$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/66DF3578E7FD11ED9522E942C4F9AE02.roa File: 66DF3578E7FD11ED9522E942C4F9AE02.roa (raw, json) Hash identifier: KsodS2YL+Nm4D1MzrnrSRZB2J8+HOj5d1oTTMmxmiZ0= Subject key identifier: E8:0F:8B:2E:27:C9:85:06:3F:6E:8A:0D:FF:76:91:0C:59:D2:FD:C7 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8B78 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/66DF3578E7FD11ED9522E942C4F9AE02.roa Signing time: Thu 30 May 2024 16:07:20 +0000 ROA not before: Thu 30 May 2024 16:07:20 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 137119 IP address blocks: 103.200.74.0/23 maxlen: 24 2001:df7:4c00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35704 (0x8b78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:07:20 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a438-a2ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:32:79:96:6c:40:b6:93:05:f2:50:81:87:ae: a2:d0:20:7a:8e:22:4f:dc:d1:40:25:5f:df:ad:60: d9:f6:6d:12:c0:18:b0:88:f5:cd:7d:f0:0b:61:4d: 5a:00:7e:23:75:75:99:94:61:c4:3e:5c:a5:11:c4: 53:b9:25:db:9c:4e:7d:6b:6d:63:eb:9f:41:7d:31: 2c:b0:7d:1c:1a:df:eb:45:d3:16:a1:aa:8f:51:3d: c7:09:d9:c2:0f:8e:5f:6d:ed:fc:a7:30:6f:3d:06: f2:b5:99:2f:d8:06:19:23:93:74:f4:48:9f:c8:b4: a5:bc:d6:91:5c:ae:28:3a:1c:ea:cc:d4:8b:32:a9: e6:33:f2:36:82:7e:63:40:78:e6:f0:a3:6f:1a:f4: f5:12:11:d4:97:8a:54:b6:c5:8f:f3:ff:84:98:31: 70:fc:b8:20:36:89:08:fa:64:aa:32:09:5e:ab:c5: e1:c2:dc:4b:9b:62:7e:07:1a:f0:ff:da:d3:ac:14: 85:d4:25:3e:73:c9:7d:0d:18:8f:3b:7d:d0:f2:36: 46:e9:e0:5f:fd:fb:cf:e9:f9:58:c2:09:94:0f:34: 02:8e:e0:a4:6e:dc:56:d8:97:d7:f6:e7:0c:09:12: d5:bd:40:d5:41:dc:fe:5b:4f:fb:1b:33:c6:e6:45: c6:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:0F:8B:2E:27:C9:85:06:3F:6E:8A:0D:FF:76:91:0C:59:D2:FD:C7 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/66DF3578E7FD11ED9522E942C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.200.74.0/23 IPv6: 2001:df7:4c00::/48 Signature Algorithm: sha256WithRSAEncryption 04:09:f4:d7:2d:3c:47:66:cd:de:86:04:f9:24:12:c2:88:2b: 32:df:8e:ba:b9:1b:c0:48:73:94:78:76:a9:18:b9:3f:04:3c: 62:21:be:bc:3f:6b:42:ad:12:4a:9c:74:44:c9:79:9b:18:7f: b7:db:ba:15:28:05:42:9f:a2:83:e2:e6:96:e2:5f:38:23:01: 7e:cb:2a:67:18:0f:31:45:58:b6:f2:96:a8:9e:4c:68:90:8f: a7:8c:8f:a3:70:c6:8a:5c:34:dd:a7:3d:b5:8b:49:4d:10:8d: 94:6b:52:aa:2b:c0:d5:e9:d3:5c:2a:c6:67:e1:50:65:e9:a0: b3:3f:29:42:ff:58:49:9a:fc:90:39:76:00:b9:c8:d6:41:a3: fc:1b:d8:dd:af:04:17:fd:3c:46:47:4f:83:19:9e:6a:a3:9f: 82:45:77:0f:b2:59:4d:4f:dd:fc:2c:69:06:74:34:60:c3:d6: b8:cc:06:60:76:e6:5b:cc:07:c8:c6:d7:30:fd:13:b3:c9:ef: 0d:c6:d4:ad:53:19:93:ec:f7:56:99:21:2f:8e:5f:44:58:a5: bd:6b:64:46:77:74:d7:4f:cc:ca:d9:b1:fa:db:a8:34:c0:8d: 0b:c0:b7:19:6c:6a:95:25:b6:c7:6f:74:bb:b2:41:fd:5a:a6: ab:ad:18:26 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDAIt4MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MDcyMFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE0MzgtYTJjYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKgyeZZsQLaTBfJQgYeuotAgeo4iT9zRQCVf361g2fZtEsAYsIj1zX3wC2FN WgB+I3V1mZRhxD5cpRHEU7kl25xOfWttY+ufQX0xLLB9HBrf60XTFqGqj1E9xwnZ wg+OX23t/Kcwbz0G8rWZL9gGGSOTdPRIn8i0pbzWkVyuKDoc6szUizKp5jPyNoJ+ Y0B45vCjbxr09RIR1JeKVLbFj/P/hJgxcPy4IDaJCPpkqjIJXqvF4cLcS5tifgca 8P/a06wUhdQlPnPJfQ0Yjzt90PI2RungX/37z+n5WMIJlA80Ao7gpG7cVtiX1/bn DAkS1b1A1UHc/ltP+xszxuZFxp8CAwEAAaOCAqYwggKiMB0GA1UdDgQWBBToD4su J8mFBj9uig3/dpEMWdL9xzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzY2REYzNTc4 RTdGRDExRUQ5NTIyRTk0MkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQBZ8hKMA8EAgACMAkDBwAgAQ33TAAwDQYJKoZIhvcNAQEL BQADggEBAAQJ9NctPEdmzd6GBPkkEsKIKzLfjrq5G8BIc5R4dqkYuT8EPGIhvrw/ a0KtEkqcdETJeZsYf7fbuhUoBUKfooPi5pbiXzgjAX7LKmcYDzFFWLbylqieTGiQ j6eMj6NwxopcNN2nPbWLSU0QjZRrUqorwNXp01wqxmfhUGXpoLM/KUL/WEma/JA5 dgC5yNZBo/wb2N2vBBf9PEZHT4MZnmqjn4JFdw+yWU1P3fwsaQZ0NGDD1rjMBmB2 5lvMB8jG1zD9E7PJ7w3G1K1TGZPs91aZIS+OX0RYpb1rZEZ3dNdPzMrZsfrbqDTA jQvAtxlsapUltsdvdLuyQf1apqutGCY= -----END CERTIFICATE-----Generated at Fri Nov 22 11:47:48 2024 by rpki-client on console-ams.rpki-client.org