$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4289F8DCCF6E11EC8921646EC4F9AE02.roa File: 4289F8DCCF6E11EC8921646EC4F9AE02.roa (raw, json) Hash identifier: pcloJArEKoLc/fros1ZTOivK2phwShrcEunzlz65Yp8= Subject key identifier: F7:F7:61:53:FF:02:74:2B:6C:BF:01:12:1D:A9:1E:99:3C:87:2D:22 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8B0F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4289F8DCCF6E11EC8921646EC4F9AE02.roa Signing time: Thu 30 May 2024 16:05:35 +0000 ROA not before: Thu 30 May 2024 16:05:35 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 136376 IP address blocks: 103.99.16.0/22 maxlen: 24 2001:df2:a740::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 12:05:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35599 (0x8b0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:05:35 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a3ce-e088 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1b:da:11:31:ab:fa:44:ac:07:fd:43:10:39: 34:80:1c:6f:93:b0:2f:e5:85:8c:1c:eb:34:d5:7a: ae:2e:9d:ff:c9:c4:75:1e:8b:c8:35:8e:64:2b:3c: ef:08:94:fe:0f:28:dc:65:12:e8:79:72:14:04:6c: 63:5f:b2:f4:eb:7f:bf:1b:33:dd:f3:ed:98:09:08: 53:44:a9:97:ac:cf:03:2e:d3:86:88:4b:7d:b1:08: b2:cb:cc:b7:1e:1a:66:45:75:6b:86:7a:62:73:1a: 7b:df:42:28:97:9d:38:6e:28:b3:6b:b9:15:61:a0: 37:fa:8b:3f:62:d1:b3:6a:f8:1c:1b:fb:6e:da:63: 4e:39:ab:a4:8a:e7:8c:2f:ba:9e:c5:6e:6f:06:01: 88:91:6c:18:0a:d6:cb:f4:cc:0b:49:1a:94:ec:e8: b3:b5:8a:5e:cf:c0:b6:c7:6c:dd:52:27:0f:68:25: eb:b3:79:c1:59:a4:d4:cf:eb:6a:7e:45:28:b8:0a: fc:a0:d9:42:45:cb:06:e5:26:46:25:2f:87:34:45: 1e:81:33:03:92:59:7b:5e:06:93:7f:0b:19:5e:03: 44:df:91:5f:14:4c:fc:50:ea:2a:ec:87:07:93:fa: 0d:fd:4f:7a:9b:f2:f5:67:e7:5e:b9:04:ec:47:5a: 62:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:F7:61:53:FF:02:74:2B:6C:BF:01:12:1D:A9:1E:99:3C:87:2D:22 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4289F8DCCF6E11EC8921646EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.16.0/22 IPv6: 2001:df2:a740::/48 Signature Algorithm: sha256WithRSAEncryption 95:d3:f2:ec:16:c4:52:c7:01:00:8a:2b:59:dd:cd:09:9b:27: fe:b9:f4:3d:7c:ec:08:23:52:07:5a:c6:99:49:80:96:c1:07: de:80:cf:ac:aa:53:08:79:9f:b1:4c:78:b5:f8:7e:ee:9a:c4: 69:2b:b3:4f:a6:11:d0:e1:84:ad:0e:72:3f:2a:9e:8b:39:7e: 87:a5:47:63:a3:31:d4:53:07:1b:62:76:20:84:c2:cf:62:32: 8b:ae:5e:eb:e3:b4:26:52:6f:b6:72:7d:11:b8:0a:4e:0f:b3: a8:40:41:ae:43:b5:6c:20:79:aa:c4:fe:69:02:1d:41:ea:2b: d6:30:ee:03:66:25:e3:f4:af:3a:91:69:35:00:5e:99:6c:32: 9c:dc:e1:06:0a:e0:45:6b:96:c7:a7:b6:5f:c2:52:85:c0:a4: b1:b8:c5:55:9c:4c:f3:d3:b8:d6:bf:74:22:e9:8c:69:d5:92: 77:84:7f:a6:38:50:e4:29:61:4c:a6:f6:3e:f0:26:ec:d2:ce: 6f:e5:61:86:86:16:22:9f:32:ea:12:45:ef:5b:26:7b:23:3b: f4:5e:ee:b0:f9:df:24:8b:5f:69:c0:06:58:11:c0:e2:20:db: e5:82:b6:a9:da:3f:60:71:57:2f:63:b0:25:37:78:32:08:a3: e0:1e:84:28 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDAIsPMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MDUzNVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGEzY2UtZTA4ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL8b2hExq/pErAf9QxA5NIAcb5OwL+WFjBzrNNV6ri6d/8nEdR6LyDWOZCs8 7wiU/g8o3GUS6HlyFARsY1+y9Ot/vxsz3fPtmAkIU0Spl6zPAy7ThohLfbEIssvM tx4aZkV1a4Z6YnMae99CKJedOG4os2u5FWGgN/qLP2LRs2r4HBv7btpjTjmrpIrn jC+6nsVubwYBiJFsGArWy/TMC0kalOzos7WKXs/Atsds3VInD2gl67N5wVmk1M/r an5FKLgK/KDZQkXLBuUmRiUvhzRFHoEzA5JZe14Gk38LGV4DRN+RXxRM/FDqKuyH B5P6Df1Pepvy9WfnXrkE7EdaYg0CAwEAAaOCAqYwggKiMB0GA1UdDgQWBBT392FT /wJ0K2y/ARIdqR6ZPIctIjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzQyODlGOERD Q0Y2RTExRUM4OTIxNjQ2RUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQCZ2MQMA8EAgACMAkDBwAgAQ3yp0AwDQYJKoZIhvcNAQEL BQADggEBAJXT8uwWxFLHAQCKK1ndzQmbJ/659D187AgjUgdaxplJgJbBB96Az6yq Uwh5n7FMeLX4fu6axGkrs0+mEdDhhK0Ocj8qnos5foelR2OjMdRTBxtidiCEws9i MouuXuvjtCZSb7ZyfRG4Ck4Ps6hAQa5DtWwgearE/mkCHUHqK9Yw7gNmJeP0rzqR aTUAXplsMpzc4QYK4EVrlsentl/CUoXApLG4xVWcTPPTuNa/dCLpjGnVkneEf6Y4 UOQpYUym9j7wJuzSzm/lYYaGFiKfMuoSRe9bJnsjO/Re7rD53ySLX2nABlgRwOIg 2+WCtqnaP2BxVy9jsCU3eDIIo+AehCg= -----END CERTIFICATE-----Generated at Fri Nov 22 13:34:56 2024 by rpki-client on console-fra.rpki-client.org