$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/166882100E5111EDA3B5962BC4F9AE02.roa File: 166882100E5111EDA3B5962BC4F9AE02.roa (raw, json) Hash identifier: dwgb+vV2ruvZIHrNg2t4KmNUrrrOsbXvFepKYY89uBc= Subject key identifier: 1E:6B:21:C1:B4:0F:90:BC:2A:27:63:6A:7E:94:FD:DB:1C:D0:41:A0 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8906 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/166882100E5111EDA3B5962BC4F9AE02.roa Signing time: Thu 30 May 2024 15:57:06 +0000 ROA not before: Thu 30 May 2024 15:57:06 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 133656 IP address blocks: 103.191.100.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35078 (0x8906) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: May 30 15:57:06 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a1d2-b2f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:66:30:cb:48:e9:3e:ee:13:c0:f8:2e:7c:b2: 89:dd:b7:de:d1:3b:6f:f8:a4:c4:75:b6:82:f5:5a: 50:c3:ef:4b:bf:e0:cc:e5:7f:c0:38:e4:30:6b:6b: 39:4e:e2:88:58:8e:b2:3f:ec:04:5d:c4:46:64:e0: 5f:a7:d2:59:eb:d2:fe:d8:8d:53:fc:84:df:c6:77: 49:73:c7:b6:e9:3b:7d:9f:5c:f9:16:2e:71:03:ac: 07:5f:db:e7:ab:a6:08:eb:65:fc:10:c3:48:4e:03: 9e:a9:f3:d9:03:bb:ff:8f:78:05:42:88:6d:eb:57: 5e:52:c8:a5:e3:84:7c:4d:b8:af:d5:e4:28:12:06: 43:88:33:4e:e5:ad:00:91:00:76:78:f4:96:7a:25: b1:da:eb:81:02:c0:05:3e:62:a5:73:01:85:85:fe: f7:a5:1e:fa:88:da:7f:f4:1c:aa:64:63:8a:69:be: 20:ea:db:8c:ad:26:4e:d1:e0:5d:5e:fe:ec:7c:5d: 00:1f:c4:1a:81:20:57:04:3b:35:c3:97:7e:30:57: 6d:79:c4:95:52:7f:a1:6f:78:ca:f4:54:14:35:99: ec:00:64:0e:d0:16:8a:f1:f5:e0:13:d1:51:1a:16: f8:8e:3f:0c:b0:39:ef:7c:8d:3d:f0:c9:d0:db:73: 3a:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:6B:21:C1:B4:0F:90:BC:2A:27:63:6A:7E:94:FD:DB:1C:D0:41:A0 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/166882100E5111EDA3B5962BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.191.100.0/23 Signature Algorithm: sha256WithRSAEncryption 9f:90:c4:fc:65:68:9c:6f:47:6d:ba:91:9b:f5:18:e2:91:da: 4e:62:7a:2a:97:0c:f5:9c:b2:1d:ef:a4:89:df:86:2d:c1:84: 13:c1:54:d9:df:62:92:e8:4b:6a:36:6e:4f:bd:c1:84:2c:24: 9a:04:b1:f5:5a:88:ee:31:6e:1e:34:44:b2:97:6a:f8:97:03: 85:f0:8a:07:19:85:f1:0a:23:96:9a:5c:6d:f3:2d:b5:47:72: a6:15:61:d7:59:33:ac:34:fe:8c:bb:42:bc:cd:3c:fe:dc:03: 5d:7c:57:79:43:a1:1c:0a:6e:72:89:fe:ee:44:32:9b:73:1e: a1:da:86:e0:73:cb:c8:44:d3:d5:2c:cb:c1:b9:35:22:44:f4: 07:df:8e:ab:30:7b:f3:f7:60:50:3c:cd:e5:50:d8:6a:f7:8d: a9:7c:16:73:dc:d5:e4:a4:aa:cf:0d:90:71:d4:da:ae:3a:89: 89:52:27:76:49:cd:f7:75:29:0a:83:42:09:f0:da:67:17:52: 0c:a4:ec:5d:a7:29:6f:00:77:90:a6:6c:4c:40:79:24:dd:d3: 1d:b8:d5:1c:0b:67:49:7e:5c:29:80:89:09:ed:0d:81:b5:1e: c2:f8:1d:6c:a0:eb:b6:47:62:d0:4a:68:b3:13:5d:a9:39:e5: fd:f0:4f:cd -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAIkGMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE1NTcwNloXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGExZDItYjJmMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALNmMMtI6T7uE8D4Lnyyid233tE7b/ikxHW2gvVaUMPvS7/gzOV/wDjkMGtr OU7iiFiOsj/sBF3ERmTgX6fSWevS/tiNU/yE38Z3SXPHtuk7fZ9c+RYucQOsB1/b 56umCOtl/BDDSE4Dnqnz2QO7/494BUKIbetXXlLIpeOEfE24r9XkKBIGQ4gzTuWt AJEAdnj0lnolsdrrgQLABT5ipXMBhYX+96Ue+ojaf/QcqmRjimm+IOrbjK0mTtHg XV7+7HxdAB/EGoEgVwQ7NcOXfjBXbXnElVJ/oW94yvRUFDWZ7ABkDtAWivH14BPR URoW+I4/DLA573yNPfDJ0NtzOvcCAwEAAaOCApUwggKRMB0GA1UdDgQWBBQeayHB tA+QvConY2p+lP3bHNBBoDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzE2Njg4MjEw MEU1MTExRURBM0I1OTYyQkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ79kMA0GCSqGSIb3DQEBCwUAA4IBAQCfkMT8ZWicb0dt upGb9RjikdpOYnoqlwz1nLId76SJ34YtwYQTwVTZ32KS6EtqNm5PvcGELCSaBLH1 WojuMW4eNESyl2r4lwOF8IoHGYXxCiOWmlxt8y21R3KmFWHXWTOsNP6Mu0K8zTz+ 3ANdfFd5Q6EcCm5yif7uRDKbcx6h2obgc8vIRNPVLMvBuTUiRPQH346rMHvz92BQ PM3lUNhq942pfBZz3NXkpKrPDZBx1NquOomJUid2Sc33dSkKg0IJ8NpnF1IMpOxd pylvAHeQpmxMQHkk3dMduNUcC2dJflwpgIkJ7Q2BtR7C+B1soOu2R2LQSmizE12p OeX98E/N -----END CERTIFICATE-----Generated at Sun Feb 16 20:22:54 2025 by rpki-client