$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7764291AEDA211EAA22D521FC4F9AE02.roa File: 7764291AEDA211EAA22D521FC4F9AE02.roa (raw, json) Hash identifier: C3RZx/bjtpQY3h+qGULoq1C2J31KWRWfai49CJ6T2fo= Subject key identifier: FB:C9:2D:17:65:39:9B:DD:45:CC:08:C0:80:89:A7:D5:22:95:09:1B Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8860 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7764291AEDA211EAA22D521FC4F9AE02.roa Signing time: Thu 30 May 2024 15:54:17 +0000 ROA not before: Thu 30 May 2024 15:54:17 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 132515 IP address blocks: 103.120.234.0/23 maxlen: 24 2001:df4:6180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34912 (0x8860) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 15:54:17 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a129-3397 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:18:d2:07:69:25:7f:86:85:f5:a8:95:d2:e4: d5:75:4a:7a:ea:d7:30:60:df:c7:c6:01:f7:8d:81: d7:1a:5a:f6:b8:b9:d5:a8:db:b4:b5:e6:79:97:fd: 5f:f9:60:69:ca:1b:a7:cd:21:4c:05:89:bc:4a:5f: 0b:77:7b:d6:4a:0d:ee:04:76:e9:a9:42:71:67:b2: 30:98:25:12:ba:2f:43:f6:f0:8c:30:90:a3:33:e3: 2c:ac:2b:35:7c:be:41:4e:5e:29:ab:b7:e5:5d:fd: 29:a9:84:04:40:a3:bb:4a:d7:bf:49:f7:b0:49:98: d1:d0:a3:b7:18:f2:23:2d:bc:36:ab:13:c6:21:2a: c5:6b:61:ca:cf:1c:2f:16:02:38:9b:91:35:ad:0a: 35:e0:69:7c:92:be:64:75:f6:67:b3:3f:ea:c7:41: 67:21:9d:c2:3f:59:89:ff:46:d0:75:7e:21:6a:8b: 5e:8d:05:4a:62:dc:a8:cf:ee:23:79:c2:49:75:0f: 7a:0c:0a:8a:53:bc:2a:58:b7:72:2c:54:1d:fe:fa: 48:cc:f8:8f:d0:e8:83:d4:f8:c5:e2:23:a6:04:16: f5:42:b8:4b:40:ec:e7:49:dc:cb:0f:b2:75:18:34: 92:7a:a2:e3:40:d2:d9:74:75:bf:36:50:0b:f6:8a: a8:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:C9:2D:17:65:39:9B:DD:45:CC:08:C0:80:89:A7:D5:22:95:09:1B X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7764291AEDA211EAA22D521FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.234.0/23 IPv6: 2001:df4:6180::/48 Signature Algorithm: sha256WithRSAEncryption af:99:d1:f0:3c:14:71:5e:72:60:87:92:0f:c7:91:6f:3a:1c: 3f:88:30:6a:6e:94:e3:2a:cc:18:d4:e8:a8:84:e3:96:41:72: e0:d2:0b:51:38:88:5e:0d:f6:47:27:58:32:7f:4a:5f:3b:e2: 6d:f4:d6:93:53:72:50:df:8e:f3:11:0d:97:88:02:49:55:de: 71:81:e8:65:ba:f3:b5:79:d6:b6:69:bc:c1:e1:a6:cd:94:0f: 1c:9e:f2:54:3b:80:ff:79:08:ad:a1:52:06:08:14:2a:9b:02: 4d:c1:52:02:88:2f:ef:cd:84:51:0e:c4:6c:d9:14:4d:ff:a9: 95:e8:19:12:b6:00:5b:43:58:f4:6c:5f:27:45:b1:16:ad:55: f7:54:04:ba:c0:35:ed:f2:4e:40:66:55:ee:4e:e2:1c:93:a3: 6e:d7:a2:43:f4:3d:12:0f:29:fc:43:0b:9e:a7:59:b0:b3:e6: 98:a7:99:ec:bc:bb:87:0c:6f:d3:74:fd:99:9d:3f:fe:90:b2: 1e:ef:d6:81:77:40:e1:a4:46:41:a8:18:d5:9b:51:3d:85:7f: 43:1a:7a:46:9b:04:f7:f9:13:69:8a:f2:e0:53:7d:50:1e:a8: 4f:88:cb:8d:9a:f6:31:58:d9:1d:12:3f:38:cf:b5:41:92:52: b4:ea:9b:92 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDAIhgMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE1NTQxN1oXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGExMjktMzM5NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMwY0gdpJX+GhfWoldLk1XVKeurXMGDfx8YB942B1xpa9ri51ajbtLXmeZf9 X/lgacobp80hTAWJvEpfC3d71koN7gR26alCcWeyMJglErovQ/bwjDCQozPjLKwr NXy+QU5eKau35V39KamEBECju0rXv0n3sEmY0dCjtxjyIy28NqsTxiEqxWthys8c LxYCOJuRNa0KNeBpfJK+ZHX2Z7M/6sdBZyGdwj9Zif9G0HV+IWqLXo0FSmLcqM/u I3nCSXUPegwKilO8Kli3cixUHf76SMz4j9Dog9T4xeIjpgQW9UK4S0Ds50ncyw+y dRg0knqi40DS2XR1vzZQC/aKqPcCAwEAAaOCAqYwggKiMB0GA1UdDgQWBBT7yS0X ZTmb3UXMCMCAiafVIpUJGzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzc3NjQyOTFB RURBMjExRUFBMjJENTIxRkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQBZ3jqMA8EAgACMAkDBwAgAQ30YYAwDQYJKoZIhvcNAQEL BQADggEBAK+Z0fA8FHFecmCHkg/HkW86HD+IMGpulOMqzBjU6KiE45ZBcuDSC1E4 iF4N9kcnWDJ/Sl874m301pNTclDfjvMRDZeIAklV3nGB6GW687V51rZpvMHhps2U Dxye8lQ7gP95CK2hUgYIFCqbAk3BUgKIL+/NhFEOxGzZFE3/qZXoGRK2AFtDWPRs XydFsRatVfdUBLrANe3yTkBmVe5O4hyTo27XokP0PRIPKfxDC56nWbCz5pinmey8 u4cMb9N0/ZmdP/6Qsh7v1oF3QOGkRkGoGNWbUT2Ff0MaekabBPf5E2mK8uBTfVAe qE+Iy42a9jFY2R0SPzjPtUGSUrTqm5I= -----END CERTIFICATE-----Generated at Fri Nov 22 11:47:51 2024 by rpki-client on console-ams.rpki-client.org