$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C8B8CA942D3D11EF804C966DC4F9AE02.roa File: C8B8CA942D3D11EF804C966DC4F9AE02.roa (raw, json) Hash identifier: Fy+7XBW7s7wSldWp9SBjTyzBj6ikg1ACjatWvZ5cJ8Y= Subject key identifier: F5:DD:0C:22:CF:B7:17:36:B7:F2:DE:41:44:02:6E:93:2E:52:0C:4B Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 929C Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C8B8CA942D3D11EF804C966DC4F9AE02.roa Signing time: Tue 18 Jun 2024 06:41:26 +0000 ROA not before: Tue 18 Jun 2024 06:41:26 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 136650 IP address blocks: 103.100.12.0/24 maxlen: 24 103.100.13.0/24 maxlen: 24 103.100.14.0/24 maxlen: 24 103.100.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37532 (0x929c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jun 18 06:41:26 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66712c15-4d3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:08:29:59:dd:f5:6e:9d:10:8a:c1:11:a0:e8: cc:91:12:4e:4b:3d:04:f3:78:d0:a2:af:da:f6:57: 3a:08:30:78:7f:7e:d7:a7:2b:5d:6b:a4:bf:2b:17: 0a:82:5b:f3:92:0e:2e:33:d7:d1:0b:3a:0a:22:c3: 2f:d9:cf:24:20:90:55:0f:6c:c8:32:98:a4:af:d9: fa:e9:75:93:bb:54:df:dc:a0:b6:51:88:0b:ad:ad: aa:7b:4b:49:6e:5e:6f:37:1b:be:5b:45:76:33:40: 8c:ba:5b:18:ea:0c:e2:b9:ef:38:91:ce:48:a0:f1: 34:51:3f:0b:56:fb:3d:d0:7d:42:db:68:9d:9e:2b: b2:ad:b3:e3:43:1b:c8:3b:0a:24:ad:63:f2:cd:f8: e1:94:8d:76:05:d4:24:b2:39:d4:24:ec:4c:0c:93: 0b:50:9b:11:09:cb:d4:b0:1d:72:9e:d1:ca:b4:b3: 4a:3b:00:c2:b5:dd:8d:3d:49:95:b5:79:0b:c3:8e: c5:70:6b:0b:3f:6c:ef:36:c5:47:b6:da:8a:92:03: 4a:52:cd:7c:19:68:74:2d:99:df:c2:43:5e:a8:c1: 89:41:27:a6:cd:d7:25:72:fa:3c:bc:8e:0a:f1:45: 22:47:2b:1e:6d:41:1a:13:56:19:4e:f2:2f:bd:36: fc:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:DD:0C:22:CF:B7:17:36:B7:F2:DE:41:44:02:6E:93:2E:52:0C:4B X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C8B8CA942D3D11EF804C966DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.100.12.0/22 Signature Algorithm: sha256WithRSAEncryption 76:5a:a4:e1:23:be:49:9e:e6:d2:a6:b5:cb:84:d7:26:49:87: 3b:7a:9a:f7:a0:41:72:2f:2f:28:0d:f7:1f:27:e0:98:48:4f: f5:42:cd:e1:87:7b:3f:3c:32:fa:24:e2:24:93:85:1e:43:9a: cb:4d:d0:67:a6:00:a3:b8:40:d0:d9:63:66:5a:ed:38:c8:c9: b4:f6:1d:35:69:32:41:ea:ff:8e:0c:25:d3:31:6a:34:6a:de: 31:51:cd:2f:e1:6e:c9:b1:3b:dd:4f:db:63:89:0b:e3:75:2e: 6b:9a:a1:80:51:0d:11:6e:0e:f1:bd:0f:e8:7c:3f:d0:08:c1: 0c:f6:5f:b6:d8:72:ce:ba:e8:c9:45:e1:bb:f6:88:1f:28:8e: 26:44:b4:cc:5a:b0:14:45:20:db:2b:1d:bb:35:6e:68:03:12: 89:16:95:e8:63:d0:22:02:bb:ab:3e:34:81:7b:d8:96:d6:dd: b3:9a:77:e9:53:f3:ae:5c:00:7b:3b:78:cf:77:8f:16:88:fa: f2:9e:c7:0b:1c:e3:8a:1f:2e:ff:53:59:bd:01:2a:1c:a5:19: 3d:e1:2b:28:8f:0c:44:cd:8d:79:3d:83:8a:d9:cb:ed:fb:fa: a7:36:4a:99:bd:82:4d:52:44:94:bc:ee:9d:c0:9a:b8:f7:23: 38:17:ae:77 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAJKcMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDYxODA2NDEyNloXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY3MTJjMTUtNGQzYzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMAIKVnd9W6dEIrBEaDozJESTks9BPN40KKv2vZXOggweH9+16crXWukvysX CoJb85IOLjPX0Qs6CiLDL9nPJCCQVQ9syDKYpK/Z+ul1k7tU39ygtlGIC62tqntL SW5ebzcbvltFdjNAjLpbGOoM4rnvOJHOSKDxNFE/C1b7PdB9QttonZ4rsq2z40Mb yDsKJK1j8s344ZSNdgXUJLI51CTsTAyTC1CbEQnL1LAdcp7RyrSzSjsAwrXdjT1J lbV5C8OOxXBrCz9s7zbFR7baipIDSlLNfBlodC2Z38JDXqjBiUEnps3XJXL6PLyO CvFFIkcrHm1BGhNWGU7yL702/CsCAwEAAaOCApUwggKRMB0GA1UdDgQWBBT13Qwi z7cXNrfy3kFEAm6TLlIMSzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0M4QjhDQTk0 MkQzRDExRUY4MDRDOTY2REM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQCZ2QMMA0GCSqGSIb3DQEBCwUAA4IBAQB2WqThI75JnubS prXLhNcmSYc7epr3oEFyLy8oDfcfJ+CYSE/1Qs3hh3s/PDL6JOIkk4UeQ5rLTdBn pgCjuEDQ2WNmWu04yMm09h01aTJB6v+ODCXTMWo0at4xUc0v4W7JsTvdT9tjiQvj dS5rmqGAUQ0Rbg7xvQ/ofD/QCMEM9l+22HLOuujJReG79ogfKI4mRLTMWrAURSDb Kx27NW5oAxKJFpXoY9AiArurPjSBe9iW1t2zmnfpU/OuXAB7O3jPd48WiPrynscL HOOKHy7/U1m9ASocpRk94SsojwxEzY15PYOK2cvt+/qnNkqZvYJNUkSUvO6dwJq4 9yM4F653 -----END CERTIFICATE-----Generated at Fri Nov 22 11:17:51 2024 by rpki-client on console-fra.rpki-client.org