$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5B41137CBDCF11EA8755D90DC4F9AE02.roa File: 5B41137CBDCF11EA8755D90DC4F9AE02.roa (raw, json) Hash identifier: JqotdV3h83UbmsYkDgIrqKtRQUgIBUqG7ieYHDaYCJE= Subject key identifier: 6C:94:6B:85:57:20:96:B1:D9:37:DC:48:06:B2:A8:7F:F0:1E:7D:30 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8C37 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5B41137CBDCF11EA8755D90DC4F9AE02.roa Signing time: Thu 30 May 2024 16:10:24 +0000 ROA not before: Thu 30 May 2024 16:10:24 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 138734 IP address blocks: 103.137.84.0/23 maxlen: 24 103.166.12.0/23 maxlen: 24 2406:bec0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 10:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35895 (0x8c37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:10:24 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a4f0-59b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c2:0c:17:49:5b:7d:5c:97:70:89:88:db:63: 0f:e1:88:ba:44:42:8d:40:1f:15:e4:d6:c5:ba:cc: ce:aa:e4:98:6b:ea:d6:1a:9d:38:5e:86:8f:10:de: 85:22:6e:05:26:e3:96:01:79:4f:e9:28:c6:0a:6a: 0d:d9:24:5d:be:ee:5c:b2:58:3b:43:4d:dc:d7:d7: 0d:18:b8:2c:e9:00:b2:28:4e:3a:3f:de:32:0e:c9: ef:a8:d0:82:10:9d:d6:8b:34:78:20:37:6b:9a:54: 8d:60:68:66:b4:2a:24:38:ba:95:0b:f5:dd:5c:01: 77:59:0c:73:ad:45:3e:71:cd:d6:f0:88:fe:bf:bf: 27:59:e9:d0:0e:b2:c5:a8:06:a9:2d:cb:da:ba:4e: 98:d0:7c:f4:ef:a2:49:97:10:3b:0d:9f:d1:f0:a5: 02:75:f6:f6:82:82:b5:d6:79:ee:f3:a1:64:d5:b0: 5f:c7:ac:b1:62:67:c4:50:c1:4a:50:91:87:04:a5: 69:8d:52:62:9e:6d:59:5e:d9:de:b0:c4:0b:a7:52: 6e:f8:36:db:fc:c5:05:d8:b4:73:10:ef:e7:2b:6b: 3e:5a:24:ce:f7:c3:cd:12:c4:2e:18:02:5e:6f:2f: af:56:c7:79:9b:39:62:cd:38:d2:bc:3f:89:46:3d: b8:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:94:6B:85:57:20:96:B1:D9:37:DC:48:06:B2:A8:7F:F0:1E:7D:30 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5B41137CBDCF11EA8755D90DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.84.0/23 103.166.12.0/23 IPv6: 2406:bec0::/32 Signature Algorithm: sha256WithRSAEncryption 8c:ed:37:5c:de:e1:9e:6e:77:9e:ba:6f:b6:52:20:5c:3a:c8: 2d:a9:18:46:e8:bb:27:30:e5:4a:e4:93:6e:c6:49:a6:8a:c9: e3:97:74:67:78:cb:fd:32:00:bc:1a:10:d6:89:51:d5:d9:0c: 83:80:d6:34:98:58:5e:76:e0:70:1b:49:56:1c:27:7e:82:aa: 4d:55:0b:27:0f:53:7c:21:26:81:4f:13:0f:68:2a:4d:48:42: 81:ba:f4:51:33:6f:04:c2:55:75:a0:2d:87:d3:92:d7:c9:ed: 90:8b:56:c8:f8:fc:07:b4:ef:1a:80:4c:1f:a8:c8:31:11:90: 7c:50:37:30:71:73:6a:78:04:e1:82:2f:ce:e2:f7:63:07:73: 28:07:01:d9:c4:d8:34:58:b9:c8:4b:6b:78:97:a0:e1:47:01: 36:9a:27:f6:b3:49:40:f1:53:4d:ab:b0:e7:f1:ea:a7:4e:65: 5f:c3:f5:d6:f9:30:11:81:03:5a:16:b0:ae:fc:44:00:a6:06: 4d:53:90:be:be:25:1c:92:3e:86:8d:06:58:ee:0d:f6:a0:1b: 62:44:46:ce:4e:f3:e6:9e:2c:b8:7b:c4:57:ae:f9:76:79:07: d5:5d:38:40:ea:2d:1e:55:18:07:04:98:c0:e0:17:24:58:16: 5b:1f:41:bc -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgIDAIw3MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MTAyNFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE0ZjAtNTliOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKbCDBdJW31cl3CJiNtjD+GIukRCjUAfFeTWxbrMzqrkmGvq1hqdOF6GjxDe hSJuBSbjlgF5T+koxgpqDdkkXb7uXLJYO0NN3NfXDRi4LOkAsihOOj/eMg7J76jQ ghCd1os0eCA3a5pUjWBoZrQqJDi6lQv13VwBd1kMc61FPnHN1vCI/r+/J1np0A6y xagGqS3L2rpOmNB89O+iSZcQOw2f0fClAnX29oKCtdZ57vOhZNWwX8essWJnxFDB SlCRhwSlaY1SYp5tWV7Z3rDEC6dSbvg22/zFBdi0cxDv5ytrPlokzvfDzRLELhgC Xm8vr1bHeZs5Ys040rw/iUY9uAMCAwEAAaOCAqowggKmMB0GA1UdDgQWBBRslGuF VyCWsdk33EgGsqh/8B59MDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzVCNDExMzdD QkRDRjExRUE4NzU1RDkwREM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDQGCCsGAQUFBwEHAQH/ BCUwIzASBAIAATAMAwQBZ4lUAwQBZ6YMMA0EAgACMAcDBQAkBr7AMA0GCSqGSIb3 DQEBCwUAA4IBAQCM7Tdc3uGebneeum+2UiBcOsgtqRhG6LsnMOVK5JNuxkmmisnj l3RneMv9MgC8GhDWiVHV2QyDgNY0mFheduBwG0lWHCd+gqpNVQsnD1N8ISaBTxMP aCpNSEKBuvRRM28EwlV1oC2H05LXye2Qi1bI+PwHtO8agEwfqMgxEZB8UDcwcXNq eAThgi/O4vdjB3MoBwHZxNg0WLnIS2t4l6DhRwE2mif2s0lA8VNNq7Dn8eqnTmVf w/XW+TARgQNaFrCu/EQApgZNU5C+viUckj6GjQZY7g32oBtiREbOTvPmniy4e8RX rvl2eQfVXThA6i0eVRgHBJjA4BckWBZbH0G8 -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:14 2024 by rpki-client on console-ams.rpki-client.org