$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F632182A67B211EC9EB0B015C4F9AE02.roa File: F632182A67B211EC9EB0B015C4F9AE02.roa (raw, json) Hash identifier: DPjP3WTxNqVUe1CyHLcNvrX8S7bJRHs0akVqhRf69cU= Subject key identifier: 0C:E1:60:9E:25:BF:F0:1C:B1:94:D9:D5:B6:3E:2F:C7:AD:F9:79:54 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6F68 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F632182A67B211EC9EB0B015C4F9AE02.roa Signing time: Wed 10 May 2023 16:38:40 +0000 ROA not before: Wed 10 May 2023 16:38:40 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 142484 IP address blocks: 103.171.64.0/23 maxlen: 24 103.205.148.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28520 (0x6f68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:38:40 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc88f-ebc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d1:08:a5:c6:05:bf:3b:db:22:3b:a2:a5:84: 23:93:3f:c8:13:f9:46:9a:86:e2:de:d3:d4:ce:f1: 2a:c9:15:0b:e9:8f:ee:be:35:86:0d:54:93:af:35: 21:eb:6e:dd:9e:ca:c4:6a:0d:f5:34:91:2d:f9:fe: 69:5a:9e:a8:04:3f:a6:4f:4e:e4:b3:70:64:81:a7: cf:8c:0f:22:83:81:ec:df:c4:5d:57:c8:9d:9c:69: 38:c2:63:a6:76:42:78:79:26:e7:2c:0b:8d:9b:b2: ba:9b:d7:ee:19:93:a2:94:28:ce:a5:c9:ed:e6:d6: 6a:63:33:27:04:1f:72:42:80:b3:bf:9d:6d:03:1d: 6f:37:7d:30:ea:20:48:45:a7:c1:5f:d5:75:03:94: 2e:b3:26:e5:97:68:c1:ca:8e:c1:41:3b:93:ad:52: 94:fc:56:01:36:95:a8:0b:9e:f9:7f:b9:21:00:3b: 36:c2:32:3a:51:1c:30:17:18:4a:41:63:be:d2:fa: 71:04:0b:8c:a6:b3:eb:18:a1:9c:25:e2:41:56:97: 66:ec:aa:77:53:49:c6:b1:14:1e:17:46:51:b4:79: 32:25:17:4d:93:bf:30:55:b8:0c:e1:93:8d:5e:27: 3d:f0:0f:60:47:ea:b8:61:1d:a9:67:d9:bf:09:20: b0:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:E1:60:9E:25:BF:F0:1C:B1:94:D9:D5:B6:3E:2F:C7:AD:F9:79:54 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F632182A67B211EC9EB0B015C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.171.64.0/23 103.205.148.0/22 Signature Algorithm: sha256WithRSAEncryption 41:d7:bc:e5:5f:20:21:f1:10:90:c8:8d:ef:71:ed:8e:fd:40: 6e:1e:c5:29:28:85:b4:c5:d4:ff:e9:5d:30:96:4c:d6:3d:39: c4:b6:5e:6a:55:f6:9f:59:65:78:8b:d4:1c:08:a3:69:20:b3: eb:b8:4f:63:b0:5c:af:b6:da:95:a1:58:12:a2:5d:7d:47:bc: 67:4c:2d:62:60:fe:b9:ab:c8:c4:07:38:b4:e2:6a:76:de:c6: 76:3e:cb:92:dd:ea:38:6e:f8:a9:d3:72:1c:33:2e:3f:42:ad: 48:c1:5f:63:b5:11:5c:aa:c2:3c:03:b2:e2:17:b1:8e:62:83: cd:70:ec:00:42:13:2f:70:c2:bf:2c:97:f6:f8:df:5e:6c:c3: bc:13:3b:79:64:c4:14:85:80:59:f3:77:39:a2:59:55:65:82: 93:29:ca:f4:f5:55:04:7a:a1:78:aa:23:34:26:3e:bf:95:f9: 27:c0:e7:3f:c6:f4:2c:dc:b9:cd:c6:f5:b7:75:84:8f:23:f6: 14:4f:84:c5:6c:de:d9:7b:d5:00:91:ea:9f:c1:a2:da:28:37: eb:b9:82:8a:95:11:69:52:e5:41:17:3b:3c:8d:3f:64:0d:46: 5c:ed:59:89:b5:34:53:0a:87:4d:9f:6f:8c:18:66:23:5e:43: c0:50:79:d5 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICb2gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzODQwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzg4Zi1lYmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAytEIpcYFvzvbIjuipYQjkz/IE/lGmobi3tPUzvEqyRUL6Y/uvjWGDVSTrzUh 627dnsrEag31NJEt+f5pWp6oBD+mT07ks3BkgafPjA8ig4Hs38RdV8idnGk4wmOm dkJ4eSbnLAuNm7K6m9fuGZOilCjOpcnt5tZqYzMnBB9yQoCzv51tAx1vN30w6iBI RafBX9V1A5Qusybll2jByo7BQTuTrVKU/FYBNpWoC575f7khADs2wjI6URwwFxhK QWO+0vpxBAuMprPrGKGcJeJBVpdm7Kp3U0nGsRQeF0ZRtHkyJRdNk78wVbgM4ZON Xic98A9gR+q4YR2pZ9m/CSCwNQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAzhYJ4l v/AcsZTZ1bY+L8et+XlUMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRjYzMjE4MkE2 N0IyMTFFQzlFQjBCMDE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnq0ADBAJnzZQwDQYJKoZIhvcNAQELBQADggEBAEHXvOVf ICHxEJDIje9x7Y79QG4exSkohbTF1P/pXTCWTNY9OcS2XmpV9p9ZZXiL1BwIo2kg s+u4T2OwXK+22pWhWBKiXX1HvGdMLWJg/rmryMQHOLTianbexnY+y5Ld6jhu+KnT chwzLj9CrUjBX2O1EVyqwjwDsuIXsY5ig81w7ABCEy9wwr8sl/b4315sw7wTO3lk xBSFgFnzdzmiWVVlgpMpyvT1VQR6oXiqIzQmPr+V+SfA5z/G9Czcuc3G9bd1hI8j 9hRPhMVs3tl71QCR6p/BotooN+u5goqVEWlS5UEXOzyNP2QNRlztWYm1NFMKh02f b4wYZiNeQ8BQedU= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:50 2024 by rpki-client on console-ams.rpki-client.org