$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FAE6AA2C326C11ED85CDB81DC4F9AE02.roa File: FAE6AA2C326C11ED85CDB81DC4F9AE02.roa (raw, json) Hash identifier: AKvqNN5cBXNOUlo1k5Zbc/E2w0lejGaa3C8PQw6lTI0= Subject key identifier: 4B:2F:4C:EE:E7:E1:42:23:CB:9A:96:C5:CB:A2:6E:B1:C9:0A:A1:DC Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6CB4 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FAE6AA2C326C11ED85CDB81DC4F9AE02.roa Signing time: Wed 10 May 2023 16:25:50 +0000 ROA not before: Wed 10 May 2023 16:25:50 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136706 IP address blocks: 103.99.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27828 (0x6cb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:25:50 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc58d-ca05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5a:86:e1:33:56:09:1c:5a:d7:f3:cd:35:a1: 28:07:6a:69:68:17:ed:7e:68:46:25:d7:40:df:dd: 2d:8b:da:89:0c:be:a6:ab:ef:c8:f1:f3:d5:e3:1d: e0:38:8d:66:f6:12:71:7f:0f:dc:09:09:64:c4:73: 79:d7:f2:6f:3c:3a:42:38:58:cf:a8:16:63:6c:36: 37:36:f6:45:9a:d8:fc:21:fc:f0:34:4f:d2:3b:1f: bd:62:99:16:93:33:77:0d:cb:17:2e:5b:56:04:1f: 49:c5:04:58:c5:2d:1d:03:c6:df:20:52:43:87:05: fc:fb:95:c1:18:b7:be:7d:29:c7:6e:45:2a:6a:b6: 30:98:be:cc:09:f2:79:46:73:59:46:74:8c:e4:b8: b6:34:7d:26:ac:0c:2b:11:f1:f1:b4:f9:10:61:62: 59:12:9b:fd:89:d2:29:9f:3a:b3:ff:f1:90:3c:c1: 9d:75:5b:3d:51:fe:c4:43:3b:d6:72:81:f9:4a:51: 56:c5:0d:bf:70:78:26:1b:25:d7:ee:a7:d7:76:2a: 50:e3:db:ec:b7:cc:96:65:6f:11:53:92:c9:3f:a5: ce:86:4e:43:4f:af:26:c4:a1:bd:53:80:78:51:af: 25:9d:38:20:81:92:a7:68:43:b0:62:1d:aa:5e:db: 91:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:2F:4C:EE:E7:E1:42:23:CB:9A:96:C5:CB:A2:6E:B1:C9:0A:A1:DC X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FAE6AA2C326C11ED85CDB81DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.188.0/22 Signature Algorithm: sha256WithRSAEncryption 4c:7b:af:6d:4d:a7:a5:87:cc:cd:9a:33:5c:de:f8:f2:37:f4: d1:db:ad:a5:17:09:83:3a:1c:10:84:f8:ba:09:f6:8e:eb:04: 04:18:e8:14:f8:cf:ed:cc:ba:04:83:10:b4:a6:96:18:62:d7: c3:a6:1d:42:ab:fe:ef:91:c0:39:41:1d:67:fc:2e:e9:af:b0: 3a:a3:d1:48:5e:93:f4:35:db:1e:3c:c6:27:08:3d:13:e6:fe: b2:4b:f8:47:52:ea:39:a5:9a:7d:f0:2e:57:64:74:6d:a6:f5: 45:56:e9:07:ae:57:de:6c:54:bc:bb:0c:fe:ef:a7:51:df:b2: e1:a9:ea:6d:eb:99:e1:bf:99:0e:8d:36:be:55:cc:b5:86:34: dd:c3:d4:86:0c:81:ea:0a:ec:8c:74:f3:fa:92:50:04:2d:0c: f5:b5:a8:c5:4e:c4:8b:94:f8:38:7a:6e:f9:02:45:34:d1:c2: 53:85:09:87:75:1a:98:b5:a4:b3:6c:80:7f:e7:4f:dd:d9:fb: be:a7:d9:b6:1e:db:08:d4:e9:b6:f6:31:9e:c0:91:c4:fe:60: 2f:c7:9e:28:0b:05:c4:a5:51:42:62:39:21:c3:0c:32:70:cf: 70:a7:a2:fa:9d:c3:b7:52:ef:af:31:b7:6c:9c:4d:dc:9e:36: e7:9e:f1:54 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbLQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNTUwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzU4ZC1jYTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFqG4TNWCRxa1/PNNaEoB2ppaBftfmhGJddA390ti9qJDL6mq+/I8fPV4x3g OI1m9hJxfw/cCQlkxHN51/JvPDpCOFjPqBZjbDY3NvZFmtj8IfzwNE/SOx+9YpkW kzN3DcsXLltWBB9JxQRYxS0dA8bfIFJDhwX8+5XBGLe+fSnHbkUqarYwmL7MCfJ5 RnNZRnSM5Li2NH0mrAwrEfHxtPkQYWJZEpv9idIpnzqz//GQPMGddVs9Uf7EQzvW coH5SlFWxQ2/cHgmGyXX7qfXdipQ49vst8yWZW8RU5LJP6XOhk5DT68mxKG9U4B4 Ua8lnTgggZKnaEOwYh2qXtuRZwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEsvTO7n 4UIjy5qWxcuibrHJCqHcMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRkFFNkFBMkMz MjZDMTFFRDg1Q0RCODFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnY7wwDQYJKoZIhvcNAQELBQADggEBAEx7r21Np6WHzM2a M1ze+PI39NHbraUXCYM6HBCE+LoJ9o7rBAQY6BT4z+3MugSDELSmlhhi18OmHUKr /u+RwDlBHWf8LumvsDqj0Uhek/Q12x48xicIPRPm/rJL+EdS6jmlmn3wLldkdG2m 9UVW6QeuV95sVLy7DP7vp1HfsuGp6m3rmeG/mQ6NNr5VzLWGNN3D1IYMgeoK7Ix0 8/qSUAQtDPW1qMVOxIuU+Dh6bvkCRTTRwlOFCYd1Gpi1pLNsgH/nT93Z+76n2bYe 2wjU6bb2MZ7AkcT+YC/HnigLBcSlUUJiOSHDDDJwz3Cnovqdw7dS768xt2ycTdye Nuee8VQ= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:51 2024 by rpki-client on console-ams.rpki-client.org