$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E68498EA039E11EB9EA9FF81C4F9AE02.roa File: E68498EA039E11EB9EA9FF81C4F9AE02.roa (raw, json) Hash identifier: mIXD1JnWUlcMV7fDyeKBSETV1s2LE+TJMPs67EsTt+M= Subject key identifier: 77:5F:24:47:4E:9C:57:19:67:6C:73:BF:65:4B:B5:04:B7:98:4D:9B Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6E3F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E68498EA039E11EB9EA9FF81C4F9AE02.roa Signing time: Wed 10 May 2023 16:33:11 +0000 ROA not before: Wed 10 May 2023 16:33:11 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 140184 IP address blocks: 103.153.252.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28223 (0x6e3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:33:11 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc746-c0f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:95:3a:96:44:a4:95:77:1d:67:15:7d:76:20: 62:86:72:d1:cc:94:c1:a5:3b:28:44:bc:54:ae:32: 90:19:2a:b2:1b:a7:60:c2:24:4e:7f:c8:d6:98:89: 26:4a:95:20:cd:75:c2:a1:d3:40:0d:e2:24:47:46: 94:ee:84:6e:6c:72:48:c9:b1:5d:43:2a:c9:13:67: f9:81:c4:e5:3a:39:8c:ed:91:43:47:1c:a7:12:d2: fb:ae:45:b9:fc:17:d0:8e:53:18:f1:5e:07:a6:f4: 65:a1:9f:50:88:d3:c5:2e:a5:61:3e:09:66:55:bb: dc:33:67:76:00:97:cf:18:a2:73:bb:49:53:b4:1e: d3:e9:4b:9d:d9:d8:d6:94:79:c5:80:b1:85:96:d1: b1:bc:c6:36:7c:31:19:d6:64:6c:c8:b1:b3:50:e4: bd:ea:0b:04:01:dd:5a:7a:ce:85:17:6d:c8:4d:1d: 51:52:de:4c:98:c9:1f:a0:4c:93:d1:25:3c:e5:7f: ad:fd:ae:c8:39:00:4b:fb:49:a4:70:41:13:50:55: 6b:49:aa:62:5c:0d:8c:18:58:0a:0d:30:75:c5:70: 19:27:50:ec:46:ec:92:06:bb:33:71:e8:c8:67:6d: 5e:82:57:99:7f:8c:23:15:3f:99:4f:10:43:dd:6e: cd:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:5F:24:47:4E:9C:57:19:67:6C:73:BF:65:4B:B5:04:B7:98:4D:9B X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E68498EA039E11EB9EA9FF81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.252.0/23 Signature Algorithm: sha256WithRSAEncryption 2d:fc:2f:18:e7:5e:d2:40:a6:51:25:bb:f1:85:29:13:b0:e7: 32:15:5a:9a:60:62:79:de:7d:f0:c1:80:97:be:78:78:ef:c0: 0a:e3:29:01:33:6b:58:c6:61:30:50:56:eb:ba:14:d2:32:90: 20:2c:4a:9b:74:af:d3:3f:54:88:6b:d2:a8:05:44:73:75:b5: 74:99:f1:c3:85:bf:0c:31:af:a5:09:96:bf:a7:da:b8:30:68: ce:37:97:f8:71:aa:41:8d:06:3d:dd:d4:aa:c4:43:c5:4e:7c: b0:42:c0:3d:5e:b9:36:e2:e9:69:95:47:e6:64:8d:04:07:b1: 02:90:23:bc:45:9d:d7:ca:7d:eb:f7:d8:d5:2d:56:28:35:57: bd:b5:89:79:33:f0:05:fa:45:12:74:d2:b6:bc:b3:66:6f:44: 16:b8:f9:e8:4d:ea:bc:3f:2f:34:6d:6e:78:08:7c:37:d5:f8: 46:04:f9:6e:ec:6a:72:a9:1a:2d:58:da:08:2d:d5:09:a5:5e: 6e:da:ed:68:0e:10:d9:a8:39:fa:73:41:47:ba:2a:89:ea:92: 12:b5:29:04:2a:63:55:fd:81:7c:cc:2c:1f:b7:39:81:fb:95: 34:47:2c:73:e5:8f:cc:b4:b9:74:87:a2:2c:a3:93:bb:8d:7f: a5:39:c3:43 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzMzExWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzc0Ni1jMGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5U6lkSklXcdZxV9diBihnLRzJTBpTsoRLxUrjKQGSqyG6dgwiROf8jWmIkm SpUgzXXCodNADeIkR0aU7oRubHJIybFdQyrJE2f5gcTlOjmM7ZFDRxynEtL7rkW5 /BfQjlMY8V4HpvRloZ9QiNPFLqVhPglmVbvcM2d2AJfPGKJzu0lTtB7T6Uud2djW lHnFgLGFltGxvMY2fDEZ1mRsyLGzUOS96gsEAd1aes6FF23ITR1RUt5MmMkfoEyT 0SU85X+t/a7IOQBL+0mkcEETUFVrSapiXA2MGFgKDTB1xXAZJ1DsRuySBrszcejI Z21egleZf4wjFT+ZTxBD3W7NswIDAQABo4IClTCCApEwHQYDVR0OBBYEFHdfJEdO nFcZZ2xzv2VLtQS3mE2bMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRTY4NDk4RUEw MzlFMTFFQjlFQTlGRjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmfwwDQYJKoZIhvcNAQELBQADggEBAC38LxjnXtJAplEl u/GFKROw5zIVWppgYnneffDBgJe+eHjvwArjKQEza1jGYTBQVuu6FNIykCAsSpt0 r9M/VIhr0qgFRHN1tXSZ8cOFvwwxr6UJlr+n2rgwaM43l/hxqkGNBj3d1KrEQ8VO fLBCwD1euTbi6WmVR+ZkjQQHsQKQI7xFndfKfev32NUtVig1V721iXkz8AX6RRJ0 0ra8s2ZvRBa4+ehN6rw/LzRtbngIfDfV+EYE+W7sanKpGi1Y2ggt1QmlXm7a7WgO ENmoOfpzQUe6KonqkhK1KQQqY1X9gXzMLB+3OYH7lTRHLHPlj8y0uXSHoiyjk7uN f6U5w0M= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:48 2024 by rpki-client on console-ams.rpki-client.org