$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E861D1E6B1AD11ECA2E52046C4F9AE02.roa File: E861D1E6B1AD11ECA2E52046C4F9AE02.roa (raw, json) Hash identifier: QWq8lb9EqW7eiFINrOFGdLI3qjCPvZ0y98VUBZe9lcQ= Subject key identifier: 71:02:DE:F8:48:8C:29:1D:34:93:1C:B4:F0:3A:A8:43:68:85:3A:6E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6DA4 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E861D1E6B1AD11ECA2E52046C4F9AE02.roa Signing time: Wed 10 May 2023 16:30:21 +0000 ROA not before: Wed 10 May 2023 16:30:21 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 138751 IP address blocks: 103.183.70.0/24 maxlen: 24 103.183.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28068 (0x6da4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:30:21 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc69d-2d48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d3:e3:d6:3f:0d:34:2c:24:a1:59:b1:51:96: 77:06:73:f6:f6:98:e8:20:94:84:0d:b5:18:54:09: f7:18:24:23:89:57:8c:9b:a5:fc:18:b4:22:40:03: 23:20:04:13:12:20:cf:25:9c:79:18:81:0b:59:22: 33:32:f6:b6:70:4d:4d:37:09:b8:90:6a:14:b7:50: af:76:4c:db:71:d1:a8:73:60:33:05:fc:78:1d:77: 56:c3:9d:ab:36:88:fc:c9:82:c0:fb:c2:aa:48:3e: 8e:d7:f4:dc:c0:48:fb:cf:c7:3b:94:16:0b:0e:05: 67:a8:99:67:f9:87:b9:1f:c1:bb:d2:33:32:71:9d: 6e:55:fb:5d:ac:89:08:a1:e0:7d:3c:d0:55:ba:26: 04:f8:f7:1b:df:51:d9:4c:24:3f:55:52:11:29:67: cc:54:bf:9b:97:09:d9:a2:4b:e6:c6:71:dc:85:b3: 6a:04:10:f9:1b:2e:2f:2b:70:25:0b:f2:91:23:8e: b3:9a:4d:ae:ec:81:c3:1d:aa:cc:23:f2:55:35:94: 32:ac:22:4e:b2:4b:69:c0:91:81:95:1b:27:43:56: 14:2c:1a:fd:72:06:84:df:47:4f:96:61:b1:84:b3: ac:8a:5c:7b:76:03:38:de:41:c5:36:a2:d0:1b:e9: 07:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:02:DE:F8:48:8C:29:1D:34:93:1C:B4:F0:3A:A8:43:68:85:3A:6E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E861D1E6B1AD11ECA2E52046C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.183.70.0/23 Signature Algorithm: sha256WithRSAEncryption 56:af:d8:b0:c3:7a:db:4c:3e:3c:69:5f:cc:6a:0a:07:3d:2b: d0:93:cc:84:fb:9e:98:cc:f3:dc:f9:2b:57:ce:d7:b1:da:7d: d3:5d:bf:0a:75:60:9e:6a:1f:4a:34:8d:17:50:6e:25:0b:67: 08:86:66:cf:47:95:ce:03:c9:55:94:14:fb:d8:27:31:4c:86: 08:b8:38:14:05:23:bb:db:48:1b:ab:4f:88:73:55:ae:4d:f8: e9:fd:3a:10:dd:b9:69:a1:45:c0:67:4f:47:0b:35:ad:a8:67: b7:63:5c:99:93:ec:b3:a7:e5:2b:09:18:57:28:6d:68:54:65: 46:f2:55:b4:00:f1:44:a5:44:8f:f1:78:f3:e1:f6:06:8e:85: 0c:7d:dd:8d:ee:6b:d0:87:56:c0:78:e4:2c:dc:c1:86:de:bd: 0f:69:5f:52:f3:9d:bd:17:22:ef:2e:67:f2:89:14:c7:0a:fc: 6d:fa:48:2f:d9:90:f2:98:18:bc:2f:c3:82:76:cb:6e:a6:88: e8:34:8a:f8:52:89:5b:e3:41:28:ed:da:89:65:7a:f3:e9:19: 05:3b:18:e9:32:d6:50:e2:f1:13:13:08:c7:23:6c:05:d9:ad: 93:d9:be:a1:fd:2c:b7:e2:82:50:ce:8a:3a:32:5c:0c:db:f8: 0e:95:cb:31 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzMDIxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzY5ZC0yZDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtPj1j8NNCwkoVmxUZZ3BnP29pjoIJSEDbUYVAn3GCQjiVeMm6X8GLQiQAMj IAQTEiDPJZx5GIELWSIzMva2cE1NNwm4kGoUt1CvdkzbcdGoc2AzBfx4HXdWw52r Noj8yYLA+8KqSD6O1/TcwEj7z8c7lBYLDgVnqJln+Ye5H8G70jMycZ1uVftdrIkI oeB9PNBVuiYE+Pcb31HZTCQ/VVIRKWfMVL+blwnZokvmxnHchbNqBBD5Gy4vK3Al C/KRI46zmk2u7IHDHarMI/JVNZQyrCJOsktpwJGBlRsnQ1YULBr9cgaE30dPlmGx hLOsilx7dgM43kHFNqLQG+kHlQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHEC3vhI jCkdNJMctPA6qENohTpuMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRTg2MUQxRTZC MUFEMTFFQ0EyRTUyMDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnt0YwDQYJKoZIhvcNAQELBQADggEBAFav2LDDettMPjxp X8xqCgc9K9CTzIT7npjM89z5K1fO17HafdNdvwp1YJ5qH0o0jRdQbiULZwiGZs9H lc4DyVWUFPvYJzFMhgi4OBQFI7vbSBurT4hzVa5N+On9OhDduWmhRcBnT0cLNa2o Z7djXJmT7LOn5SsJGFcobWhUZUbyVbQA8USlRI/xePPh9gaOhQx93Y3ua9CHVsB4 5CzcwYbevQ9pX1Lznb0XIu8uZ/KJFMcK/G36SC/ZkPKYGLwvw4J2y26miOg0ivhS iVvjQSjt2ollevPpGQU7GOky1lDi8RMTCMcjbAXZrZPZvqH9LLfiglDOijoyXAzb +A6VyzE= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:48 2024 by rpki-client on console-ams.rpki-client.org