$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9EFCB74403A611EFBE5DBE75C4F9AE02.roa File: 9EFCB74403A611EFBE5DBE75C4F9AE02.roa (raw, json) Hash identifier: /j+pOQfer8ydrxU+v3FEdZX4TSdEz+yan4bvXkUqjQk= Subject key identifier: 57:61:B5:B0:0A:5C:3B:A8:57:A6:83:44:14:69:B6:37:CE:CE:22:EC Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8E91 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9EFCB74403A611EFBE5DBE75C4F9AE02.roa Signing time: Thu 30 May 2024 16:20:13 +0000 ROA not before: Thu 30 May 2024 16:20:13 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 147224 IP address blocks: 103.137.45.0/24 maxlen: 24 103.171.77.0/24 maxlen: 24 103.174.247.0/24 maxlen: 24 2001:df0:f740::/48 maxlen: 48 2001:df2:16c0::/48 maxlen: 48 2001:df3:93c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 10:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36497 (0x8e91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:20:13 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a73d-791e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:58:a0:40:50:d2:cc:11:e3:b6:b4:a1:64:79: 5b:dd:df:5c:19:db:38:42:aa:77:9f:4f:3a:cb:0f: 89:6d:9b:22:47:7b:f9:0b:16:66:2c:3d:d4:53:f7: 1e:15:bd:13:c9:c2:e3:5b:e9:75:23:7d:12:f7:12: be:46:3a:54:8b:4b:b0:d2:b4:6a:27:43:0d:78:f6: e4:92:af:c4:03:07:bc:73:ce:d5:79:33:f5:0c:a7: 65:8a:7c:5f:08:71:03:64:82:88:dc:9a:1b:c2:cd: 06:ef:40:1e:b8:8b:4f:4e:c7:fb:96:3c:96:a4:1c: 1a:fa:2f:8c:93:31:a8:44:a1:27:1d:78:5f:5a:c2: 85:77:84:b2:52:70:22:aa:3d:9e:0e:19:81:f4:d8: 55:92:d1:48:c6:2a:7a:22:5c:ed:02:c1:78:ab:2e: e2:bb:25:b7:7a:0c:01:f0:90:73:f7:49:85:dd:56: 5d:95:d6:b2:8a:5f:61:95:da:c6:f3:6a:cb:30:2a: f7:19:06:32:0f:40:90:95:67:bc:4b:80:31:a5:c5: 3d:bc:79:70:c8:e8:ab:d0:2a:8d:14:2e:ae:5f:08: 5b:93:8b:4c:de:28:ab:97:d8:6f:50:a6:94:ec:7e: 6c:fb:e3:6b:9b:3e:94:85:67:43:68:d4:18:14:44: 0e:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:61:B5:B0:0A:5C:3B:A8:57:A6:83:44:14:69:B6:37:CE:CE:22:EC X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9EFCB74403A611EFBE5DBE75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.45.0/24 103.171.77.0/24 103.174.247.0/24 IPv6: 2001:df0:f740::/48 2001:df2:16c0::/48 2001:df3:93c0::/48 Signature Algorithm: sha256WithRSAEncryption 7f:bd:ce:e3:d3:b2:e1:b4:e1:ac:a9:54:2d:13:8e:e1:33:e3: 25:cc:ed:47:7d:05:91:3d:ff:16:55:e6:da:fe:ae:23:a1:d4: a8:30:4e:bf:62:1d:9b:4e:aa:b8:70:f3:77:30:78:03:a2:1c: bc:f7:e6:d7:9e:83:38:b2:d5:87:af:cc:14:51:72:dd:ce:0f: e8:7f:78:74:c0:f2:c8:1f:6e:f4:cf:a8:f3:76:59:d3:bb:36: 61:fc:12:16:6f:4d:8a:2c:27:ed:8e:43:a3:a1:f5:84:01:b1: 7d:13:82:d3:23:cc:67:69:31:b0:d0:59:1a:86:f6:9a:f4:8f: 96:4b:aa:d7:61:ac:3b:59:ab:cf:ad:cc:1b:1a:ce:4b:8a:e0: f5:b6:ec:16:4b:e3:c6:e4:6a:87:77:ea:e5:d3:df:82:74:72: eb:82:f9:3d:51:cd:dc:91:a1:0b:76:3e:d4:6a:12:59:0b:c4: bd:c6:03:b8:91:2b:d0:43:0b:c5:9b:48:08:db:44:ff:7f:8e: bc:44:84:24:59:5f:67:4b:3f:98:99:31:22:04:b3:bf:0d:59: b7:b2:fc:c7:f5:58:46:5f:2c:61:02:01:fb:d8:30:ca:ae:8b: 3c:7f:a2:5f:b9:e8:1f:4c:b0:6f:f0:ac:24:67:88:31:69:75: 32:d1:47:4d -----BEGIN CERTIFICATE----- MIIFoTCCBImgAwIBAgIDAI6RMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MjAxM1oXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE3M2QtNzkxZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANpYoEBQ0swR47a0oWR5W93fXBnbOEKqd59POssPiW2bIkd7+QsWZiw91FP3 HhW9E8nC41vpdSN9EvcSvkY6VItLsNK0aidDDXj25JKvxAMHvHPO1Xkz9QynZYp8 XwhxA2SCiNyaG8LNBu9AHriLT07H+5Y8lqQcGvovjJMxqEShJx14X1rChXeEslJw Iqo9ng4ZgfTYVZLRSMYqeiJc7QLBeKsu4rslt3oMAfCQc/dJhd1WXZXWsopfYZXa xvNqyzAq9xkGMg9AkJVnvEuAMaXFPbx5cMjoq9AqjRQurl8IW5OLTN4oq5fYb1Cm lOx+bPvja5s+lIVnQ2jUGBREDpcCAwEAAaOCAsQwggLAMB0GA1UdDgQWBBRXYbWw Clw7qFemg0QUabY3zs4i7DAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzlFRkNCNzQ0 MDNBNjExRUZCRTVEQkU3NUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sME4GCCsGAQUFBwEHAQH/ BD8wPTAYBAIAATASAwQAZ4ktAwQAZ6tNAwQAZ673MCEEAgACMBsDBwAgAQ3w90AD BwAgAQ3yFsADBwAgAQ3zk8AwDQYJKoZIhvcNAQELBQADggEBAH+9zuPTsuG04ayp VC0TjuEz4yXM7Ud9BZE9/xZV5tr+riOh1KgwTr9iHZtOqrhw83cweAOiHLz35tee gziy1YevzBRRct3OD+h/eHTA8sgfbvTPqPN2WdO7NmH8EhZvTYosJ+2OQ6Oh9YQB sX0TgtMjzGdpMbDQWRqG9pr0j5ZLqtdhrDtZq8+tzBsazkuK4PW27BZL48bkaod3 6uXT34J0cuuC+T1RzdyRoQt2PtRqElkLxL3GA7iRK9BDC8WbSAjbRP9/jrxEhCRZ X2dLP5iZMSIEs78NWbey/Mf1WEZfLGECAfvYMMquizx/ol+56B9MsG/wrCRniDFp dTLRR00= -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:03 2024 by rpki-client on console-fra.rpki-client.org