$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E491F456D8A011EB8F5C1925C4F9AE02.roa File: E491F456D8A011EB8F5C1925C4F9AE02.roa (raw, json) Hash identifier: lDY91zVfIROimQ0VxACO8oT2PakURu5eKDXta4NfvM4= Subject key identifier: C6:75:06:2C:FD:99:DA:3D:12:29:5F:32:57:F7:72:88:74:C4:0E:9C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6D53 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E491F456D8A011EB8F5C1925C4F9AE02.roa Signing time: Wed 10 May 2023 16:28:46 +0000 ROA not before: Wed 10 May 2023 16:28:46 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 138229 IP address blocks: 103.124.80.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27987 (0x6d53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:28:46 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc63e-c6d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:83:11:67:56:1b:ed:a5:28:ca:28:5b:fb:a6: b2:64:65:04:ae:bd:a1:59:56:4f:a1:69:74:95:1f: e3:57:ae:10:77:a6:c1:a8:19:95:b3:8a:1b:1b:69: e3:94:57:bd:16:ae:34:13:37:b1:23:93:f0:35:ab: eb:9b:d6:8f:9a:d1:7d:d4:e3:34:96:6f:7f:c6:cb: ee:55:1e:7e:f4:88:78:0a:64:63:a1:00:5e:28:ac: 1c:0f:a1:05:ae:cc:b1:7b:88:1b:09:6d:ae:50:7f: 61:41:1f:d3:85:f1:0c:a3:19:7a:ce:85:7d:94:51: 9d:16:84:3e:d2:9b:43:bb:ef:73:dd:a0:68:82:fc: 63:e3:d0:28:62:af:5a:3c:71:04:a4:ba:3e:90:5d: 24:52:e0:ac:9d:65:0b:1e:76:63:05:5a:cf:f3:e5: 55:a5:31:0c:a2:3c:40:bf:63:cd:0d:0d:35:a3:ad: 20:6e:d0:d6:50:d3:0a:fd:68:94:f3:c1:3b:4b:e9: 9a:6f:4d:6b:30:52:29:05:89:28:ad:25:6b:54:f7: e9:f3:fb:e5:ef:5d:d4:84:48:4b:cd:49:dd:ad:02: 82:ff:cb:67:9b:ec:6f:88:fc:55:d1:a9:b7:32:0b: 63:02:02:4f:0e:23:59:84:4d:2b:f2:39:67:b3:db: 41:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:75:06:2C:FD:99:DA:3D:12:29:5F:32:57:F7:72:88:74:C4:0E:9C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E491F456D8A011EB8F5C1925C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.124.80.0/22 Signature Algorithm: sha256WithRSAEncryption 71:c9:23:be:a4:04:18:bb:d2:51:e1:bc:9d:12:49:d2:6f:a8: eb:91:87:49:18:d5:32:16:b4:13:6c:9e:96:2e:bf:76:24:44: 8f:8c:08:bc:26:56:0b:45:7f:71:b0:2e:5b:5b:eb:d7:da:64: 44:22:85:1d:07:f8:8c:f3:82:d9:bc:d4:7c:67:9a:17:2f:64: 0d:a6:f5:7d:13:a2:39:02:db:b0:40:80:b1:60:eb:e6:1c:d9: 3e:e7:10:a6:63:3b:4e:46:b7:ff:50:a9:29:bb:45:9e:0a:b4: dc:3c:dc:63:06:6c:be:2a:f4:2b:9b:2d:70:97:d7:2b:d7:2c: 07:d1:66:22:2f:ca:ab:54:81:af:ac:48:cf:3d:a2:1d:b9:d5: 24:be:52:c5:75:6c:4a:44:8b:8d:1b:6e:c2:e1:98:e9:1a:e0: 8a:75:5e:d5:ad:39:4a:65:2a:f1:3d:6a:bc:f7:37:62:3c:03: 98:c1:bc:98:49:2d:94:98:1d:a1:a3:e4:a2:01:3b:48:07:5c: 42:62:e9:ab:b0:12:9f:1b:3e:42:e1:0c:02:67:3d:48:fe:cc: 52:b9:89:ec:81:38:6a:3a:b5:66:cd:7b:5a:cc:16:e5:e8:78: cf:ad:ac:c1:28:41:16:7b:68:7f:7d:f5:01:80:13:2f:4f:11: 89:1b:b8:44 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyODQ2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzYzZS1jNmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYMRZ1Yb7aUoyihb+6ayZGUErr2hWVZPoWl0lR/jV64Qd6bBqBmVs4obG2nj lFe9Fq40EzexI5PwNavrm9aPmtF91OM0lm9/xsvuVR5+9Ih4CmRjoQBeKKwcD6EF rsyxe4gbCW2uUH9hQR/ThfEMoxl6zoV9lFGdFoQ+0ptDu+9z3aBogvxj49AoYq9a PHEEpLo+kF0kUuCsnWULHnZjBVrP8+VVpTEMojxAv2PNDQ01o60gbtDWUNMK/WiU 88E7S+mab01rMFIpBYkorSVrVPfp8/vl713UhEhLzUndrQKC/8tnm+xviPxV0am3 MgtjAgJPDiNZhE0r8jlns9tByQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMZ1Biz9 mdo9EilfMlf3coh0xA6cMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRTQ5MUY0NTZE OEEwMTFFQjhGNUMxOTI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnfFAwDQYJKoZIhvcNAQELBQADggEBAHHJI76kBBi70lHh vJ0SSdJvqOuRh0kY1TIWtBNsnpYuv3YkRI+MCLwmVgtFf3GwLltb69faZEQihR0H +Izzgtm81HxnmhcvZA2m9X0TojkC27BAgLFg6+Yc2T7nEKZjO05Gt/9QqSm7RZ4K tNw83GMGbL4q9CubLXCX1yvXLAfRZiIvyqtUga+sSM89oh251SS+UsV1bEpEi40b bsLhmOka4Ip1XtWtOUplKvE9arz3N2I8A5jBvJhJLZSYHaGj5KIBO0gHXEJi6auw Ep8bPkLhDAJnPUj+zFK5ieyBOGo6tWbNe1rMFuXoeM+trMEoQRZ7aH999QGAEy9P EYkbuEQ= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:48 2024 by rpki-client on console-ams.rpki-client.org