$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E7905F4EBCF911EA83F88D29C4F9AE02.roa File: E7905F4EBCF911EA83F88D29C4F9AE02.roa (raw, json) Hash identifier: SH9j5Vunx5uMOMBNfK4scOF8FwrzXGWxreB2ug4Hysc= Subject key identifier: 5B:97:16:CB:0B:32:96:3B:9F:32:02:84:C9:89:C4:19:0C:6E:92:68 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6D2E Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E7905F4EBCF911EA83F88D29C4F9AE02.roa Signing time: Wed 10 May 2023 16:28:03 +0000 ROA not before: Wed 10 May 2023 16:28:03 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 137639 IP address blocks: 103.120.56.0/22 maxlen: 24 2403:5340::/32 maxlen: 35 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27950 (0x6d2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:28:03 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc613-4011 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:a0:a6:3c:a2:cc:1a:fe:c3:46:2d:46:52:8f: b8:f5:4c:43:d3:0c:74:ec:85:61:93:3d:f0:60:c1: ee:0c:dc:1f:c9:0f:7a:7b:2e:21:64:ab:bd:24:e2: 90:9e:c1:ee:a2:e1:cc:20:5d:be:2a:5c:57:86:4c: 2e:28:d0:6e:dd:a1:ba:6b:af:89:9c:98:8c:4d:2b: c1:3c:c8:c1:f2:19:c1:94:86:12:0a:0e:e2:70:b8: c2:c1:a9:be:b7:0a:09:ae:9a:a1:b1:40:ae:69:c7: 2b:0d:13:70:0c:10:e3:ca:aa:ce:53:c2:28:42:06: 61:4c:53:5b:e8:2e:72:3b:f1:04:51:bb:f7:b3:70: dd:70:f8:5f:47:e8:60:0b:5e:0a:91:38:b8:27:3f: 46:78:90:a4:01:55:53:c1:7d:14:fb:9a:25:7a:3c: 0f:4d:c1:5d:36:66:d9:02:3b:35:f4:6f:fe:02:29: c4:0a:3c:db:c5:9f:f6:e6:c8:ff:9a:08:fa:63:19: 39:99:36:1a:64:2d:bc:66:fb:d4:c7:80:72:26:b5: 30:54:4c:b8:01:32:1d:35:58:d5:53:7b:c5:c8:e7: 86:33:5d:ea:47:bb:3c:3b:67:d6:3b:8c:a3:ba:b9: 3f:a1:7b:85:15:88:b6:59:07:7b:cc:32:51:d4:be: 4c:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:97:16:CB:0B:32:96:3B:9F:32:02:84:C9:89:C4:19:0C:6E:92:68 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E7905F4EBCF911EA83F88D29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.56.0/22 IPv6: 2403:5340::/32 Signature Algorithm: sha256WithRSAEncryption 52:75:28:c5:ca:8a:46:63:18:34:82:f9:e2:31:3d:77:fc:ab: 8c:8b:01:75:9b:4a:ce:04:c1:54:97:b9:88:c4:f5:36:1f:c9: ae:84:db:50:1a:56:1a:6c:2e:ff:1a:ef:6d:42:ae:35:75:9c: 64:82:8c:5a:77:8f:a5:2f:d8:61:2d:14:80:8b:7a:c2:a4:4d: 4d:6b:5d:b9:95:f2:07:96:8c:2d:c9:5e:84:6d:76:e0:f9:63: 38:8a:cf:08:d3:a0:3b:c7:30:41:ed:88:0c:1e:4c:57:6e:34: 76:9c:66:33:40:56:41:a6:bc:10:29:9d:49:41:d1:0a:13:4a: d4:4f:2d:85:16:9e:44:9e:1e:70:9f:d6:3c:4c:90:68:de:71: c1:94:28:fa:25:d2:fe:f7:89:0e:53:77:97:81:b9:ed:2d:c2: 0d:eb:d3:07:a5:9f:f1:68:62:b2:51:e0:80:fe:71:e0:84:6b: e0:79:ea:c1:51:f1:89:00:dc:be:8b:6e:b7:db:5f:9f:85:0b: aa:a7:9d:23:10:2b:eb:4d:1b:c1:05:34:04:f6:3f:e3:9e:ad: 34:c7:d8:14:70:ba:86:08:93:ab:4b:b0:d1:94:10:94:c3:f6: 78:2d:78:6c:dd:a3:48:ee:c8:d7:0b:97:fd:da:d6:20:f0:5c: 64:ed:75:17 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICbS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyODAzWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzYxMy00MDExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2KCmPKLMGv7DRi1GUo+49UxD0wx07IVhkz3wYMHuDNwfyQ96ey4hZKu9JOKQ nsHuouHMIF2+KlxXhkwuKNBu3aG6a6+JnJiMTSvBPMjB8hnBlIYSCg7icLjCwam+ twoJrpqhsUCuaccrDRNwDBDjyqrOU8IoQgZhTFNb6C5yO/EEUbv3s3DdcPhfR+hg C14KkTi4Jz9GeJCkAVVTwX0U+5olejwPTcFdNmbZAjs19G/+AinECjzbxZ/25sj/ mgj6Yxk5mTYaZC28ZvvUx4ByJrUwVEy4ATIdNVjVU3vFyOeGM13qR7s8O2fWO4yj urk/oXuFFYi2WQd7zDJR1L5MwQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFuXFssL MpY7nzIChMmJxBkMbpJoMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRTc5MDVGNEVC Q0Y5MTFFQTgzRjg4RDI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJneDgwDQQCAAIwBwMFACQDU0AwDQYJKoZIhvcNAQELBQAD ggEBAFJ1KMXKikZjGDSC+eIxPXf8q4yLAXWbSs4EwVSXuYjE9TYfya6E21AaVhps Lv8a721CrjV1nGSCjFp3j6Uv2GEtFICLesKkTU1rXbmV8geWjC3JXoRtduD5YziK zwjToDvHMEHtiAweTFduNHacZjNAVkGmvBApnUlB0QoTStRPLYUWnkSeHnCf1jxM kGjeccGUKPol0v73iQ5Td5eBue0twg3r0weln/FoYrJR4ID+ceCEa+B56sFR8YkA 3L6LbrfbX5+FC6qnnSMQK+tNG8EFNAT2P+OerTTH2BRwuoYIk6tLsNGUEJTD9ngt eGzdo0juyNcLl/3a1iDwXGTtdRc= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:48 2024 by rpki-client on console-ams.rpki-client.org