$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/236A1054BDD211EAA55BEE1AC4F9AE02.roa File: 236A1054BDD211EAA55BEE1AC4F9AE02.roa (raw, json) Hash identifier: aZ+WFYf62AyCP+4m52i3Xzo5rAsAgbGxlqwSlUbZbFk= Subject key identifier: 09:1D:69:BD:3D:F3:5F:AC:C8:F6:B7:2E:5D:47:20:13:E4:C2:D9:0E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: A0E8 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/236A1054BDD211EAA55BEE1AC4F9AE02.roa Signing time: Tue 31 Dec 2024 06:04:53 +0000 ROA not before: Tue 31 Dec 2024 06:04:53 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 133266 IP address blocks: 103.175.70.0/24 maxlen: 24 103.239.124.0/24 maxlen: 24 2001:df2:9600::/48 maxlen: 48 2001:df2:9601::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41192 (0xa0e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Dec 31 06:04:53 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67738985-44f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ec:c1:9a:dd:b1:12:19:51:50:e4:e2:72:16: cc:89:7b:5a:24:9e:59:cf:2e:19:e6:10:f5:b8:55: 64:69:2e:48:cb:d8:82:91:53:43:f7:2b:9b:59:d6: 50:63:0c:69:5b:ab:67:b8:b6:17:3a:c8:75:24:00: 0c:4c:c0:29:89:6d:60:bc:b6:92:6c:35:43:ae:ad: 0d:cd:a4:79:51:f7:40:99:ce:22:aa:43:ea:9d:b1: 76:4a:99:bb:5a:c1:35:f2:79:21:26:d5:23:17:c2: 3a:71:3d:60:17:52:13:db:59:3e:97:d5:f8:e8:6d: 68:09:ec:1e:53:ee:75:1b:1d:f1:da:4c:af:95:82: 27:bd:b0:60:eb:d2:95:67:37:d3:4a:bd:a7:98:91: d0:77:67:58:64:74:05:31:d1:5f:9a:7e:2d:f5:94: 1c:0a:26:d3:36:f7:6c:6c:2f:9f:f2:fd:54:68:b8: ec:de:88:2a:54:0a:41:36:30:bd:3f:c8:e4:40:f9: c8:7d:85:75:91:00:66:88:17:1d:e9:3a:1d:41:16: db:9d:1f:cb:a2:c4:f0:f6:d1:3c:72:39:d0:c6:1e: 2f:dc:71:c8:32:1b:29:cf:c3:05:66:84:0d:ab:28: 1f:06:e5:64:76:f0:94:dc:6a:96:6b:5b:aa:11:e9: 85:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:1D:69:BD:3D:F3:5F:AC:C8:F6:B7:2E:5D:47:20:13:E4:C2:D9:0E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/236A1054BDD211EAA55BEE1AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.175.70.0/24 103.239.124.0/24 IPv6: 2001:df2:9600::/47 Signature Algorithm: sha256WithRSAEncryption 64:7c:fd:d8:2f:f0:06:d2:55:49:56:8a:83:7f:51:3a:df:39: 94:96:8a:3b:1a:f5:eb:9a:bb:cb:39:9a:de:0d:46:07:0f:a2: 3e:45:f8:0b:6e:b1:af:33:63:bb:33:1b:1e:b8:d5:79:9d:b8: f3:36:18:0d:fb:e6:a5:01:1f:60:7b:3b:a4:7c:7f:98:ab:1f: 3b:08:14:cc:48:a4:bd:16:bf:9e:ed:22:d0:f5:b0:62:86:4b: 37:f0:20:4a:69:81:b7:fa:6c:a5:73:c5:68:49:27:39:03:81: f3:49:b8:ce:d8:a3:7c:75:6a:e5:db:3c:ba:dc:f7:43:21:fa: aa:12:e4:27:2a:54:bf:7d:5b:96:df:43:96:d5:ce:29:9f:36: ec:0a:76:68:ab:ad:e5:02:36:39:f9:cb:7f:ad:63:0a:13:52: d0:4f:6f:35:43:6c:78:e9:c4:03:0c:68:7d:7b:c2:7c:4c:38: 88:91:1f:70:69:7b:c9:89:0f:ec:9e:ce:26:2e:a1:bc:cd:3e: c1:f2:15:a8:2d:d3:6f:99:ac:fb:14:ee:62:6a:44:a3:15:07: e5:22:ef:81:e4:be:91:54:05:8c:08:31:cd:e6:55:d2:ab:0d: 70:f3:82:5b:be:2b:16:7d:e2:a2:f0:52:11:e3:b3:33:0f:cf: 03:72:d7:2f -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgIDAKDoMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MTIzMTA2MDQ1M1oXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjc3Mzg5ODUtNDRmODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANrswZrdsRIZUVDk4nIWzIl7WiSeWc8uGeYQ9bhVZGkuSMvYgpFTQ/crm1nW UGMMaVurZ7i2FzrIdSQADEzAKYltYLy2kmw1Q66tDc2keVH3QJnOIqpD6p2xdkqZ u1rBNfJ5ISbVIxfCOnE9YBdSE9tZPpfV+OhtaAnsHlPudRsd8dpMr5WCJ72wYOvS lWc300q9p5iR0HdnWGR0BTHRX5p+LfWUHAom0zb3bGwvn/L9VGi47N6IKlQKQTYw vT/I5ED5yH2FdZEAZogXHek6HUEW250fy6LE8PbRPHI50MYeL9xxyDIbKc/DBWaE DasoHwblZHbwlNxqlmtbqhHphZECAwEAAaOCAqwwggKoMB0GA1UdDgQWBBQJHWm9 PfNfrMj2ty5dRyAT5MLZDjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzIzNkExMDU0 QkREMjExRUFBNTVCRUUxQUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDYGCCsGAQUFBwEHAQH/ BCcwJTASBAIAATAMAwQAZ69GAwQAZ+98MA8EAgACMAkDBwEgAQ3ylgAwDQYJKoZI hvcNAQELBQADggEBAGR8/dgv8AbSVUlWioN/UTrfOZSWijsa9euau8s5mt4NRgcP oj5F+Atusa8zY7szGx641XmduPM2GA375qUBH2B7O6R8f5irHzsIFMxIpL0Wv57t ItD1sGKGSzfwIEppgbf6bKVzxWhJJzkDgfNJuM7Yo3x1auXbPLrc90Mh+qoS5Ccq VL99W5bfQ5bVzimfNuwKdmirreUCNjn5y3+tYwoTUtBPbzVDbHjpxAMMaH17wnxM OIiRH3Bpe8mJD+yeziYuobzNPsHyFagt02+ZrPsU7mJqRKMVB+Ui74HkvpFUBYwI Mc3mVdKrDXDzglu+KxZ94qLwUhHjszMPzwNy1y8= -----END CERTIFICATE-----Generated at Sun Feb 16 20:17:01 2025 by rpki-client