$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FEFFE8722EE411EBB3A77328C4F9AE02.roa File: FEFFE8722EE411EBB3A77328C4F9AE02.roa (raw, json) Hash identifier: 2pfx/G8hl1GHBphE7P8vGj0DjMsj5L4jdSp24yFi4gE= Subject key identifier: 38:7D:1F:46:84:84:8A:ED:A3:3E:31:74:52:EE:6B:1C:A9:C5:9C:9C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6DF0 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FEFFE8722EE411EBB3A77328C4F9AE02.roa Signing time: Wed 10 May 2023 16:31:44 +0000 ROA not before: Wed 10 May 2023 16:31:44 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 139533 IP address blocks: 103.147.98.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28144 (0x6df0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:31:44 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc6f0-eff3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e5:a8:cb:68:b1:81:2e:7a:46:c5:1c:37:26: d4:21:c0:b9:0f:91:c6:e3:3f:27:aa:5e:c9:67:ef: c6:d3:00:3d:58:c8:3d:73:7c:10:05:87:26:23:46: eb:d0:12:dd:91:bf:ed:90:e4:e5:46:06:43:0b:7a: f3:fc:7e:7e:2d:1a:95:12:69:18:07:75:8f:20:13: 9b:3b:7d:6f:35:51:53:d9:0a:27:8a:66:2c:5e:67: dc:e1:ff:06:79:40:d2:c3:d7:28:8f:19:3a:8e:65: f3:5d:b5:8d:8a:7c:af:6e:36:32:0e:7c:f1:9e:6f: c7:be:ac:56:a4:67:44:1c:06:4f:9f:32:26:95:02: 17:3a:e3:35:9e:ff:bc:c2:ba:25:be:57:8c:50:fa: 7a:36:03:7a:4f:80:30:25:19:7b:44:93:83:d9:19: 85:0c:ce:4c:f0:5c:95:98:90:9b:fd:2f:80:c5:19: c7:b7:92:2c:26:23:f2:70:3c:d5:3c:16:a1:8f:7e: 2b:15:e5:92:23:45:21:d4:d7:d6:77:36:5f:e5:68: b3:d7:7f:92:64:50:bb:69:00:f3:be:08:ca:59:e2: 10:3c:0f:e3:97:88:7f:14:d1:4d:63:28:dc:e7:70: a7:4d:62:8e:bf:4a:c3:f1:f7:69:ef:72:e5:50:df: 56:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:7D:1F:46:84:84:8A:ED:A3:3E:31:74:52:EE:6B:1C:A9:C5:9C:9C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FEFFE8722EE411EBB3A77328C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.98.0/23 Signature Algorithm: sha256WithRSAEncryption 48:ac:37:32:f5:27:32:42:bd:85:e0:a2:8d:73:ae:6a:c4:1a: 0b:2a:39:c6:41:32:0e:a3:cc:92:80:52:0e:c4:f8:fe:77:b0: eb:9d:8c:7e:2a:05:13:6d:f7:86:ba:9c:ef:77:a6:75:83:a7: 1b:db:c7:9c:92:69:68:4d:9a:b8:e3:3f:f5:70:81:02:8b:c3: 46:53:00:0e:49:f1:a5:08:82:16:d1:53:f2:db:1f:fc:a9:c2: d5:c3:da:c3:b7:dd:71:ee:08:a8:6e:c6:c9:fb:fc:dc:75:51: 94:a5:fd:61:74:12:ef:25:66:d0:ba:44:5c:9f:53:99:34:57: e4:01:6d:d4:94:21:f3:eb:10:b5:a4:7b:c3:d1:75:f6:b0:95: db:d3:cd:ee:da:ea:7d:03:92:a7:4a:48:51:b7:56:73:b2:92: ce:04:d3:4e:2a:9a:9f:30:c8:2d:70:88:3b:b5:a0:37:f8:25: f1:77:27:74:7a:05:91:f5:91:06:74:82:f0:10:ce:89:1c:b1: 0b:90:2b:9d:39:51:06:0d:04:e2:8c:a9:d7:bd:cc:53:7d:9e: 8b:f2:58:07:36:6c:9b:9e:70:6e:4c:1a:8b:b6:ff:d9:46:fe: 67:49:34:78:4b:9a:b0:b9:c1:70:b0:1c:1a:c5:cc:56:da:99: 96:98:21:f2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzMTQ0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzZmMC1lZmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtuWoy2ixgS56RsUcNybUIcC5D5HG4z8nql7JZ+/G0wA9WMg9c3wQBYcmI0br 0BLdkb/tkOTlRgZDC3rz/H5+LRqVEmkYB3WPIBObO31vNVFT2QonimYsXmfc4f8G eUDSw9cojxk6jmXzXbWNinyvbjYyDnzxnm/HvqxWpGdEHAZPnzImlQIXOuM1nv+8 wrolvleMUPp6NgN6T4AwJRl7RJOD2RmFDM5M8FyVmJCb/S+AxRnHt5IsJiPycDzV PBahj34rFeWSI0Uh1NfWdzZf5Wiz13+SZFC7aQDzvgjKWeIQPA/jl4h/FNFNYyjc 53CnTWKOv0rD8fdp73LlUN9WJQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDh9H0aE hIrtoz4xdFLuaxypxZycMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRkVGRkU4NzIy RUU0MTFFQkIzQTc3MzI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnk2IwDQYJKoZIhvcNAQELBQADggEBAEisNzL1JzJCvYXg oo1zrmrEGgsqOcZBMg6jzJKAUg7E+P53sOudjH4qBRNt94a6nO93pnWDpxvbx5yS aWhNmrjjP/VwgQKLw0ZTAA5J8aUIghbRU/LbH/ypwtXD2sO33XHuCKhuxsn7/Nx1 UZSl/WF0Eu8lZtC6RFyfU5k0V+QBbdSUIfPrELWke8PRdfawldvTze7a6n0DkqdK SFG3VnOyks4E004qmp8wyC1wiDu1oDf4JfF3J3R6BZH1kQZ0gvAQzokcsQuQK505 UQYNBOKMqde9zFN9novyWAc2bJuecG5MGou2/9lG/mdJNHhLmrC5wXCwHBrFzFba mZaYIfI= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:51 2024 by rpki-client on console-ams.rpki-client.org