$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F5C7D0AEB27B11EDA534877FC4F9AE02.roa File: F5C7D0AEB27B11EDA534877FC4F9AE02.roa (raw, json) Hash identifier: QR0OR1zXziaPgvb41O9Tb57BC1PX9Yw/sXzVeRxPD6E= Subject key identifier: 39:2A:D2:B2:EA:22:11:03:F2:10:AE:1F:F4:C1:BE:D5:0F:20:07:79 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7C48 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F5C7D0AEB27B11EDA534877FC4F9AE02.roa Signing time: Fri 20 Oct 2023 09:37:45 +0000 ROA not before: Fri 20 Oct 2023 09:37:45 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 150570 IP address blocks: 103.91.224.0/23 maxlen: 24 2001:df2:2c0::/48 maxlen: 52 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31816 (0x7c48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Oct 20 09:37:45 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65324a68-85af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:89:9d:ab:a6:b1:eb:17:b5:20:f1:76:17:08: a6:bd:e8:8a:e7:63:f9:bc:84:06:c3:93:2f:06:ed: 5f:01:71:f2:90:37:f7:42:4b:a8:a9:09:3c:26:2c: 7a:4a:57:7a:af:3e:b1:17:92:bc:45:6c:f9:06:4f: 19:37:7a:d8:d3:b1:ef:c9:a6:54:3e:05:66:d9:79: b1:b7:64:06:e2:9d:68:70:a9:0f:7c:89:06:78:d6: 78:70:49:0c:3b:10:46:6f:6e:f6:04:e3:b2:c6:cb: 23:39:30:25:84:2a:25:ed:59:8b:b9:ec:dc:27:d7: 0b:c9:49:bc:8d:c2:f8:3b:9f:86:2a:b8:d0:49:b1: c0:1f:22:2e:6c:37:42:d9:5c:82:a3:46:8a:55:8b: 43:b9:1a:02:98:a6:f5:8e:a3:20:cf:49:14:7b:81: 7a:56:c6:d3:74:11:b5:7c:3b:60:57:11:10:b6:4c: 3d:d0:94:a7:11:6f:08:20:bc:ae:ff:b3:1d:30:3c: c3:8c:97:12:8e:04:e7:83:ae:e9:49:02:d0:0b:76: 60:c6:30:e8:42:32:34:74:ad:77:6d:0b:f6:0e:b5: 7b:b0:98:59:64:8a:f4:7a:fa:79:8a:5b:11:0d:08: fb:99:b1:ec:c1:2d:0c:49:2d:99:2d:24:ae:e9:4b: 87:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:2A:D2:B2:EA:22:11:03:F2:10:AE:1F:F4:C1:BE:D5:0F:20:07:79 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F5C7D0AEB27B11EDA534877FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.224.0/23 IPv6: 2001:df2:2c0::/48 Signature Algorithm: sha256WithRSAEncryption 3a:1e:74:5d:0d:3d:45:22:61:43:e8:1d:dc:70:77:b4:af:3d: 17:24:f5:80:de:19:75:79:33:62:eb:47:e9:dd:23:1a:bd:89: 69:52:2c:0a:31:f1:7d:51:89:fb:f8:f2:69:85:67:f6:ab:f9: db:9e:fb:76:29:61:2a:f6:29:65:bc:12:4e:c6:24:08:cd:e6: 80:9e:6d:0b:f1:00:4e:f0:a0:d5:11:63:78:55:ac:5a:35:20: 96:7f:2a:d6:d4:27:a9:79:5d:4e:27:b6:5f:b9:4b:db:c2:74: e6:4b:7a:ee:64:89:20:cf:67:2f:4c:e4:4a:38:1c:5b:bc:31: ba:d9:d6:b7:8a:91:d0:61:11:0b:45:fd:5e:b6:87:48:36:61: b7:45:c8:f6:60:77:7c:24:bf:3b:01:e6:77:b7:b9:b2:11:dd: 38:09:31:45:99:68:e7:97:b8:3d:9e:1d:55:68:61:4e:e4:73: d0:48:69:8f:fc:77:38:cc:8c:64:16:ea:d9:60:b8:80:95:85: c5:8e:3b:90:57:80:db:c5:dc:ef:60:4a:a6:a2:51:4c:48:29: 8e:bc:5d:66:4e:1b:29:69:ce:e4:3f:c4:ff:aa:27:c9:4a:bc: a9:e7:4c:10:58:63:50:08:c8:db:d6:e1:2d:6d:47:62:ab:e7: 45:29:ce:34 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICfEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMxMDIwMDkzNzQ1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTMyNGE2OC04NWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Ymdq6ax6xe1IPF2FwimveiK52P5vIQGw5MvBu1fAXHykDf3QkuoqQk8Jix6 Sld6rz6xF5K8RWz5Bk8ZN3rY07HvyaZUPgVm2Xmxt2QG4p1ocKkPfIkGeNZ4cEkM OxBGb272BOOyxssjOTAlhCol7VmLuezcJ9cLyUm8jcL4O5+GKrjQSbHAHyIubDdC 2VyCo0aKVYtDuRoCmKb1jqMgz0kUe4F6VsbTdBG1fDtgVxEQtkw90JSnEW8IILyu /7MdMDzDjJcSjgTng67pSQLQC3ZgxjDoQjI0dK13bQv2DrV7sJhZZIr0evp5ilsR DQj7mbHswS0MSS2ZLSSu6UuHRwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDkq0rLq IhED8hCuH/TBvtUPIAd5MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRjVDN0QwQUVC MjdCMTFFREE1MzQ4NzdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnW+AwDwQCAAIwCQMHACABDfICwDANBgkqhkiG9w0BAQsF AAOCAQEAOh50XQ09RSJhQ+gd3HB3tK89FyT1gN4ZdXkzYutH6d0jGr2JaVIsCjHx fVGJ+/jyaYVn9qv52577dilhKvYpZbwSTsYkCM3mgJ5tC/EATvCg1RFjeFWsWjUg ln8q1tQnqXldTie2X7lL28J05kt67mSJIM9nL0zkSjgcW7wxutnWt4qR0GERC0X9 XraHSDZht0XI9mB3fCS/OwHmd7e5shHdOAkxRZlo55e4PZ4dVWhhTuRz0Ehpj/x3 OMyMZBbq2WC4gJWFxY47kFeA28Xc72BKpqJRTEgpjrxdZk4bKWnO5D/E/6onyUq8 qedMEFhjUAjI29bhLW1HYqvnRSnONA== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:50 2024 by rpki-client on console-ams.rpki-client.org