$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E47EB80035F811EB80613565C4F9AE02.roa File: E47EB80035F811EB80613565C4F9AE02.roa (raw, json) Hash identifier: ym348pASeaDvB+Rj9Bm8CKptcGNrGcRrtAXw8fUBhrE= Subject key identifier: D7:28:1D:2E:58:D0:9A:3C:65:8D:4F:77:0A:B9:6F:68:6A:3D:29:85 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6EA5 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E47EB80035F811EB80613565C4F9AE02.roa Signing time: Wed 10 May 2023 16:35:01 +0000 ROA not before: Wed 10 May 2023 16:35:01 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141340 IP address blocks: 103.158.42.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28325 (0x6ea5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:35:01 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc7b4-5533 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:02:70:c9:3f:fc:b3:b1:f0:eb:fa:a7:92:cb: dd:18:c9:e9:98:ae:ae:af:9a:77:6e:f6:5e:09:74: 44:a5:ce:4f:5e:ec:17:c4:a0:a7:37:47:69:01:50: 46:11:74:08:4c:e8:9f:d6:91:a7:dc:11:6f:7d:77: c6:fa:05:cd:5e:82:c6:e9:8f:ad:d6:c7:bf:1f:5d: 57:58:82:82:c4:9c:70:23:30:46:6f:65:6d:bc:d1: fe:1b:57:cb:58:f8:2e:07:14:76:29:e8:47:17:04: 3b:06:9f:fb:8c:87:b9:78:37:c6:81:f6:a9:94:73: 71:d2:86:22:82:50:42:a6:67:2a:7d:28:af:cb:fd: 4c:df:01:eb:4e:5e:51:28:15:72:5b:c9:b6:cf:c4: 4c:ef:a8:6d:75:34:b3:7e:e2:0b:89:70:2e:fa:35: 6c:64:00:d7:7f:e4:e2:d1:bf:e0:83:4b:43:c7:52: d2:45:dc:c6:7a:00:3e:29:35:37:14:52:b4:c4:7b: 63:b8:ab:ac:1d:30:1c:2e:55:4b:d2:0c:89:b9:7a: d7:da:fb:ed:7e:c8:77:10:fa:75:55:6e:8b:6b:a0: c2:d6:51:39:7d:c6:1d:a0:af:6c:29:31:de:fc:87: 0e:e9:5d:cd:92:eb:e5:63:c5:c4:e4:98:e4:16:24: a3:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:28:1D:2E:58:D0:9A:3C:65:8D:4F:77:0A:B9:6F:68:6A:3D:29:85 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E47EB80035F811EB80613565C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.42.0/23 Signature Algorithm: sha256WithRSAEncryption 4e:cc:17:9f:c1:c8:df:5e:12:93:d6:db:9d:97:6a:61:de:3e: b2:0f:aa:1a:d9:11:a2:49:e9:72:66:75:63:e2:5f:5a:03:b3: fc:14:20:ac:34:4d:2c:be:f2:83:a9:89:36:e7:cb:84:1b:72: 0a:51:fb:c0:3b:d1:85:d2:30:de:83:01:e1:fe:ff:57:2a:23: 6c:3f:86:0c:f2:ad:e8:64:ad:87:a0:64:05:78:53:1a:a6:47: 25:4c:6e:64:b1:ef:e6:04:b4:e5:71:76:bd:83:95:f8:eb:aa: 9f:51:da:07:cd:01:34:49:cf:4a:8a:5f:b0:25:fe:4f:56:63: 98:52:ca:c9:6d:d0:f9:09:65:5a:35:54:55:ae:60:21:2c:08: 8d:29:99:df:96:84:61:71:68:9a:f2:e6:b9:0c:f1:89:bb:dd: dd:98:07:e0:0c:26:c6:26:d3:71:3f:31:e0:e8:ed:2c:c2:69: bb:47:fc:78:a5:b4:ce:79:83:e8:15:e0:47:af:b2:18:72:6c: 11:8b:69:5b:d1:c8:8b:59:7c:9b:67:60:5f:c7:22:9a:37:e7: be:5c:4c:b5:2a:0a:f8:69:38:aa:3b:92:70:0a:1c:25:03:a1: 3e:1a:c1:69:a1:da:a7:be:06:76:47:65:1e:c2:5d:3f:f4:56: ff:bb:7f:25 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzNTAxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzdiNC01NTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqAJwyT/8s7Hw6/qnksvdGMnpmK6ur5p3bvZeCXREpc5PXuwXxKCnN0dpAVBG EXQITOif1pGn3BFvfXfG+gXNXoLG6Y+t1se/H11XWIKCxJxwIzBGb2VtvNH+G1fL WPguBxR2KehHFwQ7Bp/7jIe5eDfGgfaplHNx0oYiglBCpmcqfSivy/1M3wHrTl5R KBVyW8m2z8RM76htdTSzfuILiXAu+jVsZADXf+Ti0b/gg0tDx1LSRdzGegA+KTU3 FFK0xHtjuKusHTAcLlVL0gyJuXrX2vvtfsh3EPp1VW6La6DC1lE5fcYdoK9sKTHe /IcO6V3NkuvlY8XE5JjkFiSjHQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNcoHS5Y 0Jo8ZY1Pdwq5b2hqPSmFMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRTQ3RUI4MDAz NUY4MTFFQjgwNjEzNTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnniowDQYJKoZIhvcNAQELBQADggEBAE7MF5/ByN9eEpPW 252XamHePrIPqhrZEaJJ6XJmdWPiX1oDs/wUIKw0TSy+8oOpiTbny4QbcgpR+8A7 0YXSMN6DAeH+/1cqI2w/hgzyrehkrYegZAV4UxqmRyVMbmSx7+YEtOVxdr2Dlfjr qp9R2gfNATRJz0qKX7Al/k9WY5hSyslt0PkJZVo1VFWuYCEsCI0pmd+WhGFxaJry 5rkM8Ym73d2YB+AMJsYm03E/MeDo7SzCabtH/HiltM55g+gV4EevshhybBGLaVvR yItZfJtnYF/HIpo3575cTLUqCvhpOKo7knAKHCUDoT4awWmh2qe+BnZHZR7CXT/0 Vv+7fyU= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:48 2024 by rpki-client on console-ams.rpki-client.org