$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9630C314B73811ED8A2A8964C4F9AE02.roa File: 9630C314B73811ED8A2A8964C4F9AE02.roa (raw, json) Hash identifier: tasxm9+te29IoiHI2wnXjHUernJ57LsWJXpkMOOK7k4= Subject key identifier: 34:06:87:41:4A:FC:4D:26:3B:19:7F:53:A0:46:CF:E4:2D:90:3F:89 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8BCA Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9630C314B73811ED8A2A8964C4F9AE02.roa Signing time: Thu 30 May 2024 16:08:40 +0000 ROA not before: Thu 30 May 2024 16:08:40 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 137645 IP address blocks: 103.127.20.0/22 maxlen: 24 103.188.218.0/23 maxlen: 24 2400:35a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 10:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35786 (0x8bca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:08:40 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a488-8d78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:94:29:fe:8a:0a:c9:60:bf:e2:f2:59:95:cc: 34:d3:73:71:a9:f7:92:11:39:17:79:20:96:4d:14: df:24:dd:0a:08:1b:c8:cb:b6:71:41:2d:89:00:3e: 77:07:44:c2:c5:59:e7:7f:5a:cd:72:f0:60:49:0a: 57:10:98:d0:d5:96:e4:23:23:35:19:18:33:73:94: 42:29:f3:9e:53:b1:f6:41:aa:d8:b6:68:44:97:89: b3:8b:34:3a:4a:f8:fb:cc:22:ec:0f:ff:ca:b3:ea: e3:bf:3a:15:64:19:e1:dc:e7:50:57:38:c4:05:8f: d6:e3:d3:9e:55:3f:ad:44:73:4a:e8:2d:57:06:6f: b2:8f:2e:bd:6f:44:43:85:c3:1a:b1:c1:21:b1:30: 64:86:35:da:c5:c7:23:1b:75:8e:7e:79:e2:8c:30: 26:2f:7c:ce:f9:a2:fa:3a:39:6f:78:7c:8c:a8:99: 48:d5:bb:0f:c5:4f:0e:fd:1f:9e:04:d4:5d:b8:b0: 27:af:a7:b8:8f:c3:1a:b7:ff:cc:56:44:aa:c6:f1: dd:b9:24:61:59:63:80:2e:d8:63:1a:62:44:d7:9f: 4c:59:cf:3d:87:07:78:2f:75:92:5b:6a:46:93:e0: 62:64:2b:ce:f8:86:0e:5a:f1:4f:90:a7:48:b7:98: 6b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:06:87:41:4A:FC:4D:26:3B:19:7F:53:A0:46:CF:E4:2D:90:3F:89 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9630C314B73811ED8A2A8964C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.127.20.0/22 103.188.218.0/23 IPv6: 2400:35a0::/32 Signature Algorithm: sha256WithRSAEncryption 96:bb:0e:47:de:e0:3a:9b:e1:14:6a:c5:46:e3:be:2a:3e:f1: 91:38:df:e3:12:4c:29:66:7b:c4:79:1d:98:a3:82:28:81:e9: c5:d8:ed:21:d3:d2:56:7f:1c:9d:c0:c6:ad:9e:9d:8e:40:d8: 16:6b:90:2b:15:9d:22:c9:ad:eb:52:bb:fc:b3:f4:45:75:82: d0:dd:9d:5c:bd:76:9e:43:c6:f8:1f:f9:cc:58:5c:19:75:af: 11:1a:80:ad:33:12:79:1b:39:63:cd:ee:2a:b7:f7:9e:8c:7e: b8:ce:b4:3f:2e:47:f3:79:f4:2b:f0:0c:23:c8:e3:12:e3:ae: 45:62:99:69:ee:03:c8:66:d0:26:ce:9b:4c:2c:40:0a:31:64: 87:61:9c:80:f3:e7:27:56:2d:29:03:46:56:78:fe:e3:fb:4d: 81:ee:50:ea:7c:c1:5b:6d:27:07:e3:99:f1:f2:d1:96:23:32: e3:fa:b8:95:bc:06:16:3e:19:5b:c6:85:be:23:8a:01:f5:1e: 7c:5a:76:03:73:2e:de:51:ad:28:82:a9:95:79:61:26:74:53: d5:bc:67:89:de:c2:35:90:ae:15:0c:80:80:3e:8f:a7:00:97: b5:31:78:64:6b:08:2d:a3:3c:25:fe:36:42:72:3b:64:c7:0c: 27:c4:88:24 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgIDAIvKMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MDg0MFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE0ODgtOGQ3ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL6UKf6KCslgv+LyWZXMNNNzcan3khE5F3kglk0U3yTdCggbyMu2cUEtiQA+ dwdEwsVZ539azXLwYEkKVxCY0NWW5CMjNRkYM3OUQinznlOx9kGq2LZoRJeJs4s0 Okr4+8wi7A//yrPq4786FWQZ4dznUFc4xAWP1uPTnlU/rURzSugtVwZvso8uvW9E Q4XDGrHBIbEwZIY12sXHIxt1jn554owwJi98zvmi+jo5b3h8jKiZSNW7D8VPDv0f ngTUXbiwJ6+nuI/DGrf/zFZEqsbx3bkkYVljgC7YYxpiRNefTFnPPYcHeC91kltq RpPgYmQrzviGDlrxT5CnSLeYa30CAwEAAaOCAqowggKmMB0GA1UdDgQWBBQ0BodB SvxNJjsZf1OgRs/kLZA/iTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzk2MzBDMzE0 QjczODExRUQ4QTJBODk2NEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDQGCCsGAQUFBwEHAQH/ BCUwIzASBAIAATAMAwQCZ38UAwQBZ7zaMA0EAgACMAcDBQAkADWgMA0GCSqGSIb3 DQEBCwUAA4IBAQCWuw5H3uA6m+EUasVG474qPvGRON/jEkwpZnvEeR2Yo4IogenF 2O0h09JWfxydwMatnp2OQNgWa5ArFZ0iya3rUrv8s/RFdYLQ3Z1cvXaeQ8b4H/nM WFwZda8RGoCtMxJ5Gzljze4qt/eejH64zrQ/LkfzefQr8AwjyOMS465FYplp7gPI ZtAmzptMLEAKMWSHYZyA8+cnVi0pA0ZWeP7j+02B7lDqfMFbbScH45nx8tGWIzLj +riVvAYWPhlbxoW+I4oB9R58WnYDcy7eUa0ogqmVeWEmdFPVvGeJ3sI1kK4VDICA Po+nAJe1MXhkawgtozwl/jZCcjtkxwwnxIgk -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:02 2024 by rpki-client on console-fra.rpki-client.org