$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6BCA4E4AB1B811ED8DC4D42EC4F9AE02.roa File: 6BCA4E4AB1B811ED8DC4D42EC4F9AE02.roa (raw, json) Hash identifier: mU44HDt0sG+W9wQswMJbfldHxHWMzLuG7wdjE44JNm4= Subject key identifier: 99:D6:61:26:62:1D:33:F0:EF:97:E1:9E:34:34:32:EE:81:4B:6C:A3 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8BDF Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6BCA4E4AB1B811ED8DC4D42EC4F9AE02.roa Signing time: Thu 30 May 2024 16:08:58 +0000 ROA not before: Thu 30 May 2024 16:08:58 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 137672 IP address blocks: 103.116.144.0/24 maxlen: 24 103.116.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35807 (0x8bdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: May 30 16:08:58 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a49a-635d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d8:bb:2a:b2:2e:84:a5:12:a4:9f:95:da:3b: 1e:a1:cb:c4:f6:b2:84:5a:0e:15:f8:95:5d:80:7e: 4a:b1:96:a1:a2:40:c2:b5:f1:e1:3e:45:8c:c8:01: 83:8e:aa:7f:c0:e7:61:64:f4:5c:4f:b3:74:70:5f: 88:48:3e:68:4f:8a:af:fd:ad:27:6f:de:db:d7:35: 92:dc:76:d3:0e:14:4f:75:d6:f5:4a:41:aa:40:1f: 82:32:c8:07:5f:23:f7:a3:b7:4e:f5:50:ab:db:fc: ea:7a:14:40:fc:3d:63:15:d5:7a:e0:28:79:71:17: f4:8d:cd:6c:cd:80:2e:bb:f1:47:b5:78:1b:50:69: db:db:d9:82:4c:7a:df:ab:9c:f0:24:6a:f6:65:27: 11:2c:18:d1:1c:82:d0:a8:78:72:b5:2b:7e:44:ca: c1:73:77:d6:22:69:3b:2a:2a:0b:f3:e9:be:12:1f: 2f:03:b8:11:e6:6c:37:02:ae:bb:d3:03:bc:cd:8e: 84:6b:8e:22:7c:da:9b:65:51:5e:15:de:c9:ec:c2: 29:d8:7b:51:a2:b3:a8:31:ae:b8:6e:44:2d:49:f5: 11:16:ad:d2:b1:34:f9:52:ad:c2:53:f9:ef:70:cb: f3:a1:30:ee:4d:4e:42:5a:69:06:37:78:5f:2b:67: 54:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:D6:61:26:62:1D:33:F0:EF:97:E1:9E:34:34:32:EE:81:4B:6C:A3 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6BCA4E4AB1B811ED8DC4D42EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.144.0/23 Signature Algorithm: sha256WithRSAEncryption ab:ee:ea:29:47:9e:c4:05:d0:6c:80:6b:a6:a3:a7:a4:ab:db: cb:eb:a5:c4:39:9d:73:a9:d4:bd:a5:ea:54:34:d2:fe:27:1c: d0:22:d2:2e:05:55:d1:13:fd:18:cd:57:32:c0:db:dc:b3:fe: a6:f8:0e:d7:d0:4a:8b:eb:11:71:7d:22:2c:e3:9b:6c:71:d4: cc:93:1b:60:35:42:a9:6c:88:74:68:ad:a0:f8:c0:7b:13:67: f1:34:2d:da:65:e1:5e:7c:7a:f6:42:d6:29:07:11:7a:6b:69: 47:16:cf:66:ea:10:f5:1a:01:6f:0c:8c:2e:27:e5:52:bb:a7: 04:6c:bf:5c:44:29:8f:03:da:2f:1f:98:ee:34:4d:6d:42:d9: 9b:ac:4b:f8:e2:39:d0:31:03:1e:d2:7c:97:7d:6b:fe:ea:da: e4:51:f6:aa:52:d1:26:e6:90:f6:c0:08:23:72:ec:80:b8:b0: f5:1f:9c:fc:bf:7d:32:e6:ce:c5:e0:77:4e:5d:fe:00:13:2e: ac:c9:2a:50:a6:b2:35:ff:1f:84:b0:89:e0:70:b6:da:0c:f9: 9a:55:4c:e6:d3:9c:d4:9d:1c:a6:88:28:8a:53:fb:6d:9f:b0: c7:89:c4:d0:6a:63:ef:68:bd:76:dd:c5:27:e4:ad:2e:16:47: 43:c0:5d:4d -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAIvfMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MDg1OFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE0OWEtNjM1ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALLYuyqyLoSlEqSfldo7HqHLxPayhFoOFfiVXYB+SrGWoaJAwrXx4T5FjMgB g46qf8DnYWT0XE+zdHBfiEg+aE+Kr/2tJ2/e29c1ktx20w4UT3XW9UpBqkAfgjLI B18j96O3TvVQq9v86noUQPw9YxXVeuAoeXEX9I3NbM2ALrvxR7V4G1Bp29vZgkx6 36uc8CRq9mUnESwY0RyC0Kh4crUrfkTKwXN31iJpOyoqC/PpvhIfLwO4EeZsNwKu u9MDvM2OhGuOInzam2VRXhXeyezCKdh7UaKzqDGuuG5ELUn1ERat0rE0+VKtwlP5 73DL86Ew7k1OQlppBjd4XytnVKcCAwEAAaOCApUwggKRMB0GA1UdDgQWBBSZ1mEm Yh0z8O+X4Z40NDLugUtsozAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzZCQ0E0RTRB QjFCODExRUQ4REM0RDQyRUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ3SQMA0GCSqGSIb3DQEBCwUAA4IBAQCr7uopR57EBdBs gGumo6ekq9vL66XEOZ1zqdS9pepUNNL+JxzQItIuBVXRE/0YzVcywNvcs/6m+A7X 0EqL6xFxfSIs45tscdTMkxtgNUKpbIh0aK2g+MB7E2fxNC3aZeFefHr2QtYpBxF6 a2lHFs9m6hD1GgFvDIwuJ+VSu6cEbL9cRCmPA9ovH5juNE1tQtmbrEv44jnQMQMe 0nyXfWv+6trkUfaqUtEm5pD2wAgjcuyAuLD1H5z8v30y5s7F4HdOXf4AEy6sySpQ prI1/x+EsIngcLbaDPmaVUzm05zUnRymiCiKU/ttn7DHicTQamPvaL123cUn5K0u FkdDwF1N -----END CERTIFICATE-----Generated at Sun Feb 16 20:11:02 2025 by rpki-client