$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F8B213524C2D11ECA85EBF28C4F9AE02.roa File: F8B213524C2D11ECA85EBF28C4F9AE02.roa (raw, json) Hash identifier: bRZHenqQfZKpEiA8ZhVoU1UeU8dMzkMJznCjFqysACw= Subject key identifier: 92:C0:7C:07:A1:1C:7B:45:9D:68:EB:BB:DB:4D:AD:6F:AA:45:A6:B7 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6BCC Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F8B213524C2D11ECA85EBF28C4F9AE02.roa Signing time: Wed 10 May 2023 16:21:25 +0000 ROA not before: Wed 10 May 2023 16:21:25 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 135692 IP address blocks: 103.71.76.0/22 maxlen: 24 103.105.152.0/22 maxlen: 24 103.160.176.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27596 (0x6bcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:21:25 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc485-ba0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:7d:4d:04:58:9c:47:2d:4a:56:a2:03:06:97: f4:c9:b0:b9:c5:42:91:01:c0:9d:33:c4:f0:17:c1: c0:a2:7c:08:c1:b6:4a:2a:42:52:82:ad:94:0c:7e: 21:5c:66:11:a2:82:72:b4:58:ce:db:91:ec:29:a3: ba:2e:1e:c2:9b:49:a4:71:7c:83:8f:f0:dd:41:bc: 32:be:10:3b:be:3e:8e:12:4d:68:88:d6:61:29:66: 74:6c:8f:47:e2:a9:96:b4:2c:7e:83:17:e4:0b:ea: 86:9f:5c:f5:82:cc:51:0b:f3:d3:82:b3:c9:e4:06: bf:06:35:02:e1:d6:f5:c0:ae:44:59:94:f1:06:b8: ba:58:d0:19:19:6d:f8:ac:14:c0:13:36:e8:89:5e: 47:1a:c0:68:e4:93:7d:f4:d4:19:ea:85:f6:d1:51: 34:e9:ac:fb:1c:43:c4:32:d6:b2:d5:64:ab:b3:83: 57:a0:85:f9:96:93:93:50:16:8a:15:08:c7:9a:89: 5c:4c:6e:7e:86:ba:b0:fb:22:cc:cd:a0:67:7f:57: 9b:68:aa:eb:c2:27:64:5b:e5:73:51:9a:81:6c:b9: d9:64:ac:56:57:65:df:d5:22:65:49:c7:9e:1b:fe: ad:bb:c0:6f:11:63:60:91:c7:6e:04:22:7a:d1:fc: fe:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:C0:7C:07:A1:1C:7B:45:9D:68:EB:BB:DB:4D:AD:6F:AA:45:A6:B7 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F8B213524C2D11ECA85EBF28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.71.76.0/22 103.105.152.0/22 103.160.176.0/23 Signature Algorithm: sha256WithRSAEncryption a6:37:2e:0b:05:64:af:55:3b:b9:1b:04:e3:ae:83:6a:99:66: a7:62:71:19:58:22:7c:66:f0:62:7c:ce:7e:7c:cb:3b:22:38: 66:8c:be:31:b8:6d:87:d9:68:f3:cb:1a:ed:48:c6:19:bc:57: d9:91:49:50:10:73:da:b2:cc:90:b2:ae:48:e3:2a:7e:10:81: aa:25:38:0b:88:f6:20:8a:82:01:8c:5f:8e:a1:6b:44:d0:ec: 32:72:47:c5:30:12:17:9c:6e:9c:f1:39:b9:7b:10:6b:71:b5: 74:9b:f7:56:58:63:97:cb:f4:34:48:20:75:f8:ad:e3:76:85: 8e:36:43:b7:e2:1c:f0:41:e9:2e:f9:3e:34:66:a3:ee:61:d9: ff:ed:01:bd:86:86:57:d8:38:10:9f:fd:09:53:fe:10:42:c8: cf:1a:33:45:f9:76:a1:7e:09:47:32:8a:f5:87:06:e9:9b:88: 8e:e6:03:5b:ae:51:7a:0e:ac:37:cc:6a:12:2c:97:8e:fa:a9: 84:0b:34:78:34:8d:58:9e:21:c8:7e:fd:ef:aa:99:78:2c:a2: e1:a5:fb:63:10:52:07:eb:bf:a6:0c:b2:ce:8e:54:0e:82:92: da:e7:56:bf:fe:6d:9b:6e:de:01:52:5c:b9:4b:3a:89:01:9c: 72:8d:6a:b9 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICa8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyMTI1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzQ4NS1iYTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1X1NBFicRy1KVqIDBpf0ybC5xUKRAcCdM8TwF8HAonwIwbZKKkJSgq2UDH4h XGYRooJytFjO25HsKaO6Lh7Cm0mkcXyDj/DdQbwyvhA7vj6OEk1oiNZhKWZ0bI9H 4qmWtCx+gxfkC+qGn1z1gsxRC/PTgrPJ5Aa/BjUC4db1wK5EWZTxBri6WNAZGW34 rBTAEzboiV5HGsBo5JN99NQZ6oX20VE06az7HEPEMtay1WSrs4NXoIX5lpOTUBaK FQjHmolcTG5+hrqw+yLMzaBnf1ebaKrrwidkW+VzUZqBbLnZZKxWV2Xf1SJlScee G/6tu8BvEWNgkcduBCJ60fz+uwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFJLAfAeh HHtFnWjru9tNrW+qRaa3MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRjhCMjEzNTI0 QzJEMTFFQ0E4NUVCRjI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJnR0wDBAJnaZgDBAFnoLAwDQYJKoZIhvcNAQELBQADggEB AKY3LgsFZK9VO7kbBOOug2qZZqdicRlYInxm8GJ8zn58yzsiOGaMvjG4bYfZaPPL Gu1Ixhm8V9mRSVAQc9qyzJCyrkjjKn4QgaolOAuI9iCKggGMX46ha0TQ7DJyR8Uw EhecbpzxObl7EGtxtXSb91ZYY5fL9DRIIHX4reN2hY42Q7fiHPBB6S75PjRmo+5h 2f/tAb2GhlfYOBCf/QlT/hBCyM8aM0X5dqF+CUcyivWHBumbiI7mA1uuUXoOrDfM ahIsl476qYQLNHg0jVieIch+/e+qmXgsouGl+2MQUgfrv6YMss6OVA6CktrnVr/+ bZtu3gFSXLlLOokBnHKNark= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:51 2024 by rpki-client on console-ams.rpki-client.org