$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BF5639E2890E11EEBB123658C4F9AE02.roa File: BF5639E2890E11EEBB123658C4F9AE02.roa (raw, json) Hash identifier: RKh05nAmiJQFAPZ6SmQ7whBZBV78dMiNVGyPiPS+DNQ= Subject key identifier: A9:4C:22:0D:01:18:64:B2:21:89:BD:B6:92:B5:9B:AE:85:F5:12:21 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 89E4 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BF5639E2890E11EEBB123658C4F9AE02.roa Signing time: Thu 30 May 2024 16:00:44 +0000 ROA not before: Thu 30 May 2024 16:00:44 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 134906 IP address blocks: 103.177.254.0/24 maxlen: 24 103.211.80.0/24 maxlen: 24 2400:3fe0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35300 (0x89e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:00:44 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a2ab-1221 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:68:77:12:9f:ef:86:50:20:d1:18:7f:f9:ec: 9d:29:89:39:0d:10:4f:59:11:66:83:d2:23:c8:b9: 30:ea:08:d8:72:d3:78:69:27:aa:8d:f3:ce:bd:e3: 6d:c9:3b:ec:12:2d:f6:2c:0b:92:bc:16:24:bb:07: 4a:06:13:e3:cb:8b:73:41:57:96:20:d5:ab:5c:95: be:04:ad:83:56:98:9b:8e:2e:ba:ee:50:8e:3f:e3: ea:fb:c0:f7:06:2a:0d:b4:61:f6:fb:b4:e5:a5:b5: 84:43:88:d2:16:45:7e:3c:07:6c:0a:0f:2e:e1:54: 98:3e:7b:99:9c:e1:ee:75:8f:b3:0f:2b:be:44:0a: f1:43:f1:86:83:90:e8:ae:1c:e5:b3:17:ba:fc:e5: ac:5b:c3:60:5b:5b:06:e3:0b:d6:0f:94:6d:8d:4f: da:de:8f:8e:6e:70:21:1c:d6:2e:e3:6e:1c:b4:a8: 5e:3b:3b:2c:25:c8:b6:51:15:9c:85:bd:bc:94:2c: 99:0f:8a:ce:bb:7b:4e:38:84:b6:67:4a:40:ab:bd: be:24:de:45:a9:d3:0c:f8:5e:64:37:73:db:1c:0e: 0b:9b:2d:58:ef:e7:43:9d:8d:0a:e8:19:44:38:8b: c6:41:84:f0:45:ad:23:e9:74:77:97:2a:a5:b4:b7: 6e:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:4C:22:0D:01:18:64:B2:21:89:BD:B6:92:B5:9B:AE:85:F5:12:21 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BF5639E2890E11EEBB123658C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.177.254.0/24 103.211.80.0/24 IPv6: 2400:3fe0::/32 Signature Algorithm: sha256WithRSAEncryption 62:6e:fd:5b:50:85:ba:21:82:eb:66:9d:88:47:89:4c:d8:16: 8c:d3:cb:a5:24:7d:b8:25:9f:6c:b8:06:9e:a7:34:7f:d2:8d: 91:fc:77:1e:f2:a5:91:a7:7b:22:92:57:d9:70:30:0c:d0:03: bf:33:b9:60:82:8e:0f:fa:d2:9f:38:24:85:75:7a:fc:fd:8c: 84:cc:dc:08:ae:87:aa:0b:58:22:04:c0:78:d5:b6:c8:fd:e1: 0d:16:d8:82:c6:14:71:34:99:fa:ba:40:de:8c:86:52:d0:3f: cb:81:d4:ae:68:3d:59:37:e0:50:6b:0c:4b:a9:dd:9c:5a:8b: dc:8d:3e:9d:f9:e5:75:a7:e8:db:d7:5a:26:98:68:4a:1f:1e: 6d:49:b5:76:04:eb:fd:3e:41:09:54:16:62:8f:0e:48:49:c2: ef:4d:51:9a:2b:d1:22:92:fe:00:b8:ca:6d:34:a9:e3:94:f3: 6a:c9:27:a2:09:d5:f7:60:9e:0d:a7:06:ca:2d:91:64:3c:05: 80:64:3d:98:1f:7e:f9:36:2e:5a:ff:9c:1c:da:7d:d3:77:f1: 46:c2:76:3a:92:2b:c7:b5:04:1d:df:d9:59:e7:96:53:79:c0: c6:59:40:18:c5:89:e6:a6:10:fa:cf:65:5d:11:ac:7a:00:94: 4a:ea:b4:ff -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgIDAInkMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MDA0NFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGEyYWItMTIyMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM1odxKf74ZQINEYf/nsnSmJOQ0QT1kRZoPSI8i5MOoI2HLTeGknqo3zzr3j bck77BIt9iwLkrwWJLsHSgYT48uLc0FXliDVq1yVvgStg1aYm44uuu5Qjj/j6vvA 9wYqDbRh9vu05aW1hEOI0hZFfjwHbAoPLuFUmD57mZzh7nWPsw8rvkQK8UPxhoOQ 6K4c5bMXuvzlrFvDYFtbBuML1g+UbY1P2t6Pjm5wIRzWLuNuHLSoXjs7LCXItlEV nIW9vJQsmQ+Kzrt7TjiEtmdKQKu9viTeRanTDPheZDdz2xwOC5stWO/nQ52NCugZ RDiLxkGE8EWtI+l0d5cqpbS3btcCAwEAAaOCAqowggKmMB0GA1UdDgQWBBSpTCIN ARhksiGJvbaStZuuhfUSITAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0JGNTYzOUUy ODkwRTExRUVCQjEyMzY1OEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDQGCCsGAQUFBwEHAQH/ BCUwIzASBAIAATAMAwQAZ7H+AwQAZ9NQMA0EAgACMAcDBQAkAD/gMA0GCSqGSIb3 DQEBCwUAA4IBAQBibv1bUIW6IYLrZp2IR4lM2BaM08ulJH24JZ9suAaepzR/0o2R /Hce8qWRp3siklfZcDAM0AO/M7lggo4P+tKfOCSFdXr8/YyEzNwIroeqC1giBMB4 1bbI/eENFtiCxhRxNJn6ukDejIZS0D/LgdSuaD1ZN+BQawxLqd2cWovcjT6d+eV1 p+jb11ommGhKHx5tSbV2BOv9PkEJVBZijw5IScLvTVGaK9Eikv4AuMptNKnjlPNq ySeiCdX3YJ4NpwbKLZFkPAWAZD2YH375Ni5a/5wc2n3Td/FGwnY6kivHtQQd39lZ 55ZTecDGWUAYxYnmphD6z2VdEax6AJRK6rT/ -----END CERTIFICATE-----Generated at Fri Nov 22 11:48:00 2024 by rpki-client on console-ams.rpki-client.org