$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A75C22CCC6F211ED908FCE6FC4F9AE02.roa File: A75C22CCC6F211ED908FCE6FC4F9AE02.roa (raw, json) Hash identifier: 9sMDskxYDCf6QJVDPxI4ffuh50ZTeCv/9Y19SgD7Kk8= Subject key identifier: 24:49:43:7B:66:97:EF:41:74:AA:A6:BF:C8:50:72:EB:17:93:50:9C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8F9C Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A75C22CCC6F211ED908FCE6FC4F9AE02.roa Signing time: Thu 30 May 2024 16:24:34 +0000 ROA not before: Thu 30 May 2024 16:24:34 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 150090 IP address blocks: 103.174.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36764 (0x8f9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: May 30 16:24:34 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a841-b76a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:30:ab:1b:57:58:30:09:0f:bb:c6:e0:77:96: e8:de:30:1d:13:72:80:98:c3:f6:28:af:96:4e:83: e3:25:e7:53:ae:a7:b6:8c:c1:7f:8e:ea:bd:94:32: c0:34:ac:98:43:4f:92:e0:f0:63:d4:7e:5f:4c:f1: ae:7e:f9:8b:0c:5a:8d:c3:52:75:0e:ad:55:86:9d: f4:07:c3:3d:fa:e2:ff:4e:6c:c7:8d:8b:2d:b2:4c: 33:2f:77:eb:ac:9d:ac:97:b2:d7:60:38:14:a6:a2: 01:bc:16:e3:e9:22:3a:7d:18:2b:b3:d7:00:a4:b7: e8:29:06:c4:11:76:f5:97:4b:ac:4b:8d:41:f2:5d: 87:fa:29:5e:ed:a5:34:7d:7a:66:fe:6a:a2:2e:19: fa:1a:8c:ac:d0:fa:85:5a:07:1e:c4:1c:49:9f:60: 0e:19:62:e0:6b:10:c3:1b:0b:cb:e4:b8:33:de:03: 5e:1c:a9:af:3b:78:86:13:18:55:a5:24:a3:83:7a: eb:69:c8:a2:c7:b1:41:b6:e7:51:c3:f1:27:7b:65: 11:88:d2:20:cf:c4:8f:22:15:80:46:b7:1e:e1:88: 3a:9f:be:dd:14:ba:fb:35:d8:ae:87:0c:87:a2:d7: 7d:b7:09:08:80:44:17:82:ee:3e:17:6f:b6:86:50: 99:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:49:43:7B:66:97:EF:41:74:AA:A6:BF:C8:50:72:EB:17:93:50:9C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A75C22CCC6F211ED908FCE6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.246.0/24 Signature Algorithm: sha256WithRSAEncryption 82:8a:3e:6c:3a:fb:f9:29:26:b2:7d:db:67:c8:4f:68:3b:17: 32:c9:12:de:bb:d4:78:1b:ab:3c:a2:b0:0a:56:a3:fd:c2:d1: 83:98:a4:91:0c:98:39:a7:82:44:b3:b3:57:fe:70:a7:56:b8: 9e:0e:a9:84:24:be:06:fc:df:35:0d:e9:f2:06:2d:21:29:04: f2:ec:d2:8c:40:ca:44:6d:cf:2f:ea:5f:59:4a:8a:32:eb:71: ad:1c:eb:44:8a:4c:f4:16:98:90:db:52:d7:80:45:81:ff:6d: f1:57:b9:e2:39:1e:7f:cc:5b:44:d4:14:d3:2c:6d:97:0f:2e: 10:6f:a5:2f:86:8d:e8:8b:2a:6d:cc:81:46:a2:c1:9f:b7:51: 50:2b:5c:c0:02:e4:2b:50:6f:0c:e2:36:f3:90:1c:f9:7b:37: 21:47:3c:ef:5d:78:a7:07:29:fa:27:e7:2a:48:dc:b6:e9:47: fa:07:ca:c3:1a:90:18:82:81:38:fc:72:02:55:7d:29:2a:23: 05:59:55:7c:3e:de:91:d6:ee:4a:7d:c9:3b:30:a7:ad:27:1b: 4f:76:fe:32:ab:85:28:c0:8d:5f:b7:19:cc:4f:95:64:fc:92: 9b:89:ba:b2:84:e8:c8:ec:68:71:3f:61:fa:ab:89:3a:ad:1d: 6d:cd:c6:e2 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAI+cMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MjQzNFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE4NDEtYjc2YTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALYwqxtXWDAJD7vG4HeW6N4wHRNygJjD9iivlk6D4yXnU66ntozBf47qvZQy wDSsmENPkuDwY9R+X0zxrn75iwxajcNSdQ6tVYad9AfDPfri/05sx42LLbJMMy93 66ydrJey12A4FKaiAbwW4+kiOn0YK7PXAKS36CkGxBF29ZdLrEuNQfJdh/opXu2l NH16Zv5qoi4Z+hqMrND6hVoHHsQcSZ9gDhli4GsQwxsLy+S4M94DXhyprzt4hhMY VaUko4N662nIosexQbbnUcPxJ3tlEYjSIM/EjyIVgEa3HuGIOp++3RS6+zXYrocM h6LXfbcJCIBEF4LuPhdvtoZQmW8CAwEAAaOCApUwggKRMB0GA1UdDgQWBBQkSUN7 ZpfvQXSqpr/IUHLrF5NQnDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0E3NUMyMkND QzZGMjExRUQ5MDhGQ0U2RkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ672MA0GCSqGSIb3DQEBCwUAA4IBAQCCij5sOvv5KSay fdtnyE9oOxcyyRLeu9R4G6s8orAKVqP9wtGDmKSRDJg5p4JEs7NX/nCnVrieDqmE JL4G/N81DenyBi0hKQTy7NKMQMpEbc8v6l9ZSooy63GtHOtEikz0FpiQ21LXgEWB /23xV7niOR5/zFtE1BTTLG2XDy4Qb6Uvho3oiyptzIFGosGft1FQK1zAAuQrUG8M 4jbzkBz5ezchRzzvXXinByn6J+cqSNy26Uf6B8rDGpAYgoE4/HICVX0pKiMFWVV8 Pt6R1u5Kfck7MKetJxtPdv4yq4UowI1ftxnMT5Vk/JKbibqyhOjI7GhxP2H6q4k6 rR1tzcbi -----END CERTIFICATE-----Generated at Sun Feb 16 20:31:24 2025 by rpki-client