$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B6A829B003BD11EBB416B77DC4F9AE02.roa File: B6A829B003BD11EBB416B77DC4F9AE02.roa (raw, json) Hash identifier: anCQqN72sH75MH5wG2ENFdFqopIsQlbeqe1kf4PbpDc= Subject key identifier: 87:3A:07:78:12:DC:6D:8B:D6:5E:AA:75:79:64:B1:CE:07:72:6E:15 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8A90 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B6A829B003BD11EBB416B77DC4F9AE02.roa Signing time: Thu 30 May 2024 16:03:33 +0000 ROA not before: Thu 30 May 2024 16:03:33 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 135787 IP address blocks: 103.85.76.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 10:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35472 (0x8a90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:03:33 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a354-b8fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f9:ce:e3:9d:74:3c:01:58:54:7d:18:0f:78: dd:a3:2e:76:46:7e:c4:38:ec:b1:3f:b1:ab:5c:69: a1:37:9e:09:2b:d1:bb:72:ed:2a:67:15:69:a7:36: 5c:83:6d:78:9b:c1:dd:b5:da:89:52:41:c3:14:a2: 46:97:ee:87:52:46:af:fc:33:0b:e3:8c:b5:73:a3: 47:85:3a:be:bf:57:ba:8b:27:ee:2e:58:61:7a:d7: cf:37:71:f0:e3:fb:5f:51:d3:f4:c4:b8:7f:23:84: c8:d0:64:65:69:cc:c0:0a:56:61:40:79:7a:6b:07: 4b:aa:79:8f:28:0a:4e:e9:bc:33:0e:6f:93:22:33: 6e:af:91:3d:e0:d8:45:d7:4c:f6:cd:8f:fd:7d:74: 25:31:7d:d2:af:a6:a4:fc:75:59:6f:1f:30:d1:45: d5:35:b8:e7:9f:ca:61:fc:70:d1:55:13:38:7e:b9: f2:6e:04:07:61:33:aa:38:01:08:49:48:d8:49:76: f7:16:ec:16:aa:d3:48:10:b1:27:a5:00:01:bf:7f: 9a:ab:93:43:4b:75:3a:d5:94:52:8b:23:d6:33:fb: 58:6a:4e:c5:f1:3b:ca:bc:89:90:67:a6:72:8a:ef: 7e:67:80:5f:fd:0e:c3:22:4a:6c:b2:67:41:0a:95: 5c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:3A:07:78:12:DC:6D:8B:D6:5E:AA:75:79:64:B1:CE:07:72:6E:15 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B6A829B003BD11EBB416B77DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.85.76.0/23 Signature Algorithm: sha256WithRSAEncryption 17:bd:39:88:e4:9b:09:63:4a:62:7b:38:91:7d:38:df:3d:2f: ee:dd:39:0f:5e:ef:db:d1:b1:97:78:24:ba:60:db:a6:85:8b: 08:e2:7b:d7:cd:10:f9:2e:1d:ac:05:15:01:5f:da:ee:86:3d: 65:b3:cf:dd:d2:b9:ad:43:a8:ab:a5:38:5c:26:36:84:d5:24: 7d:68:56:e4:f7:b9:d0:13:db:b5:1a:55:ec:94:f6:80:ad:ec: e6:a7:bc:b1:b6:b8:a4:0e:c9:ec:97:7d:27:a5:1a:07:f8:43: 56:94:c6:cc:90:4d:15:2d:36:d2:77:91:2e:a4:76:24:0c:0d: 54:72:b6:4c:fd:23:d4:f6:77:56:f4:26:b5:4e:6a:6f:17:48: 63:93:ad:af:fd:c9:b7:3c:81:72:f5:fc:1a:db:61:12:a2:aa: 47:e5:7c:29:41:9d:da:59:d3:5d:dc:b0:9a:01:0e:bd:c3:93: 98:f9:f1:61:9a:d0:9d:fa:62:bb:6e:97:24:82:0b:d4:44:ea: f0:a3:bc:25:1f:04:e1:bb:4d:fd:f3:1d:47:39:ba:16:2e:f6: 7a:c2:9e:14:02:c6:b5:4b:7c:6f:46:76:3f:70:f6:2c:7b:72: 13:fd:f8:9b:f0:3d:de:51:89:4e:a9:2e:28:a4:66:5a:23:e4: 79:51:a8:81 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAIqQMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MDMzM1oXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGEzNTQtYjhmZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK35zuOddDwBWFR9GA943aMudkZ+xDjssT+xq1xpoTeeCSvRu3LtKmcVaac2 XINteJvB3bXaiVJBwxSiRpfuh1JGr/wzC+OMtXOjR4U6vr9Xuosn7i5YYXrXzzdx 8OP7X1HT9MS4fyOEyNBkZWnMwApWYUB5emsHS6p5jygKTum8Mw5vkyIzbq+RPeDY RddM9s2P/X10JTF90q+mpPx1WW8fMNFF1TW455/KYfxw0VUTOH658m4EB2EzqjgB CElI2El29xbsFqrTSBCxJ6UAAb9/mquTQ0t1OtWUUosj1jP7WGpOxfE7yryJkGem corvfmeAX/0OwyJKbLJnQQqVXG0CAwEAAaOCApUwggKRMB0GA1UdDgQWBBSHOgd4 Etxti9ZeqnV5ZLHOB3JuFTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0I2QTgyOUIw MDNCRDExRUJCNDE2Qjc3REM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ1VMMA0GCSqGSIb3DQEBCwUAA4IBAQAXvTmI5JsJY0pi eziRfTjfPS/u3TkPXu/b0bGXeCS6YNumhYsI4nvXzRD5Lh2sBRUBX9ruhj1ls8/d 0rmtQ6irpThcJjaE1SR9aFbk97nQE9u1GlXslPaArezmp7yxtrikDsnsl30npRoH +ENWlMbMkE0VLTbSd5EupHYkDA1UcrZM/SPU9ndW9Ca1TmpvF0hjk62v/cm3PIFy 9fwa22ESoqpH5XwpQZ3aWdNd3LCaAQ69w5OY+fFhmtCd+mK7bpckggvUROrwo7wl HwThu0398x1HOboWLvZ6wp4UAsa1S3xvRnY/cPYse3IT/fib8D3eUYlOqS4opGZa I+R5UaiB -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:24 2024 by rpki-client on console-ams.rpki-client.org