$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A7815FCE811A11EDA2CAE326C4F9AE02.roa File: A7815FCE811A11EDA2CAE326C4F9AE02.roa (raw, json) Hash identifier: 4A+DUfzLt0VG8wMSLwac5QsyhD3HZfKKnvTiGc5PwoY= Subject key identifier: AA:8F:69:DF:95:72:23:BC:CC:C8:95:77:77:AA:DE:BB:70:FD:0E:08 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8F90 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A7815FCE811A11EDA2CAE326C4F9AE02.roa Signing time: Thu 30 May 2024 16:24:22 +0000 ROA not before: Thu 30 May 2024 16:24:22 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 150070 IP address blocks: 103.21.70.0/23 maxlen: 24 2001:df1:8e40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36752 (0x8f90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:24:22 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a835-6fc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c6:e7:7f:38:69:74:68:d7:45:6e:e2:cc:ff: 5b:8b:03:8f:0f:e4:67:df:f1:4e:8c:70:62:1d:30: 26:90:77:8c:05:3b:af:d7:a0:69:d4:8f:5d:b1:98: 08:cd:29:49:97:30:7d:e2:80:f2:bd:c9:34:48:62: 7b:4e:b9:d9:69:29:85:9c:65:43:91:1c:9d:5e:a2: 99:6f:53:18:e1:a0:a6:f8:d4:87:be:15:79:17:40: 69:e3:87:25:36:36:46:ca:c2:b6:a5:b3:6c:34:12: 76:e0:e0:0e:e0:7a:9d:13:82:7f:df:b5:3a:a2:ff: d2:8b:1c:0e:55:5b:14:d6:a1:16:0c:47:eb:3e:a1: f7:64:ce:6b:89:c3:e3:1b:c5:45:b8:3c:b2:66:5a: 64:d4:19:aa:3c:0f:0c:c8:fe:f2:a7:7b:0a:bd:b4: 50:c0:29:46:2d:a1:9a:4e:e4:d2:a9:e8:06:6a:d9: ae:3a:18:60:ac:b3:76:b0:e9:fb:39:6f:f5:90:ff: e2:49:2c:a4:a8:ff:09:d1:fd:e4:59:7e:7e:f3:a4: a4:8a:5b:20:15:c2:8e:43:ff:3a:5d:84:f8:c8:cc: d0:31:b3:b3:a2:07:0b:2e:c7:29:34:30:eb:14:22: 61:32:a3:01:3e:c5:55:f1:04:df:32:c0:2b:72:44: 58:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:8F:69:DF:95:72:23:BC:CC:C8:95:77:77:AA:DE:BB:70:FD:0E:08 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A7815FCE811A11EDA2CAE326C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.70.0/23 IPv6: 2001:df1:8e40::/48 Signature Algorithm: sha256WithRSAEncryption 96:bc:19:75:ae:b4:f3:ff:ec:dd:8f:09:4e:d3:d8:0b:42:80: 0b:5b:9c:60:9f:06:ef:1b:4e:73:71:79:10:a9:5d:d2:31:c6: 6d:e1:7c:36:67:eb:06:19:c2:34:ca:d9:7c:49:00:2c:a2:91: fb:01:70:e9:74:0b:aa:a2:e2:18:44:f3:e9:8d:c5:05:29:31: 64:15:d5:6e:ab:4c:4d:54:53:42:94:6a:b1:ae:0a:6c:90:10: 57:25:7d:58:19:8a:c2:59:ba:4e:c4:cf:b0:77:28:6f:d0:bd: 0b:dd:cb:b5:18:c5:0e:c3:31:2f:7c:fe:69:d1:ca:e0:46:aa: 7d:de:bc:b1:e8:8c:d5:16:6f:00:a4:42:75:fb:a1:30:bc:dc: 8b:90:1f:e8:4d:1f:43:54:5b:ba:9b:c0:00:62:00:ee:13:75: 32:d3:a7:9f:42:b6:d0:6e:fc:68:2d:98:1b:0b:39:83:41:37: 66:42:72:40:47:7c:de:5c:87:f1:09:26:be:0f:63:5e:3b:f8: 6f:57:69:f3:ed:e1:2d:fe:b8:0f:46:d2:b1:df:57:c6:88:2f: ee:08:66:c2:a1:85:52:99:c4:81:ed:f9:38:c0:e7:28:dc:a6: fe:15:93:6c:f3:96:8f:47:4d:a0:8a:6e:ed:50:d5:ad:30:c7: 7e:ae:27:1e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDAI+QMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MjQyMloXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE4MzUtNmZjMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM/G5384aXRo10Vu4sz/W4sDjw/kZ9/xToxwYh0wJpB3jAU7r9egadSPXbGY CM0pSZcwfeKA8r3JNEhie0652WkphZxlQ5EcnV6imW9TGOGgpvjUh74VeRdAaeOH JTY2RsrCtqWzbDQSduDgDuB6nROCf9+1OqL/0oscDlVbFNahFgxH6z6h92TOa4nD 4xvFRbg8smZaZNQZqjwPDMj+8qd7Cr20UMApRi2hmk7k0qnoBmrZrjoYYKyzdrDp +zlv9ZD/4kkspKj/CdH95Fl+fvOkpIpbIBXCjkP/Ol2E+MjM0DGzs6IHCy7HKTQw 6xQiYTKjAT7FVfEE3zLAK3JEWIcCAwEAAaOCAqYwggKiMB0GA1UdDgQWBBSqj2nf lXIjvMzIlXd3qt67cP0OCDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0E3ODE1RkNF ODExQTExRURBMkNBRTMyNkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQBZxVGMA8EAgACMAkDBwAgAQ3xjkAwDQYJKoZIhvcNAQEL BQADggEBAJa8GXWutPP/7N2PCU7T2AtCgAtbnGCfBu8bTnNxeRCpXdIxxm3hfDZn 6wYZwjTK2XxJACyikfsBcOl0C6qi4hhE8+mNxQUpMWQV1W6rTE1UU0KUarGuCmyQ EFclfVgZisJZuk7Ez7B3KG/QvQvdy7UYxQ7DMS98/mnRyuBGqn3evLHojNUWbwCk QnX7oTC83IuQH+hNH0NUW7qbwABiAO4TdTLTp59CttBu/GgtmBsLOYNBN2ZCckBH fN5ch/EJJr4PY147+G9XafPt4S3+uA9G0rHfV8aIL+4IZsKhhVKZxIHt+TjA5yjc pv4Vk2zzlo9HTaCKbu1Q1a0wx36uJx4= -----END CERTIFICATE-----Generated at Fri Nov 22 11:17:48 2024 by rpki-client on console-fra.rpki-client.org