$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/21DA93BAA19111EF8F235C4BC4F9AE02.roa File: 21DA93BAA19111EF8F235C4BC4F9AE02.roa (raw, json) Hash identifier: qaNz+nKTjJjRFX8tyjAPoIZhQZAH5FF0ekIRNf6qgOw= Subject key identifier: E3:30:73:82:37:9F:91:F2:21:B7:52:3A:DF:6E:96:DC:70:E5:15:03 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 9D87 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/21DA93BAA19111EF8F235C4BC4F9AE02.roa Signing time: Thu 21 Nov 2024 05:54:30 +0000 ROA not before: Thu 21 Nov 2024 05:54:30 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 135214 IP address blocks: 103.83.184.0/24 maxlen: 24 103.83.185.0/24 maxlen: 24 103.83.186.0/24 maxlen: 24 103.83.187.0/24 maxlen: 24 2001:df7:c80::/48 maxlen: 48 2001:df7:f600::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 10:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40327 (0x9d87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Nov 21 05:54:30 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=673ecb16-1a8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:52:54:2a:1b:6c:30:c0:75:fe:df:e5:c6:2a: 94:f6:7c:e6:e8:1f:c0:03:97:81:a9:c0:32:e2:db: b7:a7:f0:7d:4f:4e:f3:61:5a:c2:02:ea:d9:bf:5f: 5d:7f:83:de:05:9a:5e:86:8b:ff:dd:ef:23:12:b0: 1c:dd:2b:65:cd:fc:5d:b2:41:19:83:32:db:71:94: d8:17:3a:cd:c1:8e:4f:d0:d5:f2:91:75:52:10:d2: 22:ef:8e:6d:7b:55:58:02:7f:6a:26:27:6c:1e:47: 5f:b8:8a:f0:27:c1:06:49:9a:43:62:52:3f:aa:de: 94:07:41:34:1f:00:96:51:95:f3:51:06:63:99:14: 48:0c:82:04:38:49:df:f0:ea:de:ed:78:4c:b7:23: 20:6f:e2:a8:1e:68:3e:7f:2a:b4:45:8b:36:36:14: bf:94:6b:48:af:da:20:c5:18:26:99:c0:6d:d6:40: 4a:9f:37:d1:46:62:2e:bf:01:28:e9:f9:35:99:ae: ce:cf:d6:1a:da:e5:a8:6a:28:0b:b0:e4:ca:bd:49: 7e:c9:1a:7f:e2:c3:87:da:b0:5f:b5:52:49:20:e6: 0c:b7:df:13:3f:0c:b1:59:22:a0:07:39:2f:0e:67: 73:ea:59:73:1a:fe:fc:40:18:07:6b:da:36:5d:24: d6:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:30:73:82:37:9F:91:F2:21:B7:52:3A:DF:6E:96:DC:70:E5:15:03 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/21DA93BAA19111EF8F235C4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.83.184.0/22 IPv6: 2001:df7:c80::/48 2001:df7:f600::/48 Signature Algorithm: sha256WithRSAEncryption 26:a9:b0:ae:a0:5b:5b:00:dc:2d:b8:c6:29:e5:39:44:49:80: b9:bf:c9:ff:f6:51:c1:60:f9:03:d0:7e:c6:05:60:75:8b:62: a2:8c:5a:a8:84:05:5e:e9:1c:b4:a4:42:3d:d6:a6:1d:45:b7: 2a:9e:62:ae:02:3e:c2:9d:0b:df:d7:8a:18:f7:84:83:56:57: 28:b4:4c:02:34:d2:50:e6:58:f5:b5:43:d7:83:28:0a:88:ce: aa:b5:5d:3d:ae:93:5d:90:e2:55:f8:84:08:2d:94:de:9f:22: 0b:f1:e4:78:09:49:89:11:dd:31:d5:b3:33:b2:de:cf:c1:1a: 16:77:d2:a4:d1:c5:90:f5:51:8f:05:cc:91:47:b9:93:76:80: 5f:88:92:ad:ce:d9:f7:21:f8:3d:84:53:9f:d0:b7:e0:47:25: ed:08:1d:ac:8c:b0:87:c4:46:1c:97:9e:d7:0e:54:79:58:51: 3a:3c:aa:fd:6b:98:7f:52:53:06:63:39:1d:7b:13:6f:b2:9f: cf:60:15:17:9c:fc:b5:3b:b5:71:04:85:41:80:18:3d:1a:9d: 0e:15:c1:34:62:70:59:e4:4c:4c:b2:84:b9:40:6b:5a:5f:7f: de:b7:1a:b3:bf:ce:1a:14:e1:7b:04:24:17:2e:49:39:55:74: 71:f3:4f:73 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgIDAJ2HMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MTEyMTA1NTQzMFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjczZWNiMTYtMWE4YTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALtSVCobbDDAdf7f5cYqlPZ85ugfwAOXganAMuLbt6fwfU9O82FawgLq2b9f XX+D3gWaXoaL/93vIxKwHN0rZc38XbJBGYMy23GU2Bc6zcGOT9DV8pF1UhDSIu+O bXtVWAJ/aiYnbB5HX7iK8CfBBkmaQ2JSP6relAdBNB8AllGV81EGY5kUSAyCBDhJ 3/Dq3u14TLcjIG/iqB5oPn8qtEWLNjYUv5RrSK/aIMUYJpnAbdZASp830UZiLr8B KOn5NZmuzs/WGtrlqGooC7Dkyr1Jfskaf+LDh9qwX7VSSSDmDLffEz8MsVkioAc5 Lw5nc+pZcxr+/EAYB2vaNl0k1pkCAwEAAaOCAq8wggKrMB0GA1UdDgQWBBTjMHOC N5+R8iG3UjrfbpbccOUVAzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzIxREE5M0JB QTE5MTExRUY4RjIzNUM0QkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDkGCCsGAQUFBwEHAQH/ BCowKDAMBAIAATAGAwQCZ1O4MBgEAgACMBIDBwAgAQ33DIADBwAgAQ339gAwDQYJ KoZIhvcNAQELBQADggEBACapsK6gW1sA3C24xinlOURJgLm/yf/2UcFg+QPQfsYF YHWLYqKMWqiEBV7pHLSkQj3Wph1FtyqeYq4CPsKdC9/Xihj3hINWVyi0TAI00lDm WPW1Q9eDKAqIzqq1XT2uk12Q4lX4hAgtlN6fIgvx5HgJSYkR3THVszOy3s/BGhZ3 0qTRxZD1UY8FzJFHuZN2gF+Ikq3O2fch+D2EU5/Qt+BHJe0IHayMsIfERhyXntcO VHlYUTo8qv1rmH9SUwZjOR17E2+yn89gFRec/LU7tXEEhUGAGD0anQ4VwTRicFnk TEyyhLlAa1pff963GrO/zhoU4XsEJBcuSTlVdHHzT3M= -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:06 2024 by rpki-client on console-ams.rpki-client.org