$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EFC7483ABDD011EA9702FC12C4F9AE02.roa File: EFC7483ABDD011EA9702FC12C4F9AE02.roa (raw, json) Hash identifier: z12TDp74HA3y2+vO3wzGcxN1i/GWrEid41xlJpTlWM0= Subject key identifier: E4:09:56:BB:87:2C:D4:07:ED:CF:C6:7A:22:BD:83:49:7D:9F:DA:B5 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6E4A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EFC7483ABDD011EA9702FC12C4F9AE02.roa Signing time: Wed 10 May 2023 16:33:23 +0000 ROA not before: Wed 10 May 2023 16:33:23 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 140198 IP address blocks: 103.152.38.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28234 (0x6e4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:33:23 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc752-17d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e2:a5:d7:90:a9:d0:a3:b5:9d:94:54:31:a7: 25:d7:ae:6f:a3:3c:b8:1a:40:ee:6b:31:e9:ad:4d: e9:7d:07:83:93:38:33:73:40:0c:f7:da:ab:73:4d: c1:9e:1e:f4:d3:cb:f2:d1:5f:82:e0:38:34:5a:a7: d1:98:d2:a4:5f:a1:55:69:1d:fc:02:9f:aa:f8:c1: 9c:ac:87:a9:33:6e:07:d4:51:74:a8:ee:54:bd:90: 42:47:48:f6:7b:8b:05:81:34:c2:fe:d3:e9:bd:5c: 4a:c1:11:f1:c2:57:b8:eb:a2:7a:28:5a:da:a6:4f: 9b:09:e3:a2:e4:fe:50:7b:8d:b1:c3:44:78:ce:09: 15:99:fc:f2:16:63:bc:2d:34:9a:60:3b:4f:f4:85: 16:1e:d5:69:1d:08:b9:8b:ef:5e:21:91:43:08:b2: dc:ee:86:0b:94:a2:74:5d:0b:ce:72:5d:c5:85:3a: 9e:0a:b4:80:06:22:7e:ee:91:79:18:f2:e7:fc:b3: 44:ed:68:14:05:c0:15:56:5d:3f:85:92:ed:fb:a1: c6:38:1b:c8:90:82:48:67:a2:3a:c7:71:5f:73:28: 1e:a8:bf:59:33:58:8c:a5:84:a0:f4:ee:c7:ac:42: 1a:4d:17:9a:99:79:cb:32:4b:51:73:d5:e4:a5:dd: 11:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:09:56:BB:87:2C:D4:07:ED:CF:C6:7A:22:BD:83:49:7D:9F:DA:B5 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EFC7483ABDD011EA9702FC12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.38.0/23 Signature Algorithm: sha256WithRSAEncryption 06:cb:eb:c7:86:d4:31:5a:5c:e8:48:90:4e:b2:eb:4e:dd:1e: a6:68:cd:61:aa:9e:1d:28:b5:d3:22:20:c3:27:54:08:40:fd: 6b:6d:6e:40:79:f9:77:3e:92:bd:f9:20:a2:63:0d:d8:ba:48: 6b:3d:0c:41:9d:61:8b:ed:33:f2:52:50:6b:dd:d2:81:c8:94: 2f:38:7c:cf:98:dd:51:db:d8:5d:94:07:2f:e8:58:52:43:ba: 2c:ad:5d:57:63:b8:6b:3e:2d:cd:ba:ae:20:2b:de:30:c1:92: 87:27:ab:eb:ed:0e:39:ac:4d:aa:cc:3b:80:b7:96:07:0d:ce: 73:1d:d2:22:35:f6:7a:24:10:58:35:25:da:73:be:da:4a:23: 8c:26:bf:38:75:71:b9:6a:bb:53:95:c7:ea:6a:c9:9a:a4:71: 37:4a:99:e4:39:95:71:12:b9:84:e2:75:05:03:21:f9:36:2d: f7:55:5a:98:e1:21:46:89:bc:31:4a:d0:f7:1d:69:f1:8e:f4: cb:e5:5d:81:ec:dd:11:e1:0a:9a:ad:cd:f8:3a:75:a0:32:89: 43:5d:f0:f4:74:7c:92:33:b7:6a:b0:07:17:ca:a1:2f:f4:ac: 20:c1:10:fe:5e:10:03:06:11:79:f8:49:d3:f5:40:81:49:f5: c2:de:16:0f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzMzIzWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzc1Mi0xN2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApOKl15Cp0KO1nZRUMacl165vozy4GkDuazHprU3pfQeDkzgzc0AM99qrc03B nh7008vy0V+C4Dg0WqfRmNKkX6FVaR38Ap+q+MGcrIepM24H1FF0qO5UvZBCR0j2 e4sFgTTC/tPpvVxKwRHxwle466J6KFrapk+bCeOi5P5Qe42xw0R4zgkVmfzyFmO8 LTSaYDtP9IUWHtVpHQi5i+9eIZFDCLLc7oYLlKJ0XQvOcl3FhTqeCrSABiJ+7pF5 GPLn/LNE7WgUBcAVVl0/hZLt+6HGOBvIkIJIZ6I6x3FfcygeqL9ZM1iMpYSg9O7H rEIaTReamXnLMktRc9Xkpd0RDwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOQJVruH LNQH7c/GeiK9g0l9n9q1MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRUZDNzQ4M0FC REQwMTFFQTk3MDJGQzEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmCYwDQYJKoZIhvcNAQELBQADggEBAAbL68eG1DFaXOhI kE6y607dHqZozWGqnh0otdMiIMMnVAhA/WttbkB5+Xc+kr35IKJjDdi6SGs9DEGd YYvtM/JSUGvd0oHIlC84fM+Y3VHb2F2UBy/oWFJDuiytXVdjuGs+Lc26riAr3jDB kocnq+vtDjmsTarMO4C3lgcNznMd0iI19nokEFg1JdpzvtpKI4wmvzh1cblqu1OV x+pqyZqkcTdKmeQ5lXESuYTidQUDIfk2LfdVWpjhIUaJvDFK0PcdafGO9MvlXYHs 3RHhCpqtzfg6daAyiUNd8PR0fJIzt2qwBxfKoS/0rCDBEP5eEAMGEXn4SdP1QIFJ 9cLeFg8= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:50 2024 by rpki-client on console-ams.rpki-client.org