$ rpki-client -vvf rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/7CDBE740C7FD11EAB795396AC4F9AE02.roa File: 7CDBE740C7FD11EAB795396AC4F9AE02.roa (raw, json) Hash identifier: p0a0nQBisH4VKwtpLEiKDNLpUVAu9yIvpOIZZoB51RU= Subject key identifier: FF:CE:B5:C0:4E:E0:D8:83:B1:45:AE:A6:9F:79:79:9A:F2:F3:C7:9C Certificate issuer: /CN=A918EBC3/serialNumber=AC56070DBE5EE6DBBF6711973847233127917A2F Certificate serial: 0810 Authority key identifier: AC:56:07:0D:BE:5E:E6:DB:BF:67:11:97:38:47:23:31:27:91:7A:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFYHDb5e5tu_ZxGXOEcjMSeRei8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/7CDBE740C7FD11EAB795396AC4F9AE02.roa Signing time: Fri 20 Dec 2024 20:39:13 +0000 ROA not before: Fri 20 Dec 2024 20:39:13 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 135060 IP address blocks: 103.126.144.0/22 maxlen: 22 103.126.144.0/24 maxlen: 24 103.126.145.0/24 maxlen: 24 103.126.146.0/24 maxlen: 24 103.126.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/rFYHDb5e5tu_ZxGXOEcjMSeRei8.crl rsync://rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/rFYHDb5e5tu_ZxGXOEcjMSeRei8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFYHDb5e5tu_ZxGXOEcjMSeRei8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 18:52:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2064 (0x810) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EBC3 Validity Not Before: Dec 20 20:39:13 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6765d5f1-2aee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f0:ec:3a:36:72:ea:16:03:17:21:25:ad:dd: 0d:16:65:74:43:8e:ac:d9:37:6e:cc:32:f6:56:b5: d3:d1:84:43:a8:b0:ec:ab:d3:d9:d4:ce:41:a9:1c: f7:95:d3:92:d9:41:b6:67:da:91:b0:9e:06:41:3e: 42:b1:f4:a8:dd:e0:74:17:bf:16:f9:71:f5:b6:3a: d4:e2:1d:b5:09:07:ba:49:5a:f1:d2:0c:12:c2:f9: 5d:e5:d1:6b:6e:51:d3:3c:27:0e:41:a8:c4:9d:17: 95:1a:2f:ab:c9:98:1a:29:be:b8:d9:6d:45:d8:82: f6:52:04:a1:66:a2:00:6d:59:2f:9b:a2:e0:4c:f1: e9:79:76:0b:02:2d:39:ad:ac:64:00:6e:38:3f:cc: 00:96:ea:c3:11:fa:71:18:ce:ab:36:2e:31:3c:12: fc:60:00:8c:56:41:a0:c2:47:28:e2:fc:0a:15:35: 51:99:e9:d2:75:73:75:4b:16:68:5e:57:8b:1b:4e: 92:2a:76:ce:8a:df:fb:b0:23:c6:bb:ef:ee:3a:a7: 28:b4:38:b0:93:98:f5:00:72:a7:d1:cf:58:ca:74: a5:87:03:38:29:2c:eb:47:ef:0f:70:51:c9:9a:3f: 62:70:85:1a:63:8c:74:b7:c0:5f:d7:38:fe:42:f0: 46:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:CE:B5:C0:4E:E0:D8:83:B1:45:AE:A6:9F:79:79:9A:F2:F3:C7:9C X509v3 Authority Key Identifier: