$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F6A0542A137B11EBAF12AC3DC4F9AE02.roa File: F6A0542A137B11EBAF12AC3DC4F9AE02.roa (raw, json) Hash identifier: zF5Nf1vX1NQjlWek68dJSo/IRYO5iphhyeqfzCc1dU0= Subject key identifier: 35:23:06:1E:B3:32:54:46:78:5B:B2:6F:48:0B:67:49:2B:CE:BF:89 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6E57 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F6A0542A137B11EBAF12AC3DC4F9AE02.roa Signing time: Wed 10 May 2023 16:33:36 +0000 ROA not before: Wed 10 May 2023 16:33:36 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141241 IP address blocks: 103.157.133.0/24 maxlen: 24 2001:df1:f6c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28247 (0x6e57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:33:36 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc760-00e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:fd:eb:80:36:ed:4c:28:a3:9c:f8:14:16:87: 60:33:8c:41:20:9b:1d:b1:56:90:45:5f:af:aa:e7: 06:c7:78:6d:a3:5d:de:ae:4a:a5:8c:79:26:c5:1f: a5:d2:f3:91:d5:59:94:9e:d2:24:66:8a:ca:10:99: d3:28:0b:4d:78:c2:2e:8d:8c:5e:cc:2c:99:96:da: 66:de:07:7b:18:27:d4:e6:5a:13:f4:f8:b4:ed:1d: 52:e1:64:eb:c4:31:6d:af:69:3d:a4:65:9d:b4:b6: 51:53:46:bd:02:65:bd:33:2b:96:2f:3b:02:b7:e5: 6c:df:ce:df:97:f5:dd:a2:c7:f5:7e:02:49:9a:11: a7:21:70:85:4c:0a:01:f2:b3:5c:0f:78:50:3f:77: fa:cf:e4:18:f9:54:55:2f:56:f2:71:15:7d:42:74: e3:b6:11:f9:8e:3d:02:eb:a9:39:ba:91:9f:48:c5: d9:af:f4:4c:f9:cb:9a:05:de:36:2e:a0:c9:f7:f1: 3e:4c:ef:cb:fd:40:32:97:0f:50:83:e9:16:7a:aa: e6:ec:2e:9e:15:12:c3:e1:ec:cd:b1:85:da:72:85: b7:8c:8f:9a:e6:d3:af:d2:0e:d2:f6:1a:7d:48:0c: 55:e4:18:c3:d1:37:d9:5e:b4:a2:4d:75:d1:6c:d1: c2:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:23:06:1E:B3:32:54:46:78:5B:B2:6F:48:0B:67:49:2B:CE:BF:89 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F6A0542A137B11EBAF12AC3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.157.133.0/24 IPv6: 2001:df1:f6c0::/48 Signature Algorithm: sha256WithRSAEncryption 99:20:f4:ff:ba:1a:c9:eb:f7:d0:89:8a:59:bc:37:70:06:50: 02:6b:c8:3a:33:02:bd:86:4a:dc:d0:1c:1d:46:0e:aa:e0:aa: f9:a4:75:0a:a5:c2:99:44:d1:92:e6:3c:50:b4:97:fd:90:10: c3:fe:60:9e:22:d2:ca:28:f4:14:98:f9:4f:6b:0b:73:38:cb: 24:49:5e:a2:69:cf:29:48:81:59:c7:8e:18:71:af:7b:3f:16: c7:cf:85:74:bc:2e:00:20:01:ef:10:2d:a2:5f:1c:de:c4:d1: fb:81:6b:a7:c7:8b:74:d6:bd:ba:ce:56:b7:75:ef:d9:f7:f1: 57:3a:fd:70:84:e4:7a:77:42:89:95:18:c7:8c:3c:c4:42:43: b3:9a:84:1a:e1:3a:bb:36:3b:a3:75:11:ec:f7:12:e3:3d:01: 7d:36:a8:e1:28:27:af:80:f5:95:aa:94:8e:e5:9b:1e:b7:04: 63:92:18:68:3a:43:af:57:3e:6c:64:1b:fb:1d:f2:d9:6b:bf: 7b:85:8d:76:24:98:03:73:34:bd:7a:94:c9:67:14:85:49:c6: 5d:fb:86:e2:09:f2:bd:dc:2c:38:8c:c5:5b:ef:b1:14:0f:f0: c4:f2:af:46:71:4c:af:b2:ff:09:54:ec:d9:a1:70:1a:85:de: 46:f1:27:47 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICblcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzMzM2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzc2MC0wMGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApf3rgDbtTCijnPgUFodgM4xBIJsdsVaQRV+vqucGx3hto13erkqljHkmxR+l 0vOR1VmUntIkZorKEJnTKAtNeMIujYxezCyZltpm3gd7GCfU5loT9Pi07R1S4WTr xDFtr2k9pGWdtLZRU0a9AmW9MyuWLzsCt+Vs387fl/Xdosf1fgJJmhGnIXCFTAoB 8rNcD3hQP3f6z+QY+VRVL1bycRV9QnTjthH5jj0C66k5upGfSMXZr/RM+cuaBd42 LqDJ9/E+TO/L/UAylw9Qg+kWeqrm7C6eFRLD4ezNsYXacoW3jI+a5tOv0g7S9hp9 SAxV5BjD0TfZXrSiTXXRbNHCXQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDUjBh6z MlRGeFuyb0gLZ0krzr+JMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRjZBMDU0MkEx MzdCMTFFQkFGMTJBQzNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnnYUwDwQCAAIwCQMHACABDfH2wDANBgkqhkiG9w0BAQsF AAOCAQEAmSD0/7oayev30ImKWbw3cAZQAmvIOjMCvYZK3NAcHUYOquCq+aR1CqXC mUTRkuY8ULSX/ZAQw/5gniLSyij0FJj5T2sLczjLJEleomnPKUiBWceOGHGvez8W x8+FdLwuACAB7xAtol8c3sTR+4Frp8eLdNa9us5Wt3Xv2ffxVzr9cITkendCiZUY x4w8xEJDs5qEGuE6uzY7o3UR7PcS4z0BfTao4Sgnr4D1laqUjuWbHrcEY5IYaDpD r1c+bGQb+x3y2Wu/e4WNdiSYA3M0vXqUyWcUhUnGXfuG4gnyvdwsOIzFW++xFA/w xPKvRnFMr7L/CVTs2aFwGoXeRvEnRw== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:50 2024 by rpki-client on console-ams.rpki-client.org