$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/21BF65FC02D711EB99C6AC0FC4F9AE02.roa File: 21BF65FC02D711EB99C6AC0FC4F9AE02.roa (raw, json) Hash identifier: /PwQUAbKgZ00CzHK7lnsX/rYn5kfB2HTDkC69uzwnig= Subject key identifier: E7:DF:08:73:4D:F8:83:87:92:9C:DC:41:9A:EF:27:4C:C2:F4:95:29 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8BB1 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/21BF65FC02D711EB99C6AC0FC4F9AE02.roa Signing time: Thu 30 May 2024 16:08:17 +0000 ROA not before: Thu 30 May 2024 16:08:17 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 137608 IP address blocks: 103.113.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35761 (0x8bb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: May 30 16:08:17 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a471-3fd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:a7:13:e6:1f:9d:1d:8f:2e:32:e9:2b:09:97: 13:af:b8:5b:5b:33:c3:b8:e7:ec:69:26:ca:b2:81: 75:b5:62:a2:f6:98:04:19:9c:99:d5:12:33:b7:f6: 1c:3c:f1:ca:8b:98:ef:93:33:e7:2e:a6:c6:47:f8: b0:2f:65:22:e4:6b:b6:5b:ab:74:44:4d:10:f8:89: 71:4e:ba:52:06:1c:5a:a6:3c:80:fb:aa:7d:14:5b: 6c:ff:4e:94:52:8c:7c:a2:56:f5:ff:f0:e7:17:d3: be:96:d1:16:4f:06:1e:c5:15:7a:26:07:cf:48:95: c6:f7:9e:a6:af:27:f0:8e:29:5f:0c:57:63:51:fd: 62:23:a4:7e:7d:07:39:7d:1a:f7:7c:90:e1:85:c9: 43:d3:66:25:68:47:4e:c3:57:6d:43:dc:ae:38:cc: 42:62:30:39:24:dd:04:7a:72:42:ed:66:a6:3f:60: 4a:7c:cf:72:89:ec:2b:81:8b:bc:37:5d:91:21:ad: 99:b6:01:1c:2f:5e:75:be:eb:14:2b:e1:4a:ce:fe: 19:0d:32:5d:e6:9a:39:40:22:b7:ac:48:d4:eb:1f: 3a:b2:13:53:3a:89:99:43:57:f8:9b:16:27:7f:b2: 5e:01:48:53:33:c9:b1:0a:19:cb:ed:95:33:f6:68: 50:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:DF:08:73:4D:F8:83:87:92:9C:DC:41:9A:EF:27:4C:C2:F4:95:29 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/21BF65FC02D711EB99C6AC0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.113.213.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:ff:d2:16:ad:d6:68:d7:9a:3c:f4:76:f7:d4:91:5e:11:52: b0:11:04:a4:9e:6d:fd:0e:0e:23:c9:28:29:00:5b:f1:71:60: a2:bf:d1:96:91:03:e1:c9:c2:c4:06:2e:39:50:b4:05:c4:ec: 1e:4e:10:e6:69:52:cb:4b:b5:18:1a:58:ec:74:2c:2a:c0:bb: da:66:97:ef:2e:8b:1d:70:25:70:68:88:ce:fe:c8:d6:04:0d: 34:00:61:40:59:53:44:72:db:59:a9:d5:50:de:90:de:25:0b: 2e:7c:c2:81:8f:e6:bc:12:91:ab:cc:1b:a8:c2:70:ca:03:ff: 1f:67:8d:f9:9d:c4:9e:45:58:60:0b:bb:ba:43:82:b5:81:1e: 8c:19:e4:ff:66:eb:8b:f0:8a:0b:de:a0:08:b2:63:f1:ee:a9: 9d:d1:34:d4:46:d5:95:a8:58:83:8b:13:9d:b3:df:b7:c9:2b: e0:6b:66:df:ee:75:bf:0b:3a:f3:39:49:e6:86:05:b2:81:d2: 84:19:ae:59:6a:6c:ae:60:0c:df:64:f3:9e:16:d4:44:5d:8c: 6f:48:db:57:97:bd:9a:01:7f:1f:b7:41:e2:87:0b:48:e4:45: 0e:38:15:df:a9:c0:13:48:f2:17:1c:12:2d:1b:c6:1d:8e:0c: da:dd:ac:ad -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAIuxMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MDgxN1oXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE0NzEtM2ZkNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANanE+YfnR2PLjLpKwmXE6+4W1szw7jn7GkmyrKBdbViovaYBBmcmdUSM7f2 HDzxyouY75Mz5y6mxkf4sC9lIuRrtlurdERNEPiJcU66UgYcWqY8gPuqfRRbbP9O lFKMfKJW9f/w5xfTvpbRFk8GHsUVeiYHz0iVxveepq8n8I4pXwxXY1H9YiOkfn0H OX0a93yQ4YXJQ9NmJWhHTsNXbUPcrjjMQmIwOSTdBHpyQu1mpj9gSnzPconsK4GL vDddkSGtmbYBHC9edb7rFCvhSs7+GQ0yXeaaOUAit6xI1OsfOrITUzqJmUNX+JsW J3+yXgFIUzPJsQoZy+2VM/ZoUI0CAwEAAaOCApUwggKRMB0GA1UdDgQWBBTn3whz TfiDh5Kc3EGa7ydMwvSVKTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzIxQkY2NUZD MDJENzExRUI5OUM2QUMwRkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ3HVMA0GCSqGSIb3DQEBCwUAA4IBAQBb/9IWrdZo15o8 9Hb31JFeEVKwEQSknm39Dg4jySgpAFvxcWCiv9GWkQPhycLEBi45ULQFxOweThDm aVLLS7UYGljsdCwqwLvaZpfvLosdcCVwaIjO/sjWBA00AGFAWVNEcttZqdVQ3pDe JQsufMKBj+a8EpGrzBuownDKA/8fZ435ncSeRVhgC7u6Q4K1gR6MGeT/ZuuL8IoL 3qAIsmPx7qmd0TTURtWVqFiDixOds9+3ySvga2bf7nW/CzrzOUnmhgWygdKEGa5Z amyuYAzfZPOeFtREXYxvSNtXl72aAX8ft0HihwtI5EUOOBXfqcATSPIXHBItG8Yd jgza3ayt -----END CERTIFICATE-----Generated at Sun Feb 16 20:03:18 2025 by rpki-client