$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EF0F317E15FD11ECAF541012C4F9AE02.roa File: EF0F317E15FD11ECAF541012C4F9AE02.roa (raw, json) Hash identifier: lYAD6+Tc3mttwtXZKtRM54rjA+lcB3/66AX0xrk+iDI= Subject key identifier: 8B:91:66:A2:59:39:A6:C2:69:02:CB:E4:77:39:DC:2B:A5:14:63:6E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6F7F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EF0F317E15FD11ECAF541012C4F9AE02.roa Signing time: Wed 10 May 2023 16:39:05 +0000 ROA not before: Wed 10 May 2023 16:39:05 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 142513 IP address blocks: 103.170.244.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28543 (0x6f7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:39:05 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc8a9-d4c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:19:fc:0d:f4:9f:81:f0:df:88:b8:43:2d:f1: 29:fe:36:72:f2:77:b4:fb:ee:36:83:bc:8f:de:ca: c2:7f:b1:37:94:fc:3d:4e:f6:8f:f5:7e:6d:87:3a: 03:ed:23:ac:ea:58:1d:27:d6:3a:ef:8f:30:35:71: 02:d2:94:ae:1d:6d:22:70:2b:de:be:59:88:1d:a1: 74:e1:d6:26:00:9d:c4:9c:c3:0b:a8:00:ad:38:66: d3:d9:ce:02:7d:b7:49:99:f0:6d:51:55:6e:1a:5d: 98:04:b2:cf:92:23:30:f8:08:8a:43:2b:7f:4e:c5: 5c:62:ac:c8:ec:fe:9b:a5:55:5d:79:45:55:4b:94: e0:a3:43:df:46:9c:93:79:ea:48:49:51:0b:7d:23: a6:97:74:e7:48:91:f2:1b:c0:41:51:aa:fa:89:07: 0e:d6:9d:8c:5d:43:dc:df:bc:e0:c9:67:6d:d3:a4: 3a:fb:3b:07:25:c5:33:7a:70:df:9a:f8:c8:b0:3b: 1c:f4:3b:cc:1e:c6:f3:0d:82:4e:8a:58:e5:e7:57: c5:81:93:7c:e0:a1:02:ea:bd:21:bf:3c:21:2c:d0: bd:45:8b:8b:55:6a:65:2c:bc:53:73:3f:ce:2b:77: 18:e3:28:81:a4:bd:00:00:56:3e:14:de:c2:ed:15: f5:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:91:66:A2:59:39:A6:C2:69:02:CB:E4:77:39:DC:2B:A5:14:63:6E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EF0F317E15FD11ECAF541012C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.244.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:96:d3:89:54:a2:8e:ed:96:ba:2c:83:76:15:b9:8d:1d:c4: e3:07:9f:76:5e:cf:d8:01:cd:fe:45:ca:95:55:62:1a:1e:19: 68:b6:e6:9b:37:dc:f4:b7:93:63:df:1e:12:f2:ee:bc:47:03: fa:0b:67:fd:3c:1d:c7:33:0a:3f:d8:b9:6c:f7:6f:84:79:81: de:8d:cd:fc:11:08:b9:01:9b:03:71:72:6e:e9:8f:db:59:9f: 8b:f8:18:a7:03:c7:a6:ef:fa:e2:59:49:c8:08:64:a6:87:37: 7d:bd:32:31:f5:07:b2:af:34:cc:01:83:1c:85:11:4d:f3:44: ef:f2:4a:7a:26:09:cc:72:79:cc:23:3a:08:e6:11:9d:51:9d: 92:8a:94:0a:eb:66:99:a1:70:0f:ae:07:6a:de:5d:35:d8:45: 76:b9:87:4f:be:ed:22:47:33:97:37:dd:44:d1:2e:5d:59:fa: 7c:e8:14:55:72:11:e0:50:fc:cd:d7:e1:30:39:e3:09:74:fd: bc:72:39:68:8a:92:1e:3d:2c:9c:b9:e6:74:04:28:9f:2e:cb: 19:44:ae:61:81:a6:87:a0:6b:ee:33:85:2c:30:65:e4:f6:1f: 02:9b:15:f6:b4:5d:ab:70:c7:4c:ad:ec:2b:e1:47:39:47:78: 6a:17:76:c8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICb38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzOTA1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzhhOS1kNGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Bn8DfSfgfDfiLhDLfEp/jZy8ne0++42g7yP3srCf7E3lPw9TvaP9X5thzoD 7SOs6lgdJ9Y6748wNXEC0pSuHW0icCvevlmIHaF04dYmAJ3EnMMLqACtOGbT2c4C fbdJmfBtUVVuGl2YBLLPkiMw+AiKQyt/TsVcYqzI7P6bpVVdeUVVS5Tgo0PfRpyT eepISVELfSOml3TnSJHyG8BBUar6iQcO1p2MXUPc37zgyWdt06Q6+zsHJcUzenDf mvjIsDsc9DvMHsbzDYJOiljl51fFgZN84KEC6r0hvzwhLNC9RYuLVWplLLxTcz/O K3cY4yiBpL0AAFY+FN7C7RX1MwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIuRZqJZ OabCaQLL5Hc53CulFGNuMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRUYwRjMxN0Ux NUZEMTFFQ0FGNTQxMDEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnqvQwDQYJKoZIhvcNAQELBQADggEBAHqW04lUoo7tlros g3YVuY0dxOMHn3Zez9gBzf5FypVVYhoeGWi25ps33PS3k2PfHhLy7rxHA/oLZ/08 HcczCj/YuWz3b4R5gd6NzfwRCLkBmwNxcm7pj9tZn4v4GKcDx6bv+uJZScgIZKaH N329MjH1B7KvNMwBgxyFEU3zRO/ySnomCcxyecwjOgjmEZ1RnZKKlArrZpmhcA+u B2reXTXYRXa5h0++7SJHM5c33UTRLl1Z+nzoFFVyEeBQ/M3X4TA54wl0/bxyOWiK kh49LJy55nQEKJ8uyxlErmGBpoega+4zhSwwZeT2HwKbFfa0Xatwx0yt7CvhRzlH eGoXdsg= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:49 2024 by rpki-client on console-ams.rpki-client.org