$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/96AE99CA0DF711EBAB06BC0BC4F9AE02.roa File: 96AE99CA0DF711EBAB06BC0BC4F9AE02.roa (raw, json) Hash identifier: wjK4eNpysw2U38DZx0ECyGe3HOGpMlO98bjsJwInFuI= Subject key identifier: 3C:2F:D3:72:99:AF:B6:F3:3D:A4:F5:C8:6D:09:9C:3D:B7:64:47:25 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 88FD Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/96AE99CA0DF711EBAB06BC0BC4F9AE02.roa Signing time: Thu 30 May 2024 15:56:56 +0000 ROA not before: Thu 30 May 2024 15:56:56 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 133640 IP address blocks: 103.193.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 10:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35069 (0x88fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 15:56:56 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a1c8-02a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:b3:9a:e4:2b:69:61:54:c4:fb:36:75:e5:3b: 22:a4:d7:6d:36:01:5f:d1:4b:e1:b1:7b:49:f9:17: 8d:42:a6:1b:d9:bb:6d:60:b9:2a:07:ff:69:2f:42: 57:2d:3a:a1:d7:1e:3c:8e:6b:e2:21:9c:01:cc:de: e0:13:25:c5:eb:28:03:e4:d4:6d:07:10:d7:57:a5: e4:21:9e:12:b5:42:61:1b:d7:91:3e:0e:a3:fe:15: dd:60:8d:ae:c0:7d:1c:3d:47:c6:53:94:63:ab:10: d3:8d:7f:e9:85:d5:59:06:df:74:d3:91:9d:08:c7: 78:7f:f4:78:82:bf:74:65:2a:af:cf:11:7c:b9:a9: 21:6f:26:46:17:09:22:0b:e1:75:47:bd:e0:e8:81: 96:ca:a7:27:9b:2e:76:13:ba:44:4f:46:94:7c:96: 5b:6c:c1:45:c7:70:fd:8c:fd:af:b0:af:66:09:a4: 43:0d:d4:36:e9:31:a4:15:43:d8:ba:97:b3:9e:49: f6:d5:e4:15:12:c5:d9:fc:61:da:2b:c4:87:c0:76: 86:a8:d4:c8:b5:3c:c1:41:01:69:bf:3a:4e:d5:01: 8d:eb:80:93:de:56:58:77:23:33:14:ce:b6:44:e7: f1:e9:ef:b0:8f:49:2c:51:61:22:b9:54:de:97:c6: 44:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:2F:D3:72:99:AF:B6:F3:3D:A4:F5:C8:6D:09:9C:3D:B7:64:47:25 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/96AE99CA0DF711EBAB06BC0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.193.79.0/24 Signature Algorithm: sha256WithRSAEncryption 99:f0:99:a5:98:11:d5:b0:75:ac:6c:1a:27:2e:10:33:fe:16: 1c:07:80:43:70:2a:70:5a:a2:d4:7e:9d:45:c7:71:1a:c4:7c: 9f:6f:c5:50:5f:df:68:07:81:e7:91:ec:5c:2e:3f:0e:3a:c3: b2:42:af:ba:b0:03:45:03:3a:95:05:c3:48:48:3f:52:af:5e: fa:c8:5d:19:61:d8:79:0e:64:ec:a1:73:3d:60:b4:de:a9:db: ac:bd:d5:25:05:0e:d0:65:1b:70:83:7a:32:c4:d0:8f:89:f4: 8c:5b:7b:fb:47:0c:83:18:be:46:73:3d:e3:71:3c:77:a1:86: e4:51:b3:0b:f7:d6:8e:71:da:25:28:a7:e8:08:4b:4f:86:12: 0a:45:2e:da:f5:bb:46:6d:f7:89:a1:ed:bf:22:80:0b:04:ab: b7:f1:d7:4f:ae:13:c7:b2:52:a4:89:6c:7e:82:45:a8:d4:86: 49:8e:cc:fa:7c:57:b1:2c:42:04:a7:91:53:1a:0f:0f:96:79: 30:06:85:bf:57:94:70:b4:09:45:9a:4f:80:e0:1f:52:6e:82: 09:89:bd:4e:f5:62:5e:d4:a5:5d:dd:20:96:9b:0c:89:46:fe: 82:9c:04:45:ca:55:86:b7:07:11:7d:59:bf:91:f7:5d:a4:01: 72:d9:6e:a9 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAIj9MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE1NTY1NloXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGExYzgtMDJhMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOGzmuQraWFUxPs2deU7IqTXbTYBX9FL4bF7SfkXjUKmG9m7bWC5Kgf/aS9C Vy06odcePI5r4iGcAcze4BMlxesoA+TUbQcQ11el5CGeErVCYRvXkT4Oo/4V3WCN rsB9HD1HxlOUY6sQ041/6YXVWQbfdNORnQjHeH/0eIK/dGUqr88RfLmpIW8mRhcJ IgvhdUe94OiBlsqnJ5sudhO6RE9GlHyWW2zBRcdw/Yz9r7CvZgmkQw3UNukxpBVD 2LqXs55J9tXkFRLF2fxh2ivEh8B2hqjUyLU8wUEBab86TtUBjeuAk95WWHcjMxTO tkTn8envsI9JLFFhIrlU3pfGRAMCAwEAAaOCApUwggKRMB0GA1UdDgQWBBQ8L9Ny ma+28z2k9chtCZw9t2RHJTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzk2QUU5OUNB MERGNzExRUJBQjA2QkMwQkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ8FPMA0GCSqGSIb3DQEBCwUAA4IBAQCZ8JmlmBHVsHWs bBonLhAz/hYcB4BDcCpwWqLUfp1Fx3EaxHyfb8VQX99oB4HnkexcLj8OOsOyQq+6 sANFAzqVBcNISD9Sr176yF0ZYdh5DmTsoXM9YLTeqdusvdUlBQ7QZRtwg3oyxNCP ifSMW3v7RwyDGL5Gcz3jcTx3oYbkUbML99aOcdolKKfoCEtPhhIKRS7a9btGbfeJ oe2/IoALBKu38ddPrhPHslKkiWx+gkWo1IZJjsz6fFexLEIEp5FTGg8PlnkwBoW/ V5RwtAlFmk+A4B9SboIJib1O9WJe1KVd3SCWmwyJRv6CnARFylWGtwcRfVm/kfdd pAFy2W6p -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:20 2024 by rpki-client on console-ams.rpki-client.org