$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FA682FD8984111EB9E7E9242C4F9AE02.roa File: FA682FD8984111EB9E7E9242C4F9AE02.roa (raw, json) Hash identifier: IrOgFn6sEiAQRvGgvhJpbqNy7Fl8xWvim9rIy0t2QDw= Subject key identifier: 35:55:98:13:B1:C8:4D:38:16:6D:E6:AE:D2:61:69:71:F9:27:D0:9A Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6C43 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FA682FD8984111EB9E7E9242C4F9AE02.roa Signing time: Wed 10 May 2023 16:23:41 +0000 ROA not before: Wed 10 May 2023 16:23:41 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136286 IP address blocks: 103.85.124.0/22 maxlen: 24 103.167.94.0/23 maxlen: 24 2407:3840::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27715 (0x6c43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:23:41 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc50c-a5ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:65:c0:42:62:35:b7:ec:05:68:35:08:db:70: 52:20:1f:bd:d1:c8:17:19:28:58:23:99:66:37:ba: a5:67:a7:9f:3e:1f:55:94:d6:69:df:c0:8c:85:19: b2:02:23:3a:8f:9c:a6:7d:21:58:14:23:c8:58:04: 2f:a2:b1:3a:62:59:1a:1f:b5:8a:86:29:f5:c3:74: 91:70:e7:8e:68:8f:a8:a3:20:93:51:8f:76:3d:94: 43:e6:d1:b1:d3:0d:f6:7d:ad:b3:fd:53:d3:d3:67: 27:12:8e:d2:98:0d:d6:6b:e0:43:1c:ca:d7:39:21: 49:9a:f4:00:d2:60:53:38:6b:a6:aa:91:8e:b0:2e: 07:ba:36:91:1e:25:7d:37:9a:7c:75:f0:7b:ad:30: d4:21:1b:b9:bd:22:cc:26:42:bf:4a:b2:df:27:39: 6b:40:9f:bd:4b:73:75:06:1a:47:d0:e1:f7:5e:d8: 58:16:9e:28:ec:bc:fe:9f:ad:75:02:64:82:e0:65: 70:13:d1:44:91:29:05:66:3a:68:19:e4:a8:85:48: e5:7e:a7:30:f3:7c:4e:09:21:e6:73:95:bf:a1:ae: 3b:7a:e7:01:53:ee:11:0c:89:a5:bb:f7:af:e4:fd: e8:b1:b8:54:ff:46:e4:c8:99:b1:bb:5e:1c:ba:2f: 1e:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:55:98:13:B1:C8:4D:38:16:6D:E6:AE:D2:61:69:71:F9:27:D0:9A X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FA682FD8984111EB9E7E9242C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.85.124.0/22 103.167.94.0/23 IPv6: 2407:3840::/32 Signature Algorithm: sha256WithRSAEncryption 29:6f:25:f4:25:fa:18:e8:1f:38:1c:ad:a7:95:8d:f4:72:83: 9a:d0:e4:e8:f0:30:f0:d8:a0:96:23:43:f6:b9:24:9f:3a:b3: fd:88:29:b2:08:29:ec:f3:82:dd:9c:2b:5d:5b:cc:99:49:ba: d9:d2:df:f6:ab:60:50:86:8c:81:1e:39:5b:6d:cd:fe:3e:0e: 17:ee:7b:47:c8:cb:05:85:52:9b:25:e2:56:58:9d:f9:90:3f: 88:c8:75:76:c6:6a:36:4a:9c:b8:b6:75:22:75:1a:3d:84:95: 64:5c:a6:d2:59:68:2f:45:0f:82:7b:53:bd:ce:8a:d5:35:35: 34:61:7f:b1:66:1c:3f:82:7d:35:79:5c:d6:1e:aa:64:5e:d3: 90:05:38:2b:3f:a0:b0:59:e8:13:21:c4:00:27:81:98:d8:15: 89:fb:19:08:cd:3e:75:71:33:a3:f8:eb:7c:55:b1:16:05:89: 3a:a0:3c:3c:91:89:63:eb:0e:be:7f:36:fb:df:43:9e:d9:89: 0e:a2:1c:a5:eb:48:48:af:1d:65:1e:ca:7d:85:96:4e:ed:19: eb:69:fd:0f:c1:75:22:4d:09:8f:34:4d:bf:60:17:e3:f9:76: e0:11:9b:7b:5a:f9:b0:a1:8c:e0:20:d6:16:ab:50:6c:3b:ed: 17:63:a9:eb -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICbEMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyMzQxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzUwYy1hNWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu2XAQmI1t+wFaDUI23BSIB+90cgXGShYI5lmN7qlZ6efPh9VlNZp38CMhRmy AiM6j5ymfSFYFCPIWAQvorE6YlkaH7WKhin1w3SRcOeOaI+ooyCTUY92PZRD5tGx 0w32fa2z/VPT02cnEo7SmA3Wa+BDHMrXOSFJmvQA0mBTOGumqpGOsC4HujaRHiV9 N5p8dfB7rTDUIRu5vSLMJkK/SrLfJzlrQJ+9S3N1BhpH0OH3XthYFp4o7Lz+n611 AmSC4GVwE9FEkSkFZjpoGeSohUjlfqcw83xOCSHmc5W/oa47eucBU+4RDImlu/ev 5P3osbhU/0bkyJmxu14cui8eLQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFDVVmBOx yE04Fm3mrtJhaXH5J9CaMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRkE2ODJGRDg5 ODQxMTFFQjlFN0U5MjQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnVXwDBAFnp14wDQQCAAIwBwMFACQHOEAwDQYJKoZIhvcN AQELBQADggEBAClvJfQl+hjoHzgcraeVjfRyg5rQ5OjwMPDYoJYjQ/a5JJ86s/2I KbIIKezzgt2cK11bzJlJutnS3/arYFCGjIEeOVttzf4+Dhfue0fIywWFUpsl4lZY nfmQP4jIdXbGajZKnLi2dSJ1Gj2ElWRcptJZaC9FD4J7U73OitU1NTRhf7FmHD+C fTV5XNYeqmRe05AFOCs/oLBZ6BMhxAAngZjYFYn7GQjNPnVxM6P463xVsRYFiTqg PDyRiWPrDr5/NvvfQ57ZiQ6iHKXrSEivHWUeyn2Flk7tGetp/Q/BdSJNCY80Tb9g F+P5duARm3ta+bChjOAg1harUGw77Rdjqes= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:51 2024 by rpki-client on console-ams.rpki-client.org