$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C0DA3478DF6511EEA5A86E67C4F9AE02.roa File: C0DA3478DF6511EEA5A86E67C4F9AE02.roa (raw, json) Hash identifier: wZK8u4JefwGrtgczXf+gC4d+Z1Dlxrt1XReK6NHde5I= Subject key identifier: 0F:33:5D:49:90:6D:9D:30:1E:CB:E1:C8:5D:06:E2:9E:E1:ED:9A:C1 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 88EC Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C0DA3478DF6511EEA5A86E67C4F9AE02.roa Signing time: Thu 30 May 2024 15:56:40 +0000 ROA not before: Thu 30 May 2024 15:56:40 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 133310 IP address blocks: 103.76.76.0/24 maxlen: 24 103.76.77.0/24 maxlen: 24 103.76.78.0/24 maxlen: 24 103.76.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35052 (0x88ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: May 30 15:56:40 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a1b8-2d50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:32:42:b5:9e:70:37:43:04:bb:3a:8f:0c:e5: fd:4d:ba:ef:49:a2:c4:74:1c:2d:72:59:08:2e:1b: fe:ae:55:42:88:a7:35:8a:e5:f5:1f:75:98:d8:7b: 85:d3:b8:b4:01:3b:63:af:d4:a4:f3:e2:33:da:82: 20:2f:a5:1a:c2:95:2c:85:48:f0:d6:cb:fe:97:7b: a4:68:44:3d:bc:44:4f:f8:7f:62:8c:cb:d2:b7:68: 69:e8:31:00:6f:1f:54:f0:c8:e8:8d:ea:44:db:d6: b2:8e:b1:a8:92:00:b8:80:82:6e:86:97:bc:c4:e1: 9b:20:03:06:ef:b5:80:c5:70:a8:1e:1e:aa:bf:f4: 2b:32:87:10:b6:89:42:2f:fb:36:bc:1e:12:7f:cc: 54:98:67:0a:65:03:cd:c6:6c:bd:ba:88:0f:e1:0b: b4:6d:59:d8:93:d7:46:9c:6d:0f:5c:04:54:f2:17: 8c:e4:61:3b:54:7d:71:3e:09:e0:62:62:ad:d7:d3: 6f:4e:d2:65:b8:2a:96:d1:30:84:70:35:a0:be:6b: 6c:3b:57:f9:4e:f7:64:87:da:af:9a:29:df:2a:38: df:a4:20:68:33:87:dd:0d:44:76:ad:c4:ef:52:17: d3:eb:5f:fe:8f:6a:58:57:5a:b7:fa:43:3f:31:ea: 54:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:33:5D:49:90:6D:9D:30:1E:CB:E1:C8:5D:06:E2:9E:E1:ED:9A:C1 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C0DA3478DF6511EEA5A86E67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.76.76.0/22 Signature Algorithm: sha256WithRSAEncryption a7:65:ba:ff:6f:53:d5:a9:c1:3b:49:b8:36:96:4f:78:98:13: 10:6b:5d:70:54:e1:15:ca:14:46:94:77:05:ac:ec:74:44:af: aa:b7:98:2b:4e:b1:a6:b5:7c:39:76:09:9f:f1:32:88:f2:69: 13:b3:28:28:bc:b1:4c:7e:55:99:ce:7b:2e:60:cd:df:1d:13: 5f:63:f4:84:31:3e:6b:98:51:68:64:87:00:21:01:df:ad:cc: 4e:54:17:1e:a4:a0:78:21:91:49:af:01:c0:15:57:23:11:2f: fe:b4:6a:d2:21:4e:5c:94:6d:92:28:1e:0e:b8:0b:9b:0e:03: bb:96:1a:8b:e0:09:25:08:57:5e:30:b2:b4:5a:cb:96:83:e2: 39:68:e3:49:6d:b8:41:bc:50:86:fb:89:31:04:65:11:51:71: 76:6b:f7:a7:db:60:05:df:23:f5:64:b3:24:a0:b1:e8:f1:5c: d8:9f:94:0a:78:50:22:67:72:be:f4:b6:b5:7b:e0:28:cf:33: 67:e9:5f:c8:31:5f:b3:9f:af:cb:c3:f4:ca:cf:72:7d:e3:7c: 4a:c7:dc:5d:dc:b3:5b:55:c6:47:4c:26:eb:cd:e3:08:f8:63: 5a:73:bd:3e:ad:a9:2b:8f:f0:d2:bc:28:b7:37:91:5e:34:75: f8:96:e0:cd -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAIjsMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE1NTY0MFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGExYjgtMmQ1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN8yQrWecDdDBLs6jwzl/U2670mixHQcLXJZCC4b/q5VQoinNYrl9R91mNh7 hdO4tAE7Y6/UpPPiM9qCIC+lGsKVLIVI8NbL/pd7pGhEPbxET/h/YozL0rdoaegx AG8fVPDI6I3qRNvWso6xqJIAuICCboaXvMThmyADBu+1gMVwqB4eqr/0KzKHELaJ Qi/7NrweEn/MVJhnCmUDzcZsvbqID+ELtG1Z2JPXRpxtD1wEVPIXjORhO1R9cT4J 4GJirdfTb07SZbgqltEwhHA1oL5rbDtX+U73ZIfar5op3yo436QgaDOH3Q1Edq3E 71IX0+tf/o9qWFdat/pDPzHqVBECAwEAAaOCApUwggKRMB0GA1UdDgQWBBQPM11J kG2dMB7L4chdBuKe4e2awTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0MwREEzNDc4 REY2NTExRUVBNUE4NkU2N0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQCZ0xMMA0GCSqGSIb3DQEBCwUAA4IBAQCnZbr/b1PVqcE7 Sbg2lk94mBMQa11wVOEVyhRGlHcFrOx0RK+qt5grTrGmtXw5dgmf8TKI8mkTsygo vLFMflWZznsuYM3fHRNfY/SEMT5rmFFoZIcAIQHfrcxOVBcepKB4IZFJrwHAFVcj ES/+tGrSIU5clG2SKB4OuAubDgO7lhqL4AklCFdeMLK0WsuWg+I5aONJbbhBvFCG +4kxBGURUXF2a/en22AF3yP1ZLMkoLHo8VzYn5QKeFAiZ3K+9La1e+AozzNn6V/I MV+zn6/Lw/TKz3J943xKx9xd3LNbVcZHTCbrzeMI+GNac70+rakrj/DSvCi3N5Fe NHX4luDN -----END CERTIFICATE-----Generated at Sun Feb 16 20:16:09 2025 by rpki-client