$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0F0FD5D4F4A211E9A47FAB30C4F9AE02.roa File: 0F0FD5D4F4A211E9A47FAB30C4F9AE02.roa (raw, json) Hash identifier: rweyx7OxBWr1R3JckxR0K/ePsGRpE70VyBwRu43vwFA= Subject key identifier: 9C:9D:CF:CD:4F:89:CD:FE:EE:96:BE:54:20:87:31:7D:EB:61:0F:AE Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8C2C Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0F0FD5D4F4A211E9A47FAB30C4F9AE02.roa Signing time: Thu 30 May 2024 16:10:13 +0000 ROA not before: Thu 30 May 2024 16:10:13 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 138712 IP address blocks: 103.71.112.0/23 maxlen: 24 103.137.112.0/23 maxlen: 24 103.153.224.0/23 maxlen: 24 2404:de40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35884 (0x8c2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:10:13 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a4e4-c501 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:b8:26:90:79:41:c5:ae:83:8b:5b:1d:b2:e7: 40:16:93:33:70:2f:e1:c5:f3:fa:c9:3f:28:73:b4: 4f:21:c6:e3:0f:41:c0:5f:b1:1a:f3:3e:8a:e7:8e: 52:73:5e:bf:92:c9:4c:66:53:9c:c0:62:7e:38:8b: 05:84:0f:5e:64:00:2b:e0:c5:ef:5a:c0:15:66:f3: 54:42:47:e9:6e:4b:26:7c:60:ba:53:93:81:3e:64: 97:22:5a:08:cd:b9:6b:fd:22:44:04:b3:a8:88:bc: 10:57:e4:fd:47:5c:8c:1e:3c:b3:7b:82:a9:24:02: f8:54:c8:6f:22:04:2f:b6:c8:27:4b:d5:09:88:92: d4:75:51:b9:68:5b:59:fc:dd:a6:cd:37:22:41:8b: be:5f:07:bd:33:5f:93:aa:77:31:ca:58:37:b9:bd: bd:c1:1e:20:52:04:e8:64:86:7a:95:e8:31:a3:4e: c7:53:a3:4c:90:25:30:8f:cc:44:1a:90:36:15:ba: d2:ed:19:0d:5f:f5:55:71:7b:0b:89:f8:c3:5f:34: be:95:40:b2:4e:3a:87:56:6d:1a:09:03:d4:70:15: cb:fe:52:4c:5a:6c:79:7e:eb:ba:de:b2:ac:5b:df: c9:68:0c:d8:09:b5:c4:f0:99:2d:5f:f7:36:40:4f: 8b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:9D:CF:CD:4F:89:CD:FE:EE:96:BE:54:20:87:31:7D:EB:61:0F:AE X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0F0FD5D4F4A211E9A47FAB30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.71.112.0/23 103.137.112.0/23 103.153.224.0/23 IPv6: 2404:de40::/32 Signature Algorithm: sha256WithRSAEncryption 2d:b0:09:68:66:e2:e5:71:39:a6:04:46:f3:5b:91:f4:a9:7f: 74:67:9a:e5:a4:3d:0c:b8:47:2b:8f:59:9d:63:e2:4d:f9:b6: 9d:9b:0e:f3:21:3b:c1:1d:4f:48:bf:4e:9e:81:f0:e8:04:d4: 3c:11:ef:56:08:b8:99:64:b0:27:6c:8e:12:e5:e4:ba:5a:ce: 39:07:bb:12:07:a1:40:e7:30:35:23:ae:36:95:57:66:1a:ec: 4e:1c:5c:e5:9a:82:4c:a2:25:05:95:af:36:4d:14:13:47:8c: 15:86:c8:5b:ab:8d:02:4e:1f:fb:95:ad:22:ba:2f:58:22:34: b7:8b:0c:67:91:f3:19:d8:44:28:de:36:7e:18:35:71:8a:98: ff:2e:7b:96:73:72:b8:6f:f2:9f:a4:a8:bb:b5:0c:5c:0f:b0: f6:0a:19:30:79:59:94:82:5c:0b:dc:7e:1c:98:74:7d:01:17: 4f:81:20:d8:29:dd:34:cb:39:e7:b6:73:32:d0:b1:16:85:56: 2d:82:6c:4e:55:cd:47:62:7a:5d:86:6e:a3:a1:4c:2e:98:b0: 96:dd:b2:ab:97:70:4f:96:d9:41:d4:f0:a4:b3:98:3d:e1:f7: e8:ce:75:4c:37:76:ed:b2:89:69:2f:d1:62:05:43:f1:33:67: 53:88:12:d6 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgIDAIwsMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MTAxM1oXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE0ZTQtYzUwMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ+4JpB5QcWug4tbHbLnQBaTM3Av4cXz+sk/KHO0TyHG4w9BwF+xGvM+iueO UnNev5LJTGZTnMBifjiLBYQPXmQAK+DF71rAFWbzVEJH6W5LJnxgulOTgT5klyJa CM25a/0iRASzqIi8EFfk/UdcjB48s3uCqSQC+FTIbyIEL7bIJ0vVCYiS1HVRuWhb Wfzdps03IkGLvl8HvTNfk6p3McpYN7m9vcEeIFIE6GSGepXoMaNOx1OjTJAlMI/M RBqQNhW60u0ZDV/1VXF7C4n4w180vpVAsk46h1ZtGgkD1HAVy/5STFpseX7rut6y rFvfyWgM2Am1xPCZLV/3NkBPi6UCAwEAAaOCArAwggKsMB0GA1UdDgQWBBScnc/N T4nN/u6WvlQghzF962EPrjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzBGMEZENUQ0 RjRBMjExRTlBNDdGQUIzMEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDoGCCsGAQUFBwEHAQH/ BCswKTAYBAIAATASAwQBZ0dwAwQBZ4lwAwQBZ5ngMA0EAgACMAcDBQAkBN5AMA0G CSqGSIb3DQEBCwUAA4IBAQAtsAloZuLlcTmmBEbzW5H0qX90Z5rlpD0MuEcrj1md Y+JN+badmw7zITvBHU9Iv06egfDoBNQ8Ee9WCLiZZLAnbI4S5eS6Ws45B7sSB6FA 5zA1I642lVdmGuxOHFzlmoJMoiUFla82TRQTR4wVhshbq40CTh/7la0iui9YIjS3 iwxnkfMZ2EQo3jZ+GDVxipj/LnuWc3K4b/KfpKi7tQxcD7D2ChkweVmUglwL3H4c mHR9ARdPgSDYKd00yznntnMy0LEWhVYtgmxOVc1HYnpdhm6joUwumLCW3bKrl3BP ltlB1PCks5g94ffoznVMN3btsolpL9FiBUPxM2dTiBLW -----END CERTIFICATE-----Generated at Fri Nov 22 11:17:27 2024 by rpki-client on console-fra.rpki-client.org