$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6439D6689E2C11EDABD7A684C4F9AE02.roa File: 6439D6689E2C11EDABD7A684C4F9AE02.roa (raw, json) Hash identifier: XdWcPDvZ5DHYq+X+lo7LckHb/6Jpced2ElYj9nAmkl4= Subject key identifier: 89:05:3E:94:EA:8F:5E:BE:8E:4C:A0:1B:E4:B0:F8:A9:55:F2:82:2E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8FB5 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6439D6689E2C11EDABD7A684C4F9AE02.roa Signing time: Thu 30 May 2024 16:24:56 +0000 ROA not before: Thu 30 May 2024 16:24:56 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 150574 IP address blocks: 103.163.98.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36789 (0x8fb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: May 30 16:24:56 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a858-4af8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:53:c8:27:c0:24:e2:2f:6d:6d:78:7d:65:24: 7e:cc:e3:85:b9:2c:33:e8:ee:b3:d5:03:c7:f0:63: 5b:8e:2b:fd:10:38:da:07:00:84:0e:08:a3:3a:cb: cf:e0:04:49:98:c9:2b:77:18:88:3c:49:82:2a:eb: 5c:4c:6a:91:e4:13:2b:1a:60:de:8d:0b:3c:7a:3b: 0a:a0:5d:0e:56:0b:a2:ba:fe:b8:39:cb:12:8e:ae: 8d:c6:57:bc:6d:00:52:b3:bf:ac:23:2b:27:81:b8: d4:2b:87:9e:e0:6a:ec:e5:37:0a:0a:44:50:96:34: 4e:bd:e7:d0:3e:09:34:ff:3d:04:76:80:0b:42:11: af:7a:e8:51:8f:35:d2:ca:fd:82:73:a5:da:46:dc: 27:a7:5e:a0:04:9c:40:f1:ef:75:20:60:4f:9c:06: a9:50:f4:28:1c:3c:d6:22:c4:ba:4e:56:84:2f:5e: e8:56:46:72:c1:35:0b:f8:5c:e2:47:dc:31:a1:51: ff:49:0a:da:e7:40:a1:94:90:70:52:e0:5e:08:4d: fb:0f:90:65:58:61:c8:6f:9b:6b:75:62:11:ce:e9: 82:9a:0f:b0:0d:fd:ae:e6:77:06:ba:08:33:c3:a5: d0:07:1e:ee:62:48:ed:2c:1c:29:e7:88:12:8a:36: e6:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:05:3E:94:EA:8F:5E:BE:8E:4C:A0:1B:E4:B0:F8:A9:55:F2:82:2E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6439D6689E2C11EDABD7A684C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.98.0/23 Signature Algorithm: sha256WithRSAEncryption 83:71:e4:a0:a1:a0:af:c6:db:37:cf:b6:51:92:8a:67:7e:0a: 3a:52:31:92:d2:f5:4b:e6:91:81:07:4d:fb:7c:0c:86:95:7f: 34:f8:8c:07:33:5b:e5:d1:4d:a7:b9:89:67:4d:ee:3a:0e:ab: 7d:69:53:47:ad:25:ba:74:28:c1:17:4e:0d:dd:64:a1:c2:83: 9e:78:00:9c:78:85:4b:f3:0f:c0:fd:6a:b5:37:80:9d:01:ac: ba:92:e5:9a:b0:36:90:d0:c9:1a:8d:3b:bd:3e:15:b1:43:e3: 56:66:58:23:53:23:e9:3d:9b:35:31:0f:3b:9c:87:7d:ad:5a: de:1c:67:f9:90:0e:36:f0:06:6b:63:d6:85:23:b9:f5:6c:5b: 5d:5b:7a:e7:50:17:c1:55:c3:8a:d7:5d:e9:ee:9d:82:d3:61: 70:ba:0e:f5:d2:fc:30:05:00:cf:a6:49:fa:55:83:08:dd:bb: 76:10:80:a8:e9:a5:47:ce:65:e2:3d:0e:42:54:3b:5a:23:f9: ac:f4:cb:b9:05:bd:55:dd:00:24:37:7a:cf:c4:91:ec:7d:0e: 57:a8:fb:4d:77:dc:5f:86:b3:68:4f:79:9d:cc:43:ca:7f:84: c2:4b:34:1b:79:f3:ca:61:cf:29:8a:f6:5f:36:ac:94:f9:5b: fa:32:ac:29 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAI+1MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MjQ1NloXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE4NTgtNGFmODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKVTyCfAJOIvbW14fWUkfszjhbksM+jus9UDx/BjW44r/RA42gcAhA4IozrL z+AESZjJK3cYiDxJgirrXExqkeQTKxpg3o0LPHo7CqBdDlYLorr+uDnLEo6ujcZX vG0AUrO/rCMrJ4G41CuHnuBq7OU3CgpEUJY0Tr3n0D4JNP89BHaAC0IRr3roUY81 0sr9gnOl2kbcJ6deoAScQPHvdSBgT5wGqVD0KBw81iLEuk5WhC9e6FZGcsE1C/hc 4kfcMaFR/0kK2udAoZSQcFLgXghN+w+QZVhhyG+ba3ViEc7pgpoPsA39ruZ3BroI M8Ol0Ace7mJI7SwcKeeIEoo25psCAwEAAaOCApUwggKRMB0GA1UdDgQWBBSJBT6U 6o9evo5MoBvksPipVfKCLjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzY0MzlENjY4 OUUyQzExRURBQkQ3QTY4NEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ6NiMA0GCSqGSIb3DQEBCwUAA4IBAQCDceSgoaCvxts3 z7ZRkopnfgo6UjGS0vVL5pGBB037fAyGlX80+IwHM1vl0U2nuYlnTe46Dqt9aVNH rSW6dCjBF04N3WShwoOeeACceIVL8w/A/Wq1N4CdAay6kuWasDaQ0MkajTu9PhWx Q+NWZlgjUyPpPZs1MQ87nId9rVreHGf5kA428AZrY9aFI7n1bFtdW3rnUBfBVcOK 113p7p2C02Fwug710vwwBQDPpkn6VYMI3bt2EICo6aVHzmXiPQ5CVDtaI/ms9Mu5 Bb1V3QAkN3rPxJHsfQ5XqPtNd9xfhrNoT3mdzEPKf4TCSzQbefPKYc8pivZfNqyU +Vv6Mqwp -----END CERTIFICATE-----Generated at Sun Feb 16 20:24:28 2025 by rpki-client