$ rpki-client -vvf rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/18DC0A381C0311EE9B0F2938C4F9AE02.roa File: 18DC0A381C0311EE9B0F2938C4F9AE02.roa (raw, json) Hash identifier: 0BcdM9lm2dAvyx19nxI7WV2RhXBC6HkEFA/hF6vPu9w= Subject key identifier: CF:6E:93:05:BA:1D:0B:EC:91:E7:E0:70:88:7C:C0:4C:14:0A:09:63 Certificate issuer: /CN=A91C572B/serialNumber=DF79C3BA015261E3AC843239CE47035901D66A94 Certificate serial: 0D Authority key identifier: DF:79:C3:BA:01:52:61:E3:AC:84:32:39:CE:47:03:59:01:D6:6A:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33nDugFSYeOshDI5zkcDWQHWapQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/18DC0A381C0311EE9B0F2938C4F9AE02.roa Signing time: Thu 06 Jul 2023 13:43:32 +0000 ROA not before: Thu 06 Jul 2023 13:43:32 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 147308 IP address blocks: 103.225.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/33nDugFSYeOshDI5zkcDWQHWapQ.crl rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/33nDugFSYeOshDI5zkcDWQHWapQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33nDugFSYeOshDI5zkcDWQHWapQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 06:54:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C572B/serialNumber=DF79C3BA015261E3AC843239CE47035901D66A94 Validity Not Before: Jul 6 13:43:32 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a6c504-83fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:d9:19:48:a0:ca:09:2e:a9:e8:90:af:2b:2f: 30:f9:42:97:21:8d:9a:9a:6b:b1:8f:c6:96:f5:ab: 7a:84:3b:d2:4c:00:81:ae:fe:c3:dd:ae:94:61:98: 14:d3:43:a8:11:f6:61:1c:15:27:e4:8f:ec:cc:95: 3d:1e:48:34:b9:8e:c0:13:c8:b7:71:3c:3e:34:72: 16:f3:04:07:3d:28:48:e9:cf:cc:ea:71:e0:c3:cb: 2d:fe:14:0f:b5:2a:6c:bb:ec:31:35:14:fc:72:53: 89:92:56:19:fb:02:11:47:73:a5:5c:96:d7:d1:55: 18:fe:89:e4:29:4d:31:e8:ae:5e:c2:af:d1:e5:5f: 8c:d5:31:7f:8e:5c:e1:dd:11:bf:a1:c4:6d:49:83: cc:0f:c5:dc:6e:49:1f:31:70:28:fc:ca:17:e3:26: 7e:9c:07:d8:90:93:97:89:6e:cf:ca:75:18:83:e7: f1:1b:00:61:31:f1:d1:0c:a7:d3:92:02:58:89:f2: 7a:cc:c4:4e:78:5d:16:ca:90:b1:18:eb:da:d4:c5: af:be:46:0d:78:94:ca:11:7c:a4:a4:4e:bb:b0:04: 59:54:f3:90:34:63:99:d3:e1:1d:31:ec:3e:78:27: 05:d5:d3:91:9c:06:5c:99:a7:b8:a7:55:a2:a0:f9: b5:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:6E:93:05:BA:1D:0B:EC:91:E7:E0:70:88:7C:C0:4C:14:0A:09:63 X509v3 Authority Key Identifier: keyid:DF:79:C3:BA:01:52:61:E3:AC:84:32:39:CE:47:03:59:01:D6:6A:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/33nDugFSYeOshDI5zkcDWQHWapQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33nDugFSYeOshDI5zkcDWQHWapQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/18DC0A381C0311EE9B0F2938C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.225.218.