$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9DAD8C86929211EEA205B884C4F9AE02.roa File: 9DAD8C86929211EEA205B884C4F9AE02.roa (raw, json) Hash identifier: oP2JIQgnzQqXmBWuTeQu7PlMYYmsQUPw+3IociTBTlo= Subject key identifier: 33:53:36:90:1B:B8:7F:3A:09:EA:50:E1:98:2B:26:ED:2D:01:F4:2A Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 9FEB Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9DAD8C86929211EEA205B884C4F9AE02.roa Signing time: Tue 24 Dec 2024 11:56:04 +0000 ROA not before: Tue 24 Dec 2024 11:56:04 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 137389 IP address blocks: 103.107.36.0/24 maxlen: 24 103.107.37.0/24 maxlen: 24 103.112.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40939 (0x9feb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Dec 24 11:56:04 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=676aa153-7f63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ac:1f:2a:0f:e4:b9:d6:79:81:65:cd:c8:0e: 63:89:7c:a4:14:d1:77:a3:bc:e4:b1:8c:f5:b5:b9: 5a:56:3b:d7:94:4e:2c:f8:d1:ce:b6:f8:fc:9d:3c: 86:79:6c:c3:ed:fe:c7:cf:13:91:33:ce:32:62:d6: 02:6a:ea:76:3a:20:64:d9:38:4c:a2:0d:86:20:4b: b2:de:6b:8c:ad:7b:ce:dc:dd:7e:e1:8d:bc:f5:6e: ca:89:e4:ca:83:b5:f0:b5:0a:63:5d:0e:63:6b:8d: af:e5:95:71:df:0f:f0:05:c0:42:31:34:a8:b1:76: 8d:17:45:c8:40:73:61:d1:ad:9f:a3:42:2d:d5:e0: b4:7b:28:aa:44:58:45:d3:83:cb:7a:45:42:17:02: ed:dd:fd:be:05:32:ae:9e:40:87:ee:29:90:0f:f4: 1f:01:fc:d2:29:c9:22:5b:2a:af:b7:b4:38:5c:fb: 88:21:2f:b9:2a:e3:34:f9:c8:6d:a4:ff:86:64:03: 65:c2:12:7f:ef:05:d6:8f:45:ff:03:bd:9b:be:77: 9d:21:2f:5c:85:38:af:31:53:c6:8b:6c:94:97:69: 20:e5:3f:97:e3:e8:87:9a:71:34:69:85:59:94:d8: 90:92:cc:cb:10:33:e5:2b:3f:a3:b5:e7:30:9b:9b: fa:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:53:36:90:1B:B8:7F:3A:09:EA:50:E1:98:2B:26:ED:2D:01:F4:2A X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9DAD8C86929211EEA205B884C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.107.36.0/23 103.112.47.0/24 Signature Algorithm: sha256WithRSAEncryption 37:3f:5e:84:bc:59:d8:6a:6c:86:11:64:92:73:61:40:86:23: 82:25:1f:2a:b3:40:94:42:88:78:f1:0d:01:24:ad:47:4e:bb: 49:46:1a:d4:d0:3b:48:6b:30:ac:fe:0c:38:df:df:ad:a4:cd: 43:79:1a:87:ac:37:aa:e4:4e:fd:3b:d5:38:a6:78:5d:6a:9a: 25:b8:cc:d9:fd:e8:ab:11:29:1e:37:0a:0c:5d:9b:8b:1c:a4: 15:35:dd:03:0d:8c:52:73:4b:ad:db:84:8c:2d:bb:a9:02:48: db:7c:2c:1a:0f:2c:cf:96:16:8a:52:b4:98:9e:14:a4:a8:31: a9:ae:34:92:53:ab:2c:63:a6:c4:f8:c0:fd:6b:13:b0:df:59: ed:4b:8d:62:a2:dc:0f:cc:01:c9:6d:0e:7f:4b:54:15:23:e2: 3a:4e:31:8d:ad:f6:af:6c:e2:7b:8a:8b:f8:cc:84:7b:3d:5e: 5e:4b:e1:e1:00:ab:6e:fe:0c:50:d1:2e:8a:8f:df:4b:d2:fe: 97:b6:9d:f7:41:af:34:66:8b:d9:10:68:c3:08:e4:61:c2:05: 22:c5:34:88:08:fe:b1:0b:36:3f:45:d9:77:62:e1:a6:12:52: 4e:c8:61:b3:71:f9:a8:ea:ba:91:b4:f6:10:99:d5:29:0e:21: b3:19:4b:61 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIDAJ/rMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MTIyNDExNTYwNFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjc2YWExNTMtN2Y2MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM6sHyoP5LnWeYFlzcgOY4l8pBTRd6O85LGM9bW5WlY715ROLPjRzrb4/J08 hnlsw+3+x88TkTPOMmLWAmrqdjogZNk4TKINhiBLst5rjK17ztzdfuGNvPVuyonk yoO18LUKY10OY2uNr+WVcd8P8AXAQjE0qLF2jRdFyEBzYdGtn6NCLdXgtHsoqkRY RdODy3pFQhcC7d39vgUyrp5Ah+4pkA/0HwH80inJIlsqr7e0OFz7iCEvuSrjNPnI baT/hmQDZcISf+8F1o9F/wO9m753nSEvXIU4rzFTxotslJdpIOU/l+Poh5pxNGmF WZTYkJLMyxAz5Ss/o7XnMJub+oUCAwEAAaOCApswggKXMB0GA1UdDgQWBBQzUzaQ G7h/OgnqUOGYKybtLQH0KjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzlEQUQ4Qzg2 OTI5MjExRUVBMjA1Qjg4NEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCUGCCsGAQUFBwEHAQH/ BBYwFDASBAIAATAMAwQBZ2skAwQAZ3AvMA0GCSqGSIb3DQEBCwUAA4IBAQA3P16E vFnYamyGEWSSc2FAhiOCJR8qs0CUQoh48Q0BJK1HTrtJRhrU0DtIazCs/gw439+t pM1DeRqHrDeq5E79O9U4pnhdapoluMzZ/eirESkeNwoMXZuLHKQVNd0DDYxSc0ut 24SMLbupAkjbfCwaDyzPlhaKUrSYnhSkqDGprjSSU6ssY6bE+MD9axOw31ntS41i otwPzAHJbQ5/S1QVI+I6TjGNrfavbOJ7iov4zIR7PV5eS+HhAKtu/gxQ0S6Kj99L 0v6Xtp33Qa80ZovZEGjDCORhwgUixTSICP6xCzY/Rdl3YuGmElJOyGGzcfmo6rqR tPYQmdUpDiGzGUth -----END CERTIFICATE-----Generated at Sun Feb 16 20:45:01 2025 by rpki-client