$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9C1C0A46BEAF11EBB679183CC4F9AE02.roa File: 9C1C0A46BEAF11EBB679183CC4F9AE02.roa (raw, json) Hash identifier: pr4FJwyhR1YoQmIKgZKyyACGIJ4aC0gqBZKca4OddSI= Subject key identifier: 08:40:45:DB:43:87:1F:43:EB:5B:9F:B8:0D:13:CC:8C:54:BB:C0:84 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8B9A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9C1C0A46BEAF11EBB679183CC4F9AE02.roa Signing time: Thu 30 May 2024 16:07:54 +0000 ROA not before: Thu 30 May 2024 16:07:54 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 137169 IP address blocks: 103.112.8.0/24 maxlen: 24 103.112.9.0/24 maxlen: 24 103.112.10.0/24 maxlen: 24 103.112.11.0/24 maxlen: 24 2407:6fc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 10:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35738 (0x8b9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:07:54 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a459-9610 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:50:73:35:c0:61:6d:a0:8d:e1:6e:50:f6:04: 33:83:b8:30:38:a3:69:ab:4d:38:4c:1c:2e:47:ad: 8b:e8:2a:fa:d6:df:bd:2e:78:dc:37:c2:ff:54:a0: 46:1d:fb:ee:8e:ce:b5:86:ba:40:b1:2f:40:b7:d5: db:f7:68:32:dd:4a:2e:e0:37:94:32:d6:29:1a:49: ab:86:59:48:bf:c1:d7:6e:aa:78:b1:0c:39:9d:ea: d3:c6:de:48:11:b8:3d:7e:fe:1d:69:77:86:99:95: 86:4b:b2:2d:6e:dd:83:77:65:0e:89:d6:58:27:0a: 85:b9:8c:5f:25:cc:5b:f2:1b:b7:22:7a:31:ff:17: a3:03:0b:24:4b:b6:0a:b9:94:94:ef:18:55:1d:6e: 9b:a0:8e:a4:46:7f:ac:9c:8b:58:4e:d1:75:f5:58: 0f:6f:ec:82:f3:77:a4:7c:9c:31:9a:95:7a:69:59: cc:4d:ad:4a:8d:42:2d:f8:80:62:89:29:0e:f6:70: cb:3b:db:7c:da:ab:e4:ee:51:22:7a:6f:d1:4d:36: 3d:27:3b:b6:63:2d:74:c7:80:1a:1f:b2:cb:ac:c4: 0f:d0:3a:7f:a9:c0:0f:9b:55:9c:8e:d3:d4:08:34: 51:6f:aa:7e:c1:6a:0e:7a:dd:c8:27:fa:a5:27:f1: 9e:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:40:45:DB:43:87:1F:43:EB:5B:9F:B8:0D:13:CC:8C:54:BB:C0:84 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9C1C0A46BEAF11EBB679183CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.112.8.0/22 IPv6: 2407:6fc0::/32 Signature Algorithm: sha256WithRSAEncryption 36:93:ec:cd:30:7d:18:3a:04:74:e8:b5:80:4b:47:6b:88:e7: 70:0d:e6:36:07:3a:43:fe:b0:d7:bb:b4:83:38:bd:4f:f5:98: a1:d5:11:31:bb:51:69:2e:b0:b6:b9:86:71:b2:9b:66:4a:55: 32:a3:83:dd:c0:b8:d2:57:d9:6b:8a:d3:b0:7a:d4:e8:e2:eb: 65:41:7c:90:ee:bb:f2:ef:76:63:73:6e:ef:18:d9:d4:c7:ab: ba:83:e0:b2:36:8c:1e:db:84:24:02:6a:ef:10:7f:d1:8a:32: 61:19:cf:d3:59:72:25:86:e4:b1:0a:b1:e6:10:d8:89:bd:3c: 54:05:92:f3:cb:1e:83:58:61:73:99:5e:2b:b4:00:2d:ce:11: 5d:8e:df:3b:40:7e:83:7e:09:d8:a5:fd:05:b4:b9:83:ef:85: 00:35:78:be:72:ea:f5:d1:24:db:27:46:d8:f1:fc:bd:4d:9b: 1c:07:fd:04:94:b4:5e:b4:d3:c4:8e:a9:31:a6:9c:f9:56:17: cf:52:97:8a:d8:82:f8:38:27:59:53:df:ae:5a:26:75:1c:cc: cb:0f:2b:f8:6a:4f:c4:12:2e:47:9c:01:e4:10:d5:a9:64:23: 1e:2c:29:91:c5:52:f7:08:b3:13:1e:ce:07:2c:8d:51:2b:22: 27:b6:2f:d2 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIDAIuaMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MDc1NFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE0NTktOTYxMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALRQczXAYW2gjeFuUPYEM4O4MDijaatNOEwcLketi+gq+tbfvS543DfC/1Sg Rh377o7OtYa6QLEvQLfV2/doMt1KLuA3lDLWKRpJq4ZZSL/B126qeLEMOZ3q08be SBG4PX7+HWl3hpmVhkuyLW7dg3dlDonWWCcKhbmMXyXMW/IbtyJ6Mf8XowMLJEu2 CrmUlO8YVR1um6COpEZ/rJyLWE7RdfVYD2/sgvN3pHycMZqVemlZzE2tSo1CLfiA YokpDvZwyzvbfNqr5O5RInpv0U02PSc7tmMtdMeAGh+yy6zED9A6f6nAD5tVnI7T 1Ag0UW+qfsFqDnrdyCf6pSfxnn8CAwEAAaOCAqQwggKgMB0GA1UdDgQWBBQIQEXb Q4cfQ+tbn7gNE8yMVLvAhDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzlDMUMwQTQ2 QkVBRjExRUJCNjc5MTgzQ0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMC4GCCsGAQUFBwEHAQH/ BB8wHTAMBAIAATAGAwQCZ3AIMA0EAgACMAcDBQAkB2/AMA0GCSqGSIb3DQEBCwUA A4IBAQA2k+zNMH0YOgR06LWAS0driOdwDeY2BzpD/rDXu7SDOL1P9Zih1RExu1Fp LrC2uYZxsptmSlUyo4PdwLjSV9lritOwetTo4utlQXyQ7rvy73Zjc27vGNnUx6u6 g+CyNowe24QkAmrvEH/RijJhGc/TWXIlhuSxCrHmENiJvTxUBZLzyx6DWGFzmV4r tAAtzhFdjt87QH6DfgnYpf0FtLmD74UANXi+cur10STbJ0bY8fy9TZscB/0ElLRe tNPEjqkxppz5VhfPUpeK2IL4OCdZU9+uWiZ1HMzLDyv4ak/EEi5HnAHkENWpZCMe LCmRxVL3CLMTHs4HLI1RKyInti/S -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:03 2024 by rpki-client on console-fra.rpki-client.org