$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9C1DD03A8B2111ECA5CB7719C4F9AE02.roa File: 9C1DD03A8B2111ECA5CB7719C4F9AE02.roa (raw, json) Hash identifier: Qk0o4ou0jW6SnBV1jDaM9MQ2CaCKrI3JpRNDaaUbWh4= Subject key identifier: 6E:01:F6:D7:84:B1:11:83:BF:4E:6E:98:4F:58:0B:52:D1:02:35:C1 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8944 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9C1DD03A8B2111ECA5CB7719C4F9AE02.roa Signing time: Thu 30 May 2024 15:58:08 +0000 ROA not before: Thu 30 May 2024 15:58:08 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 133984 IP address blocks: 103.57.216.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35140 (0x8944) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: May 30 15:58:08 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a210-689e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:60:dd:23:36:1b:ff:96:38:53:ef:46:a5:06: b8:2b:75:fe:7a:e7:14:6f:fc:d0:e4:8b:29:40:ee: be:1b:fa:b1:62:e4:46:b1:cf:e0:b9:06:53:4d:5a: 31:6a:af:7f:c9:23:51:2a:bb:22:be:f0:89:34:54: 9f:aa:ab:34:c6:9e:1a:aa:f0:91:6d:4b:02:83:d1: 40:e9:91:0b:f5:20:6f:bd:37:df:ec:bf:d5:31:fb: 08:e7:4f:14:1e:10:fd:a1:24:71:cd:40:0e:36:19: 92:3a:88:74:63:3e:d1:32:34:23:b4:b8:7f:34:12: 28:7c:a9:4e:a1:a3:e9:c6:46:09:15:83:66:bb:19: 5b:2b:f6:fc:59:51:e8:ab:e8:8a:ea:46:b6:b6:25: 09:ac:45:ff:98:ef:8b:6a:5d:b3:cb:20:0b:25:9b: a2:8f:f9:9c:d5:d0:81:cc:a2:29:8e:5c:22:28:20: da:aa:4a:69:ec:7b:2f:83:9d:6d:40:78:eb:31:94: 7d:7e:b9:48:3a:e4:34:21:fa:d3:f7:07:50:7c:2f: 32:ac:92:5b:fa:70:a9:39:74:eb:b4:76:34:63:df: 36:b1:0a:7e:5c:d4:d6:f8:a7:63:02:93:35:52:2f: bd:09:08:2e:5d:6c:4a:e3:fc:e6:6d:9c:2a:24:61: 4c:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:01:F6:D7:84:B1:11:83:BF:4E:6E:98:4F:58:0B:52:D1:02:35:C1 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9C1DD03A8B2111ECA5CB7719C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.57.216.0/22 Signature Algorithm: sha256WithRSAEncryption 5b:18:8b:2c:48:e7:3b:cd:7e:6c:38:b1:63:f3:84:04:21:bd: 9e:74:64:a0:61:bd:db:b3:c8:18:ab:10:68:95:5c:ff:7b:17: d7:d6:e0:72:fd:d2:aa:65:ff:40:06:89:14:43:5a:43:c5:c7: 63:36:f6:f5:65:b8:87:2c:c4:7b:fd:d7:dc:c9:13:fd:a0:b9: 74:04:61:8c:e6:7c:a2:87:ed:36:2a:01:e6:7f:c7:80:82:94: e1:d7:08:e9:a8:11:99:92:a7:88:d3:97:dd:f6:f8:00:40:01: 8f:a3:63:08:4a:7d:6e:1f:50:7d:44:d5:53:71:de:73:8a:df: f1:fd:76:e9:f6:34:62:49:45:0c:70:97:bf:e0:01:b2:88:ce: 5b:85:79:d0:f0:66:44:04:a9:51:82:19:52:cd:f2:5a:ac:b5: 24:d6:f6:29:a8:8d:e0:95:de:3a:7c:47:01:73:eb:1c:d4:a7: 2d:78:2c:0c:70:0a:0d:50:03:53:88:85:38:f5:65:47:ce:e8: f2:9e:90:fb:cb:cf:d6:66:8a:f8:4a:d0:be:c4:aa:c9:4c:93: f4:bf:3e:05:a3:0a:6b:3b:c3:10:5d:82:7e:b8:a7:ae:73:72: d8:c9:17:84:6a:33:8f:a9:92:37:62:e0:47:a9:12:54:55:7f: 01:a2:89:cd -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAIlEMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE1NTgwOFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGEyMTAtNjg5ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKhg3SM2G/+WOFPvRqUGuCt1/nrnFG/80OSLKUDuvhv6sWLkRrHP4LkGU01a MWqvf8kjUSq7Ir7wiTRUn6qrNMaeGqrwkW1LAoPRQOmRC/Ugb7033+y/1TH7COdP FB4Q/aEkcc1ADjYZkjqIdGM+0TI0I7S4fzQSKHypTqGj6cZGCRWDZrsZWyv2/FlR 6KvoiupGtrYlCaxF/5jvi2pds8sgCyWboo/5nNXQgcyiKY5cIigg2qpKaex7L4Od bUB46zGUfX65SDrkNCH60/cHUHwvMqySW/pwqTl067R2NGPfNrEKflzU1vinYwKT NVIvvQkILl1sSuP85m2cKiRhTOsCAwEAAaOCApUwggKRMB0GA1UdDgQWBBRuAfbX hLERg79ObphPWAtS0QI1wTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzlDMUREMDNB OEIyMTExRUNBNUNCNzcxOUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQCZznYMA0GCSqGSIb3DQEBCwUAA4IBAQBbGIssSOc7zX5s OLFj84QEIb2edGSgYb3bs8gYqxBolVz/exfX1uBy/dKqZf9ABokUQ1pDxcdjNvb1 ZbiHLMR7/dfcyRP9oLl0BGGM5nyih+02KgHmf8eAgpTh1wjpqBGZkqeI05fd9vgA QAGPo2MISn1uH1B9RNVTcd5zit/x/Xbp9jRiSUUMcJe/4AGyiM5bhXnQ8GZEBKlR ghlSzfJarLUk1vYpqI3gld46fEcBc+sc1KcteCwMcAoNUANTiIU49WVHzujynpD7 y8/WZor4StC+xKrJTJP0vz4FowprO8MQXYJ+uKeuc3LYyReEajOPqZI3YuBHqRJU VX8BoonN -----END CERTIFICATE-----Generated at Sun Feb 16 20:13:00 2025 by rpki-client