$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/684DE36E6AA011EBA0353037C4F9AE02.roa File: 684DE36E6AA011EBA0353037C4F9AE02.roa (raw, json) Hash identifier: GtDvhwB4t3rTSYzW1zR5X1NBsT9r6cuMk2YSuj9uQCE= Subject key identifier: 1A:63:F3:85:AE:F2:98:43:80:8E:4D:33:23:7F:29:8E:7D:E7:9F:B8 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8D36 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/684DE36E6AA011EBA0353037C4F9AE02.roa Signing time: Thu 30 May 2024 16:14:41 +0000 ROA not before: Thu 30 May 2024 16:14:40 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 141313 IP address blocks: 103.159.70.0/24 maxlen: 24 2001:df5:7780::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36150 (0x8d36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:14:40 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a5f0-8c6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:53:ff:7e:05:b6:de:e4:da:19:26:c6:95:6e: 21:95:aa:51:64:5f:ee:87:a5:29:43:0f:b9:bb:b4: c5:4c:7f:ff:f2:f2:73:fe:30:1c:91:1b:af:df:4a: 24:d8:c1:ff:98:48:8d:fa:bc:c2:f1:a9:f9:89:d4: 12:10:8d:55:8b:7e:10:ca:64:d0:b7:8b:c4:f4:61: 7f:0c:6f:18:f9:12:31:b6:48:a8:6a:94:d9:a5:2d: d0:81:37:a9:d3:3d:4a:84:3d:43:cb:c8:08:22:61: 83:af:78:f1:d2:f8:54:e2:f4:2c:c1:39:f2:bf:7d: 6e:43:f5:db:0d:4d:26:bd:ec:ce:f3:67:dc:25:e7: d6:ce:f0:2f:42:1a:49:23:fe:cb:cd:d9:e2:aa:85: ef:c1:e3:91:53:c1:f9:8e:f1:e7:66:be:6a:3a:d0: 17:5e:da:9a:8b:14:9f:dc:3f:01:0f:15:19:8c:ea: 93:79:3c:15:2e:8f:d7:ac:c6:e1:aa:3e:01:e9:6b: cf:05:da:00:9b:75:d2:29:52:55:ff:ab:f5:ff:ff: da:f4:0b:42:be:3a:d7:92:36:47:52:09:96:dc:97: d5:48:4e:f9:26:e6:41:50:fc:03:ee:f4:2d:df:f2: bf:da:3c:73:9f:6e:b4:bb:1c:0e:b5:14:d3:b4:f4: d1:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:63:F3:85:AE:F2:98:43:80:8E:4D:33:23:7F:29:8E:7D:E7:9F:B8 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/684DE36E6AA011EBA0353037C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.70.0/24 IPv6: 2001:df5:7780::/48 Signature Algorithm: sha256WithRSAEncryption 0a:e1:b4:12:da:12:e9:76:ee:2a:3f:81:37:f2:9d:b9:0a:26: 68:08:69:71:dd:a0:75:a1:3d:79:76:ce:2d:05:9e:6b:3a:24: 2d:ff:ef:e3:a6:77:16:d8:4a:60:00:1e:46:2c:42:50:e2:22: eb:53:0b:31:06:f6:7f:02:01:14:f7:8c:e5:d5:78:8e:58:46: ed:c0:39:20:b6:09:8b:db:82:76:a8:fb:a0:75:fe:91:c4:ae: 8c:01:e2:96:0e:5d:6e:1d:6c:88:f1:82:59:7c:bf:d9:25:c3: af:6b:b2:ce:51:40:a2:07:29:e4:f6:e7:e9:1a:2f:96:9a:37: 66:69:a0:0a:06:64:c9:80:89:53:ac:30:f5:b2:3e:88:ea:1c: 66:53:36:99:53:86:24:fb:d5:62:64:a0:5e:d4:f8:e9:27:47: f5:3e:3f:ab:8e:b5:bb:54:ed:84:18:dd:c4:2a:e7:3f:a1:84: 96:9c:a5:61:08:85:5f:61:01:4e:e0:b2:c1:c2:46:e1:8e:7c: 56:ed:4a:d1:6b:93:e7:02:d8:35:d7:fe:f1:83:dd:3f:e2:b1: 45:2d:62:c9:c0:6c:91:0d:ed:ea:8b:2e:cc:8d:62:a2:a4:4c: 42:40:b3:8e:59:4e:d7:49:d0:bb:67:a9:34:fc:0b:36:53:ed: c2:0c:f4:8e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDAI02MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MTQ0MFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE1ZjAtOGM2ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKVT/34Ftt7k2hkmxpVuIZWqUWRf7oelKUMPubu0xUx///Lyc/4wHJEbr99K JNjB/5hIjfq8wvGp+YnUEhCNVYt+EMpk0LeLxPRhfwxvGPkSMbZIqGqU2aUt0IE3 qdM9SoQ9Q8vICCJhg6948dL4VOL0LME58r99bkP12w1NJr3szvNn3CXn1s7wL0Ia SSP+y83Z4qqF78HjkVPB+Y7x52a+ajrQF17amosUn9w/AQ8VGYzqk3k8FS6P16zG 4ao+AelrzwXaAJt10ilSVf+r9f//2vQLQr4615I2R1IJltyX1UhO+SbmQVD8A+70 Ld/yv9o8c59utLscDrUU07T00RsCAwEAAaOCAqYwggKiMB0GA1UdDgQWBBQaY/OF rvKYQ4COTTMjfymOfeefuDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzY4NERFMzZF NkFBMDExRUJBMDM1MzAzN0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQAZ59GMA8EAgACMAkDBwAgAQ31d4AwDQYJKoZIhvcNAQEL BQADggEBAArhtBLaEul27io/gTfynbkKJmgIaXHdoHWhPXl2zi0Fnms6JC3/7+Om dxbYSmAAHkYsQlDiIutTCzEG9n8CART3jOXVeI5YRu3AOSC2CYvbgnao+6B1/pHE rowB4pYOXW4dbIjxgll8v9klw69rss5RQKIHKeT25+kaL5aaN2ZpoAoGZMmAiVOs MPWyPojqHGZTNplThiT71WJkoF7U+OknR/U+P6uOtbtU7YQY3cQq5z+hhJacpWEI hV9hAU7gssHCRuGOfFbtStFrk+cC2DXX/vGD3T/isUUtYsnAbJEN7eqLLsyNYqKk TEJAs45ZTtdJ0LtnqTT8CzZT7cIM9I4= -----END CERTIFICATE-----Generated at Fri Nov 22 11:47:48 2024 by rpki-client on console-ams.rpki-client.org