$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5D9C0652DD7911EBA6E0FF2BC4F9AE02.roa File: 5D9C0652DD7911EBA6E0FF2BC4F9AE02.roa (raw, json) Hash identifier: BV2PV1UWXPtJEoTuXg9H0QGVfpoBagvxiY3urgkRt40= Subject key identifier: C8:9F:FD:AE:FE:9E:9D:E5:62:1F:AA:2D:68:BD:82:59:24:D1:A8:F4 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 89FD Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5D9C0652DD7911EBA6E0FF2BC4F9AE02.roa Signing time: Thu 30 May 2024 16:01:08 +0000 ROA not before: Thu 30 May 2024 16:01:08 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 134946 IP address blocks: 103.82.188.0/23 maxlen: 24 103.82.190.0/24 maxlen: 24 2001:df2:ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 10:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35325 (0x89fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:01:08 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a2c4-fb92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f4:61:ef:21:bc:ca:1b:c8:b3:bb:42:9b:cf: 75:07:47:ac:98:51:de:2d:7d:bc:46:1a:5c:7e:e8: 5b:4c:51:8f:37:7a:96:3a:be:a5:f3:c8:e9:7a:8b: d3:db:b9:79:ef:21:f6:cb:0b:1c:63:ba:9d:14:1a: 6b:9b:d6:a4:bf:5a:92:f0:de:07:30:71:2b:bf:3e: bf:b0:2a:00:c0:20:1b:db:85:14:ef:33:3e:f3:06: f3:65:8c:83:5f:09:16:1a:cb:b6:a0:eb:ff:b4:80: 4d:f2:3a:81:fc:42:ac:5d:98:0b:26:77:c1:12:b5: d2:fa:2a:70:dd:b2:98:eb:4d:8c:81:0e:1f:0a:f2: 51:a6:a8:8f:67:39:70:e6:73:93:c5:b2:82:08:af: 73:16:f4:73:16:30:4b:56:dd:71:8e:de:d0:1a:11: db:3d:2d:20:39:ec:10:30:ef:9d:0c:3e:5b:17:2a: 82:f6:e9:83:92:c9:89:de:82:4c:d3:99:c2:79:f0: 58:4a:5e:9a:9e:75:e3:23:f0:c0:ae:22:9e:00:8b: 66:b0:2b:4b:95:0e:5f:0c:fa:68:6c:9c:9a:2e:c5: 73:eb:e8:55:67:14:7a:bb:d6:bf:5a:da:9b:8a:2b: 00:65:34:5f:29:c2:92:7a:42:8b:74:3a:52:c3:12: ad:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:9F:FD:AE:FE:9E:9D:E5:62:1F:AA:2D:68:BD:82:59:24:D1:A8:F4 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5D9C0652DD7911EBA6E0FF2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.82.188.0-103.82.190.255 IPv6: 2001:df2:ec0::/48 Signature Algorithm: sha256WithRSAEncryption 39:ae:ab:69:84:b0:58:d0:31:7c:ab:02:2e:bb:ef:98:ab:b2: 9e:ef:e0:89:f7:55:52:8f:d0:c4:bd:80:49:ec:a3:82:ea:b1: 98:8d:7c:20:9b:13:03:0f:30:dc:37:13:d4:f7:7c:2e:89:b8: 2f:5b:3d:ef:74:08:ec:ee:3d:85:35:96:fa:a7:5d:97:b4:01: a7:f4:e9:a3:4f:72:73:0b:91:d3:11:80:6d:59:15:7c:c4:aa: df:f1:45:3e:9f:34:bc:81:7f:b1:95:6c:69:ea:b6:16:a6:91: d3:35:af:03:4c:c6:36:d1:ac:23:4a:d9:0e:09:27:4f:c6:fc: f7:78:e2:ed:71:f6:48:5f:b4:02:b0:7b:d4:f2:6f:3d:81:e4: 00:3e:d0:64:bf:66:f3:7e:78:b8:3d:bc:35:f7:10:c0:59:77: f6:a4:ca:18:d6:79:54:57:fb:8e:b2:60:dd:b1:be:33:41:7f: 9f:04:7d:67:f7:83:7d:78:a5:08:c2:28:6d:47:c5:0a:12:0f: b5:97:3b:92:21:4c:03:bf:df:6a:75:ee:ad:ca:b7:d0:80:ef: d0:74:20:2d:ff:b4:06:c3:96:92:08:3a:cd:48:e5:65:61:68: db:a6:7e:11:f5:9d:d4:f4:58:3e:b6:08:30:5f:2a:9b:33:fb: 0d:f2:78:95 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgIDAIn9MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MDEwOFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGEyYzQtZmI5MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMX0Ye8hvMobyLO7QpvPdQdHrJhR3i19vEYaXH7oW0xRjzd6ljq+pfPI6XqL 09u5ee8h9ssLHGO6nRQaa5vWpL9akvDeBzBxK78+v7AqAMAgG9uFFO8zPvMG82WM g18JFhrLtqDr/7SATfI6gfxCrF2YCyZ3wRK10voqcN2ymOtNjIEOHwryUaaoj2c5 cOZzk8Wyggivcxb0cxYwS1bdcY7e0BoR2z0tIDnsEDDvnQw+Wxcqgvbpg5LJid6C TNOZwnnwWEpemp514yPwwK4ingCLZrArS5UOXwz6aGycmi7Fc+voVWcUervWv1ra m4orAGU0XynCknpCi3Q6UsMSrakCAwEAAaOCAq4wggKqMB0GA1UdDgQWBBTIn/2u /p6d5WIfqi1ovYJZJNGo9DAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzVEOUMwNjUy REQ3OTExRUJBNkUwRkYyQkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDgGCCsGAQUFBwEHAQH/ BCkwJzAUBAIAATAOMAwDBAJnUrwDBABnUr4wDwQCAAIwCQMHACABDfIOwDANBgkq hkiG9w0BAQsFAAOCAQEAOa6raYSwWNAxfKsCLrvvmKuynu/gifdVUo/QxL2ASeyj guqxmI18IJsTAw8w3DcT1Pd8Lom4L1s973QI7O49hTWW+qddl7QBp/Tpo09ycwuR 0xGAbVkVfMSq3/FFPp80vIF/sZVsaeq2FqaR0zWvA0zGNtGsI0rZDgknT8b893ji 7XH2SF+0ArB71PJvPYHkAD7QZL9m8354uD28NfcQwFl39qTKGNZ5VFf7jrJg3bG+ M0F/nwR9Z/eDfXilCMIobUfFChIPtZc7kiFMA7/fanXurcq30IDv0HQgLf+0BsOW kgg6zUjlZWFo26Z+EfWd1PRYPrYIMF8qmzP7DfJ4lQ== -----END CERTIFICATE-----Generated at Mon Nov 25 13:04:56 2024 by rpki-client on console-fra.rpki-client.org