$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F8052DCC0E7811EEB9B42577C4F9AE02.roa File: F8052DCC0E7811EEB9B42577C4F9AE02.roa (raw, json) Hash identifier: r+xIoyMbg6gYkQrxyDWZdUMevjA+JGYavjtoXM0d8Tc= Subject key identifier: 8D:EF:F4:62:E8:AD:27:B5:1B:2E:82:1C:9C:7C:B5:AA:48:2A:F3:56 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7C72 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F8052DCC0E7811EEB9B42577C4F9AE02.roa Signing time: Mon 23 Oct 2023 07:04:54 +0000 ROA not before: Mon 23 Oct 2023 07:04:54 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 151117 IP address blocks: 103.145.166.0/24 maxlen: 24 103.247.241.0/24 maxlen: 24 2001:df2:5340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31858 (0x7c72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Oct 23 07:04:54 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65361b16-1acb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:07:13:ed:23:96:19:84:c3:58:d4:ff:65:9d: 26:8b:85:8a:11:f5:43:14:1c:48:eb:6c:fa:05:89: 99:a6:7a:a1:02:b0:8f:0a:b8:21:a1:f4:a2:b6:b6: 00:3e:f4:78:22:dc:37:fa:7e:a0:e6:dd:9a:cf:48: db:56:d4:b0:de:0c:d6:94:f1:5e:dc:d5:f3:61:31: 45:cd:95:39:9b:34:e2:21:f2:85:ef:a7:92:2e:7a: 50:ef:7f:f9:86:ea:c0:68:7d:93:3a:b9:4f:4f:9d: 50:7b:87:d9:35:90:54:8b:f1:af:80:f3:0d:74:3e: b8:92:31:4d:e3:09:ba:f6:f2:38:61:8f:a1:c1:27: 8d:f2:aa:a8:65:cf:a7:3e:b1:b0:79:67:49:01:91: 69:9e:9a:47:9b:24:7b:aa:b0:56:c4:b9:17:74:d7: 47:d8:37:ed:cb:a6:0f:c6:8d:1e:a1:b6:8a:e0:92: 75:70:de:73:cd:14:30:cb:54:ae:ac:0c:71:fd:cb: db:e1:dc:bf:67:27:4f:86:22:28:a2:59:53:13:96: 90:fd:35:70:ad:1f:75:86:a8:cc:eb:af:f6:dd:21: 27:ec:83:d5:d8:6c:66:47:0f:f6:7e:19:97:f5:11: 0d:72:da:92:6a:bc:c7:a4:83:61:02:a0:fb:70:59: b6:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:EF:F4:62:E8:AD:27:B5:1B:2E:82:1C:9C:7C:B5:AA:48:2A:F3:56 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F8052DCC0E7811EEB9B42577C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.166.0/24 103.247.241.0/24 IPv6: 2001:df2:5340::/48 Signature Algorithm: sha256WithRSAEncryption a3:ea:d3:22:4e:6a:8b:3f:c3:e8:a1:23:76:bd:c2:37:60:03: 7a:83:7f:ca:39:26:fe:11:26:51:d3:a1:5b:8f:3d:83:0a:65: ee:cf:9b:6f:71:76:24:08:4d:b2:be:c9:9f:85:0d:3d:8e:56: e2:b0:94:cc:20:72:f9:87:c2:c7:80:a9:97:82:f6:27:f7:75: d4:e3:b1:bb:05:1d:6f:08:8a:79:c8:b6:b0:c4:f5:d9:8d:95: 01:fb:51:22:c3:27:ba:26:cc:04:63:55:b7:fc:f6:3e:a3:0a: bf:04:06:01:16:32:17:f6:1e:34:05:09:7c:ea:58:72:e1:63: 55:e6:79:ee:c5:7c:9d:55:ac:68:1d:f0:fa:ea:30:b3:3d:06: 45:9c:ab:08:1c:12:19:22:17:f5:e6:7a:ac:d5:72:69:2e:38: 11:eb:6f:92:e3:0f:79:d2:8b:1e:6b:aa:98:2c:e1:a9:5a:7c: 36:1b:7b:69:01:48:cf:8e:27:50:83:92:d1:fa:28:ed:dc:99: bf:69:32:c7:02:4e:9b:b8:06:27:9c:37:44:20:39:99:08:a3: 21:8a:02:f5:ca:8a:d8:c4:ac:8f:93:ab:fa:f3:6b:c7:e9:d4: 14:0c:0e:75:2e:ec:59:03:a7:1c:a6:0c:9c:bc:ed:7b:f0:3a: 11:d4:d8:80 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICfHIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMxMDIzMDcwNDU0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTM2MWIxNi0xYWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArwcT7SOWGYTDWNT/ZZ0mi4WKEfVDFBxI62z6BYmZpnqhArCPCrghofSitrYA PvR4Itw3+n6g5t2az0jbVtSw3gzWlPFe3NXzYTFFzZU5mzTiIfKF76eSLnpQ73/5 hurAaH2TOrlPT51Qe4fZNZBUi/GvgPMNdD64kjFN4wm69vI4YY+hwSeN8qqoZc+n PrGweWdJAZFpnppHmyR7qrBWxLkXdNdH2Dfty6YPxo0eobaK4JJ1cN5zzRQwy1Su rAxx/cvb4dy/ZydPhiIoollTE5aQ/TVwrR91hqjM66/23SEn7IPV2GxmRw/2fhmX 9RENctqSarzHpINhAqD7cFm2jQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFI3v9GLo rSe1Gy6CHJx8tapIKvNWMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRjgwNTJEQ0Mw RTc4MTFFRUI5QjQyNTc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnkaYDBABn9/EwDwQCAAIwCQMHACABDfJTQDANBgkqhkiG 9w0BAQsFAAOCAQEAo+rTIk5qiz/D6KEjdr3CN2ADeoN/yjkm/hEmUdOhW489gwpl 7s+bb3F2JAhNsr7Jn4UNPY5W4rCUzCBy+YfCx4Cpl4L2J/d11OOxuwUdbwiKeci2 sMT12Y2VAftRIsMnuibMBGNVt/z2PqMKvwQGARYyF/YeNAUJfOpYcuFjVeZ57sV8 nVWsaB3w+uowsz0GRZyrCBwSGSIX9eZ6rNVyaS44EetvkuMPedKLHmuqmCzhqVp8 Nht7aQFIz44nUIOS0foo7dyZv2kyxwJOm7gGJ5w3RCA5mQijIYoC9cqK2MSsj5Or +vNrx+nUFAwOdS7sWQOnHKYMnLzte/A6EdTYgA== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:51 2024 by rpki-client on console-ams.rpki-client.org