$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F558C6C22B4111EC8B66EB72C4F9AE02.roa File: F558C6C22B4111EC8B66EB72C4F9AE02.roa (raw, json) Hash identifier: IUyNtTdmQcQBW9pY1srnqvbkvEsMuYlTk1MIS4F9fX0= Subject key identifier: 16:27:E0:46:40:09:72:AE:9B:51:4A:37:BA:A0:09:7E:72:E5:C5:A8 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6E35 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F558C6C22B4111EC8B66EB72C4F9AE02.roa Signing time: Wed 10 May 2023 16:33:00 +0000 ROA not before: Wed 10 May 2023 16:33:00 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 140170 IP address blocks: 103.66.120.0/22 maxlen: 24 103.151.152.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28213 (0x6e35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:33:00 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc73b-7adb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d9:a4:50:4b:7e:f8:81:0a:59:2a:c7:56:55: 09:bf:b2:35:57:91:c0:64:eb:9f:74:78:00:c4:c5: 32:dd:5c:51:09:b5:34:a5:13:27:f2:7f:af:3f:8e: e8:b6:ba:4e:47:c4:9b:64:48:54:32:10:d4:e3:ea: bd:1e:23:8b:19:51:80:70:4b:91:b8:e3:06:5f:d3: c6:56:54:ff:3f:57:a8:2b:e3:70:59:fc:39:1a:8b: 73:ce:a8:e5:3a:fe:02:5b:63:7b:9b:32:5e:23:21: c0:b0:7f:2e:40:70:fa:fc:1c:c9:e5:fb:6b:34:7f: e6:56:b0:0b:6b:7e:63:aa:69:7b:7d:3e:25:3a:bb: 18:46:95:7b:c1:06:a0:fd:ce:1c:b7:c9:08:3c:b7: b4:5c:45:a8:83:c3:a2:6f:ed:70:a9:8d:5d:ac:4e: f5:a9:df:50:d4:82:d1:c8:89:f8:af:bb:c3:f6:6a: 02:31:58:5a:7b:bd:13:46:c0:ce:8a:55:1c:94:dc: a2:ed:33:35:a5:c2:ed:3f:91:7d:ca:58:3c:6a:3d: 2e:52:9f:9d:ee:1a:7c:6c:81:4f:32:87:8c:a2:69: 54:50:ac:70:5f:1e:93:6a:68:ec:2c:a9:78:07:e6: 6e:71:71:d0:5c:b5:d6:d2:b2:a6:40:b0:f6:3b:37: a2:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:27:E0:46:40:09:72:AE:9B:51:4A:37:BA:A0:09:7E:72:E5:C5:A8 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F558C6C22B4111EC8B66EB72C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.66.120.0/22 103.151.152.0/23 Signature Algorithm: sha256WithRSAEncryption 22:9f:13:a5:c3:5c:d5:b2:75:6a:20:39:d0:e6:c9:d6:a3:89: c9:f4:3f:e7:5f:fe:04:ee:ad:90:50:4b:1a:a7:fd:7d:67:7b: 80:d7:af:2b:a8:f4:e5:ae:f5:27:1c:58:42:fb:cf:b9:06:47: 9d:07:ee:80:84:73:a4:ca:86:81:26:e2:3b:f3:af:e1:6f:22: dc:00:3e:1f:21:fc:6c:2e:b6:00:91:56:ce:61:e2:21:34:03: 6b:68:d3:b5:96:5e:72:b7:b4:6c:fe:96:18:6a:3d:93:b8:53: cf:ec:f0:f9:de:e0:e0:62:be:50:c3:2e:d2:a1:a5:50:bd:95: da:10:14:be:a0:77:54:8c:69:eb:d3:1b:55:ad:f1:14:58:1e: c1:b2:f2:e1:4c:6b:4d:57:20:49:30:c9:71:58:a2:d9:7f:00: 06:2f:59:e2:e6:20:8d:33:52:64:32:ca:11:9e:de:49:e7:3c: be:38:dd:ea:1d:c6:7b:ba:84:fe:c0:b4:42:8b:9d:b1:32:b1: 0a:9e:72:a2:70:ea:01:1f:b0:c9:13:ef:4d:7d:da:31:17:d5: 40:21:c4:69:7f:40:5c:0e:86:55:4f:7c:20:e2:33:f0:2f:34: ec:a9:c2:5b:eb:86:05:21:ee:13:86:a9:5e:b8:79:80:1d:36: 14:76:88:d3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICbjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzMzAwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzczYi03YWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAotmkUEt++IEKWSrHVlUJv7I1V5HAZOufdHgAxMUy3VxRCbU0pRMn8n+vP47o trpOR8SbZEhUMhDU4+q9HiOLGVGAcEuRuOMGX9PGVlT/P1eoK+NwWfw5Gotzzqjl Ov4CW2N7mzJeIyHAsH8uQHD6/BzJ5ftrNH/mVrALa35jqml7fT4lOrsYRpV7wQag /c4ct8kIPLe0XEWog8Oib+1wqY1drE71qd9Q1ILRyIn4r7vD9moCMVhae70TRsDO ilUclNyi7TM1pcLtP5F9ylg8aj0uUp+d7hp8bIFPMoeMomlUUKxwXx6TamjsLKl4 B+ZucXHQXLXW0rKmQLD2OzeimwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBYn4EZA CXKum1FKN7qgCX5y5cWoMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRjU1OEM2QzIy QjQxMTFFQzhCNjZFQjcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnQngDBAFnl5gwDQYJKoZIhvcNAQELBQADggEBACKfE6XD XNWydWogOdDmydajicn0P+df/gTurZBQSxqn/X1ne4DXryuo9OWu9SccWEL7z7kG R50H7oCEc6TKhoEm4jvzr+FvItwAPh8h/GwutgCRVs5h4iE0A2to07WWXnK3tGz+ lhhqPZO4U8/s8Pne4OBivlDDLtKhpVC9ldoQFL6gd1SMaevTG1Wt8RRYHsGy8uFM a01XIEkwyXFYotl/AAYvWeLmII0zUmQyyhGe3knnPL443eodxnu6hP7AtEKLnbEy sQqecqJw6gEfsMkT70192jEX1UAhxGl/QFwOhlVPfCDiM/AvNOypwlvrhgUh7hOG qV64eYAdNhR2iNM= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:50 2024 by rpki-client on console-ams.rpki-client.org