$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/06BED0EAE84111EA9243F081C4F9AE02.roa File: 06BED0EAE84111EA9243F081C4F9AE02.roa (raw, json) Hash identifier: LQlkcgPAmJjCcXGZHr7XLcucVRpSXxdXSj9xK2Yj1+Y= Subject key identifier: F7:54:3A:C6:08:21:24:D0:3D:E7:39:A6:E2:EB:45:24:5F:87:F3:EB Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 89C4 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/06BED0EAE84111EA9243F081C4F9AE02.roa Signing time: Thu 30 May 2024 16:00:13 +0000 ROA not before: Thu 30 May 2024 16:00:13 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 134862 IP address blocks: 103.207.12.0/22 maxlen: 22 103.207.12.0/24 maxlen: 24 103.207.13.0/24 maxlen: 24 103.207.14.0/24 maxlen: 24 103.207.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35268 (0x89c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:00:13 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a28d-7258 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:52:c1:0b:c3:ff:9c:9c:3d:d3:57:69:6d:ed: e7:db:5d:ad:a3:0b:fa:5b:3d:28:b2:5e:e8:60:06: 29:bc:8f:92:8b:c4:04:a4:e6:8b:42:0b:ec:5f:32: 2e:70:08:79:87:b3:dc:5f:1d:02:79:42:0d:a6:0b: 0f:e7:55:b2:a2:82:f7:d3:54:19:9a:3f:e8:5a:8c: 6a:4d:46:af:31:16:44:42:69:fb:f5:a2:dd:ac:e6: de:c1:31:16:75:7d:f4:6d:ee:5e:53:60:87:a5:6e: 18:27:9c:69:7f:ca:e0:ba:06:55:4c:f4:e5:cb:4f: c2:c1:33:41:3b:63:38:55:6d:e2:59:5f:d3:3f:c1: 8d:0c:28:9e:3c:45:12:29:dc:d4:4c:4d:f4:aa:cf: 09:69:fd:f7:80:5b:3b:cc:8e:32:06:5e:90:04:bb: ec:0c:b2:0d:9d:a4:73:85:84:91:a8:b0:a6:31:ab: ae:fc:04:eb:f7:91:7f:03:28:2e:22:8e:38:69:5b: a2:c4:a3:af:35:64:b6:30:b4:23:c8:a5:a2:83:0f: b7:47:97:ac:30:04:86:a5:32:a8:73:44:be:4a:5a: 15:06:05:1e:18:97:24:e8:f3:ef:a2:d2:d9:de:40: ba:7f:a1:f4:89:d1:a5:08:ab:da:2a:7d:23:23:b3: c1:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:54:3A:C6:08:21:24:D0:3D:E7:39:A6:E2:EB:45:24:5F:87:F3:EB X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/06BED0EAE84111EA9243F081C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.207.12.0/22 Signature Algorithm: sha256WithRSAEncryption 16:ce:26:ad:c0:1c:00:aa:dd:e4:5a:1b:04:fc:48:f1:7b:4d: 6f:ec:35:d8:67:af:54:53:92:54:36:9e:1e:aa:75:2d:59:af: a8:f8:48:38:3c:f9:42:89:34:db:32:0c:4b:fd:20:35:c8:ed: 5c:dd:42:d1:b2:06:fb:be:07:6e:e7:e4:18:9f:8d:6e:96:74: 45:67:43:eb:d3:c7:95:1e:4e:d1:48:43:25:12:d2:fc:09:b6: 53:58:e7:f2:bf:3d:9a:28:cc:31:00:fb:0f:53:70:f4:97:07: f3:76:71:d0:5d:1a:c8:03:c5:f4:13:d4:cc:47:05:47:e4:fc: 85:4d:94:b1:2c:9a:f6:75:d5:69:94:f7:b2:bb:72:77:c7:cf: 7a:8a:3d:df:ae:cc:ab:d0:c0:c7:55:94:77:cb:81:5d:e0:f4: 11:8e:91:d2:ab:1e:98:98:93:63:b0:ce:d2:84:2c:ca:ed:0e: 84:ab:fd:82:c8:e0:2f:3a:61:e4:4d:d3:59:ff:df:01:4d:23: 3b:78:17:e9:ed:58:0f:8e:4e:73:85:eb:ec:ed:ef:d0:0f:dc: f8:ab:34:2b:1c:2b:6f:76:9f:2f:06:ab:f3:52:6e:74:81:aa: 24:54:20:0f:ae:d6:58:43:51:cc:67:be:36:49:04:3e:26:96: b4:62:b4:75 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAInEMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MDAxM1oXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGEyOGQtNzI1ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKxSwQvD/5ycPdNXaW3t59tdraML+ls9KLJe6GAGKbyPkovEBKTmi0IL7F8y LnAIeYez3F8dAnlCDaYLD+dVsqKC99NUGZo/6FqMak1GrzEWREJp+/Wi3azm3sEx FnV99G3uXlNgh6VuGCecaX/K4LoGVUz05ctPwsEzQTtjOFVt4llf0z/BjQwonjxF Einc1ExN9KrPCWn994BbO8yOMgZekAS77AyyDZ2kc4WEkaiwpjGrrvwE6/eRfwMo LiKOOGlbosSjrzVktjC0I8ilooMPt0eXrDAEhqUyqHNEvkpaFQYFHhiXJOjz76LS 2d5Aun+h9InRpQir2ip9IyOzwWkCAwEAAaOCApUwggKRMB0GA1UdDgQWBBT3VDrG CCEk0D3nOabi60UkX4fz6zAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzA2QkVEMEVB RTg0MTExRUE5MjQzRjA4MUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQCZ88MMA0GCSqGSIb3DQEBCwUAA4IBAQAWziatwBwAqt3k WhsE/Ejxe01v7DXYZ69UU5JUNp4eqnUtWa+o+Eg4PPlCiTTbMgxL/SA1yO1c3ULR sgb7vgdu5+QYn41ulnRFZ0Pr08eVHk7RSEMlEtL8CbZTWOfyvz2aKMwxAPsPU3D0 lwfzdnHQXRrIA8X0E9TMRwVH5PyFTZSxLJr2ddVplPeyu3J3x896ij3frsyr0MDH VZR3y4Fd4PQRjpHSqx6YmJNjsM7ShCzK7Q6Eq/2CyOAvOmHkTdNZ/98BTSM7eBfp 7VgPjk5zhevs7e/QD9z4qzQrHCtvdp8vBqvzUm50gaokVCAPrtZYQ1HMZ742SQQ+ Jpa0YrR1 -----END CERTIFICATE-----Generated at Fri Nov 22 11:17:26 2024 by rpki-client on console-fra.rpki-client.org