$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8EBF139233AF11EBB38B4E68C4F9AE02.roa File: 8EBF139233AF11EBB38B4E68C4F9AE02.roa (raw, json) Hash identifier: Q9TGnBu/fftW8guUnK8N3Gb2uT63+/hF+lqCAfHZisM= Subject key identifier: 86:DE:2D:05:9A:06:CF:BA:FF:50:4A:03:4C:17:C5:01:FE:42:B3:C8 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 9136 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8EBF139233AF11EBB38B4E68C4F9AE02.roa Signing time: Thu 30 May 2024 16:31:14 +0000 ROA not before: Thu 30 May 2024 16:31:14 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 59193 IP address blocks: 103.232.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37174 (0x9136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: May 30 16:31:14 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a9d1-f479 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4b:4d:48:9b:bb:01:3d:69:32:7c:29:91:75: dd:df:5e:01:3b:5b:a6:e6:15:1c:bc:dd:73:cd:c5: ed:50:a7:b7:22:48:bd:8f:36:ac:2c:bd:db:21:a5: 25:03:e2:9c:52:58:df:87:5d:ff:23:ef:bb:4e:ae: 74:29:78:a3:c4:10:ee:27:67:92:b7:3c:a7:18:47: 19:07:a6:32:c9:b1:0e:e0:be:b0:20:5c:26:1d:85: 33:78:3b:07:db:1b:12:c2:b6:a4:49:62:62:30:51: f3:91:36:c1:0a:10:83:6b:dc:37:05:f9:2d:b8:73: 57:8f:b6:29:b9:a4:26:ab:36:e9:6b:81:41:08:72: a9:f3:b2:c4:9c:3b:bb:7f:1d:8e:e5:47:33:41:f2: 01:2a:a4:09:f7:f5:14:af:af:d1:d8:b1:b9:d1:a5: e8:1a:e6:cc:57:38:e2:0d:53:21:88:cf:83:64:33: 42:e8:e6:bb:57:41:b9:74:8b:72:dd:a3:91:9d:68: 0b:df:97:95:be:17:25:c3:2c:2c:8f:db:75:00:2a: a5:16:65:99:d6:d7:4d:14:e4:02:23:44:82:45:fa: 8e:90:f5:b5:35:2d:6c:71:ce:79:42:25:0c:8f:bc: e6:52:8e:5d:67:6c:ac:51:0d:66:3b:d4:13:c4:4e: 9c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:DE:2D:05:9A:06:CF:BA:FF:50:4A:03:4C:17:C5:01:FE:42:B3:C8 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8EBF139233AF11EBB38B4E68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.232.241.0/24 Signature Algorithm: sha256WithRSAEncryption 58:68:fb:5d:16:8c:e3:75:c2:19:3e:6c:0e:b1:0b:42:9a:b5: 97:f7:e3:42:6a:4c:42:e3:77:ba:a5:d9:1f:5c:c0:a8:72:e3: 63:e6:e7:da:51:b1:3d:21:f9:5d:a3:d4:be:85:1f:a3:c0:f9: 78:b6:9e:5c:16:cc:ef:a7:f1:27:ad:c0:6d:01:67:d9:d2:8c: 79:17:0e:c7:5e:08:fa:6c:2b:dd:1d:1d:c4:9b:b2:3f:11:06: 92:87:6c:e5:bb:9f:2d:12:df:2c:2e:a9:ed:56:a6:5f:aa:3a: 03:fd:46:88:1d:73:e4:5f:3a:57:b4:06:c5:f4:1b:4f:fd:f9: b2:a6:6b:09:59:b5:69:43:9d:72:c7:c7:89:3f:22:c8:98:3e: 5c:b8:18:36:4b:95:b7:a8:e4:4f:fb:54:d3:84:3a:dd:fe:b4: 7a:c0:e1:1b:61:da:1a:21:0f:77:17:fe:35:83:33:fb:fe:4e: 8f:d3:1f:18:2e:3b:fd:b1:a5:c2:ce:01:8a:f8:3b:92:90:9f: e7:a7:d8:53:d0:28:26:ee:f6:be:ca:85:47:af:63:c0:a5:f7: d0:8d:db:bd:9d:ee:97:75:4c:61:61:57:7d:98:d6:7d:56:0c: f7:0f:1f:99:a5:27:7e:d1:a0:78:95:5e:40:54:ee:89:e3:2e: 1e:6e:02:c8 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAJE2MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MzExNFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE5ZDEtZjQ3OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALhLTUibuwE9aTJ8KZF13d9eATtbpuYVHLzdc83F7VCntyJIvY82rCy92yGl JQPinFJY34dd/yPvu06udCl4o8QQ7idnkrc8pxhHGQemMsmxDuC+sCBcJh2FM3g7 B9sbEsK2pEliYjBR85E2wQoQg2vcNwX5LbhzV4+2KbmkJqs26WuBQQhyqfOyxJw7 u38djuVHM0HyASqkCff1FK+v0dixudGl6BrmzFc44g1TIYjPg2QzQujmu1dBuXSL ct2jkZ1oC9+Xlb4XJcMsLI/bdQAqpRZlmdbXTRTkAiNEgkX6jpD1tTUtbHHOeUIl DI+85lKOXWdsrFENZjvUE8ROnJ0CAwEAAaOCApUwggKRMB0GA1UdDgQWBBSG3i0F mgbPuv9QSgNMF8UB/kKzyDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzhFQkYxMzky MzNBRjExRUJCMzhCNEU2OEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ+jxMA0GCSqGSIb3DQEBCwUAA4IBAQBYaPtdFozjdcIZ PmwOsQtCmrWX9+NCakxC43e6pdkfXMCocuNj5ufaUbE9Ifldo9S+hR+jwPl4tp5c Fszvp/EnrcBtAWfZ0ox5Fw7HXgj6bCvdHR3Em7I/EQaSh2zlu58tEt8sLqntVqZf qjoD/UaIHXPkXzpXtAbF9BtP/fmypmsJWbVpQ51yx8eJPyLImD5cuBg2S5W3qORP +1TThDrd/rR6wOEbYdoaIQ93F/41gzP7/k6P0x8YLjv9saXCzgGK+DuSkJ/np9hT 0Cgm7va+yoVHr2PApffQjdu9ne6XdUxhYVd9mNZ9Vgz3Dx+ZpSd+0aB4lV5AVO6J 4y4ebgLI -----END CERTIFICATE-----Generated at Sun Feb 16 20:36:17 2025 by rpki-client