$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/42612DB0892311EE9B21D43DC4F9AE02.roa File: 42612DB0892311EE9B21D43DC4F9AE02.roa (raw, json) Hash identifier: T8rrNxCK8aLNyBQhCwfFeKr5CxSrvCZCFch8Qy95/H0= Subject key identifier: E4:41:EA:7A:70:FC:39:69:75:59:9F:78:96:AA:E0:C4:60:EC:F6:73 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 9B96 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/42612DB0892311EE9B21D43DC4F9AE02.roa Signing time: Mon 14 Oct 2024 06:04:56 +0000 ROA not before: Mon 14 Oct 2024 06:04:56 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 135269 IP address blocks: 103.111.70.0/24 maxlen: 24 103.173.42.0/23 maxlen: 24 103.204.120.0/24 maxlen: 24 103.204.123.0/24 maxlen: 24 103.216.68.0/23 maxlen: 24 103.216.70.0/23 maxlen: 24 157.119.200.0/23 maxlen: 24 157.119.202.0/24 maxlen: 24 157.119.203.0/24 maxlen: 24 2400:c7a0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 10:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39830 (0x9b96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Oct 14 06:04:56 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=670cb488-c19b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:43:30:b5:74:d1:b7:63:85:aa:34:d4:57:20: 05:a8:c6:6e:a4:a9:8c:02:72:f6:7d:ac:c7:34:f4: b2:54:99:08:a5:83:28:94:14:e0:43:e7:cb:12:64: 02:1b:c4:c7:9c:ca:08:4e:e1:b5:2e:3f:ad:af:b0: 84:47:bc:b6:0f:16:16:65:8e:fa:74:d3:f6:f2:25: 60:09:5d:9d:6f:2f:12:7c:46:ba:71:9b:eb:4a:c5: c6:92:bb:ef:86:07:f9:08:0e:43:9d:8f:e5:03:16: 09:8c:4e:af:26:af:3d:7d:f5:6f:3f:e2:8f:46:df: 0b:ff:a1:c0:51:a4:0b:57:f0:1a:21:b5:97:4c:03: d5:5d:f7:a2:00:36:cc:18:92:65:f5:df:59:27:4e: 44:36:6f:81:09:b2:2f:f4:66:49:61:02:83:5b:fe: 28:aa:26:08:ab:56:2e:e7:98:6f:8e:24:61:a2:89: 7c:6a:7a:df:2d:69:63:73:f7:d2:3a:7c:18:a0:38: 2b:86:ed:8c:3f:77:17:7b:c7:42:fe:1e:56:5e:90: 9b:cf:fe:d2:d9:64:8e:89:cf:00:cf:8c:f2:a6:a1: 48:78:a9:ff:ad:5c:ca:4f:26:08:6e:5c:7b:38:54: 7e:5c:69:d6:83:06:97:85:27:c7:eb:cd:f9:99:a2: 7b:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:41:EA:7A:70:FC:39:69:75:59:9F:78:96:AA:E0:C4:60:EC:F6:73 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/42612DB0892311EE9B21D43DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.111.70.0/24 103.173.42.0/23 103.204.120.0/24 103.204.123.0/24 103.216.68.0/22 157.119.200.0/22 IPv6: 2400:c7a0::/32 Signature Algorithm: sha256WithRSAEncryption b3:c4:bf:2a:49:33:a7:e6:29:ff:b6:68:d2:c9:16:a8:29:7a: f3:c4:f4:7d:ee:7d:26:88:df:69:e7:aa:af:3d:63:4c:7c:76: d4:0d:0f:1e:26:ca:24:98:1a:62:84:f4:2b:46:24:8c:34:36: 81:01:71:65:f5:25:c5:3c:3b:18:71:d6:0d:44:55:1c:d3:6e: 50:d6:97:38:83:a6:b4:c3:be:4e:18:47:c9:c0:c3:14:76:f9: 8b:c9:17:ca:de:77:d6:ad:fb:9e:dc:9e:38:2a:9b:4a:58:f1: 93:97:fe:1d:a6:6a:81:33:62:98:d5:72:76:4c:ae:32:51:23: 36:19:a5:83:78:f4:96:43:c7:c7:c1:e2:27:e4:4c:6a:67:4f: 2a:7c:e4:3e:7d:eb:97:c4:a2:38:40:1d:f5:51:92:c4:1f:d5: 76:93:14:e9:f1:37:63:46:e7:f3:49:15:6e:dd:4b:43:bc:5b: f7:47:13:06:c0:8e:9f:bb:57:eb:cc:3b:45:da:b5:b3:8d:31: 35:e1:b7:77:7e:37:73:75:e7:71:2e:94:41:c0:68:a0:2f:ab: ec:f2:c1:ac:64:52:d8:46:be:7a:a7:78:4f:1d:51:1d:f0:df: 2d:b9:9a:e9:46:36:19:c2:56:3d:27:87:c0:e5:b8:14:f1:7e: c8:e1:34:ce -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIDAJuWMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MTAxNDA2MDQ1NloXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjcwY2I0ODgtYzE5YjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALxDMLV00bdjhao01FcgBajGbqSpjAJy9n2sxzT0slSZCKWDKJQU4EPnyxJk AhvEx5zKCE7htS4/ra+whEe8tg8WFmWO+nTT9vIlYAldnW8vEnxGunGb60rFxpK7 74YH+QgOQ52P5QMWCYxOryavPX31bz/ij0bfC/+hwFGkC1fwGiG1l0wD1V33ogA2 zBiSZfXfWSdORDZvgQmyL/RmSWECg1v+KKomCKtWLueYb44kYaKJfGp63y1pY3P3 0jp8GKA4K4btjD93F3vHQv4eVl6Qm8/+0tlkjonPAM+M8qahSHip/61cyk8mCG5c ezhUflxp1oMGl4Unx+vN+ZmieysCAwEAAaOCAsIwggK+MB0GA1UdDgQWBBTkQep6 cPw5aXVZn3iWquDEYOz2czAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzQyNjEyREIw ODkyMzExRUU5QjIxRDQzREM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMEwGCCsGAQUFBwEHAQH/ BD0wOzAqBAIAATAkAwQAZ29GAwQBZ60qAwQAZ8x4AwQAZ8x7AwQCZ9hEAwQCnXfI MA0EAgACMAcDBQAkAMegMA0GCSqGSIb3DQEBCwUAA4IBAQCzxL8qSTOn5in/tmjS yRaoKXrzxPR97n0miN9p56qvPWNMfHbUDQ8eJsokmBpihPQrRiSMNDaBAXFl9SXF PDsYcdYNRFUc025Q1pc4g6a0w75OGEfJwMMUdvmLyRfK3nfWrfue3J44KptKWPGT l/4dpmqBM2KY1XJ2TK4yUSM2GaWDePSWQ8fHweIn5ExqZ08qfOQ+feuXxKI4QB31 UZLEH9V2kxTp8TdjRufzSRVu3UtDvFv3RxMGwI6fu1frzDtF2rWzjTE14bd3fjdz dedxLpRBwGigL6vs8sGsZFLYRr56p3hPHVEd8N8tuZrpRjYZwlY9J4fA5bgU8X7I 4TTO -----END CERTIFICATE-----Generated at Mon Nov 25 13:04:50 2024 by rpki-client on console-fra.rpki-client.org