$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F42C68F2E2E511EBB223F26FC4F9AE02.roa File: F42C68F2E2E511EBB223F26FC4F9AE02.roa (raw, json) Hash identifier: sp9mD/lDPKbLYxWm1exX7okCH4b3NYFO28Fg88iHBuc= Subject key identifier: D4:36:33:83:66:2E:7D:93:53:C4:B3:0B:5E:D1:99:77:54:7F:B3:A0 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6F71 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F42C68F2E2E511EBB223F26FC4F9AE02.roa Signing time: Wed 10 May 2023 16:38:51 +0000 ROA not before: Wed 10 May 2023 16:38:51 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 142497 IP address blocks: 103.169.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28529 (0x6f71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:38:51 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc89a-55d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:dc:8d:b4:8d:54:a1:13:7b:ca:6a:0e:d1:3a: 14:f0:de:6c:70:4a:97:8d:f9:3b:c4:3c:76:bc:b6: c0:9f:48:53:3f:49:81:22:e1:a0:8a:3c:51:5e:9b: 15:2c:c9:a8:41:00:60:37:9e:41:04:2c:bc:59:10: dc:20:a8:28:c8:dd:8c:56:73:06:c1:74:d7:af:0b: e7:f6:d5:26:0f:00:5b:a1:70:f1:52:b3:53:d8:98: 57:eb:83:c0:f2:38:03:57:b2:1c:f8:25:70:be:0c: 40:10:db:42:90:17:d3:32:f5:5d:60:ff:4a:aa:44: 6a:be:58:bc:c6:f6:ac:17:32:cb:a0:58:13:80:e8: 16:e9:2d:cd:62:ae:60:5b:af:c0:37:bf:a3:af:d1: 76:c7:7a:74:ec:da:4a:77:9a:a2:74:00:b4:e4:26: bd:eb:60:2b:91:d4:55:c3:05:3e:0d:94:a8:2f:0b: 7b:46:4a:6a:29:a7:7a:04:b5:76:d1:c1:8f:35:eb: 37:fa:57:4d:b0:1e:1b:3c:0f:ba:ed:30:58:05:43: af:3c:19:73:cd:4d:51:38:5d:8c:a9:de:99:a6:30: d7:ec:e6:9a:98:61:af:9b:fa:5e:a2:87:cf:e9:a4: c2:60:23:1f:4e:1b:52:a2:1f:4e:e2:de:b7:16:f7: 47:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:36:33:83:66:2E:7D:93:53:C4:B3:0B:5E:D1:99:77:54:7F:B3:A0 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F42C68F2E2E511EBB223F26FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.169.167.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:2c:36:bc:fa:c3:42:b8:bd:1b:ce:f5:b5:b9:30:80:40:d5: a0:c8:9e:0c:6c:be:62:80:8d:f1:b3:5c:ca:d7:ce:43:0e:d6: 61:9e:28:29:f9:2e:39:e5:a6:e2:4e:24:78:fb:c1:8f:a9:ee: bb:d9:be:9f:88:52:10:e4:08:67:7d:2c:f0:4d:56:60:8c:fe: aa:03:28:ac:2b:f2:e4:cd:aa:60:35:69:05:e3:48:32:7e:f3: 2a:76:90:68:e9:1d:1d:52:11:5a:06:c7:3e:72:31:11:8e:e8: 24:38:fa:61:0c:6f:e8:30:e3:2b:2a:47:bf:9c:01:4c:9b:b1: 2a:38:7c:a7:2f:98:b6:57:fd:96:fb:2b:53:69:35:94:61:5f: c9:e8:a0:53:8a:1f:50:79:71:5a:ec:6a:2b:5f:7c:b0:9d:b0: 06:78:0c:5f:1e:59:05:b7:c4:93:01:fe:f8:46:06:37:3a:4c: 9d:55:af:9b:51:99:0d:56:cd:fa:72:b4:61:5f:f5:e7:72:e4: 6f:b1:05:cf:67:0a:fd:e7:40:e2:a9:5c:b6:5c:88:d9:4d:be: 34:92:ed:fc:46:a9:6c:4b:13:77:ed:a4:b5:4f:29:67:65:e8: bf:77:cd:30:f9:8a:9a:46:bf:88:74:22:e3:44:cb:be:2e:3c: 73:4f:12:81 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICb3EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzODUxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzg5YS01NWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsNyNtI1UoRN7ymoO0ToU8N5scEqXjfk7xDx2vLbAn0hTP0mBIuGgijxRXpsV LMmoQQBgN55BBCy8WRDcIKgoyN2MVnMGwXTXrwvn9tUmDwBboXDxUrNT2JhX64PA 8jgDV7Ic+CVwvgxAENtCkBfTMvVdYP9KqkRqvli8xvasFzLLoFgTgOgW6S3NYq5g W6/AN7+jr9F2x3p07NpKd5qidAC05Ca962ArkdRVwwU+DZSoLwt7RkpqKad6BLV2 0cGPNes3+ldNsB4bPA+67TBYBUOvPBlzzU1ROF2Mqd6ZpjDX7OaamGGvm/peoofP 6aTCYCMfThtSoh9O4t63FvdHGQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNQ2M4Nm Ln2TU8SzC17RmXdUf7OgMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRjQyQzY4RjJF MkU1MTFFQkIyMjNGMjZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnqacwDQYJKoZIhvcNAQELBQADggEBAHssNrz6w0K4vRvO 9bW5MIBA1aDIngxsvmKAjfGzXMrXzkMO1mGeKCn5LjnlpuJOJHj7wY+p7rvZvp+I UhDkCGd9LPBNVmCM/qoDKKwr8uTNqmA1aQXjSDJ+8yp2kGjpHR1SEVoGxz5yMRGO 6CQ4+mEMb+gw4ysqR7+cAUybsSo4fKcvmLZX/Zb7K1NpNZRhX8nooFOKH1B5cVrs aitffLCdsAZ4DF8eWQW3xJMB/vhGBjc6TJ1Vr5tRmQ1WzfpytGFf9edy5G+xBc9n Cv3nQOKpXLZciNlNvjSS7fxGqWxLE3ftpLVPKWdl6L93zTD5ippGv4h0IuNEy74u PHNPEoE= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:50 2024 by rpki-client on console-ams.rpki-client.org