$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F4F7FD7ABDCD11EA8E393E09C4F9AE02.roa File: F4F7FD7ABDCD11EA8E393E09C4F9AE02.roa (raw, json) Hash identifier: OO4lSE+wPVQhLniT/zur+tMYyKvJS/HkuhHssZDNlQw= Subject key identifier: 9C:69:58:15:D3:61:2E:59:80:0F:6B:B5:90:00:38:88:D7:FE:BC:84 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6D28 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F4F7FD7ABDCD11EA8E393E09C4F9AE02.roa Signing time: Wed 10 May 2023 16:27:57 +0000 ROA not before: Wed 10 May 2023 16:27:57 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 137627 IP address blocks: 103.129.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27944 (0x6d28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:27:57 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc60c-471a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:45:0b:59:9c:55:66:a8:d0:8a:22:95:1e:dc: f7:6f:fb:f9:1e:10:2d:ed:1b:76:2b:78:21:f5:e8: 71:6e:40:78:d3:1d:89:9a:f7:12:21:7f:a8:b5:e7: a6:cc:d1:fc:4c:52:d7:47:95:ac:b3:5d:97:1d:7d: df:05:6a:7b:c7:3c:b2:89:d4:2f:07:fb:d3:2b:7f: ef:fb:e9:f4:e5:ac:38:1e:a7:20:fa:33:f5:4a:ea: 8d:43:b1:f7:c3:b7:a4:38:54:d5:cd:86:6b:53:e9: 16:d0:59:ac:57:d8:80:a7:d8:7c:a4:2a:9a:6c:e3: 18:3d:86:07:0d:d5:21:ad:5e:ef:55:8a:c4:61:9c: 5a:b5:57:e0:dd:69:11:e5:31:45:97:32:ff:d6:2a: 19:3f:03:7f:ae:b4:39:1b:49:f3:10:c6:7e:01:40: e7:20:31:ef:37:57:33:0e:15:b2:60:6f:04:64:f9: c9:49:31:8a:a3:68:f6:f7:63:cc:a6:da:8c:b2:58: d0:d7:06:64:9a:e0:8a:4e:d7:08:a5:15:e8:fb:bd: 74:69:5f:b2:fc:d4:dd:47:70:1e:10:c4:49:91:93: 8e:a3:73:58:4f:c7:14:70:2e:8c:20:71:9d:41:33: 9c:b5:5b:db:22:be:24:31:6e:66:36:3e:ca:5d:c3: 10:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:69:58:15:D3:61:2E:59:80:0F:6B:B5:90:00:38:88:D7:FE:BC:84 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F4F7FD7ABDCD11EA8E393E09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.232.0/22 Signature Algorithm: sha256WithRSAEncryption 5a:bc:0b:98:0a:59:af:e6:c8:8e:1b:f4:54:2a:eb:22:2a:36: 3b:cd:4f:d4:ed:bf:5f:ed:9f:c6:8a:9a:b0:db:35:83:87:4c: b2:a5:28:2d:7d:47:0c:a5:25:0f:e7:71:ac:fb:d4:83:da:39: d5:56:ed:c6:49:81:a9:3e:ca:bb:3d:54:fc:92:32:9c:e9:03: c6:4d:e7:d0:d0:88:4e:65:2c:05:26:97:63:be:f1:9d:34:67: cf:87:f3:f5:2b:0e:da:ee:c9:99:08:b6:61:08:ae:f6:96:49: 39:3f:8d:bc:ac:02:63:b1:ca:00:75:d4:08:10:19:4c:64:90: aa:72:97:44:3b:55:74:6f:07:79:24:72:16:fc:7d:e7:68:51: 58:96:09:ff:cc:fe:16:03:08:2c:08:6b:40:c7:17:ee:96:92: 94:e1:ec:cc:62:15:7b:2a:da:da:aa:42:5d:63:c1:37:c7:fe: ce:6b:ec:d3:35:6f:69:0c:a1:de:92:e2:5e:0d:8b:32:34:aa: 22:5f:5d:78:41:e3:bc:8d:e0:4b:71:c1:56:5f:a0:80:b2:4a: f7:64:d3:85:32:ed:48:12:bc:26:fe:af:5f:54:25:82:2f:1e: 06:ca:c4:7a:c1:60:05:65:68:e3:2f:58:2f:ee:de:50:c1:a5: 5f:3b:16:27 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNzU3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzYwYy00NzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA20ULWZxVZqjQiiKVHtz3b/v5HhAt7Rt2K3gh9ehxbkB40x2JmvcSIX+oteem zNH8TFLXR5Wss12XHX3fBWp7xzyyidQvB/vTK3/v++n05aw4Hqcg+jP1SuqNQ7H3 w7ekOFTVzYZrU+kW0FmsV9iAp9h8pCqabOMYPYYHDdUhrV7vVYrEYZxatVfg3WkR 5TFFlzL/1ioZPwN/rrQ5G0nzEMZ+AUDnIDHvN1czDhWyYG8EZPnJSTGKo2j292PM ptqMsljQ1wZkmuCKTtcIpRXo+710aV+y/NTdR3AeEMRJkZOOo3NYT8cUcC6MIHGd QTOctVvbIr4kMW5mNj7KXcMQ1wIDAQABo4IClTCCApEwHQYDVR0OBBYEFJxpWBXT YS5ZgA9rtZAAOIjX/ryEMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRjRGN0ZEN0FC RENEMTFFQThFMzkzRTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJngegwDQYJKoZIhvcNAQELBQADggEBAFq8C5gKWa/myI4b 9FQq6yIqNjvNT9Ttv1/tn8aKmrDbNYOHTLKlKC19RwylJQ/ncaz71IPaOdVW7cZJ gak+yrs9VPySMpzpA8ZN59DQiE5lLAUml2O+8Z00Z8+H8/UrDtruyZkItmEIrvaW STk/jbysAmOxygB11AgQGUxkkKpyl0Q7VXRvB3kkchb8fedoUViWCf/M/hYDCCwI a0DHF+6WkpTh7MxiFXsq2tqqQl1jwTfH/s5r7NM1b2kMod6S4l4NizI0qiJfXXhB 47yN4EtxwVZfoICySvdk04Uy7UgSvCb+r19UJYIvHgbKxHrBYAVlaOMvWC/u3lDB pV87Fic= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:50 2024 by rpki-client on console-ams.rpki-client.org