$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/63D88A10482F11EC8A987F72C4F9AE02.roa File: 63D88A10482F11EC8A987F72C4F9AE02.roa (raw, json) Hash identifier: GNZFJQ+1BgzSoPKxt79cgMTaWpvtFfYnnaSa4sAJoB8= Subject key identifier: 95:4C:7C:BD:3E:28:3E:78:E9:91:72:CF:98:FA:21:F2:4B:D7:2D:7E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8D30 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/63D88A10482F11EC8A987F72C4F9AE02.roa Signing time: Thu 30 May 2024 16:14:34 +0000 ROA not before: Thu 30 May 2024 16:14:34 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 141307 IP address blocks: 103.160.72.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36144 (0x8d30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: May 30 16:14:34 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a5ea-fe8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:69:95:a5:82:c7:93:df:fb:60:dd:05:6a:32: 76:62:13:31:01:09:05:84:e9:da:03:00:dd:58:7d: af:1f:87:e8:d0:30:66:17:96:18:25:35:f5:af:50: 60:03:3e:2a:8e:35:41:47:0b:ae:a3:9a:c3:a4:f5: 75:03:1e:cc:da:f1:2d:75:05:3a:f4:35:92:63:68: cb:9c:00:81:ad:6d:26:01:9f:76:e1:c6:29:37:07: bc:4a:0a:3d:49:10:8c:37:95:bd:c4:0e:bf:da:64: 67:63:4b:76:03:ac:9b:03:26:0f:14:4e:7a:33:ea: 12:6e:3d:a3:da:48:79:2f:e0:17:12:63:96:46:3b: 45:34:54:64:18:29:54:09:de:e0:bc:0f:d4:62:01: 56:9e:fc:0f:1e:f7:28:b2:09:66:e1:c8:43:3f:e8: c9:a6:bf:b2:7c:3e:bc:4a:04:88:2e:20:a0:27:33: 8e:50:1f:75:bd:0b:04:02:ae:60:5f:de:65:02:c9: c7:3e:61:09:f2:7f:27:bb:2b:66:3d:7b:9a:58:45: 8e:ac:1e:7d:26:62:2d:79:4c:93:41:5b:57:3d:25: 71:89:dd:2c:18:73:8d:b8:c2:92:5e:1a:ac:86:42: 98:d8:ba:57:24:ae:f0:63:63:b5:24:4f:45:6a:d3: 41:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:4C:7C:BD:3E:28:3E:78:E9:91:72:CF:98:FA:21:F2:4B:D7:2D:7E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/63D88A10482F11EC8A987F72C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.72.0/23 Signature Algorithm: sha256WithRSAEncryption a7:53:da:b3:e7:b0:43:19:a0:fa:65:be:57:ac:33:ef:f4:4f: a0:59:60:5c:cb:86:92:bb:68:19:a8:80:c2:76:26:d4:63:62: 5d:a0:3a:e6:9e:6d:99:b9:0a:bc:ea:91:da:74:ec:a0:f2:d1: 84:69:3c:79:75:b8:03:c7:98:75:53:89:b4:73:c1:d8:e1:92: 71:cf:4e:54:8f:61:3a:df:ba:0d:6d:b6:bc:af:29:f3:7c:af: 0b:cb:2c:95:4e:81:54:07:68:48:c5:d9:ad:3b:82:70:04:8e: cf:d4:19:62:81:4f:b8:90:4f:01:5e:a5:24:87:8d:b5:c9:80: b8:39:4d:fa:9d:3f:65:f2:78:56:0c:b0:75:02:f5:4a:dd:2b: d7:86:8e:15:32:b0:27:f8:f6:ba:e1:bb:48:3c:a0:cd:ca:19: 34:ac:2c:74:de:8f:28:ca:d7:69:25:bc:eb:ac:6e:c5:34:5c: 20:be:e8:85:74:96:c5:89:10:2b:71:9e:93:92:d9:b1:b7:e8: 74:f2:9f:a2:b7:f9:18:7c:19:d8:79:22:c4:83:6c:93:a8:a4: 7d:e6:de:21:67:49:72:18:4d:5a:ef:52:a7:17:0d:e6:69:0d: 2e:c3:ca:c5:a7:02:04:aa:32:b4:3c:b4:36:e3:d9:5d:48:4c: 49:b6:8c:80 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAI0wMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MTQzNFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE1ZWEtZmU4YTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL5plaWCx5Pf+2DdBWoydmITMQEJBYTp2gMA3Vh9rx+H6NAwZheWGCU19a9Q YAM+Ko41QUcLrqOaw6T1dQMezNrxLXUFOvQ1kmNoy5wAga1tJgGfduHGKTcHvEoK PUkQjDeVvcQOv9pkZ2NLdgOsmwMmDxROejPqEm49o9pIeS/gFxJjlkY7RTRUZBgp VAne4LwP1GIBVp78Dx73KLIJZuHIQz/oyaa/snw+vEoEiC4goCczjlAfdb0LBAKu YF/eZQLJxz5hCfJ/J7srZj17mlhFjqwefSZiLXlMk0FbVz0lcYndLBhzjbjCkl4a rIZCmNi6VySu8GNjtSRPRWrTQR0CAwEAAaOCApUwggKRMB0GA1UdDgQWBBSVTHy9 Pig+eOmRcs+Y+iHyS9ctfjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzYzRDg4QTEw NDgyRjExRUM4QTk4N0Y3MkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ6BIMA0GCSqGSIb3DQEBCwUAA4IBAQCnU9qz57BDGaD6 Zb5XrDPv9E+gWWBcy4aSu2gZqIDCdibUY2JdoDrmnm2ZuQq86pHadOyg8tGEaTx5 dbgDx5h1U4m0c8HY4ZJxz05Uj2E637oNbba8rynzfK8LyyyVToFUB2hIxdmtO4Jw BI7P1BligU+4kE8BXqUkh421yYC4OU36nT9l8nhWDLB1AvVK3SvXho4VMrAn+Pa6 4btIPKDNyhk0rCx03o8oytdpJbzrrG7FNFwgvuiFdJbFiRArcZ6Tktmxt+h08p+i t/kYfBnYeSLEg2yTqKR95t4hZ0lyGE1a71KnFw3maQ0uw8rFpwIEqjK0PLQ249ld SExJtoyA -----END CERTIFICATE-----Generated at Sun Feb 16 20:12:52 2025 by rpki-client