$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/724C20AA06FB11EBBB5F396DC4F9AE02.roa File: 724C20AA06FB11EBBB5F396DC4F9AE02.roa (raw, json) Hash identifier: QZiQ8vXd0v8VooeLkjC4o2d0iU0uETFKCTV+NlV7YIw= Subject key identifier: CA:09:F2:40:0B:B3:C3:84:65:15:4A:76:3C:8A:69:E3:5C:96:3C:5D Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8A78 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/724C20AA06FB11EBBB5F396DC4F9AE02.roa Signing time: Thu 30 May 2024 16:03:09 +0000 ROA not before: Thu 30 May 2024 16:03:09 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 135755 IP address blocks: 103.113.32.0/22 maxlen: 24 103.164.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35448 (0x8a78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: May 30 16:03:09 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a33d-9be5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0f:b2:5d:ae:f5:89:45:c5:ed:be:24:ef:0f: a9:79:a4:da:28:24:55:74:e6:f6:e3:c4:30:87:1e: b4:ad:d0:81:d8:5b:05:c4:b8:81:0d:b5:b5:5a:7f: da:9c:0f:2c:48:a0:3f:ce:53:0d:08:ad:3f:0a:e9: e3:dd:29:56:16:32:6b:27:9f:4e:12:49:4a:00:a6: 48:81:da:b1:79:f7:00:54:75:31:52:d5:f9:ca:88: b4:e9:68:7d:9a:0d:d1:f8:72:28:65:42:d2:a4:06: ac:f4:03:92:07:61:76:7d:e7:df:7d:04:5a:d0:9d: 4b:b5:33:db:69:c8:ec:dd:cc:73:24:dc:9b:46:7b: 98:c3:b1:ae:8b:f3:28:e9:13:cb:16:7a:f1:48:5a: 16:00:22:31:b3:0f:47:71:45:db:6b:66:9f:27:f2: 36:45:90:c5:33:ed:6f:7b:bf:f5:75:f0:c3:d3:5a: 4a:88:ed:17:38:fd:b8:01:17:1e:37:a2:4c:55:91: 20:aa:7b:7f:47:5c:6e:90:84:80:ad:8d:1e:8c:e8: 60:ce:ff:b1:fb:ea:d0:5b:a4:b4:00:d4:d2:38:c6: 66:c9:00:f1:8b:f3:f0:e6:dd:a0:26:40:b7:10:1e: 47:73:15:75:73:de:16:4b:ae:04:2e:9f:f4:08:ff: 2a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:09:F2:40:0B:B3:C3:84:65:15:4A:76:3C:8A:69:E3:5C:96:3C:5D X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/724C20AA06FB11EBBB5F396DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.113.32.0/22 103.164.247.0/24 Signature Algorithm: sha256WithRSAEncryption a0:2a:d4:86:0f:f3:08:41:81:81:be:22:c6:d7:0a:75:4b:e0: 97:4f:f8:97:f1:fa:1e:a6:4d:10:88:03:3b:e5:ee:af:a8:1f: 94:94:2a:c5:44:1b:ce:68:bb:2b:28:f6:22:d0:69:44:f1:25: 5a:2e:1a:05:c7:af:6a:91:00:c9:1d:7e:dd:9e:5a:9f:c8:59: 27:c9:1b:c1:07:e0:38:d2:50:bc:8f:19:de:14:f1:b1:2d:cf: eb:f6:37:76:d5:aa:65:fd:25:68:c8:b5:7f:92:92:21:42:be: 61:d2:37:4a:53:b5:5a:da:ff:e5:7c:2a:78:fa:9f:2d:7a:58: 23:aa:6f:39:39:97:1e:ca:7f:97:c0:4f:d8:05:b5:be:e0:1d: 76:3e:b2:9e:97:c8:9c:29:aa:a4:6e:18:0d:28:ed:6e:db:9d: 71:03:af:c6:66:ef:f2:a7:10:ab:11:98:dc:19:7a:36:5f:f1: 72:45:e5:c1:2a:e6:7c:af:01:90:79:43:0f:e7:6e:1f:42:3e: 31:d8:e6:6f:04:ab:bb:32:43:a4:63:e4:41:fe:ef:e8:29:d4: 55:ba:3a:c8:e7:47:7e:14:2c:4e:69:98:ab:a8:15:b7:30:9f: de:f9:b0:a4:e1:48:e9:22:25:ff:2d:99:45:30:30:e0:8c:ba: 38:f2:e9:f1 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIDAIp4MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MDMwOVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGEzM2QtOWJlNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALgPsl2u9YlFxe2+JO8PqXmk2igkVXTm9uPEMIcetK3QgdhbBcS4gQ21tVp/ 2pwPLEigP85TDQitPwrp490pVhYyayefThJJSgCmSIHasXn3AFR1MVLV+cqItOlo fZoN0fhyKGVC0qQGrPQDkgdhdn3n330EWtCdS7Uz22nI7N3McyTcm0Z7mMOxrovz KOkTyxZ68UhaFgAiMbMPR3FF22tmnyfyNkWQxTPtb3u/9XXww9NaSojtFzj9uAEX HjeiTFWRIKp7f0dcbpCEgK2NHozoYM7/sfvq0FuktADU0jjGZskA8Yvz8ObdoCZA txAeR3MVdXPeFkuuBC6f9Aj/KjsCAwEAAaOCApswggKXMB0GA1UdDgQWBBTKCfJA C7PDhGUVSnY8imnjXJY8XTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzcyNEMyMEFB MDZGQjExRUJCQjVGMzk2REM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCUGCCsGAQUFBwEHAQH/ BBYwFDASBAIAATAMAwQCZ3EgAwQAZ6T3MA0GCSqGSIb3DQEBCwUAA4IBAQCgKtSG D/MIQYGBviLG1wp1S+CXT/iX8foepk0QiAM75e6vqB+UlCrFRBvOaLsrKPYi0GlE 8SVaLhoFx69qkQDJHX7dnlqfyFknyRvBB+A40lC8jxneFPGxLc/r9jd21apl/SVo yLV/kpIhQr5h0jdKU7Va2v/lfCp4+p8telgjqm85OZceyn+XwE/YBbW+4B12PrKe l8icKaqkbhgNKO1u251xA6/GZu/ypxCrEZjcGXo2X/FyReXBKuZ8rwGQeUMP524f Qj4x2OZvBKu7MkOkY+RB/u/oKdRVujrI50d+FCxOaZirqBW3MJ/e+bCk4UjpIiX/ LZlFMDDgjLo48unx -----END CERTIFICATE-----Generated at Sun Feb 16 20:37:43 2025 by rpki-client