$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F0CCE36E2A9111EC87383328C4F9AE02.roa File: F0CCE36E2A9111EC87383328C4F9AE02.roa (raw, json) Hash identifier: NSro5T+1YTCTnhvJqmb4Eio0boucgJLDapRvJztuUVA= Subject key identifier: FC:E7:A1:68:4E:84:B9:93:E4:29:5F:15:86:40:4C:C9:3E:22:E7:DC Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6BB9 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F0CCE36E2A9111EC87383328C4F9AE02.roa Signing time: Wed 10 May 2023 16:21:04 +0000 ROA not before: Wed 10 May 2023 16:21:04 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 135257 IP address blocks: 45.248.32.0/22 maxlen: 24 45.248.136.0/22 maxlen: 24 103.77.96.0/22 maxlen: 24 103.100.16.0/22 maxlen: 24 103.217.84.0/22 maxlen: 24 2001:df1:3cc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27577 (0x6bb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:21:04 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc46f-784f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d3:8a:89:58:4c:eb:93:57:b4:f9:ea:af:d0: c2:5d:6b:f8:44:42:68:0b:a3:2c:e3:c5:45:ed:a8: 26:bb:d9:cd:bd:63:12:f8:71:91:5e:a6:a3:02:d3: 3c:54:0d:a6:17:43:18:ef:8f:70:9a:49:7a:3c:55: 29:1e:3b:b2:20:0d:a9:46:23:f2:99:e6:d8:e3:f8: 60:64:ff:58:5b:ce:2c:56:6f:52:17:d9:10:79:cc: 81:9f:50:bb:eb:c3:52:4c:14:2c:aa:1b:ba:ae:cf: 05:ad:55:f5:05:2f:3c:ee:b4:b2:9a:72:eb:31:8f: 83:16:1f:72:f5:fa:21:38:3c:7e:54:7e:14:f4:83: 25:4d:c4:18:01:f3:13:0c:f2:b8:f7:f7:57:e4:64: cb:06:88:ea:11:6b:1b:ab:5e:b3:7a:5f:01:e8:8c: 66:08:2e:ed:74:5d:8d:66:f0:17:af:f3:57:55:34: e3:ed:08:87:8e:31:ee:9c:51:d6:6d:43:dc:7c:44: 0f:ea:51:f9:f5:2d:bb:61:b5:8a:91:6e:fe:09:d4: 98:32:3e:d9:a7:01:1d:a0:be:92:6e:9b:df:55:bc: b4:90:e2:0b:0c:f2:36:ad:71:67:58:41:cd:fa:da: de:99:23:ed:69:38:e8:c0:7e:00:9e:03:b4:36:62: e2:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:E7:A1:68:4E:84:B9:93:E4:29:5F:15:86:40:4C:C9:3E:22:E7:DC X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F0CCE36E2A9111EC87383328C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.248.32.0/22 45.248.136.0/22 103.77.96.0/22 103.100.16.0/22 103.217.84.0/22 IPv6: 2001:df1:3cc0::/48 Signature Algorithm: sha256WithRSAEncryption 0e:03:cf:1f:14:49:0f:bc:67:3d:4e:74:18:40:aa:3b:52:f1: 90:91:60:eb:be:8b:6f:ce:ae:06:3d:34:e5:9a:77:8f:48:a7: 9c:ea:7d:92:b9:e9:e6:af:fd:bf:ac:e7:76:21:32:ac:36:bc: d4:6d:58:92:bc:d9:72:72:ad:85:f9:cb:8d:97:36:6b:26:6f: 3b:c7:96:7b:b5:74:61:63:3a:95:04:e6:0e:a3:6d:72:f5:4d: 96:82:07:3c:1f:2b:b7:9f:6c:b0:d8:4e:99:74:af:3b:a0:c5: b9:d3:84:32:ae:24:d5:4d:de:42:72:d4:98:c9:35:01:b8:89: 47:2d:ef:9b:46:ac:ef:87:b2:91:2f:e5:66:69:14:3b:ad:61: 75:3d:e7:cb:f3:a8:e3:58:94:2b:21:7f:3c:5b:7a:45:0b:f6: fc:ec:f5:1f:70:65:d7:f3:10:0b:fb:b6:65:74:8f:12:55:ab: 8f:c4:c6:8a:b4:20:ec:1f:53:ec:fd:b6:8c:85:9c:8b:77:c8: ac:5b:7f:d6:ac:88:cb:78:45:64:1b:79:3b:0f:e5:30:73:b7: 0e:95:7b:24:99:c6:a7:a4:c7:b6:01:62:84:0e:96:95:2f:39: 49:79:66:f2:b8:25:07:82:3f:80:09:d9:be:45:67:aa:8c:13: b9:b0:87:35 -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgICa7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyMTA0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzQ2Zi03ODRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAotOKiVhM65NXtPnqr9DCXWv4REJoC6Ms48VF7agmu9nNvWMS+HGRXqajAtM8 VA2mF0MY749wmkl6PFUpHjuyIA2pRiPymebY4/hgZP9YW84sVm9SF9kQecyBn1C7 68NSTBQsqhu6rs8FrVX1BS887rSymnLrMY+DFh9y9fohODx+VH4U9IMlTcQYAfMT DPK49/dX5GTLBojqEWsbq16zel8B6IxmCC7tdF2NZvAXr/NXVTTj7QiHjjHunFHW bUPcfEQP6lH59S27YbWKkW7+CdSYMj7ZpwEdoL6SbpvfVby0kOILDPI2rXFnWEHN +tremSPtaTjowH4AngO0NmLiIwIDAQABo4ICvjCCArowHQYDVR0OBBYEFPznoWhO hLmT5ClfFYZATMk+IufcMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRjBDQ0UzNkUy QTkxMTFFQzg3MzgzMzI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSAYIKwYBBQUHAQcBAf8E OTA3MCQEAgABMB4DBAIt+CADBAIt+IgDBAJnTWADBAJnZBADBAJn2VQwDwQCAAIw CQMHACABDfE8wDANBgkqhkiG9w0BAQsFAAOCAQEADgPPHxRJD7xnPU50GECqO1Lx kJFg676Lb86uBj005Zp3j0innOp9krnp5q/9v6zndiEyrDa81G1YkrzZcnKthfnL jZc2ayZvO8eWe7V0YWM6lQTmDqNtcvVNloIHPB8rt59ssNhOmXSvO6DFudOEMq4k 1U3eQnLUmMk1AbiJRy3vm0as74eykS/lZmkUO61hdT3ny/Oo41iUKyF/PFt6RQv2 /Oz1H3Bl1/MQC/u2ZXSPElWrj8TGirQg7B9T7P22jIWci3fIrFt/1qyIy3hFZBt5 Ow/lMHO3DpV7JJnGp6THtgFihA6WlS85SXlm8rglB4I/gAnZvkVnqowTubCHNQ== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:50 2024 by rpki-client on console-ams.rpki-client.org