$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/753A2E54989B11EDB8D0C33FC4F9AE02.roa File: 753A2E54989B11EDB8D0C33FC4F9AE02.roa (raw, json) Hash identifier: QhstgsDi96PGcG2FMa2dz8nn/710TWUWxDBpvu3RfHM= Subject key identifier: 23:79:6D:F4:24:75:B1:6B:0F:D7:CD:2B:36:30:F9:95:AD:21:D6:EC Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8FB6 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/753A2E54989B11EDB8D0C33FC4F9AE02.roa Signing time: Thu 30 May 2024 16:24:57 +0000 ROA not before: Thu 30 May 2024 16:24:57 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 150575 IP address blocks: 103.49.102.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36790 (0x8fb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: May 30 16:24:57 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a859-4690 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:3e:9b:60:75:de:d1:e1:8b:82:1a:16:65:80: 8d:3f:d4:af:af:03:6c:c4:c9:b4:7c:f8:8b:54:e4: 05:d0:d2:03:f0:51:7d:8b:e2:37:78:61:c9:bf:2c: f3:3d:af:57:d0:38:77:59:ae:81:e0:a1:59:0b:e5: c9:eb:26:4e:6a:e1:3a:a2:00:77:e3:70:6b:e2:60: 01:46:d8:a7:90:e7:23:24:be:18:fb:eb:9a:6d:c8: 34:e3:18:40:13:b5:a0:93:16:26:51:45:6f:e8:e1: c1:87:36:fe:00:a8:2d:92:a2:a7:bc:90:60:54:d5: 94:0c:33:03:c4:18:26:83:bb:2e:5a:1c:6d:83:d0: 2d:ee:35:e7:69:a2:eb:59:22:16:df:dc:3d:a3:a2: 13:f0:c0:72:9d:00:4b:22:ab:fa:93:f2:6b:89:6e: 77:d3:d1:80:59:53:27:0a:06:5f:2c:05:f4:3a:e0: 2c:f5:8f:b7:ef:07:29:38:8e:c3:88:fb:d3:e6:a1: 8d:62:fc:1f:23:fd:15:91:ca:9a:13:c9:48:63:a3: d3:bc:e9:d6:91:54:28:b3:cf:41:51:e4:28:8c:a6: ed:72:23:a4:81:c4:60:a1:9d:86:f3:15:40:7f:90: 9d:f6:ae:27:15:21:14:1f:70:4b:c4:66:1b:84:af: cd:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:79:6D:F4:24:75:B1:6B:0F:D7:CD:2B:36:30:F9:95:AD:21:D6:EC X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/753A2E54989B11EDB8D0C33FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.49.102.0/23 Signature Algorithm: sha256WithRSAEncryption 08:57:b9:54:8d:3b:22:52:d9:41:43:43:7c:60:44:18:2a:d7: da:8d:43:29:71:1c:90:cf:c2:94:d6:2b:38:77:a0:46:9e:9a: c7:11:76:05:ae:ef:44:3d:1c:d5:7b:81:95:b8:5b:57:7a:df: 7e:07:9b:ec:5d:c3:62:f4:59:4c:91:fe:21:44:6a:56:50:55: db:1d:f1:53:d5:e8:5a:95:50:eb:a2:ab:6d:1d:01:2d:f4:41: 5e:18:3e:eb:cf:c3:0f:61:a9:67:27:cd:6a:c0:7b:04:7c:dc: a1:31:29:26:08:cb:c5:44:c3:04:e7:52:46:69:47:ee:03:70: 41:8c:5a:09:e3:02:83:80:29:a0:b3:bc:dd:8a:a5:2e:95:70: f3:1f:70:72:82:0f:b2:cc:0c:f1:4e:f1:ce:4b:a2:73:a0:65: 17:ec:83:80:a8:31:7f:28:0e:de:e6:30:91:a1:4f:65:3e:82: 62:52:46:59:4c:c8:04:63:e0:e8:ba:5b:25:bc:08:81:ad:74: 1c:12:54:95:47:30:1f:1a:7b:c1:10:2c:e8:3d:f6:fc:77:29: c8:03:0e:45:77:10:bb:b4:ad:42:44:d9:11:73:e8:8d:f9:4d: 00:cc:d9:b5:97:e4:f1:06:b6:e2:fd:b7:1b:ba:cd:f6:f8:e0: 8a:be:03:40 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAI+2MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MjQ1N1oXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE4NTktNDY5MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALc+m2B13tHhi4IaFmWAjT/Ur68DbMTJtHz4i1TkBdDSA/BRfYviN3hhyb8s 8z2vV9A4d1mugeChWQvlyesmTmrhOqIAd+Nwa+JgAUbYp5DnIyS+GPvrmm3INOMY QBO1oJMWJlFFb+jhwYc2/gCoLZKip7yQYFTVlAwzA8QYJoO7LlocbYPQLe4152mi 61kiFt/cPaOiE/DAcp0ASyKr+pPya4lud9PRgFlTJwoGXywF9DrgLPWPt+8HKTiO w4j70+ahjWL8HyP9FZHKmhPJSGOj07zp1pFUKLPPQVHkKIym7XIjpIHEYKGdhvMV QH+QnfauJxUhFB9wS8RmG4SvzTUCAwEAAaOCApUwggKRMB0GA1UdDgQWBBQjeW30 JHWxaw/XzSs2MPmVrSHW7DAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzc1M0EyRTU0 OTg5QjExRURCOEQwQzMzRkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZzFmMA0GCSqGSIb3DQEBCwUAA4IBAQAIV7lUjTsiUtlB Q0N8YEQYKtfajUMpcRyQz8KU1is4d6BGnprHEXYFru9EPRzVe4GVuFtXet9+B5vs XcNi9FlMkf4hRGpWUFXbHfFT1ehalVDroqttHQEt9EFeGD7rz8MPYalnJ81qwHsE fNyhMSkmCMvFRMME51JGaUfuA3BBjFoJ4wKDgCmgs7zdiqUulXDzH3Bygg+yzAzx TvHOS6JzoGUX7IOAqDF/KA7e5jCRoU9lPoJiUkZZTMgEY+DoulslvAiBrXQcElSV RzAfGnvBECzoPfb8dynIAw5FdxC7tK1CRNkRc+iN+U0AzNm1l+TxBrbi/bcbus32 +OCKvgNA -----END CERTIFICATE-----Generated at Sun Feb 16 20:24:56 2025 by rpki-client