$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7827BB2E56B711EE9C283D27C4F9AE02.roa File: 7827BB2E56B711EE9C283D27C4F9AE02.roa (raw, json) Hash identifier: TP8vPBnUhLA+gt5nUC+2+RTmFmb47DZEst5NKf+VBrI= Subject key identifier: 62:7B:90:91:D1:F7:A9:26:16:E0:45:25:BB:45:01:38:CC:29:37:72 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8B28 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7827BB2E56B711EE9C283D27C4F9AE02.roa Signing time: Thu 30 May 2024 16:06:00 +0000 ROA not before: Thu 30 May 2024 16:06:00 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 136657 IP address blocks: 103.170.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 12:05:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35624 (0x8b28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:06:00 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a3e8-b5c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b7:41:3c:f5:b5:51:ea:dd:9f:88:79:62:65: a0:99:24:14:64:69:a8:a4:cc:2d:a6:50:44:91:e4: 64:f5:79:d1:5b:30:c9:2c:e8:5d:b6:88:5a:d8:83: af:5b:2a:6c:a0:ae:09:87:68:bc:5a:bf:a1:5e:a7: 43:5c:45:1f:04:d6:8b:b4:cb:6a:92:c7:8a:ed:94: 7b:c8:e3:17:97:2e:15:26:99:e1:ce:a0:a0:40:03: d7:38:45:ff:fe:47:aa:c1:4c:43:c2:6a:c5:27:f4: 46:8b:87:2e:24:dc:7a:80:1e:a8:d0:62:52:09:f7: 34:7a:73:9f:d2:dd:4b:0e:0f:9b:0e:3c:7a:6a:aa: 7a:ae:cb:f0:93:9c:49:b0:54:59:1a:04:ff:3a:25: 12:1d:0e:cf:14:07:89:16:a8:a8:78:8a:69:72:69: e6:28:97:ad:70:29:08:60:12:46:14:3d:7d:d8:52: e2:b4:4f:70:b9:5c:5a:09:e9:6a:37:05:b4:c1:51: c8:a4:7f:a4:83:de:42:72:4e:96:35:bd:1c:e8:5e: 70:da:03:48:d6:d7:8a:96:b8:5e:70:3a:22:76:94: 91:23:d0:ec:f3:98:1e:70:42:c7:b8:b0:cc:71:32: 14:66:4b:3f:11:8a:82:11:8e:14:f1:29:f9:e0:bc: 9f:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:7B:90:91:D1:F7:A9:26:16:E0:45:25:BB:45:01:38:CC:29:37:72 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7827BB2E56B711EE9C283D27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.149.0/24 Signature Algorithm: sha256WithRSAEncryption 32:23:56:50:69:49:05:53:25:2a:54:16:12:82:65:b8:68:e7: 5c:fe:f1:39:66:f2:5a:79:e7:a6:e3:fb:b0:f1:02:bd:75:5f: 7a:22:b2:36:d5:72:e4:a0:9e:ea:fb:33:79:85:ba:18:b1:3c: 66:00:80:34:c6:96:bb:d3:60:d5:cc:9b:c8:dc:3f:84:e2:be: c7:d4:db:3e:e2:65:a8:bd:e7:76:ee:50:67:70:95:5a:bd:51: 14:41:7e:ab:65:1d:b5:75:f1:98:90:f8:38:26:de:f4:5b:1f: 00:02:99:bf:9c:33:09:c4:bb:c0:96:9c:88:76:28:ff:36:d1: f0:4f:1d:c5:94:5f:b3:98:28:d5:f8:00:40:c1:a6:62:06:9b: 20:a4:f5:88:6e:60:fb:23:60:51:a3:58:f9:87:66:65:32:5c: ab:ce:b9:6d:1c:5f:d4:ad:f8:06:3d:0d:50:38:95:d5:0a:e1: 5d:97:db:be:cc:e9:ea:a4:a5:bc:f5:14:a3:90:f1:f9:65:51: ff:c6:3e:d1:e0:0a:2d:bb:f7:b2:eb:e0:d5:54:5d:0e:13:bf: c9:f4:32:67:f1:5a:41:e3:8e:8f:6f:e8:c4:8d:fd:d7:dc:e1: 78:91:85:cc:f8:6e:c7:f5:88:4d:c8:ce:2b:8b:f0:16:5a:d4: 01:f6:0a:fa -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAIsoMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MDYwMFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGEzZTgtYjVjMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALK3QTz1tVHq3Z+IeWJloJkkFGRpqKTMLaZQRJHkZPV50VswySzoXbaIWtiD r1sqbKCuCYdovFq/oV6nQ1xFHwTWi7TLapLHiu2Ue8jjF5cuFSaZ4c6goEAD1zhF //5HqsFMQ8JqxSf0RouHLiTceoAeqNBiUgn3NHpzn9LdSw4Pmw48emqqeq7L8JOc SbBUWRoE/zolEh0OzxQHiRaoqHiKaXJp5iiXrXApCGASRhQ9fdhS4rRPcLlcWgnp ajcFtMFRyKR/pIPeQnJOljW9HOhecNoDSNbXipa4XnA6InaUkSPQ7POYHnBCx7iw zHEyFGZLPxGKghGOFPEp+eC8n3sCAwEAAaOCApUwggKRMB0GA1UdDgQWBBRie5CR 0fepJhbgRSW7RQE4zCk3cjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzc4MjdCQjJF NTZCNzExRUU5QzI4M0QyN0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ6qVMA0GCSqGSIb3DQEBCwUAA4IBAQAyI1ZQaUkFUyUq VBYSgmW4aOdc/vE5ZvJaeeem4/uw8QK9dV96IrI21XLkoJ7q+zN5hboYsTxmAIA0 xpa702DVzJvI3D+E4r7H1Ns+4mWoved27lBncJVavVEUQX6rZR21dfGYkPg4Jt70 Wx8AApm/nDMJxLvAlpyIdij/NtHwTx3FlF+zmCjV+ABAwaZiBpsgpPWIbmD7I2BR o1j5h2ZlMlyrzrltHF/UrfgGPQ1QOJXVCuFdl9u+zOnqpKW89RSjkPH5ZVH/xj7R 4Aotu/ey6+DVVF0OE7/J9DJn8VpB446Pb+jEjf3X3OF4kYXM+G7H9YhNyM4ri/AW WtQB9gr6 -----END CERTIFICATE-----Generated at Fri Nov 22 13:35:03 2024 by rpki-client on console-fra.rpki-client.org