$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B4E8C2F89B8B11EC98C88432C4F9AE02.roa File: B4E8C2F89B8B11EC98C88432C4F9AE02.roa (raw, json) Hash identifier: ptcuVTbFe4DsoiBTDBKIQr0778NCE9OVu4lbPnFxPtI= Subject key identifier: F7:B6:AF:12:99:17:5D:0E:51:F5:67:7E:CB:47:FF:55:71:0F:EA:A1 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8C96 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B4E8C2F89B8B11EC98C88432C4F9AE02.roa Signing time: Thu 30 May 2024 16:11:57 +0000 ROA not before: Thu 30 May 2024 16:11:57 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 139544 IP address blocks: 103.181.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35990 (0x8c96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: May 30 16:11:57 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a54d-8540 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:94:00:b3:50:5a:b9:d3:be:a6:7e:34:c4:99: 24:e8:a9:7c:e1:f6:0f:4e:14:93:ee:0c:fd:fe:63: d6:4b:e1:13:f0:f3:39:7a:c3:5f:a9:39:0a:c8:09: bf:cb:e7:cd:d5:2a:75:31:42:32:50:9c:22:64:11: 03:bb:8e:fe:31:17:d1:0d:ac:01:e6:48:d6:b9:67: 01:78:8d:2e:11:12:9f:36:e8:11:f3:89:b2:c5:c6: 3e:83:36:40:b9:fe:64:77:62:36:b1:c8:39:b5:f7: 5b:f2:7a:ee:d1:d8:8d:08:80:c4:86:9a:87:26:38: 26:a5:a8:14:37:bc:5a:e5:56:cc:cc:c1:8a:39:90: 5e:b0:80:74:2b:63:6e:fe:3d:d0:a7:3b:38:2c:6c: 8d:67:4d:6c:bd:17:d0:b4:ba:df:33:d0:a6:00:42: 21:80:a8:60:28:33:d6:c3:90:dc:84:ee:f1:f3:73: ae:41:7f:f8:9f:96:da:fd:dc:17:45:82:64:58:20: 66:a5:2b:21:cc:7a:fa:7c:4c:47:f4:23:b8:c8:3d: 9f:f5:ea:2a:de:b2:69:db:1c:7d:8f:ca:bf:28:e0: 92:1e:47:e8:50:74:22:26:bd:cf:ee:11:95:5b:85: 99:45:4d:c6:1d:9e:a7:63:31:9d:84:35:6c:45:4d: 4e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:B6:AF:12:99:17:5D:0E:51:F5:67:7E:CB:47:FF:55:71:0F:EA:A1 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B4E8C2F89B8B11EC98C88432C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.181.19.0/24 Signature Algorithm: sha256WithRSAEncryption 22:ab:69:49:8c:4e:18:6d:f6:55:5e:54:c2:63:2c:e1:ad:56: 86:68:45:4d:ce:4c:f7:f7:3c:8f:e6:d5:48:db:6c:e6:5f:6e: 34:1d:5e:32:34:9e:1d:33:51:d4:e5:ec:58:70:e8:cc:20:21: 06:bb:eb:16:cb:ba:38:ff:22:9a:35:55:6e:b2:b2:76:6d:cc: e7:0c:a5:0e:76:7d:ad:43:53:b5:b4:47:f4:6b:87:5d:78:78: e3:2d:da:77:df:1d:9e:7a:41:01:46:1b:73:1c:51:0f:55:0d: e7:38:9a:86:36:4d:c4:3b:8c:7c:8d:a7:b0:b7:b5:f7:55:c6: 2f:72:c5:00:96:dc:a9:11:e7:d5:a8:d6:5b:75:c9:0f:27:17: 90:3e:7d:dd:e4:27:d9:af:49:be:a4:c0:1a:5b:b3:27:71:23: c8:7a:92:79:c1:db:48:dc:82:98:84:8d:55:dd:01:2a:5a:96: 33:73:cb:88:d2:f2:8f:c1:29:c5:80:c1:00:27:5e:82:b9:81: e5:8e:98:df:12:2f:a5:13:d2:29:39:3e:32:09:2e:07:01:ea: 9e:a0:3b:fa:d5:96:0a:69:52:08:f6:9c:a3:95:7e:29:0d:52: bd:fe:95:bb:af:a0:ea:6d:7c:71:64:21:c7:dc:65:0e:01:3a: 24:2a:21:60 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAIyWMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MTE1N1oXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE1NGQtODU0MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMKUALNQWrnTvqZ+NMSZJOipfOH2D04Uk+4M/f5j1kvhE/DzOXrDX6k5CsgJ v8vnzdUqdTFCMlCcImQRA7uO/jEX0Q2sAeZI1rlnAXiNLhESnzboEfOJssXGPoM2 QLn+ZHdiNrHIObX3W/J67tHYjQiAxIaahyY4JqWoFDe8WuVWzMzBijmQXrCAdCtj bv490Kc7OCxsjWdNbL0X0LS63zPQpgBCIYCoYCgz1sOQ3ITu8fNzrkF/+J+W2v3c F0WCZFggZqUrIcx6+nxMR/QjuMg9n/XqKt6yadscfY/Kvyjgkh5H6FB0Iia9z+4R lVuFmUVNxh2ep2MxnYQ1bEVNTsECAwEAAaOCApUwggKRMB0GA1UdDgQWBBT3tq8S mRddDlH1Z37LR/9VcQ/qoTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0I0RThDMkY4 OUI4QjExRUM5OEM4ODQzMkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ7UTMA0GCSqGSIb3DQEBCwUAA4IBAQAiq2lJjE4YbfZV XlTCYyzhrVaGaEVNzkz39zyP5tVI22zmX240HV4yNJ4dM1HU5exYcOjMICEGu+sW y7o4/yKaNVVusrJ2bcznDKUOdn2tQ1O1tEf0a4ddeHjjLdp33x2eekEBRhtzHFEP VQ3nOJqGNk3EO4x8jaewt7X3VcYvcsUAltypEefVqNZbdckPJxeQPn3d5CfZr0m+ pMAaW7MncSPIepJ5wdtI3IKYhI1V3QEqWpYzc8uI0vKPwSnFgMEAJ16CuYHljpjf Ei+lE9IpOT4yCS4HAeqeoDv61ZYKaVII9pyjlX4pDVK9/pW7r6DqbXxxZCHH3GUO ATokKiFg -----END CERTIFICATE-----Generated at Sun Feb 16 20:23:06 2025 by rpki-client