$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F3301DF6D28411EC9C3B000EC4F9AE02.roa File: F3301DF6D28411EC9C3B000EC4F9AE02.roa (raw, json) Hash identifier: 3BZF28aNeKnKnDwByRVa7AM1j+3BO312XWXvH+i+kOI= Subject key identifier: 15:57:D2:A6:C1:A5:B3:14:68:EB:26:FD:D7:C0:2E:D2:E2:54:95:4B Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7522 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F3301DF6D28411EC9C3B000EC4F9AE02.roa Signing time: Thu 06 Jul 2023 09:41:42 +0000 ROA not before: Thu 06 Jul 2023 09:41:42 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 149531 IP address blocks: 103.182.164.0/23 maxlen: 24 2001:df2:a4c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29986 (0x7522) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jul 6 09:41:42 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64a68c56-eebe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:dc:7a:a0:a7:a1:d5:de:f8:4a:6e:d4:27:19: 2a:32:81:63:09:8b:7b:3b:ce:c0:2b:b6:7a:de:0f: 1a:13:f7:7d:86:1b:4c:23:16:35:20:54:74:8f:8b: 5f:f7:e3:fd:1f:0c:a1:ec:35:77:e4:d9:d4:a7:37: 8b:8d:84:da:1e:43:3e:66:c3:a7:5a:f2:d1:e2:f5: 6d:ed:90:49:9c:50:0b:75:5d:3b:b3:72:31:92:1b: 44:fe:af:34:83:29:2b:c0:e9:44:bd:97:4d:cd:ed: 59:07:1b:d6:ea:f7:7a:d8:69:9a:6d:e2:41:26:4f: 31:0f:f7:d3:84:f8:3a:da:3f:33:63:0b:db:49:a9: b6:10:80:3e:c0:93:4f:94:49:ad:2e:f6:bb:17:c1: b8:b3:b5:d3:d1:57:9b:e8:a3:e8:e7:55:90:0b:a0: 45:71:cb:54:6c:9e:7b:a9:d8:0a:b3:19:98:72:36: f8:36:49:b2:f9:42:e4:6c:89:b1:b2:dd:f2:04:a5: f7:c9:dc:70:56:d5:b2:a9:be:b2:cd:3b:52:ec:bd: b4:0a:c8:64:dc:1d:3c:ad:0c:f8:11:63:52:83:75: de:8e:a2:03:5f:9a:6b:59:16:84:00:f8:af:0a:75: 88:35:4e:53:9f:10:0a:82:89:32:48:5c:ec:fb:f1: 0a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:57:D2:A6:C1:A5:B3:14:68:EB:26:FD:D7:C0:2E:D2:E2:54:95:4B X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F3301DF6D28411EC9C3B000EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.182.164.0/23 IPv6: 2001:df2:a4c0::/48 Signature Algorithm: sha256WithRSAEncryption a2:0f:5b:0f:d1:fe:ce:c3:09:25:86:6f:c5:d4:19:69:da:3c: d9:a1:c6:0a:2d:f6:5a:43:10:dd:02:e0:7f:50:d0:94:cb:13: 97:13:1c:1f:4e:6c:7d:8d:9c:44:ce:a5:6d:32:bd:04:66:83: 3d:81:d9:5f:6d:f7:95:72:f7:f7:13:67:d0:9a:a1:a7:72:e9: 80:8b:57:4a:03:a6:e8:13:a2:75:0e:9e:ed:8a:57:51:eb:8f: 18:b8:9f:ee:6c:e2:82:4c:3b:58:0c:0f:31:c0:51:ac:72:11: 4e:e5:e2:74:b0:7d:dc:0b:e2:43:b7:95:57:a4:5c:5f:2c:1d: 86:0e:90:40:d4:40:3b:11:c1:e2:9e:23:60:f4:49:02:11:a8: 77:85:a7:8b:7e:6f:54:dc:a1:70:25:3e:68:af:97:78:17:1a: c8:97:84:20:8c:db:79:2b:15:fb:88:20:38:e3:b7:d1:9c:ee: cc:b6:fe:20:8f:c9:d5:87:a1:38:e5:0d:cf:45:22:df:27:70: f1:2f:0e:0a:5c:43:56:55:ed:9e:b7:68:c0:69:99:1a:84:e9: 7b:f3:43:85:d7:76:50:58:21:bb:9f:ca:80:44:02:6e:ae:c7: 77:b1:fd:d9:91:f4:a8:1d:9f:ce:9e:f2:5d:d8:26:01:3b:a0: c2:80:7b:1a -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICdSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNzA2MDk0MTQyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE2OGM1Ni1lZWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5tx6oKeh1d74Sm7UJxkqMoFjCYt7O87AK7Z63g8aE/d9hhtMIxY1IFR0j4tf 9+P9Hwyh7DV35NnUpzeLjYTaHkM+ZsOnWvLR4vVt7ZBJnFALdV07s3IxkhtE/q80 gykrwOlEvZdNze1ZBxvW6vd62GmabeJBJk8xD/fThPg62j8zYwvbSam2EIA+wJNP lEmtLva7F8G4s7XT0Veb6KPo51WQC6BFcctUbJ57qdgKsxmYcjb4Nkmy+ULkbImx st3yBKX3ydxwVtWyqb6yzTtS7L20Cshk3B08rQz4EWNSg3XejqIDX5prWRaEAPiv CnWINU5TnxAKgokySFzs+/EKFwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBVX0qbB pbMUaOsm/dfALtLiVJVLMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRjMzMDFERjZE Mjg0MTFFQzlDM0IwMDBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFntqQwDwQCAAIwCQMHACABDfKkwDANBgkqhkiG9w0BAQsF AAOCAQEAog9bD9H+zsMJJYZvxdQZado82aHGCi32WkMQ3QLgf1DQlMsTlxMcH05s fY2cRM6lbTK9BGaDPYHZX233lXL39xNn0Jqhp3LpgItXSgOm6BOidQ6e7YpXUeuP GLif7mzigkw7WAwPMcBRrHIRTuXidLB93AviQ7eVV6RcXywdhg6QQNRAOxHB4p4j YPRJAhGod4Wni35vVNyhcCU+aK+XeBcayJeEIIzbeSsV+4ggOOO30ZzuzLb+II/J 1YehOOUNz0Ui3ydw8S8OClxDVlXtnrdowGmZGoTpe/NDhdd2UFghu5/KgEQCbq7H d7H92ZH0qB2fzp7yXdgmATugwoB7Gg== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:50 2024 by rpki-client on console-ams.rpki-client.org