$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C7D0A6A83B1111ED8383933FC4F9AE02.roa File: C7D0A6A83B1111ED8383933FC4F9AE02.roa (raw, json) Hash identifier: UsNABzS/n2RUwyN1ybUk3NeeI8e+p7zqI6J5G6kJ+tw= Subject key identifier: A2:8F:31:75:50:E2:70:C5:E8:03:4A:96:56:65:E0:ED:79:E2:7C:2C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8F76 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C7D0A6A83B1111ED8383933FC4F9AE02.roa Signing time: Thu 30 May 2024 16:23:54 +0000 ROA not before: Thu 30 May 2024 16:23:54 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 150040 IP address blocks: 103.67.97.0/24 maxlen: 24 103.176.116.0/24 maxlen: 24 2001:df1:67c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 10:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36726 (0x8f76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:23:54 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a81a-132c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:70:e5:96:7a:e8:60:ff:0e:6a:f7:fc:15:30: 53:3d:14:b8:ad:0d:c0:23:87:4a:ea:93:5d:a4:4e: 37:d0:f9:82:35:bd:6b:2a:76:79:8a:39:96:fa:85: 81:51:28:84:94:8a:b3:e7:28:57:14:d6:01:e5:c0: 0c:12:e8:3a:06:0b:75:55:c0:4a:4b:c4:37:11:a4: b5:20:bb:af:73:b8:2c:00:ec:86:e4:fc:f8:c1:d1: 9e:eb:10:31:d7:98:32:34:1d:b6:7f:cb:fd:b9:d4: 60:d0:db:9a:7c:b3:dc:9d:b5:1d:85:dc:1e:d5:84: b5:5f:2c:c7:4f:ef:a8:1f:0d:09:74:7b:ce:21:65: 57:47:e3:6c:e6:11:b3:ec:04:40:4f:da:68:0c:5b: b0:21:63:ba:31:70:d8:32:a4:c2:d8:e4:bf:f5:eb: 25:90:bd:55:0b:11:33:af:2f:b8:c0:71:12:0c:7c: da:c6:4d:5f:e2:4e:18:ce:dd:25:c3:87:c5:af:0f: d8:1b:57:fa:c1:b4:d2:67:35:b1:2d:8b:db:09:e3: ba:07:cf:8a:41:24:bb:33:7a:8a:7d:b3:41:bd:75: 1d:1f:e7:27:7c:d5:ff:cf:fb:e7:0c:3f:3e:6e:28: a2:b9:82:d1:38:a8:89:25:65:75:d3:fd:95:fe:70: 09:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:8F:31:75:50:E2:70:C5:E8:03:4A:96:56:65:E0:ED:79:E2:7C:2C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C7D0A6A83B1111ED8383933FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.97.0/24 103.176.116.0/24 IPv6: 2001:df1:67c0::/48 Signature Algorithm: sha256WithRSAEncryption aa:eb:4d:84:9c:da:ff:ff:00:5a:19:89:75:40:5d:b3:24:37: 26:f2:6e:e5:31:1f:52:c7:71:45:99:3c:45:b8:42:fd:c4:a6: 3b:a2:6a:cc:2c:85:d9:b6:ec:32:3f:fa:e2:be:20:1e:2b:1b: a7:4e:86:9b:cf:98:25:09:39:57:39:d8:f9:15:1d:d3:63:ee: dd:d3:90:5e:92:cc:68:63:fd:9e:a1:c4:e1:5a:2c:dd:e4:6c: cb:fb:9e:5d:97:ca:2a:78:26:e0:d6:37:ec:e4:71:77:84:8d: 15:f2:f6:99:26:f1:ce:30:bf:b9:31:6f:77:75:51:b4:19:c5: 95:47:e8:ad:43:4f:2f:28:19:3c:37:3f:45:35:63:97:ee:be: 27:a8:e2:5e:5c:b6:2f:37:ef:1b:f2:65:26:5d:e4:36:12:ce: 05:ae:c9:da:09:90:6a:87:23:5c:6a:96:a5:87:d8:bd:68:de: 56:b9:23:6b:f2:ad:b1:09:dc:da:92:86:b8:66:d7:9a:ca:36: 16:2d:86:08:ff:ae:47:11:32:3c:db:80:ff:c4:6a:4e:31:2c: b3:78:91:73:bd:72:c9:2b:74:f5:8e:0f:01:f0:cd:ea:88:6f: fe:9c:f1:6d:e2:b9:da:ac:87:8b:e4:9d:5d:46:71:31:5f:b4: 26:15:59:f9 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgIDAI92MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MjM1NFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE4MWEtMTMyYzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN1w5ZZ66GD/Dmr3/BUwUz0UuK0NwCOHSuqTXaRON9D5gjW9ayp2eYo5lvqF gVEohJSKs+coVxTWAeXADBLoOgYLdVXASkvENxGktSC7r3O4LADshuT8+MHRnusQ MdeYMjQdtn/L/bnUYNDbmnyz3J21HYXcHtWEtV8sx0/vqB8NCXR7ziFlV0fjbOYR s+wEQE/aaAxbsCFjujFw2DKkwtjkv/XrJZC9VQsRM68vuMBxEgx82sZNX+JOGM7d JcOHxa8P2BtX+sG00mc1sS2L2wnjugfPikEkuzN6in2zQb11HR/nJ3zV/8/75ww/ Pm4oormC0TioiSVlddP9lf5wCWMCAwEAAaOCAqwwggKoMB0GA1UdDgQWBBSijzF1 UOJwxegDSpZWZeDteeJ8LDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0M3RDBBNkE4 M0IxMTExRUQ4MzgzOTMzRkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDYGCCsGAQUFBwEHAQH/ BCcwJTASBAIAATAMAwQAZ0NhAwQAZ7B0MA8EAgACMAkDBwAgAQ3xZ8AwDQYJKoZI hvcNAQELBQADggEBAKrrTYSc2v//AFoZiXVAXbMkNybybuUxH1LHcUWZPEW4Qv3E pjuiaswshdm27DI/+uK+IB4rG6dOhpvPmCUJOVc52PkVHdNj7t3TkF6SzGhj/Z6h xOFaLN3kbMv7nl2Xyip4JuDWN+zkcXeEjRXy9pkm8c4wv7kxb3d1UbQZxZVH6K1D Ty8oGTw3P0U1Y5fuvieo4l5cti837xvyZSZd5DYSzgWuydoJkGqHI1xqlqWH2L1o 3la5I2vyrbEJ3NqShrhm15rKNhYthgj/rkcRMjzbgP/Eak4xLLN4kXO9cskrdPWO DwHwzeqIb/6c8W3iudqsh4vknV1GcTFftCYVWfk= -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:08 2024 by rpki-client on console-fra.rpki-client.org