$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3E45696EC49211ECBA01E359C4F9AE02.roa File: 3E45696EC49211ECBA01E359C4F9AE02.roa (raw, json) Hash identifier: yIvXMjh+HPKYAdKieQxURcH/MGG/wKnU1iotWpFHT/U= Subject key identifier: 61:44:03:AC:3D:B2:0E:D9:2F:6B:F5:C4:06:29:D2:3B:73:95:76:27 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8BEA Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3E45696EC49211ECBA01E359C4F9AE02.roa Signing time: Thu 30 May 2024 16:09:10 +0000 ROA not before: Thu 30 May 2024 16:09:10 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 138223 IP address blocks: 103.186.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35818 (0x8bea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:09:10 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a4a6-6514 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:20:38:be:01:bc:08:e7:56:26:92:c4:4a:1d: b3:87:db:e6:31:fb:7a:a6:ca:a4:a3:db:b1:cd:4a: fd:fe:02:39:46:b7:7e:fb:aa:d6:b9:80:22:a5:eb: 5d:46:93:74:6e:d1:3d:70:1c:3f:95:b1:09:51:aa: 5f:0e:93:e7:d2:17:a6:e7:0a:77:45:04:7e:d6:00: 7e:a9:f1:f2:de:5f:81:b8:c5:e0:a1:dd:a8:5c:a6: 74:eb:60:18:61:a6:d1:dd:60:0d:09:7e:3c:7d:ae: 8a:e6:72:59:d8:ae:b5:31:80:d4:c5:13:2d:56:af: b0:39:62:00:79:b3:cf:b0:93:9b:77:1e:4c:f4:f3: 6a:3d:92:f2:2f:fe:08:7c:b4:b0:40:31:02:06:35: 71:ff:d7:04:f1:0a:d8:db:f4:68:f2:11:b9:01:8e: b4:f7:a7:d4:4d:44:8e:d4:fb:77:40:ec:eb:a5:81: c1:46:cb:fc:23:1e:09:ae:9a:3b:44:68:fe:a2:41: f7:60:a3:8f:4d:ed:dc:c1:b8:ba:0b:bf:9e:b9:7a: e5:08:cf:ed:e4:90:cd:53:ca:eb:cd:8f:8e:af:15: bb:74:31:f7:d2:26:83:01:7d:32:98:a1:ce:76:b1: 14:56:1a:d4:2f:24:f1:69:8f:d4:e9:8c:94:54:72: 5e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:44:03:AC:3D:B2:0E:D9:2F:6B:F5:C4:06:29:D2:3B:73:95:76:27 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3E45696EC49211ECBA01E359C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.111.0/24 Signature Algorithm: sha256WithRSAEncryption ba:f6:85:c1:4e:e0:89:b8:fc:bc:0f:a5:82:ec:f0:6f:35:f0: bf:0c:b1:78:aa:cd:9d:cd:8a:4a:4c:25:84:79:a4:6d:f1:af: 5e:49:74:49:45:73:64:b5:f6:dd:5c:e9:17:04:be:2a:55:53: fc:20:ed:b6:94:94:d9:53:13:ae:03:21:48:75:9b:3c:25:68: d3:f4:96:36:34:8d:c8:7a:4e:38:20:16:44:b8:8d:6f:82:03: 9c:f4:bf:8c:e5:f7:7f:7f:d7:0a:ae:3c:75:09:2d:85:9c:71: 83:05:a1:61:0a:49:b7:87:22:f4:5c:d5:03:d2:aa:b1:b7:23: 21:d8:c8:45:df:b9:cb:a8:23:89:8c:21:d2:17:20:9a:c2:9a: c6:3d:c0:03:d7:94:e9:85:95:97:26:c4:dd:84:d4:66:a2:bc: 85:8b:87:29:10:ea:2f:3c:79:07:f0:98:f0:eb:a4:a3:61:f8: 18:84:c5:6a:38:8b:f4:0f:23:8f:f3:42:98:90:71:45:c1:8f: f7:7e:27:45:ef:fe:d3:86:7a:d0:db:20:8f:22:3c:51:0f:74: e4:1f:c2:da:33:29:b6:cc:33:fe:94:77:aa:5b:46:b4:d4:68: 5f:2f:55:81:a8:07:cf:65:c0:5f:60:1e:78:5b:32:e2:b6:35: 52:58:c3:49 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAIvqMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MDkxMFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE0YTYtNjUxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMIgOL4BvAjnViaSxEods4fb5jH7eqbKpKPbsc1K/f4COUa3fvuq1rmAIqXr XUaTdG7RPXAcP5WxCVGqXw6T59IXpucKd0UEftYAfqnx8t5fgbjF4KHdqFymdOtg GGGm0d1gDQl+PH2uiuZyWdiutTGA1MUTLVavsDliAHmzz7CTm3ceTPTzaj2S8i/+ CHy0sEAxAgY1cf/XBPEK2Nv0aPIRuQGOtPen1E1EjtT7d0Ds66WBwUbL/CMeCa6a O0Ro/qJB92Cjj03t3MG4ugu/nrl65QjP7eSQzVPK682Pjq8Vu3Qx99ImgwF9Mpih znaxFFYa1C8k8WmP1OmMlFRyXsECAwEAAaOCApUwggKRMB0GA1UdDgQWBBRhRAOs PbIO2S9r9cQGKdI7c5V2JzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzNFNDU2OTZF QzQ5MjExRUNCQTAxRTM1OUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ7pvMA0GCSqGSIb3DQEBCwUAA4IBAQC69oXBTuCJuPy8 D6WC7PBvNfC/DLF4qs2dzYpKTCWEeaRt8a9eSXRJRXNktfbdXOkXBL4qVVP8IO22 lJTZUxOuAyFIdZs8JWjT9JY2NI3Iek44IBZEuI1vggOc9L+M5fd/f9cKrjx1CS2F nHGDBaFhCkm3hyL0XNUD0qqxtyMh2MhF37nLqCOJjCHSFyCawprGPcAD15TphZWX JsTdhNRmoryFi4cpEOovPHkH8Jjw66SjYfgYhMVqOIv0DyOP80KYkHFFwY/3fidF 7/7ThnrQ2yCPIjxRD3TkH8LaMym2zDP+lHeqW0a01GhfL1WBqAfPZcBfYB54WzLi tjVSWMNJ -----END CERTIFICATE-----Generated at Fri Nov 22 11:17:35 2024 by rpki-client on console-fra.rpki-client.org