$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B8E2511A49D111EBBF79C611C4F9AE02.roa File: B8E2511A49D111EBBF79C611C4F9AE02.roa (raw, json) Hash identifier: IaCXnEvKMRskTqkoxRCieOokVn2sehr4orsRsEsJb5I= Subject key identifier: 6A:09:1D:AB:87:C5:9F:6E:C0:5A:64:FD:D9:C2:23:F3:53:6E:C4:A4 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8D68 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B8E2511A49D111EBBF79C611C4F9AE02.roa Signing time: Thu 30 May 2024 16:15:29 +0000 ROA not before: Thu 30 May 2024 16:15:29 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 141513 IP address blocks: 103.160.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36200 (0x8d68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: May 30 16:15:29 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a621-e4e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:16:77:44:b1:0c:a6:3a:49:86:3b:63:1e:9a: cc:21:d6:94:18:38:84:c6:58:60:11:58:6c:24:66: 09:bf:9d:3b:ee:72:c0:49:59:d1:33:c0:69:fa:0b: 3b:f9:99:58:08:06:35:98:a9:04:89:61:71:89:b4: bb:73:8a:c8:e1:1f:38:e3:f8:0f:73:be:0a:89:1f: 5d:67:84:f6:79:86:17:68:db:4f:33:0e:cf:c4:52: e6:0b:7c:47:f7:ca:21:5f:1c:93:e0:43:db:d9:a9: bf:38:4f:64:20:cd:9e:f2:94:43:53:d7:5b:49:6f: 70:d9:5a:c0:c4:e0:08:4c:f5:05:8d:2a:f6:fb:c3: 60:c4:49:58:52:54:77:81:18:72:a3:f1:1c:87:16: a5:d4:1d:ce:0d:6d:66:38:75:11:e0:04:45:d8:a9: 71:67:44:c3:57:c6:a9:2c:49:31:f7:e8:59:32:6c: 0d:a8:04:91:f1:5e:ec:bb:ec:f3:c3:94:36:a7:e7: b1:03:42:b9:2f:1f:ed:a6:5c:25:ca:eb:ea:7f:e1: 64:d8:e2:b0:5e:84:18:ed:b6:74:7e:8f:52:1f:4d: 64:7f:01:02:a7:fd:9f:4f:f5:96:90:06:24:b8:44: 4a:1e:44:6a:22:56:6a:90:af:a4:c9:29:19:32:85: 59:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:09:1D:AB:87:C5:9F:6E:C0:5A:64:FD:D9:C2:23:F3:53:6E:C4:A4 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B8E2511A49D111EBBF79C611C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.189.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:ee:98:1d:ec:3c:2b:cd:b7:67:d4:98:41:b4:c6:9c:23:6b: e3:b7:3e:c3:59:08:7a:e5:11:41:9d:cf:88:26:c2:7f:93:10: 3d:f7:d0:f4:b9:b5:1c:a2:89:1d:fc:5f:57:6c:51:63:99:8e: 34:8a:76:3a:3f:0a:9c:2b:a3:d3:72:c5:55:3e:0a:e2:b2:f2: 90:65:b6:7b:81:52:2c:a5:05:74:c4:d2:20:f3:fb:c6:8e:ee: 88:02:15:a5:8e:a5:52:9e:c5:7f:85:23:75:e8:f1:1f:3d:3a: e4:30:c7:28:e4:94:39:b0:6a:4d:6a:6b:18:73:5c:e0:c6:e8: 8f:05:9f:62:24:7b:20:7a:38:84:46:75:60:fe:21:09:61:ce: 71:03:b6:fa:73:0e:1c:45:dd:04:d1:a0:1b:b8:3d:38:dd:9b: 56:59:bc:28:50:2b:70:68:4e:0f:97:fd:e4:01:9a:60:83:c1: 31:83:83:f1:e2:9e:1d:5f:b7:41:12:e0:00:9f:fc:5f:37:aa: ff:47:e0:42:36:a3:34:f3:4c:ad:27:09:8c:93:49:12:11:64: fd:f6:d5:94:83:f3:24:ec:94:3b:88:35:03:5e:27:93:c2:0e: df:2c:ba:38:58:9d:68:cd:3e:2b:af:f7:9c:25:fd:36:91:d5: 2b:f6:ef:0c -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAI1oMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MTUyOVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE2MjEtZTRlNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMEWd0SxDKY6SYY7Yx6azCHWlBg4hMZYYBFYbCRmCb+dO+5ywElZ0TPAafoL O/mZWAgGNZipBIlhcYm0u3OKyOEfOOP4D3O+CokfXWeE9nmGF2jbTzMOz8RS5gt8 R/fKIV8ck+BD29mpvzhPZCDNnvKUQ1PXW0lvcNlawMTgCEz1BY0q9vvDYMRJWFJU d4EYcqPxHIcWpdQdzg1tZjh1EeAERdipcWdEw1fGqSxJMffoWTJsDagEkfFe7Lvs 88OUNqfnsQNCuS8f7aZcJcrr6n/hZNjisF6EGO22dH6PUh9NZH8BAqf9n0/1lpAG JLhESh5EaiJWapCvpMkpGTKFWVUCAwEAAaOCApUwggKRMB0GA1UdDgQWBBRqCR2r h8WfbsBaZP3ZwiPzU27EpDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0I4RTI1MTFB NDlEMTExRUJCRjc5QzYxMUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ6C9MA0GCSqGSIb3DQEBCwUAA4IBAQBs7pgd7Dwrzbdn 1JhBtMacI2vjtz7DWQh65RFBnc+IJsJ/kxA999D0ubUcookd/F9XbFFjmY40inY6 PwqcK6PTcsVVPgrisvKQZbZ7gVIspQV0xNIg8/vGju6IAhWljqVSnsV/hSN16PEf PTrkMMco5JQ5sGpNamsYc1zgxuiPBZ9iJHsgejiERnVg/iEJYc5xA7b6cw4cRd0E 0aAbuD043ZtWWbwoUCtwaE4Pl/3kAZpgg8Exg4Px4p4dX7dBEuAAn/xfN6r/R+BC NqM080ytJwmMk0kSEWT99tWUg/Mk7JQ7iDUDXieTwg7fLLo4WJ1ozT4rr/ecJf02 kdUr9u8M -----END CERTIFICATE-----Generated at Sun Feb 16 20:13:06 2025 by rpki-client