$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1A94BE228FA411EF98588F7EC4F9AE02.roa File: 1A94BE228FA411EF98588F7EC4F9AE02.roa (raw, json) Hash identifier: dkDCvlITvdRqwAoHS7VNykjN53zAAIUfl7q91wovwPY= Subject key identifier: 7E:9A:9E:D2:9A:FB:AD:87:88:B3:B4:3A:EB:25:56:91:7B:50:DF:01 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 9BF6 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1A94BE228FA411EF98588F7EC4F9AE02.roa Signing time: Mon 21 Oct 2024 12:00:46 +0000 ROA not before: Mon 21 Oct 2024 12:00:46 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 136704 IP address blocks: 103.103.28.0/24 maxlen: 24 103.127.104.0/23 maxlen: 24 103.147.132.0/23 maxlen: 24 103.183.238.0/23 maxlen: 24 103.184.168.0/23 maxlen: 24 2001:df3:5880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 10:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39926 (0x9bf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Oct 21 12:00:46 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6716426d-05ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:23:de:d1:8e:de:4a:36:e1:30:79:24:65:f4: f9:65:56:74:12:8b:e9:f2:78:33:d8:b1:ba:36:2d: 92:00:77:0f:e2:9f:8c:2d:2b:6d:61:eb:ac:bd:30: 41:88:50:cf:b7:56:0c:bd:5a:cb:d1:0c:22:f3:51: ea:c2:86:26:ee:23:78:7a:7d:bc:c8:9c:5b:5f:27: 4b:21:eb:bd:db:29:2a:bb:c1:56:69:7f:c3:39:d9: bb:65:67:ff:69:7c:f5:a1:d3:31:b9:3c:5a:60:e9: 61:a4:4d:29:87:6e:0a:65:f4:25:c2:7d:4f:49:cf: 5f:16:b8:67:0f:a1:a8:4e:36:94:79:38:6f:54:0e: 51:a8:3e:c0:e3:29:91:66:49:13:b5:51:93:54:85: b2:f2:04:24:91:c5:c1:55:a6:cf:ea:56:9e:60:5e: ab:59:8f:bf:2d:bc:2a:0a:19:74:d7:e8:92:3c:ae: 4c:70:ae:0b:2c:56:77:b6:8e:ca:e0:99:9f:4b:6c: bc:ed:83:90:61:f4:ff:30:94:27:37:62:c3:cd:77: 92:f9:af:05:e2:d0:fb:d5:86:70:96:a8:c2:7a:94: f4:ed:68:67:66:0d:c8:f3:25:2b:50:ab:7a:fb:c3: 62:c0:33:86:e5:ed:03:f5:c2:17:43:08:8e:8b:94: 5c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:9A:9E:D2:9A:FB:AD:87:88:B3:B4:3A:EB:25:56:91:7B:50:DF:01 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1A94BE228FA411EF98588F7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.103.28.0/24 103.127.104.0/23 103.147.132.0/23 103.183.238.0/23 103.184.168.0/23 IPv6: 2001:df3:5880::/48 Signature Algorithm: sha256WithRSAEncryption 15:54:44:34:12:28:fe:b6:e4:e6:13:81:91:49:fa:14:52:f5: a5:1b:d5:49:f7:11:d7:6d:bf:f8:f2:6d:d2:0f:9b:81:fe:34: 53:f4:2f:5e:4a:d7:19:0d:58:1d:c3:de:dd:d2:09:e7:9d:ab: 46:fc:0f:7f:36:a1:61:b7:ef:82:3e:94:62:1b:d0:4e:4f:89: 53:40:0d:59:26:c9:de:10:fb:2e:09:11:7e:1e:f9:be:de:92: 9b:59:5e:65:a4:03:3e:fc:05:bf:41:c0:18:4f:e5:fb:be:5a: 91:0d:ed:20:2c:a8:1b:ea:ff:c3:42:e2:b9:ed:b6:30:10:01: 7e:87:23:5d:a2:de:19:1e:fc:db:13:7c:dc:5a:28:7a:55:9e: 73:f3:ad:fb:6c:02:c3:83:f3:d5:05:17:47:92:8c:f1:aa:9f: 95:56:d3:86:dd:71:b4:13:a8:0b:db:31:29:4e:b3:06:89:ca: dc:1b:d3:38:d2:24:28:9d:16:f4:fb:5d:c0:9e:29:f6:0c:2d: 1f:53:1b:dd:60:4f:64:ba:32:10:8b:3d:a8:00:db:2c:44:7e: 6f:70:21:e5:1f:85:7a:e4:37:b6:3c:bf:cc:9f:d2:5d:22:0b: 5b:04:ca:f0:ae:d6:f8:4e:42:eb:26:c9:7c:c3:8f:d1:fe:6e: fc:81:21:ce -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgIDAJv2MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MTAyMTEyMDA0NloXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjcxNjQyNmQtMDVlZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM4j3tGO3ko24TB5JGX0+WVWdBKL6fJ4M9ixujYtkgB3D+KfjC0rbWHrrL0w QYhQz7dWDL1ay9EMIvNR6sKGJu4jeHp9vMicW18nSyHrvdspKrvBVml/wznZu2Vn /2l89aHTMbk8WmDpYaRNKYduCmX0JcJ9T0nPXxa4Zw+hqE42lHk4b1QOUag+wOMp kWZJE7VRk1SFsvIEJJHFwVWmz+pWnmBeq1mPvy28KgoZdNfokjyuTHCuCyxWd7aO yuCZn0tsvO2DkGH0/zCUJzdiw813kvmvBeLQ+9WGcJaownqU9O1oZ2YNyPMlK1Cr evvDYsAzhuXtA/XCF0MIjouUXI8CAwEAAaOCAr4wggK6MB0GA1UdDgQWBBR+mp7S mvuth4iztDrrJVaRe1DfATAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzFBOTRCRTIy OEZBNDExRUY5ODU4OEY3RUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMEgGCCsGAQUFBwEHAQH/ BDkwNzAkBAIAATAeAwQAZ2ccAwQBZ39oAwQBZ5OEAwQBZ7fuAwQBZ7ioMA8EAgAC MAkDBwAgAQ3zWIAwDQYJKoZIhvcNAQELBQADggEBABVURDQSKP625OYTgZFJ+hRS 9aUb1Un3Eddtv/jybdIPm4H+NFP0L15K1xkNWB3D3t3SCeedq0b8D382oWG374I+ lGIb0E5PiVNADVkmyd4Q+y4JEX4e+b7ekptZXmWkAz78Bb9BwBhP5fu+WpEN7SAs qBvq/8NC4rnttjAQAX6HI12i3hke/NsTfNxaKHpVnnPzrftsAsOD89UFF0eSjPGq n5VW04bdcbQTqAvbMSlOswaJytwb0zjSJCidFvT7XcCeKfYMLR9TG91gT2S6MhCL PagA2yxEfm9wIeUfhXrkN7Y8v8yf0l0iC1sEyvCu1vhOQusmyXzDj9H+bvyBIc4= -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:05 2024 by rpki-client on console-ams.rpki-client.org