$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6E87AF72BDCF11EA8755D90DC4F9AE02.roa File: 6E87AF72BDCF11EA8755D90DC4F9AE02.roa (raw, json) Hash identifier: 9UECYbsf4jTpCD9+bFOUkuvJVFjQkqTogZBR36FRuR4= Subject key identifier: 03:6A:3A:43:E1:EF:CA:25:3A:E2:A7:9A:36:4B:82:73:21:D8:28:E4 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8C98 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6E87AF72BDCF11EA8755D90DC4F9AE02.roa Signing time: Thu 30 May 2024 16:11:59 +0000 ROA not before: Thu 30 May 2024 16:11:59 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 139547 IP address blocks: 103.142.134.0/24 maxlen: 24 103.142.135.0/24 maxlen: 24 2001:df2:a540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35992 (0x8c98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:11:59 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a54f-2b06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:fe:26:3e:a3:0a:3e:6a:a5:cb:59:fb:19:7b: dc:70:f6:f1:6f:c5:12:d2:13:00:2e:c6:6f:83:3d: 8d:3d:b4:52:29:12:be:03:72:48:a6:2b:9a:e6:e9: cb:cd:ac:b6:59:1a:2b:7f:d0:ca:a2:cc:16:22:0c: b5:92:6c:ea:e5:aa:e6:75:88:b8:d0:b3:b3:de:17: c6:61:ce:80:ed:10:07:89:63:56:b9:73:fb:93:d5: 1b:4b:a2:6e:45:8a:d9:96:3b:f0:c8:63:5d:c9:91: 86:ce:9a:6f:6a:dc:9a:5c:34:40:e2:45:23:80:82: b7:f5:66:e0:4f:3e:08:19:b8:5e:01:8f:fc:20:da: 21:e6:0d:48:5f:c6:7a:41:ba:e9:98:e3:4e:f1:67: c2:12:38:54:a4:3d:ff:bb:73:c2:ec:de:55:c5:e3: 79:c9:3d:0d:f1:66:5b:85:0a:77:d5:de:d5:65:78: bd:ea:43:ed:c1:ee:37:2f:73:34:0e:cd:5a:b4:3b: df:f8:32:99:34:18:a9:33:ad:1c:b1:54:ec:0d:f2: dd:de:fe:fa:b2:7d:aa:e4:c5:4d:1a:2e:be:69:86: 7e:09:7a:e3:e5:4c:b8:c8:2d:0d:87:bd:69:b9:f5: 71:90:8c:ee:7d:44:0c:b9:af:36:70:81:15:b7:04: 5b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:6A:3A:43:E1:EF:CA:25:3A:E2:A7:9A:36:4B:82:73:21:D8:28:E4 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6E87AF72BDCF11EA8755D90DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.134.0/23 IPv6: 2001:df2:a540::/48 Signature Algorithm: sha256WithRSAEncryption 64:f8:e5:f9:eb:fa:5d:91:e2:e6:48:00:ab:09:8c:e6:7d:4a: d9:b4:3e:3d:26:9e:a6:0c:c9:89:eb:17:57:87:7b:4a:35:a0: 09:9a:da:6a:b1:27:8f:ef:84:e9:d8:51:f9:f8:14:0b:44:df: cb:5a:6e:6e:b2:0d:c1:01:72:e5:9b:59:c1:86:90:bd:07:9a: e2:a3:45:03:cb:95:20:ca:98:68:d2:51:fb:3d:d4:5d:70:55: 86:35:cf:78:31:d4:61:60:5b:83:58:cc:e6:e2:8c:57:17:bb: 34:55:a6:ef:97:44:43:ee:14:c2:e9:8d:fd:74:2f:80:5e:fd: 93:9f:48:d8:8a:11:6f:8a:a4:4a:fe:70:4e:22:5b:3c:04:28: 0f:a7:3d:6d:89:6d:58:d2:d6:d7:ab:af:40:f1:28:20:50:33: ae:a4:8e:8a:c5:3e:bf:13:31:f0:e0:aa:37:98:0e:a9:15:e2: e2:38:1f:77:10:72:1c:2a:98:10:8a:bf:99:66:70:b0:49:5b: f2:3c:27:92:53:a0:29:33:67:a5:49:e9:c3:9f:82:b1:62:7c: 33:74:d7:f3:0f:0c:db:51:14:9a:e9:a8:87:9d:74:a8:c7:75: 6d:db:d9:42:8c:90:a1:f2:49:91:b6:9a:6d:a1:04:8c:22:cf: 81:17:5c:90 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDAIyYMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MTE1OVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE1NGYtMmIwNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO7+Jj6jCj5qpctZ+xl73HD28W/FEtITAC7Gb4M9jT20UikSvgNySKYrmubp y82stlkaK3/QyqLMFiIMtZJs6uWq5nWIuNCzs94XxmHOgO0QB4ljVrlz+5PVG0ui bkWK2ZY78MhjXcmRhs6ab2rcmlw0QOJFI4CCt/Vm4E8+CBm4XgGP/CDaIeYNSF/G ekG66ZjjTvFnwhI4VKQ9/7tzwuzeVcXjeck9DfFmW4UKd9Xe1WV4vepD7cHuNy9z NA7NWrQ73/gymTQYqTOtHLFU7A3y3d7++rJ9quTFTRouvmmGfgl64+VMuMgtDYe9 abn1cZCM7n1EDLmvNnCBFbcEW/cCAwEAAaOCAqYwggKiMB0GA1UdDgQWBBQDajpD 4e/KJTrip5o2S4JzIdgo5DAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzZFODdBRjcy QkRDRjExRUE4NzU1RDkwREM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQBZ46GMA8EAgACMAkDBwAgAQ3ypUAwDQYJKoZIhvcNAQEL BQADggEBAGT45fnr+l2R4uZIAKsJjOZ9Stm0Pj0mnqYMyYnrF1eHe0o1oAma2mqx J4/vhOnYUfn4FAtE38tabm6yDcEBcuWbWcGGkL0HmuKjRQPLlSDKmGjSUfs91F1w VYY1z3gx1GFgW4NYzObijFcXuzRVpu+XREPuFMLpjf10L4Be/ZOfSNiKEW+KpEr+ cE4iWzwEKA+nPW2JbVjS1terr0DxKCBQM66kjorFPr8TMfDgqjeYDqkV4uI4H3cQ chwqmBCKv5lmcLBJW/I8J5JToCkzZ6VJ6cOfgrFifDN01/MPDNtRFJrpqIeddKjH dW3b2UKMkKHySZG2mm2hBIwiz4EXXJA= -----END CERTIFICATE-----Generated at Fri Nov 22 11:47:49 2024 by rpki-client on console-ams.rpki-client.org