$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/05C1F768228D11EBA4371485C4F9AE02.roa File: 05C1F768228D11EBA4371485C4F9AE02.roa (raw, json) Hash identifier: YUXDVySX8YySAhMVhXqsH9lNBbBAIXJ7WeVpe4S022Y= Subject key identifier: 70:B5:06:1F:88:97:3C:34:71:E2:A9:72:92:32:F1:65:42:B2:03:66 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8BDE Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/05C1F768228D11EBA4371485C4F9AE02.roa Signing time: Thu 30 May 2024 16:08:57 +0000 ROA not before: Thu 30 May 2024 16:08:57 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 137671 IP address blocks: 103.129.72.0/22 maxlen: 24 2001:df6:9500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35806 (0x8bde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:08:57 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a499-7bb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:8d:db:5b:97:ae:14:6a:3d:00:ee:91:57:d9: e3:bf:e0:dc:e9:8b:53:9c:ad:c7:cf:52:26:6e:13: cf:6c:25:90:f5:5f:3b:00:31:fb:ae:fd:1e:cd:70: 25:f4:03:99:a6:aa:28:ef:e9:45:d1:b2:ac:d7:a9: 7f:e2:05:3b:d0:83:c0:08:89:94:be:bd:3b:22:71: 46:d1:82:0d:5a:0d:c6:c9:1a:19:9c:19:fa:46:8c: 5e:a6:d7:cf:59:b7:7c:95:e5:86:92:4d:54:4f:aa: 53:3e:f4:d8:90:8c:9b:61:29:59:4a:f0:50:22:db: db:04:72:0b:49:be:0f:67:70:7b:18:af:15:34:cd: 8e:4a:ca:d1:cb:a9:bb:67:0f:3a:3e:ca:b1:5d:d0: ae:c0:70:e1:1b:f9:69:d3:1e:be:3c:aa:bb:fb:f2: 13:be:7a:6d:c3:9b:a2:e1:6b:be:10:f4:c4:5e:b6: 65:f1:d4:ac:c1:b2:16:1f:6a:53:58:eb:eb:bf:ec: 76:2e:34:0d:19:07:c5:0f:e5:38:d2:40:2f:a8:36: 89:ce:c8:f9:48:3a:7f:45:8d:12:05:67:b4:71:46: 17:96:6a:ad:ef:88:71:d5:50:be:43:82:86:d9:7f: 98:57:cb:d9:a0:cb:65:7b:5a:32:dd:bd:fa:5f:1d: a7:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:B5:06:1F:88:97:3C:34:71:E2:A9:72:92:32:F1:65:42:B2:03:66 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/05C1F768228D11EBA4371485C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.72.0/22 IPv6: 2001:df6:9500::/48 Signature Algorithm: sha256WithRSAEncryption 51:6f:c3:37:d4:99:70:a3:56:39:6d:61:4b:2b:12:c1:96:35: 57:c5:53:2a:a4:74:f2:b5:f4:90:94:86:86:4d:a4:34:81:53: ce:3b:cd:2d:48:70:7d:66:34:14:7b:10:38:f1:4c:9e:03:ed: 52:96:28:9b:ba:7c:45:72:cf:f6:1c:70:08:97:b3:2a:c2:41: cb:44:1f:2d:38:d7:73:ea:5e:0f:29:2f:b1:10:e9:82:b1:8d: b3:c3:aa:a9:20:7c:8a:ad:1f:77:d3:f4:c4:74:c6:21:d6:34: 0b:df:24:f2:d3:2a:56:83:22:a6:22:e6:d8:34:60:60:28:14: 52:4d:69:74:e5:b2:df:2d:8d:db:29:56:51:38:e7:52:32:4a: 46:5f:dc:97:94:6a:49:7f:d4:a6:e7:da:c1:c5:51:51:20:dd: 9d:5b:e1:0b:f6:32:01:ec:67:b8:34:5e:14:0b:35:c4:bd:96: 35:22:a9:88:e0:d8:b5:72:e1:e0:57:f3:81:f7:5d:4a:5e:c8: 63:c8:75:6b:26:68:90:8d:59:7e:13:0c:0b:ad:b4:4a:43:e2: 83:58:28:e8:33:7b:78:d5:24:71:96:24:19:15:35:2f:55:66: 3c:6a:7e:83:cf:c8:26:4c:c1:b4:39:00:c4:71:c9:3c:85:6d: c5:33:04:2c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDAIveMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MDg1N1oXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE0OTktN2JiMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOuN21uXrhRqPQDukVfZ47/g3OmLU5ytx89SJm4Tz2wlkPVfOwAx+679Hs1w JfQDmaaqKO/pRdGyrNepf+IFO9CDwAiJlL69OyJxRtGCDVoNxskaGZwZ+kaMXqbX z1m3fJXlhpJNVE+qUz702JCMm2EpWUrwUCLb2wRyC0m+D2dwexivFTTNjkrK0cup u2cPOj7KsV3QrsBw4Rv5adMevjyqu/vyE756bcObouFrvhD0xF62ZfHUrMGyFh9q U1jr67/sdi40DRkHxQ/lONJAL6g2ic7I+Ug6f0WNEgVntHFGF5Zqre+IcdVQvkOC htl/mFfL2aDLZXtaMt29+l8dp8cCAwEAAaOCAqYwggKiMB0GA1UdDgQWBBRwtQYf iJc8NHHiqXKSMvFlQrIDZjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzA1QzFGNzY4 MjI4RDExRUJBNDM3MTQ4NUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQCZ4FIMA8EAgACMAkDBwAgAQ32lQAwDQYJKoZIhvcNAQEL BQADggEBAFFvwzfUmXCjVjltYUsrEsGWNVfFUyqkdPK19JCUhoZNpDSBU847zS1I cH1mNBR7EDjxTJ4D7VKWKJu6fEVyz/YccAiXsyrCQctEHy0413PqXg8pL7EQ6YKx jbPDqqkgfIqtH3fT9MR0xiHWNAvfJPLTKlaDIqYi5tg0YGAoFFJNaXTlst8tjdsp VlE451IySkZf3JeUakl/1Kbn2sHFUVEg3Z1b4Qv2MgHsZ7g0XhQLNcS9ljUiqYjg 2LVy4eBX84H3XUpeyGPIdWsmaJCNWX4TDAuttEpD4oNYKOgze3jVJHGWJBkVNS9V ZjxqfoPPyCZMwbQ5AMRxyTyFbcUzBCw= -----END CERTIFICATE-----Generated at Fri Nov 22 11:47:31 2024 by rpki-client on console-ams.rpki-client.org