:eb:52:eb:ef:04:15: 17:43:45:b8:1c:af:3e:4b:c3:a4:75:7a:46:c1:c3: 32:57:40:d4:4a:e0:1e:f2:28:32:aa:44:9f:a2:cb: d9:2e:1b:f1:76:ed:97:82:ad:18:93:2e:5f:d4:cb: b0:72:39:5d:d5:ed:b1:a2:fa:33:60:00:a8:8e:a3: 55:48:7a:9e:3f:9b:ff:66:40:03:61:f8:ec:7a:3d: aa:42:6e:37:3f:7e:a4:c1:b6:5e:cf:a6:75:5a:e0: ca:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:DC:32:09:41:62:C8:45:28:51:CE:C4:37:DB:99:17:6B:3B:1D:2A X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E245BFD8A1AB11EB90DED67EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.165.172.0/23 Signature Algorithm: sha256WithRSAEncryption 29:24:3b:ac:ea:bb:7e:fb:36:11:77:dc:d2:85:35:0c:89:4c: b6:65:59:91:96:98:58:0c:fa:01:fb:a0:12:12:8c:95:21:d3: d5:47:14:20:69:f4:d8:8c:29:80:0e:a7:52:20:49:0f:62:58: b6:d9:15:dc:af:49:ba:e8:e4:b9:b2:30:82:71:80:0a:6e:b1: 27:76:5c:80:7d:83:ea:18:56:d6:a4:37:44:ac:ef:88:e5:31: fb:0f:1f:e7:63:ce:98:73:b2:bd:42:1b:50:6a:15:46:73:c6: 64:23:c5:ef:e6:49:ab:06:ff:60:f5:20:58:83:f1:7c:61:dd: e7:9e:2f:fb:65:94:96:29:bb:43:84:47:84:0a:b7:a1:72:6b: 5d:49:72:b1:da:b7:25:3e:e2:07:78:3b:6f:61:e8:00:ed:f3: a9:25:62:6b:eb:e3:86:c5:22:88:61:3f:f7:6b:47:a9:cb:73: 42:5c:a3:af:37:6c:40:54:4c:ac:7e:ea:e4:0d:1a:ad:13:c0: b2:19:06:9d:8d:98:68:66:cf:48:07:d8:53:b6:42:7b:ef:cc: 8b:8a:97:85:19:2b:d1:f5:5e:bc:16:34:67:87:d8:1e:bd:11: f0:03:7d:5f:da:70:9b:44:61:dd:7d:2a:19:8e:cc:f6:25:7a: 36:a3:5f:36 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbyYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzNzI1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzg0NS1jMTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0zQP/oo6QQ5SDFwnxzxqMyOUFngIUSxAIyF9TiokbSzOI0fklKGBMLgVSQ/F aCVj9pnoNmS1KR8UDkHqJ0U8N+kr/Mjk4XLaaVIp5WjqvPe0D4NuBtHVaMsl/9ae dg7uX9CztdwarvJmuNuUg0hLtpn131AfJ4icVfe8CI0lkVbX9wb/tX5ogbODRMmc Pl2W3trof/UW9eoUISZxk07rUuvvBBUXQ0W4HK8+S8OkdXpGwcMyV0DUSuAe8igy qkSfosvZLhvxdu2Xgq0Yky5f1Muwcjld1e2xovozYACojqNVSHqeP5v/ZkADYfjs ej2qQm43P36kwbZez6Z1WuDKpQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNjcMglB YshFKFHOxDfbmRdrOx0qMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRTI0NUJGRDhB MUFCMTFFQjkwREVENjdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnpawwDQYJKoZIhvcNAQELBQADggEBACkkO6zqu377NhF3 3NKFNQyJTLZlWZGWmFgM+gH7oBISjJUh09VHFCBp9NiMKYAOp1IgSQ9iWLbZFdyv Sbro5LmyMIJxgApusSd2XIB9g+oYVtakN0Ss74jlMfsPH+djzphzsr1CG1BqFUZz xmQjxe/mSasG/2D1IFiD8Xxh3eeeL/tllJYpu0OER4QKt6Fya11JcrHatyU+4gd4 O29h6ADt86klYmvr44bFIohhP/drR6nLc0Jco683bEBUTKx+6uQNGq0TwLIZBp2N mGhmz0gH2FO2QnvvzIuKl4UZK9H1XrwWNGeH2B69EfADfV/acJtEYd19KhmOzPYl ejajXzY= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:48 2024 by rpki-client on console-ams.rpki-client.org