$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0089F59461DB11EE98C01930C4F9AE02.roa File: 0089F59461DB11EE98C01930C4F9AE02.roa (raw, json) Hash identifier: dNpBzYKYcfUfJizW52iQrHETZBSvVpETixwOvX/2ozk= Subject key identifier: AC:A1:98:4C:B3:45:D7:6B:61:39:7B:B9:B7:2E:C6:58:FA:6A:03:C4 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8A3E Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0089F59461DB11EE98C01930C4F9AE02.roa Signing time: Thu 30 May 2024 16:02:11 +0000 ROA not before: Thu 30 May 2024 16:02:11 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 135268 IP address blocks: 103.120.238.0/24 maxlen: 24 103.120.252.0/24 maxlen: 24 103.120.253.0/24 maxlen: 24 103.120.254.0/24 maxlen: 24 103.120.255.0/24 maxlen: 24 2001:df2:5240::/48 maxlen: 48 2001:df2:5241::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 12:05:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35390 (0x8a3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:02:11 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a303-40a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b5:12:d1:04:3e:57:d5:cb:ae:af:4a:be:13: cf:76:63:54:fd:6c:b6:a2:af:d5:ed:e2:f8:94:49: 81:50:a9:86:1c:21:36:72:e7:1c:a3:93:ff:56:a8: 85:ba:d6:64:1d:db:dc:94:42:6a:5d:81:c4:1d:3f: 2a:df:cb:50:2b:33:ab:d6:ac:52:25:15:6f:a0:0f: d3:93:9d:67:88:a7:2a:4b:2d:95:25:c9:55:84:e9: 3e:7a:35:8b:7b:9a:34:df:14:38:e8:07:94:b3:df: c6:67:7a:8c:8a:a7:e8:76:9a:8b:b4:7f:11:52:7f: 8d:e8:1a:72:45:d2:04:25:8d:84:4e:0f:ac:94:0e: 8a:6e:8b:d8:85:ad:dd:0d:a1:c2:74:93:36:fd:cd: ac:e6:70:9a:5d:08:c1:e8:b9:c1:cc:4c:52:17:69: e0:8f:8d:02:09:ad:ff:2d:5a:81:3c:ae:42:5c:b3: 28:8b:15:39:36:54:27:3a:b1:e4:18:78:6f:af:00: ad:5e:9b:76:24:16:3f:47:89:8c:83:b4:55:36:7d: 5e:d1:ee:3a:b9:98:93:ab:f5:6e:6d:80:aa:19:89: c7:93:7e:92:91:40:25:cc:94:68:db:91:3c:52:ab: 9b:0c:d4:21:7d:36:4e:21:91:84:b9:0c:4c:0c:7a: ba:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:A1:98:4C:B3:45:D7:6B:61:39:7B:B9:B7:2E:C6:58:FA:6A:03:C4 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0089F59461DB11EE98C01930C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.238.0/24 103.120.252.0/22 IPv6: 2001:df2:5240::/47 Signature Algorithm: sha256WithRSAEncryption 9c:c1:27:90:03:7b:d9:2d:d4:05:59:f2:3d:bf:01:7c:bc:fb: 32:1c:26:7a:67:c0:9a:a0:d5:50:6f:5a:e6:93:75:be:83:c1: fc:7d:51:1f:43:2e:45:b6:ff:b8:0e:92:dd:7e:63:9a:2a:81: 7a:61:82:f7:d8:e1:43:81:c6:cb:34:d2:90:bc:6a:50:2c:e4: da:77:1b:1c:83:17:9c:c8:65:a5:30:84:92:41:66:41:ff:21: 73:38:04:08:1f:51:bd:7e:0c:53:a5:ce:4c:b4:f5:8c:41:f8: a9:92:b1:18:7f:96:b2:f1:0b:ed:7a:85:26:be:c4:93:ed:1f: b1:12:d5:e5:3c:ed:8f:35:68:5e:fa:e7:5e:93:37:47:c5:df: 0f:81:46:78:dc:4c:a8:af:83:07:c8:09:49:62:99:9e:5c:7a: 9a:3c:f7:89:73:9d:9a:37:a0:29:f8:a2:d6:a2:30:93:07:c4: f7:33:7e:81:75:2c:90:a4:07:ef:a3:48:53:9b:7f:0d:7f:2b: 95:20:45:7d:96:9f:46:9c:55:15:44:3f:d4:cb:c0:32:81:10: 62:5d:e9:44:32:ea:93:8c:4d:43:c5:22:fe:ed:ef:22:01:09: 6d:6e:24:b4:f7:0f:e3:24:96:9b:13:39:90:8f:87:c3:96:28: 2f:99:c4:36 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgIDAIo+MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MDIxMVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGEzMDMtNDBhNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALK1EtEEPlfVy66vSr4Tz3ZjVP1stqKv1e3i+JRJgVCphhwhNnLnHKOT/1ao hbrWZB3b3JRCal2BxB0/Kt/LUCszq9asUiUVb6AP05OdZ4inKkstlSXJVYTpPno1 i3uaNN8UOOgHlLPfxmd6jIqn6Haai7R/EVJ/jegackXSBCWNhE4PrJQOim6L2IWt 3Q2hwnSTNv3NrOZwml0Iwei5wcxMUhdp4I+NAgmt/y1agTyuQlyzKIsVOTZUJzqx 5Bh4b68ArV6bdiQWP0eJjIO0VTZ9XtHuOrmYk6v1bm2AqhmJx5N+kpFAJcyUaNuR PFKrmwzUIX02TiGRhLkMTAx6unECAwEAAaOCAqwwggKoMB0GA1UdDgQWBBSsoZhM s0XXa2E5e7m3LsZY+moDxDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzAwODlGNTk0 NjFEQjExRUU5OEMwMTkzMEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDYGCCsGAQUFBwEHAQH/ BCcwJTASBAIAATAMAwQAZ3juAwQCZ3j8MA8EAgACMAkDBwEgAQ3yUkAwDQYJKoZI hvcNAQELBQADggEBAJzBJ5ADe9kt1AVZ8j2/AXy8+zIcJnpnwJqg1VBvWuaTdb6D wfx9UR9DLkW2/7gOkt1+Y5oqgXphgvfY4UOBxss00pC8alAs5Np3GxyDF5zIZaUw hJJBZkH/IXM4BAgfUb1+DFOlzky09YxB+KmSsRh/lrLxC+16hSa+xJPtH7ES1eU8 7Y81aF76516TN0fF3w+BRnjcTKivgwfICUlimZ5cepo894lznZo3oCn4otaiMJMH xPczfoF1LJCkB++jSFObfw1/K5UgRX2Wn0acVRVEP9TLwDKBEGJd6UQy6pOMTUPF Iv7t7yIBCW1uJLT3D+MklpsTOZCPh8OWKC+ZxDY= -----END CERTIFICATE-----Generated at Fri Nov 22 13:34:46 2024 by rpki-client on console-fra.rpki-client.org