$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F2914DB64E8C11EB979A3E56C4F9AE02.roa File: F2914DB64E8C11EB979A3E56C4F9AE02.roa (raw, json) Hash identifier: GskwEI3gOwk4b2Bpm9yc8OS0r1HGHdTZNImxyaOkhD0= Subject key identifier: 0A:13:7C:EF:87:A2:02:8A:B9:F0:44:F4:3B:CC:4B:4B:41:75:B1:3B Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6EBD Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F2914DB64E8C11EB979A3E56C4F9AE02.roa Signing time: Wed 10 May 2023 16:35:27 +0000 ROA not before: Wed 10 May 2023 16:35:27 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141510 IP address blocks: 103.161.52.0/24 maxlen: 24 103.161.53.0/24 maxlen: 24 2001:df2:4b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28349 (0x6ebd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:35:27 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc7cf-da29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:cf:19:ca:1f:6f:dc:f0:7a:c5:83:7f:f4:18: 51:d7:3d:46:f4:8e:7b:de:b3:8d:00:63:e2:13:78: 47:d5:d4:4e:b0:50:0f:64:35:87:20:5d:14:f3:79: 05:51:57:16:9c:a3:fe:11:dd:6b:76:9a:00:77:16: 93:d5:bd:9d:31:f4:66:46:11:88:03:b5:2d:24:0c: 6c:61:d5:d3:1e:97:6c:73:c8:96:5a:33:9e:41:20: 8d:11:ea:5b:b2:41:ac:a4:0c:e9:a6:77:2c:52:52: 9b:43:0e:68:62:80:c2:86:85:37:60:2d:1a:dd:f9: dc:85:c9:1c:c5:7f:af:8b:9f:b5:b0:94:06:30:60: e3:f2:87:c5:a2:75:2c:49:ea:0f:25:ee:c4:00:11: 90:5d:ef:e2:3c:b4:cd:a8:4c:4e:96:56:29:34:2c: 7e:ed:bc:e0:50:5c:3c:cf:ee:a4:a7:e7:34:84:b1: e7:07:9f:9c:95:0e:0d:ab:63:99:cb:d3:80:60:e1: 4d:b5:10:71:33:f1:ac:4a:74:45:24:77:b3:3d:a0: 0e:74:1b:03:f0:52:28:9d:7d:72:78:f3:b9:e4:4e: ee:c9:3c:82:27:12:80:94:2c:87:79:a0:be:75:19: 53:0d:dd:91:1b:c4:b4:a5:54:d7:6b:81:b4:87:fd: 09:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:13:7C:EF:87:A2:02:8A:B9:F0:44:F4:3B:CC:4B:4B:41:75:B1:3B X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F2914DB64E8C11EB979A3E56C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.161.52.0/23 IPv6: 2001:df2:4b40::/48 Signature Algorithm: sha256WithRSAEncryption 89:74:d0:e1:97:77:89:85:41:25:82:a3:72:e3:c7:9c:2e:33: 7b:4e:ca:1a:19:c2:ba:51:59:9a:e8:02:9c:ef:16:59:23:49: 06:b2:d0:fd:d3:c1:76:5f:29:c4:76:52:dd:de:61:53:ff:b1: 15:5b:51:b9:87:34:f9:08:39:d6:2f:98:d3:c7:75:19:d6:77: 9d:20:0b:42:f9:4f:f3:ae:92:e9:e3:01:6d:3a:b2:a7:85:52: a3:4d:35:c9:69:c9:37:19:98:df:46:3e:50:26:70:79:9d:22: 1f:09:ac:fb:7b:7c:f8:c5:cd:5a:54:ed:e8:3f:19:02:aa:8f: 98:9a:07:20:6c:b6:53:94:1b:d7:3e:b0:cb:2c:98:05:99:83: 56:cc:ed:10:28:8f:a7:eb:3a:77:17:f4:b5:6d:df:91:df:c2: ad:dc:2b:38:05:9d:ea:7f:88:b0:da:06:82:88:86:20:14:11: 91:39:cd:37:63:98:33:f8:45:7b:69:cc:cf:ac:d9:86:da:f6: 94:49:2e:5a:78:19:f2:4d:81:81:97:9f:84:7f:ba:5b:c3:f9: 2f:7e:c7:38:bb:43:57:bf:eb:0c:4e:6b:0b:65:69:fa:2f:12: 69:9d:0d:66:f8:ed:bf:4e:b2:d9:61:52:f4:17:96:bc:da:f1: d2:20:c7:ed -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICbr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzNTI3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzdjZi1kYTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1s8Zyh9v3PB6xYN/9BhR1z1G9I573rONAGPiE3hH1dROsFAPZDWHIF0U83kF UVcWnKP+Ed1rdpoAdxaT1b2dMfRmRhGIA7UtJAxsYdXTHpdsc8iWWjOeQSCNEepb skGspAzppncsUlKbQw5oYoDChoU3YC0a3fnchckcxX+vi5+1sJQGMGDj8ofFonUs SeoPJe7EABGQXe/iPLTNqExOllYpNCx+7bzgUFw8z+6kp+c0hLHnB5+clQ4Nq2OZ y9OAYOFNtRBxM/GsSnRFJHezPaAOdBsD8FIonX1yePO55E7uyTyCJxKAlCyHeaC+ dRlTDd2RG8S0pVTXa4G0h/0J9QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAoTfO+H ogKKufBE9DvMS0tBdbE7MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRjI5MTREQjY0 RThDMTFFQjk3OUEzRTU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnoTQwDwQCAAIwCQMHACABDfJLQDANBgkqhkiG9w0BAQsF AAOCAQEAiXTQ4Zd3iYVBJYKjcuPHnC4ze07KGhnCulFZmugCnO8WWSNJBrLQ/dPB dl8pxHZS3d5hU/+xFVtRuYc0+Qg51i+Y08d1GdZ3nSALQvlP866S6eMBbTqyp4VS o001yWnJNxmY30Y+UCZweZ0iHwms+3t8+MXNWlTt6D8ZAqqPmJoHIGy2U5Qb1z6w yyyYBZmDVsztECiPp+s6dxf0tW3fkd/CrdwrOAWd6n+IsNoGgoiGIBQRkTnNN2OY M/hFe2nMz6zZhtr2lEkuWngZ8k2BgZefhH+6W8P5L37HOLtDV7/rDE5rC2Vp+i8S aZ0NZvjtv06y2WFS9BeWvNrx0iDH7Q== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:50 2024 by rpki-client on console-ams.rpki-client.org