$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E4D0D406BDD411EAA2D98325C4F9AE02.roa File: E4D0D406BDD411EAA2D98325C4F9AE02.roa (raw, json) Hash identifier: nIXkJfrWi0d1lZYmv74tAuG8Bmn8ED63EVBqV4+PfWs= Subject key identifier: CB:F5:B4:01:F8:08:9E:3F:CC:1A:BA:8F:69:C7:F5:7D:DB:5A:F1:02 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6B0A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E4D0D406BDD411EAA2D98325C4F9AE02.roa Signing time: Wed 10 May 2023 16:17:44 +0000 ROA not before: Wed 10 May 2023 16:17:44 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134262 IP address blocks: 103.70.128.0/24 maxlen: 24 103.70.131.0/24 maxlen: 24 2001:df1:1b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27402 (0x6b0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:17:44 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc3a8-f98b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:da:7c:a5:35:4e:09:fc:bb:99:df:b8:d3:15: c8:c2:3e:72:82:46:3a:79:c4:42:22:3f:82:45:b6: 11:61:d5:ad:e4:f6:1b:d3:18:a3:93:0a:bc:77:f0: e6:96:e4:7c:4a:aa:38:22:0e:9b:34:64:be:94:c2: f6:c1:0d:f1:7a:c0:4c:9b:28:b1:c1:60:e8:32:ac: 17:d2:51:0f:29:27:4a:e5:0f:16:74:4e:30:96:e9: 6b:66:f0:e8:5f:ec:b1:56:4b:a0:c2:94:07:85:d4: ab:47:0f:25:17:07:c4:33:45:ce:07:b1:64:6e:6e: 5c:80:0a:f0:4b:11:a1:bf:a2:46:44:52:ea:6d:d6: 13:3e:5e:1e:f1:eb:04:30:38:03:9b:9d:e5:11:41: b7:cc:40:12:0d:fe:8c:a7:7d:2e:e6:51:61:99:be: dd:38:7c:8c:be:34:13:c7:38:1c:80:15:2e:ff:e5: 96:16:5c:07:a2:c9:88:74:c0:62:54:4b:3e:1a:be: 48:17:12:15:b9:57:07:ae:32:74:65:44:10:1b:7d: a8:42:1e:68:4e:a3:41:e6:d0:58:98:2b:17:1d:ba: e7:9d:2a:97:97:ea:c3:67:e1:fe:f8:c9:55:71:dd: 34:d0:18:c8:fc:88:af:80:55:4c:84:77:8a:a3:23: 2a:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:F5:B4:01:F8:08:9E:3F:CC:1A:BA:8F:69:C7:F5:7D:DB:5A:F1:02 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E4D0D406BDD411EAA2D98325C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.128.0/24 103.70.131.0/24 IPv6: 2001:df1:1b40::/48 Signature Algorithm: sha256WithRSAEncryption 9d:5c:1d:73:c4:00:1d:82:21:cb:45:f5:73:d1:4f:d2:19:63: 16:3c:d6:54:a5:b8:b5:9b:a8:4f:4d:c2:39:a0:de:8a:1f:be: 93:fc:11:99:d9:ec:1f:a2:3e:59:35:0e:7d:38:a6:9e:cf:d0: 23:4a:7b:a7:2c:20:8d:90:aa:57:64:7e:3c:72:f3:97:6c:c4: 0e:bf:79:3c:df:b0:2e:90:c8:74:ae:59:63:a0:4d:ca:39:14: 5f:28:21:ab:5d:f1:9c:49:52:6c:36:05:77:d2:a7:99:58:6d: f7:7b:fc:c2:2a:2d:d1:96:24:10:33:17:4e:70:94:b3:fc:bf: a7:78:5e:dd:ea:37:14:83:d9:b9:7d:c2:87:87:c5:9b:fc:65: a9:c8:e7:f7:db:5c:75:b6:cd:fa:f8:59:bd:a3:9d:c6:a2:5b: 63:dc:6c:8b:98:4c:74:8f:70:19:26:20:ee:93:61:23:25:5a: 0b:4c:56:32:04:d5:59:aa:93:30:91:7a:d8:0e:b7:87:b3:66: 8a:d2:2c:7f:8e:d0:ad:82:18:38:8e:e5:8f:09:2e:ed:55:4a: 03:03:b1:12:b3:42:7e:a4:89:ac:c6:f2:70:f5:93:96:75:8f: 20:d0:7b:d7:7c:02:c1:ed:f9:81:8c:cc:66:8d:d6:db:42:77: d8:85:8f:20 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICawowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxNzQ0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzNhOC1mOThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+Np8pTVOCfy7md+40xXIwj5ygkY6ecRCIj+CRbYRYdWt5PYb0xijkwq8d/Dm luR8Sqo4Ig6bNGS+lML2wQ3xesBMmyixwWDoMqwX0lEPKSdK5Q8WdE4wlulrZvDo X+yxVkugwpQHhdSrRw8lFwfEM0XOB7Fkbm5cgArwSxGhv6JGRFLqbdYTPl4e8esE MDgDm53lEUG3zEASDf6Mp30u5lFhmb7dOHyMvjQTxzgcgBUu/+WWFlwHosmIdMBi VEs+Gr5IFxIVuVcHrjJ0ZUQQG32oQh5oTqNB5tBYmCsXHbrnnSqXl+rDZ+H++MlV cd000BjI/IivgFVMhHeKoyMqvwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFMv1tAH4 CJ4/zBq6j2nH9X3bWvECMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRTREMEQ0MDZC REQ0MTFFQUEyRDk4MzI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnRoADBABnRoMwDwQCAAIwCQMHACABDfEbQDANBgkqhkiG 9w0BAQsFAAOCAQEAnVwdc8QAHYIhy0X1c9FP0hljFjzWVKW4tZuoT03COaDeih++ k/wRmdnsH6I+WTUOfTimns/QI0p7pywgjZCqV2R+PHLzl2zEDr95PN+wLpDIdK5Z Y6BNyjkUXyghq13xnElSbDYFd9KnmVht93v8wiot0ZYkEDMXTnCUs/y/p3he3eo3 FIPZuX3Ch4fFm/xlqcjn99tcdbbN+vhZvaOdxqJbY9xsi5hMdI9wGSYg7pNhIyVa C0xWMgTVWaqTMJF62A63h7NmitIsf47QrYIYOI7ljwku7VVKAwOxErNCfqSJrMby cPWTlnWPINB713wCwe35gYzMZo3W20J32IWPIA== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:48 2024 by rpki-client on console-ams.rpki-client.org