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:e6:8d:e5:72:0f:5d:fd:d5:ce:8d:6c:4c:43:d1:34:a0:ec: 05:9e:3a:80:ac:e9:33:a9:26:67:b0:13:1e:e8:9f:6d:f9:e3: 13:73:6f:1d:37:6d:7e:46:ab:b8:ba:9f:14:dc:10:1e:31:02: 3b:47:2b:8c:8b:45:c9:3f:b5:6c:cd:89:e9:cf:ab:4d:37:3a: 93:59:1a:dd:75:c7:39:bb:77:e0:c8:1b:29:38:9d:96:b9:46: 67:b5:33:8d:7a:86:6f:59:fc:82:c5:fb:85:ac:e4:b3:86:14: de:83:97:ea:47:db:b2:b2:e5:5d:98:9e:3b:55:a9:f0:b6:e8: 23:5a:d5:29:ee:0b:8d:c4:cf:73:88:78:f9:0e:e4:61:9d:25: fd:b7:ef:b3:59:ac:fe:38:28:60:6e:ad:75:fd:c3:6b:28:3b: 93:7e:b2:2a:75:d6:c9:a4:7c:38:98:ca:29:f7:f7:86:c0:5d: 1b:35:bd:4b:19:8a:47:8d:f1:e0:5f:e7:f9:d2:a8:40:10:c0: f3:20:ad:c8:6f:2d:d8:6d:45:12:0d:f8:06:85:f3:05:28:d3: 77:0a:01:cd:58:05:55:55:80:e7:43:73:c1:1b:d0:6c:44:a2: 23:8a:61:72:0a:7b:91:90:5e:de:32:7d:de:02:99:a4:a1:ca: 1c:e2:18:ef -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NTcyQjExMC8GA1UEBRMoREY3OUMzQkEwMTUyNjFFM0FDODQzMjM5Q0U0NzAzNTkw MUQ2NkE5NDAeFw0yMzA3MDYxMzQzMzJaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0YTZjNTA0LTgzZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDl2RlIoMoJLqnokK8rLzD5QpchjZqaa7GPxpb1q3qEO9JMAIGu/sPdrpRhmBTT Q6gR9mEcFSfkj+zMlT0eSDS5jsATyLdxPD40chbzBAc9KEjpz8zqceDDyy3+FA+1 Kmy77DE1FPxyU4mSVhn7AhFHc6VcltfRVRj+ieQpTTHorl7Cr9HlX4zVMX+OXOHd Eb+hxG1Jg8wPxdxuSR8xcCj8yhfjJn6cB9iQk5eJbs/KdRiD5/EbAGEx8dEMp9OS AliJ8nrMxE54XRbKkLEY69rUxa++Rg14lMoRfKSkTruwBFlU85A0Y5nT4R0x7D54 JwXV05GcBlyZp7inVaKg+bUBAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUz26TBbod C+yR5+BwiHzATBQKCWMwHwYDVR0jBBgwFoAU33nDugFSYeOshDI5zkcDWQHWapQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1NzJCL0Y3RTVDMTY4MEU5 QTExRUVBNjQ0OUU3MUM0RjlBRTAyLzMzbkR1Z0ZTWWVPc2hESTV6a2NEV1FIV2Fw US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMzNuRHVnRlNZZU9zaERJNXprY0RXUUhXYXBRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTcyQi9GN0U1QzE2ODBFOUExMUVFQTY0NDlFNzFDNEY5QUUwMi8xOERDMEEzODFD MDMxMUVFOUIwRjI5MzhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGfh2jANBgkqhkiG9w0BAQsFAAOCAQEAf+aN5XIPXf3Vzo1s TEPRNKDsBZ46gKzpM6kmZ7ATHuifbfnjE3NvHTdtfkaruLqfFNwQHjECO0crjItF yT+1bM2J6c+rTTc6k1ka3XXHObt34MgbKTidlrlGZ7UzjXqGb1n8gsX7hazks4YU 3oOX6kfbsrLlXZieO1Wp8LboI1rVKe4LjcTPc4h4+Q7kYZ0l/bfvs1ms/jgoYG6t df3Dayg7k36yKnXWyaR8OJjKKff3hsBdGzW9SxmKR43x4F/n+dKoQBDA8yCtyG8t 2G1FEg34BoXzBSjTdwoBzVgFVVWA50NzwRvQbESiI4phcgp7kZBe3jJ93gKZpKHK HOIY7w== -----END CERTIFICATE-----Generated at Wed May 29 09:16:49 2024 by rpki-client on console-fra.rpki-client.org