$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7ECC5DD6BA5511EC8B8E7A45C4F9AE02.roa File: 7ECC5DD6BA5511EC8B8E7A45C4F9AE02.roa (raw, json) Hash identifier: gNGFaHsnSQfeyhtReNf0JM8zWnX0i2IkHqhORSnyErE= Subject key identifier: 7F:62:50:AE:51:FE:2E:E1:5D:82:CA:AD:4F:35:89:D0:8E:D9:96:8D Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 88DB Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7ECC5DD6BA5511EC8B8E7A45C4F9AE02.roa Signing time: Thu 30 May 2024 15:56:23 +0000 ROA not before: Thu 30 May 2024 15:56:23 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 133277 IP address blocks: 103.79.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 10:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35035 (0x88db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 15:56:23 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a1a6-8afd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:2f:fe:7f:59:eb:23:87:ab:9b:a7:82:8e:9f: 16:93:f6:92:ab:a5:38:f6:9c:3d:f8:4d:f7:ce:52: fb:bf:b6:b3:32:d4:ab:c1:0f:39:28:63:41:f9:69: d4:8b:5b:5e:5c:4a:61:ce:30:ab:5d:9a:72:62:9e: e4:93:53:5b:9e:e0:0b:cc:29:6d:a6:83:4d:9b:59: 2d:7c:33:06:d3:9d:71:c2:c7:f3:f7:fe:2b:8c:f6: 26:d1:11:80:ef:17:8b:ad:c0:0f:48:82:79:09:c7: 04:8c:87:0c:af:72:b5:50:02:62:62:c4:bd:2a:de: d0:94:8c:85:45:5b:78:26:55:d6:0c:10:5f:df:cf: aa:a2:8e:41:46:84:df:46:01:5e:9d:57:9e:54:fd: 39:67:a5:1c:21:07:63:75:bd:62:0e:7f:d8:f1:63: 78:6c:de:cd:a0:9d:c4:bc:8c:15:38:0a:78:25:16: 1d:b3:69:56:a3:d3:7b:fb:29:7e:dd:93:c0:d9:c3: ed:32:12:c9:0a:ab:e5:a6:97:64:e5:5c:04:56:62: de:44:93:bc:3f:40:81:64:75:58:32:aa:c4:06:99: 9c:e2:41:08:00:c8:29:a3:03:7f:87:c3:0d:e2:37: 36:4e:8a:53:6f:46:16:41:1c:a1:c7:22:23:f5:da: 97:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:62:50:AE:51:FE:2E:E1:5D:82:CA:AD:4F:35:89:D0:8E:D9:96:8D X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7ECC5DD6BA5511EC8B8E7A45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.79.158.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:c8:6b:f1:b7:62:e5:9e:8b:2c:af:92:30:e0:02:b0:b5:b0: 45:16:c5:34:61:7e:79:3f:bb:4c:02:92:c5:7d:8b:0a:cb:7d: 39:5d:67:f3:6c:6b:33:b3:c3:43:54:cd:3d:1a:09:fa:d7:7c: 6b:19:9b:43:00:f6:9c:34:38:6b:b9:f3:fa:f3:e0:b0:2d:50: c2:5f:7b:47:b8:47:12:4d:a0:7b:92:ac:c7:3c:6b:f7:0d:49: 49:f9:69:72:be:af:74:73:6d:d1:31:b7:a0:c5:38:6f:c1:f8: b1:c7:0e:d5:f0:c7:8d:6a:20:36:94:a8:cc:2f:6a:a0:4d:82: 4f:5a:09:09:74:53:44:59:63:72:99:6f:0a:ea:fb:cc:15:1e: de:e1:82:8c:67:a3:cd:43:cb:ea:be:0c:be:c1:fb:69:5e:96: 39:02:77:db:93:72:f2:a6:64:20:86:e9:90:5c:c9:3c:a0:0c: a2:93:cf:41:72:12:81:55:a6:76:5b:00:f2:a0:5b:30:eb:09: a9:37:e1:40:58:94:b4:f9:32:4f:6a:4c:1d:f7:90:2f:47:cc: 2c:9e:9d:ce:48:53:9e:90:f9:ea:18:8c:f2:a4:ed:1a:bd:b5: d4:cd:44:72:7d:b9:0c:1a:c6:07:ca:8e:62:7a:f1:ad:34:14: c4:47:67:cc -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAIjbMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE1NTYyM1oXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGExYTYtOGFmZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOkv/n9Z6yOHq5ungo6fFpP2kqulOPacPfhN985S+7+2szLUq8EPOShjQflp 1ItbXlxKYc4wq12acmKe5JNTW57gC8wpbaaDTZtZLXwzBtOdccLH8/f+K4z2JtER gO8Xi63AD0iCeQnHBIyHDK9ytVACYmLEvSre0JSMhUVbeCZV1gwQX9/PqqKOQUaE 30YBXp1XnlT9OWelHCEHY3W9Yg5/2PFjeGzezaCdxLyMFTgKeCUWHbNpVqPTe/sp ft2TwNnD7TISyQqr5aaXZOVcBFZi3kSTvD9AgWR1WDKqxAaZnOJBCADIKaMDf4fD DeI3Nk6KU29GFkEcocciI/Xal7cCAwEAAaOCApUwggKRMB0GA1UdDgQWBBR/YlCu Uf4u4V2Cyq1PNYnQjtmWjTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzdFQ0M1REQ2 QkE1NTExRUM4QjhFN0E0NUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ0+eMA0GCSqGSIb3DQEBCwUAA4IBAQAvyGvxt2Llnoss r5Iw4AKwtbBFFsU0YX55P7tMApLFfYsKy305XWfzbGszs8NDVM09Ggn613xrGZtD APacNDhrufP68+CwLVDCX3tHuEcSTaB7kqzHPGv3DUlJ+Wlyvq90c23RMbegxThv wfixxw7V8MeNaiA2lKjML2qgTYJPWgkJdFNEWWNymW8K6vvMFR7e4YKMZ6PNQ8vq vgy+wftpXpY5Anfbk3LypmQghumQXMk8oAyik89BchKBVaZ2WwDyoFsw6wmpN+FA WJS0+TJPakwd95AvR8wsnp3OSFOekPnqGIzypO0avbXUzURyfbkMGsYHyo5ievGt NBTER2fM -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:17 2024 by rpki-client on console-ams.rpki-client.org