$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/71CAB48ED6DB11EAB67FE379C4F9AE02.roa File: 71CAB48ED6DB11EAB67FE379C4F9AE02.roa (raw, json) Hash identifier: y/QeFmkK1kHpJj+fo4pSI3ybDn8eAFxwNVzMMBIOjyQ= Subject key identifier: 7C:D4:38:30:09:1A:7F:1A:DC:17:49:D8:56:09:AD:A4:61:16:B1:9A Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8912 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/71CAB48ED6DB11EAB67FE379C4F9AE02.roa Signing time: Thu 30 May 2024 15:57:19 +0000 ROA not before: Thu 30 May 2024 15:57:19 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 133679 IP address blocks: 103.95.172.0/22 maxlen: 24 2001:df3:2a40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35090 (0x8912) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 15:57:19 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a1de-1709 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:1b:4a:73:71:22:87:1d:eb:4b:97:91:9a:45: db:5c:57:d5:d3:9d:6c:53:11:37:f4:aa:11:4f:74: 7d:d0:ba:61:f2:54:91:5a:f6:a5:26:86:55:b1:6b: 05:76:47:48:d1:91:b6:df:be:da:3d:14:9a:f1:8c: 70:5a:e3:f1:a5:a7:64:45:a0:c1:eb:b4:96:d6:12: a3:25:7f:d0:1e:fa:b4:f4:67:3c:c8:d8:0d:48:66: ad:25:3d:32:02:99:2a:7f:b0:8e:c3:8b:81:8d:49: 9d:89:45:56:be:23:02:32:4a:af:8f:15:48:30:14: ce:b2:14:e8:77:98:53:a4:b9:86:e8:02:cc:ab:94: c0:fd:fa:76:c7:37:a9:ff:af:2c:d2:20:07:d5:bd: e7:b7:c9:6e:82:d3:e1:66:5e:a0:dc:c0:fb:02:b4: 22:08:6a:8b:34:20:60:5c:d5:76:1f:49:81:5f:64: 53:d7:a7:74:81:9d:20:df:ad:2b:99:a1:c3:45:03: 98:c8:7c:1f:2a:38:78:e5:fd:95:e6:3a:f8:5e:a2: 6b:7c:e2:28:06:e3:90:f0:58:53:8e:a9:fa:e2:cb: 7d:df:3d:72:b4:bc:e1:bb:95:5f:99:bc:99:e6:aa: 49:37:17:6b:bc:ff:21:c2:9d:e1:41:38:8e:e8:f2: 60:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:D4:38:30:09:1A:7F:1A:DC:17:49:D8:56:09:AD:A4:61:16:B1:9A X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/71CAB48ED6DB11EAB67FE379C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.95.172.0/22 IPv6: 2001:df3:2a40::/48 Signature Algorithm: sha256WithRSAEncryption 6b:17:e1:4c:d0:00:92:27:47:25:c0:46:d9:cc:bd:d2:65:f5: 2c:a4:20:64:9f:1b:32:77:94:3d:db:87:00:7d:62:b7:c9:14: 47:26:9d:c6:dc:71:22:61:0f:93:40:c4:80:bf:68:3c:80:0f: 4f:d3:24:e2:e1:af:a8:05:18:78:b6:1e:30:8e:8f:fa:33:49: d0:7e:e8:fc:50:06:a1:d4:47:ce:d9:bd:20:9d:d4:fb:8e:c8: 01:4a:e4:02:18:68:a5:03:01:ff:87:6b:c1:b4:cc:a2:de:b5: b4:e8:60:16:cb:7c:54:b2:92:f4:63:dc:45:55:fe:fc:eb:40: 2f:e7:a9:6d:84:90:c8:cb:88:ce:b1:a9:b4:b7:57:2d:75:d7: 31:cb:4c:f2:ae:7b:d2:11:a0:14:fd:08:72:4e:1d:aa:c8:4b: 5e:70:d4:da:e5:05:1d:e0:07:7f:5b:b7:bf:06:39:7d:9e:1f: 12:8b:ca:84:5e:03:86:f0:96:ed:11:b1:af:80:49:f9:2e:eb: eb:37:ee:8a:8a:3f:87:83:ca:5d:b5:bf:e2:bb:89:0a:87:42: 20:a3:b4:2a:b4:0e:44:5d:5e:99:10:88:32:f2:6c:61:22:53: 09:36:6f:ab:5a:ec:ca:98:fc:e8:3d:ac:3e:8b:2a:1d:54:36: a3:9c:65:be -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDAIkSMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE1NTcxOVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGExZGUtMTcwOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANcbSnNxIocd60uXkZpF21xX1dOdbFMRN/SqEU90fdC6YfJUkVr2pSaGVbFr BXZHSNGRtt++2j0UmvGMcFrj8aWnZEWgweu0ltYSoyV/0B76tPRnPMjYDUhmrSU9 MgKZKn+wjsOLgY1JnYlFVr4jAjJKr48VSDAUzrIU6HeYU6S5hugCzKuUwP36dsc3 qf+vLNIgB9W957fJboLT4WZeoNzA+wK0IghqizQgYFzVdh9JgV9kU9endIGdIN+t K5mhw0UDmMh8Hyo4eOX9leY6+F6ia3ziKAbjkPBYU46p+uLLfd89crS84buVX5m8 meaqSTcXa7z/IcKd4UE4jujyYJMCAwEAAaOCAqYwggKiMB0GA1UdDgQWBBR81Dgw CRp/GtwXSdhWCa2kYRaxmjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzcxQ0FCNDhF RDZEQjExRUFCNjdGRTM3OUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQCZ1+sMA8EAgACMAkDBwAgAQ3zKkAwDQYJKoZIhvcNAQEL BQADggEBAGsX4UzQAJInRyXARtnMvdJl9SykIGSfGzJ3lD3bhwB9YrfJFEcmncbc cSJhD5NAxIC/aDyAD0/TJOLhr6gFGHi2HjCOj/ozSdB+6PxQBqHUR87ZvSCd1PuO yAFK5AIYaKUDAf+Ha8G0zKLetbToYBbLfFSykvRj3EVV/vzrQC/nqW2EkMjLiM6x qbS3Vy111zHLTPKue9IRoBT9CHJOHarIS15w1NrlBR3gB39bt78GOX2eHxKLyoRe A4bwlu0Rsa+ASfku6+s37oqKP4eDyl21v+K7iQqHQiCjtCq0DkRdXpkQiDLybGEi Uwk2b6ta7MqY/Og9rD6LKh1UNqOcZb4= -----END CERTIFICATE-----Generated at Fri Nov 22 11:17:42 2024 by rpki-client on console-fra.rpki-client.org