keyid:AC:56:07:0D:BE:5E:E6:DB:BF:67:11:97:38:47:23:31:27:91:7A:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/rFYHDb5e5tu_ZxGXOEcjMSeRei8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFYHDb5e5tu_ZxGXOEcjMSeRei8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/7CDBE740C7FD11EAB795396AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.126.144.0/22 Signature Algorithm: sha256WithRSAEncryption 3a:cd:12:e0:b0:18:a3:25:8e:45:11:2b:f3:ce:14:a2:a3:ec: b2:62:d1:4e:36:a9:72:bc:3a:9a:67:ef:d7:ec:81:eb:11:a7: ba:ee:d7:49:cc:25:d9:bd:dd:3c:4c:84:3a:ad:23:7d:f9:1d: 13:e4:f6:46:40:a5:5f:32:48:f6:ba:02:3b:40:f6:2d:99:fb: d1:19:ae:3e:cb:2e:47:b8:7f:60:d8:76:4b:4b:06:cf:fc:34: 54:4c:88:7f:79:3c:00:91:b2:82:c2:8d:08:cb:2c:20:55:59: 9e:ad:70:78:20:0a:26:65:5f:d8:5d:a0:45:5d:d2:7c:2d:1b: 68:7d:0a:dd:af:6f:cc:a4:6e:77:1b:bb:65:e6:7f:bd:63:79: 95:db:19:63:9e:d5:78:de:c2:25:c4:d6:af:89:6b:d4:32:a7: f6:42:30:2c:f2:36:6e:4f:1e:50:0e:74:f7:45:6a:c6:2f:15: a6:c0:4b:e3:1c:ee:33:d9:a1:c1:49:7d:2e:a0:24:40:61:8c: 47:ab:10:ef:b5:34:27:88:16:d4:95:99:ff:f9:65:fe:51:c7: e0:ff:40:c6:ae:60:c8:41:3a:80:49:ef:88:55:ee:99:62:92: 49:54:3a:21:88:ff:cc:8a:04:fa:2b:86:35:16:92:93:44:1b: 78:f1:49:8d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCBAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVCQzMxMTAvBgNVBAUTKEFDNTYwNzBEQkU1RUU2REJCRjY3MTE5NzM4NDcyMzMx Mjc5MTdBMkYwHhcNMjQxMjIwMjAzOTEzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY1ZDVmMS0yYWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPDsOjZy6hYDFyElrd0NFmV0Q46s2TduzDL2VrXT0YRDqLDsq9PZ1M5BqRz3 ldOS2UG2Z9qRsJ4GQT5CsfSo3eB0F78W+XH1tjrU4h21CQe6SVrx0gwSwvld5dFr blHTPCcOQajEnReVGi+ryZgaKb642W1F2IL2UgShZqIAbVkvm6LgTPHpeXYLAi05 raxkAG44P8wAlurDEfpxGM6rNi4xPBL8YACMVkGgwkco4vwKFTVRmenSdXN1SxZo XleLG06SKnbOit/7sCPGu+/uOqcotDiwk5j1AHKn0c9YynSlhwM4KSzrR+8PcFHJ mj9icIUaY4x0t8Bf1zj+QvBG8wIDAQABo4IClTCCApEwHQYDVR0OBBYEFP/OtcBO 4NiDsUWupp95eZry88ecMB8GA1UdIwQYMBaAFKxWBw2+Xubbv2cRlzhHIzEnkXov MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUJDMy8wRDQxRkU1Q0M3 RkMxMUVBOTYyQjAwNjlDNEY5QUUwMi9yRllIRGI1ZTV0dV9aeEdYT0Vjak1TZVJl aTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JGWUhEYjVlNXR1X1p4R1hPRWNqTVNlUmVpOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVCQzMvMEQ0MUZFNUNDN0ZDMTFFQTk2MkIwMDY5QzRGOUFFMDIvN0NEQkU3NDBD N0ZEMTFFQUI3OTUzOTZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnfpAwDQYJKoZIhvcNAQELBQADggEBADrNEuCwGKMljkUR K/POFKKj7LJi0U42qXK8Oppn79fsgesRp7ru10nMJdm93TxMhDqtI335HRPk9kZA pV8ySPa6AjtA9i2Z+9EZrj7LLke4f2DYdktLBs/8NFRMiH95PACRsoLCjQjLLCBV WZ6tcHggCiZlX9hdoEVd0nwtG2h9Ct2vb8ykbncbu2Xmf71jeZXbGWOe1XjewiXE 1q+Ja9Qyp/ZCMCzyNm5PHlAOdPdFasYvFabAS+Mc7jPZocFJfS6gJEBhjEerEO+1 NCeIFtSVmf/5Zf5Rx+D/QMauYMhBOoBJ74hV7plikklUOiGI/8yKBPorhjUWkpNE G3jxSY0= -----END CERTIFICATE-----Generated at Mon Apr 7 01:24:43 2025 by rpki-client