$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FB1CEEA4511E11EDB9A4DC87C4F9AE02.roa File: FB1CEEA4511E11EDB9A4DC87C4F9AE02.roa (raw, json) Hash identifier: o3c9YYl8yBm39VSs7ZNYiX53klp+SMgfCz3I5NB7gt8= Subject key identifier: CB:04:D5:60:4C:8C:6C:66:8F:26:8C:79:3D:96:61:9D:66:43:91:AE Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6EFD Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FB1CEEA4511E11EDB9A4DC87C4F9AE02.roa Signing time: Wed 10 May 2023 16:36:38 +0000 ROA not before: Wed 10 May 2023 16:36:38 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141793 IP address blocks: 103.164.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28413 (0x6efd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:36:38 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc816-52f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:7a:0b:4c:f6:fb:98:3f:e3:74:6f:5f:a8:ed: 83:21:a4:fb:b4:84:bd:60:4b:1d:5c:39:94:a2:95: 18:c3:85:c5:e5:44:69:33:c4:95:e9:6a:27:b1:39: 1a:43:ce:90:93:95:b3:85:4f:86:f9:20:d2:c8:88: 79:b1:f6:3e:02:bb:71:fc:4e:23:d6:b8:7c:c9:07: d3:25:c3:d5:bb:99:da:22:41:d9:0e:de:7f:d4:68: f1:8a:d0:78:ce:04:92:7b:41:fb:ed:52:ea:7f:65: 20:ea:7e:da:43:58:13:05:66:b5:ce:70:76:2a:62: 6d:26:8f:f0:50:84:c3:25:92:07:3b:6a:c6:14:43: ae:ad:b2:1a:b1:e2:b5:d2:ea:da:e9:d5:67:38:32: e1:b2:b2:60:79:cd:4a:5c:da:a8:98:2a:f2:ab:1a: 93:f6:bd:b8:2d:04:70:5f:ac:fc:d8:d7:fc:1a:9d: 25:05:7c:c2:a6:4a:1a:22:9a:d3:8b:18:58:e9:fe: b3:63:ac:77:7e:78:bb:33:37:69:02:15:f1:fe:e7: 73:20:b7:86:df:ca:7b:b1:6e:cf:e7:88:c0:5d:39: 4e:0f:a0:be:c0:eb:27:64:95:60:69:c1:f1:09:38: 11:17:b7:a7:ab:ef:85:1c:50:fa:cb:68:97:0d:00: 32:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:04:D5:60:4C:8C:6C:66:8F:26:8C:79:3D:96:61:9D:66:43:91:AE X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FB1CEEA4511E11EDB9A4DC87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.164.202.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:68:20:3e:94:3c:ef:18:50:15:76:34:f1:39:d5:e3:70:07: eb:23:6f:16:2d:bd:c5:03:0d:94:ef:aa:70:2f:1f:06:40:63: f1:db:c8:33:db:45:bb:8c:ec:7e:f6:9c:2a:5d:83:00:8a:04: 3e:61:a4:8d:55:66:93:20:b5:1a:2e:c2:c9:66:7b:e0:9d:2f: 54:33:75:3c:58:e4:87:e4:b2:55:0f:e0:47:33:4a:52:b9:81: 3e:f3:94:b6:a5:94:40:c4:3d:8e:8a:03:05:69:13:85:b7:fb: e0:66:7d:59:d1:d9:da:a7:16:86:40:be:5f:a0:91:45:be:af: ab:74:ba:ef:6d:ea:7b:a6:23:5f:e2:79:8b:c6:62:da:d1:ec: de:d1:0a:74:b0:ab:77:c5:c2:f7:ac:ba:af:af:39:f7:39:5d: 0b:35:1c:d5:67:55:2b:85:78:1a:45:57:c4:26:67:c5:76:1e: 0a:04:77:13:54:d2:23:40:3a:ff:29:db:de:ca:87:05:71:9a: 13:9f:92:44:f6:65:0a:7e:41:32:54:25:9c:03:db:f7:ed:29: 96:f4:a1:dc:0f:c7:86:72:22:78:a0:7b:f8:4e:23:90:00:22: 31:ad:b4:12:63:d0:f0:b0:8a:f2:da:e4:6c:7c:84:0d:25:4e: 38:bf:4d:10 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzNjM4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzgxNi01MmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8noLTPb7mD/jdG9fqO2DIaT7tIS9YEsdXDmUopUYw4XF5URpM8SV6WonsTka Q86Qk5WzhU+G+SDSyIh5sfY+Artx/E4j1rh8yQfTJcPVu5naIkHZDt5/1GjxitB4 zgSSe0H77VLqf2Ug6n7aQ1gTBWa1znB2KmJtJo/wUITDJZIHO2rGFEOurbIaseK1 0ura6dVnODLhsrJgec1KXNqomCryqxqT9r24LQRwX6z82Nf8Gp0lBXzCpkoaIprT ixhY6f6zY6x3fni7MzdpAhXx/udzILeG38p7sW7P54jAXTlOD6C+wOsnZJVgacHx CTgRF7enq++FHFD6y2iXDQAyXwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMsE1WBM jGxmjyaMeT2WYZ1mQ5GuMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRkIxQ0VFQTQ1 MTFFMTFFREI5QTREQzg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnpMowDQYJKoZIhvcNAQELBQADggEBADtoID6UPO8YUBV2 NPE51eNwB+sjbxYtvcUDDZTvqnAvHwZAY/HbyDPbRbuM7H72nCpdgwCKBD5hpI1V ZpMgtRouwslme+CdL1QzdTxY5IfkslUP4EczSlK5gT7zlLallEDEPY6KAwVpE4W3 ++BmfVnR2dqnFoZAvl+gkUW+r6t0uu9t6numI1/ieYvGYtrR7N7RCnSwq3fFwves uq+vOfc5XQs1HNVnVSuFeBpFV8QmZ8V2HgoEdxNU0iNAOv8p297KhwVxmhOfkkT2 ZQp+QTJUJZwD2/ftKZb0odwPx4ZyInige/hOI5AAIjGttBJj0PCwivLa5Gx8hA0l Tji/TRA= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:51 2024 by rpki-client on console-ams.rpki-client.org