$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6DB6091A09EF11EBBDD8F16EC4F9AE02.roa File: 6DB6091A09EF11EBBDD8F16EC4F9AE02.roa (raw, json) Hash identifier: loB5LBc6dpbF7vEI9JcoD6LkOUYsD+RDxF569GIffdg= Subject key identifier: 89:6F:FE:C3:4D:D6:B8:65:E9:A6:A7:DE:62:39:7F:FC:D1:87:63:B8 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8BEB Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6DB6091A09EF11EBBDD8F16EC4F9AE02.roa Signing time: Thu 30 May 2024 16:09:11 +0000 ROA not before: Thu 30 May 2024 16:09:11 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 138224 IP address blocks: 103.130.110.0/24 maxlen: 24 103.149.236.0/24 maxlen: 24 2001:df2:5080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 12:05:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35819 (0x8beb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:09:11 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a4a7-3105 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:0e:e7:77:04:44:c1:01:c9:98:3f:7c:d7:ed: 96:41:8d:ac:cf:da:71:a9:f6:3d:04:04:fe:d0:eb: 99:53:97:53:90:79:95:f1:24:cf:79:21:bc:85:51: 09:98:95:76:3f:2e:32:4b:16:16:04:a9:48:ae:bf: 30:01:9f:4b:7d:88:8c:b0:a3:90:89:8e:1c:f2:91: 1d:5f:87:24:b4:a1:a5:27:a9:9b:12:ef:de:2f:b6: 3f:d2:7b:85:6b:a1:be:1e:ff:7d:22:c3:e4:fb:7f: 62:a0:93:69:42:17:9b:1d:6a:ab:46:49:c3:43:57: 38:6d:1f:91:29:c8:60:bc:e4:4a:56:69:bc:7b:9b: ae:3c:06:0a:6c:a7:e5:1d:ed:59:10:21:c5:3f:7c: c2:87:c9:fe:5c:58:49:9d:eb:99:8d:de:f7:33:0a: 41:b0:7f:2c:6d:4f:e3:9b:a6:ad:bd:b0:84:54:81: 2d:17:50:a7:ce:e2:05:9a:8a:2d:ba:44:48:88:41: de:33:23:dc:6c:10:0d:cf:dc:2e:c2:54:d2:2e:90: 34:3f:2a:dd:02:3a:3c:82:36:22:ea:27:d0:46:0c: e4:0d:e3:3e:ff:43:e4:c5:a9:ea:f3:b7:3f:28:18: f5:a2:61:2d:fb:7b:ad:b7:9a:fb:a2:11:1f:7c:a3: cc:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:6F:FE:C3:4D:D6:B8:65:E9:A6:A7:DE:62:39:7F:FC:D1:87:63:B8 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6DB6091A09EF11EBBDD8F16EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.130.110.0/24 103.149.236.0/24 IPv6: 2001:df2:5080::/48 Signature Algorithm: sha256WithRSAEncryption ac:bf:d5:02:71:e7:ba:38:5e:5d:a6:6c:73:0b:d0:f2:21:02: 48:e2:97:09:11:6e:1c:67:f9:c2:f8:6e:53:09:c6:61:ac:09: 85:c8:19:bf:76:1a:02:4b:b0:aa:a5:36:22:74:e5:de:fe:5d: db:c4:1c:df:9b:f8:54:ca:06:d1:3b:78:d1:21:62:e6:8b:30: 2d:86:8e:f8:d0:f0:26:14:a7:ce:da:1b:cc:39:4e:50:86:1a: fe:a1:7e:4b:c2:ee:10:62:6c:f1:e7:26:85:d2:a8:fe:3f:05: a3:bd:8b:5f:c7:11:63:bd:8d:ab:5f:10:d9:57:fa:06:c2:f5: 89:6a:e0:e1:7e:be:a3:60:59:49:90:af:a6:b4:8b:2b:3b:3d: 37:f0:1d:36:b1:59:8f:45:e7:55:ac:af:5d:f9:f2:ff:fd:64: 36:ca:9a:68:46:a9:c1:28:33:4d:4d:6c:c5:67:0f:b6:20:78: 0a:79:fd:66:ee:a7:9d:41:2a:bf:50:b1:81:45:70:88:7a:25: 78:d0:06:37:22:68:c2:a9:b1:0a:75:90:9d:62:7c:26:74:42: 52:f5:12:16:a7:ae:80:9b:bb:59:b8:f8:47:4a:94:8f:91:8a: 3d:e5:23:58:38:be:37:8f:c1:35:cd:33:57:2f:b8:e5:cc:c5: e5:77:d7:d8 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgIDAIvrMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MDkxMVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE0YTctMzEwNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALkO53cERMEByZg/fNftlkGNrM/acan2PQQE/tDrmVOXU5B5lfEkz3khvIVR CZiVdj8uMksWFgSpSK6/MAGfS32IjLCjkImOHPKRHV+HJLShpSepmxLv3i+2P9J7 hWuhvh7/fSLD5Pt/YqCTaUIXmx1qq0ZJw0NXOG0fkSnIYLzkSlZpvHubrjwGCmyn 5R3tWRAhxT98wofJ/lxYSZ3rmY3e9zMKQbB/LG1P45umrb2whFSBLRdQp87iBZqK LbpESIhB3jMj3GwQDc/cLsJU0i6QND8q3QI6PII2Iuon0EYM5A3jPv9D5MWp6vO3 PygY9aJhLft7rbea+6IRH3yjzHMCAwEAAaOCAqwwggKoMB0GA1UdDgQWBBSJb/7D Tda4Zemmp95iOX/80YdjuDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzZEQjYwOTFB MDlFRjExRUJCREQ4RjE2RUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDYGCCsGAQUFBwEHAQH/ BCcwJTASBAIAATAMAwQAZ4JuAwQAZ5XsMA8EAgACMAkDBwAgAQ3yUIAwDQYJKoZI hvcNAQELBQADggEBAKy/1QJx57o4Xl2mbHML0PIhAkjilwkRbhxn+cL4blMJxmGs CYXIGb92GgJLsKqlNiJ05d7+XdvEHN+b+FTKBtE7eNEhYuaLMC2GjvjQ8CYUp87a G8w5TlCGGv6hfkvC7hBibPHnJoXSqP4/BaO9i1/HEWO9jatfENlX+gbC9Ylq4OF+ vqNgWUmQr6a0iys7PTfwHTaxWY9F51Wsr1358v/9ZDbKmmhGqcEoM01NbMVnD7Yg eAp5/Wbup51BKr9QsYFFcIh6JXjQBjciaMKpsQp1kJ1ifCZ0QlL1EhanroCbu1m4 +EdKlI+Rij3lI1g4vjePwTXNM1cvuOXMxeV319g= -----END CERTIFICATE-----Generated at Fri Nov 22 13:35:02 2024 by rpki-client on console-fra.rpki-client.org