$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5BA1F1EA83F011EC95B88A7CC4F9AE02.roa File: 5BA1F1EA83F011EC95B88A7CC4F9AE02.roa (raw, json) Hash identifier: Xnd+PpoXSFcPKCIj2s34LLfzycQqr5OupZZUixJltdc= Subject key identifier: 9E:63:0E:6C:99:D2:02:22:6D:62:F8:6B:B8:EA:F9:EF:C8:2A:3F:F5 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8EFE Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5BA1F1EA83F011EC95B88A7CC4F9AE02.roa Signing time: Thu 30 May 2024 16:21:57 +0000 ROA not before: Thu 30 May 2024 16:21:57 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 149265 IP address blocks: 103.179.234.0/23 maxlen: 24 2400:4fa0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36606 (0x8efe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:21:57 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a7a5-1a6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:da:42:e6:1f:56:4d:0c:ce:8a:b7:4f:6c:92: 8d:63:20:49:1d:a7:fb:78:7e:b4:68:ad:fd:d5:3c: 0a:c9:9d:56:b6:27:ce:52:3e:8d:8b:76:c7:07:8d: eb:51:d9:d0:d9:e3:cf:70:04:41:46:95:92:cc:fc: a6:99:f3:c3:b1:b9:80:13:1f:34:d2:cd:c8:fc:dd: 5f:62:8b:ab:ed:7d:18:48:0c:28:98:91:0b:7c:cc: b0:ee:8e:84:1e:4a:42:9c:af:43:e1:b3:ab:e0:f4: cb:17:90:25:72:b9:10:50:f2:4a:db:b6:dd:6c:54: e8:8c:4c:72:f7:19:f9:d4:93:3e:be:14:8d:db:8a: 6b:5d:b0:92:b8:ee:6f:8f:95:a4:38:6d:98:23:73: cc:39:d4:e3:4e:fd:3c:3a:c9:ae:8a:c4:95:fc:4a: 39:3c:42:f4:59:be:8b:f5:d0:d8:24:2e:a9:20:bc: 9c:9a:79:c1:d3:21:d5:d0:4e:f1:d5:e8:43:cf:7f: 59:68:2c:ed:23:1e:56:9d:b8:ce:cc:66:5f:48:3d: c7:f3:ff:98:a2:b8:50:bd:87:ac:58:99:5f:6f:9c: 73:9a:ef:b2:75:a7:f0:37:bd:9a:88:6a:8f:d5:13: 47:0a:2a:8e:cc:fd:44:51:f9:17:3c:66:73:77:70: bb:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:63:0E:6C:99:D2:02:22:6D:62:F8:6B:B8:EA:F9:EF:C8:2A:3F:F5 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5BA1F1EA83F011EC95B88A7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.179.234.0/23 IPv6: 2400:4fa0::/32 Signature Algorithm: sha256WithRSAEncryption b0:cf:ba:da:32:36:88:c5:1b:b6:e1:45:df:33:e1:4c:2e:dc: 3b:0a:81:2a:84:81:d2:90:9b:bc:37:62:3e:84:4a:33:93:98: 24:7c:51:04:19:33:e0:b1:49:3d:78:50:cd:79:90:45:fc:96: 20:ec:36:a3:0c:db:11:24:33:f7:05:ce:61:2b:e9:6a:93:18: 62:d5:fc:72:57:ef:cd:12:0f:38:da:bc:65:0c:bf:80:cd:40: bf:61:97:91:aa:11:bd:6f:1c:17:3e:11:80:e5:14:33:d1:cd: 8e:ff:4e:d8:4d:35:d3:1a:2c:cc:b8:fb:ba:5d:cd:b5:01:f0: c4:72:1b:46:43:61:5a:e9:3a:2d:3b:a7:d6:eb:f7:d1:4e:57: 7b:69:7f:dc:74:d5:0a:08:5c:c1:38:83:4a:80:26:4b:5a:43: cb:4f:e9:c4:dc:cb:fe:5d:04:e3:da:fa:d7:77:ac:62:9a:47: 01:26:d6:f3:e7:14:98:61:81:9b:30:c9:e6:45:96:09:7f:0e: d2:6f:fb:99:ea:1d:ea:b7:aa:be:7d:c3:06:2d:6c:68:54:36: 1a:09:3d:51:a4:09:51:6c:10:15:53:37:ea:7f:13:3b:9e:bf: 02:83:5a:f1:3f:42:6a:c1:27:4d:6d:c8:c6:66:a3:9f:e0:07: 13:d4:5a:aa -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIDAI7+MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MjE1N1oXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE3YTUtMWE2ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOjaQuYfVk0Mzoq3T2ySjWMgSR2n+3h+tGit/dU8CsmdVrYnzlI+jYt2xweN 61HZ0Nnjz3AEQUaVksz8ppnzw7G5gBMfNNLNyPzdX2KLq+19GEgMKJiRC3zMsO6O hB5KQpyvQ+Gzq+D0yxeQJXK5EFDyStu23WxU6IxMcvcZ+dSTPr4UjduKa12wkrju b4+VpDhtmCNzzDnU4079PDrJrorElfxKOTxC9Fm+i/XQ2CQuqSC8nJp5wdMh1dBO 8dXoQ89/WWgs7SMeVp24zsxmX0g9x/P/mKK4UL2HrFiZX2+cc5rvsnWn8De9mohq j9UTRwoqjsz9RFH5Fzxmc3dwu/kCAwEAAaOCAqQwggKgMB0GA1UdDgQWBBSeYw5s mdICIm1i+Gu46vnvyCo/9TAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzVCQTFGMUVB ODNGMDExRUM5NUI4OEE3Q0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMC4GCCsGAQUFBwEHAQH/ BB8wHTAMBAIAATAGAwQBZ7PqMA0EAgACMAcDBQAkAE+gMA0GCSqGSIb3DQEBCwUA A4IBAQCwz7raMjaIxRu24UXfM+FMLtw7CoEqhIHSkJu8N2I+hEozk5gkfFEEGTPg sUk9eFDNeZBF/JYg7DajDNsRJDP3Bc5hK+lqkxhi1fxyV+/NEg842rxlDL+AzUC/ YZeRqhG9bxwXPhGA5RQz0c2O/07YTTXTGizMuPu6Xc21AfDEchtGQ2Fa6TotO6fW 6/fRTld7aX/cdNUKCFzBOINKgCZLWkPLT+nE3Mv+XQTj2vrXd6ximkcBJtbz5xSY YYGbMMnmRZYJfw7Sb/uZ6h3qt6q+fcMGLWxoVDYaCT1RpAlRbBAVUzfqfxM7nr8C g1rxP0JqwSdNbcjGZqOf4AcT1Fqq -----END CERTIFICATE-----Generated at Fri Nov 22 11:47:46 2024 by rpki-client on console-ams.rpki-client.org