$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C9273DDAAA6911EBA812D187C4F9AE02.roa File: C9273DDAAA6911EBA812D187C4F9AE02.roa (raw, json) Hash identifier: K+Yro2kemTYGK05HjB46wmdsDwajXzM9AUSYh5lTf/o= Subject key identifier: 88:B8:4C:32:FC:51:B9:15:18:5E:EA:6C:93:92:04:03:5C:ED:67:24 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8898 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C9273DDAAA6911EBA812D187C4F9AE02.roa Signing time: Thu 30 May 2024 15:55:14 +0000 ROA not before: Thu 30 May 2024 15:55:14 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 132948 IP address blocks: 103.243.225.0/24 maxlen: 24 103.243.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34968 (0x8898) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 15:55:14 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a162-57e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:73:57:95:bb:5b:41:6d:d1:58:f8:b4:20:8e: 3e:e5:75:2f:36:6b:7f:73:6d:86:28:14:22:39:3a: 73:76:ec:c2:28:a5:1e:69:56:87:2e:5d:04:49:dc: da:df:29:51:75:bf:3a:b7:01:a0:11:9c:c5:02:13: 04:38:03:a9:6c:8f:3d:4c:f2:d5:29:ad:46:21:e7: ce:e9:ee:37:1f:75:2f:73:bd:a1:60:96:fd:43:dc: a9:db:a7:03:b9:4b:8b:48:9a:19:6e:bb:74:cd:53: 5b:b0:75:90:9f:86:5b:6c:d8:a7:b1:23:d9:17:7d: d7:c7:ed:a2:11:67:1a:ff:14:25:b5:1c:d4:42:70: 32:f4:02:fd:c1:bf:85:a3:ca:29:46:ac:d0:3b:22: 45:ae:16:8f:7d:c8:22:2a:35:b4:08:74:ae:a6:44: 12:24:3c:6d:7f:67:7a:ea:68:03:4d:49:06:cf:94: 50:28:a5:56:89:74:97:b8:fa:d6:1b:14:1f:c8:5f: a0:7e:6f:94:22:01:75:19:ac:a3:ad:90:ed:a6:04: fb:3a:2d:dd:b1:64:14:d0:fc:61:d8:1f:f3:9e:ec: f5:e3:8b:bf:f6:89:7e:01:86:31:45:64:ed:a6:f4: 4c:5f:31:42:33:78:48:c8:30:9f:9a:91:25:65:f8: 88:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:B8:4C:32:FC:51:B9:15:18:5E:EA:6C:93:92:04:03:5C:ED:67:24 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C9273DDAAA6911EBA812D187C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.243.225.0/24 103.243.227.0/24 Signature Algorithm: sha256WithRSAEncryption 66:6e:bb:74:0d:9c:f7:de:52:af:05:cf:99:11:8b:5c:4a:65: bc:4f:5e:d6:9a:a0:1c:6a:9d:97:b4:ff:e7:e2:0b:3b:2f:6f: ae:02:c8:22:73:10:63:25:15:52:12:40:78:55:f8:5c:63:e8: 6d:2d:70:97:a2:f4:75:5a:21:2d:2b:5e:98:93:bd:ba:4a:bf: 23:ce:d3:6b:85:d4:00:35:c5:83:e9:2d:0b:96:53:e0:60:56: ab:a5:94:c9:5d:8c:24:6c:c3:94:7e:ed:9f:4c:b6:25:10:31: a2:13:a5:03:cf:98:80:18:41:8b:70:42:74:bd:13:4f:c6:07: 63:37:e6:9b:b4:66:23:97:f7:a5:69:f2:a3:b7:d5:2d:dc:19: cd:56:16:71:be:0f:76:9b:44:f2:2e:83:ab:42:19:5b:96:7e: 2b:cb:c9:69:a0:ef:05:4a:f1:93:e9:b8:07:dc:d8:66:dc:86: 08:3b:e8:62:04:fb:cc:86:fb:e7:21:56:cc:d7:ce:f8:79:f8: 1b:27:13:6a:22:4b:52:14:09:19:84:6c:c9:79:cb:d1:6e:68: c7:1c:72:2a:1a:22:ac:10:61:df:b4:9c:bb:c0:30:0d:3a:db: 85:a5:f2:fc:6f:32:b4:93:b0:cb:06:63:13:04:10:f3:e7:17: 3a:63:6b:ba -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIDAIiYMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE1NTUxNFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGExNjItNTdlNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMZzV5W7W0Ft0Vj4tCCOPuV1LzZrf3NthigUIjk6c3bswiilHmlWhy5dBEnc 2t8pUXW/OrcBoBGcxQITBDgDqWyPPUzy1SmtRiHnzunuNx91L3O9oWCW/UPcqdun A7lLi0iaGW67dM1TW7B1kJ+GW2zYp7Ej2Rd918ftohFnGv8UJbUc1EJwMvQC/cG/ haPKKUas0DsiRa4Wj33IIio1tAh0rqZEEiQ8bX9neupoA01JBs+UUCilVol0l7j6 1hsUH8hfoH5vlCIBdRmso62Q7aYE+zot3bFkFND8Ydgf857s9eOLv/aJfgGGMUVk 7ab0TF8xQjN4SMgwn5qRJWX4iEkCAwEAAaOCApswggKXMB0GA1UdDgQWBBSIuEwy /FG5FRhe6myTkgQDXO1nJDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0M5MjczRERB QUE2OTExRUJBODEyRDE4N0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCUGCCsGAQUFBwEHAQH/ BBYwFDASBAIAATAMAwQAZ/PhAwQAZ/PjMA0GCSqGSIb3DQEBCwUAA4IBAQBmbrt0 DZz33lKvBc+ZEYtcSmW8T17WmqAcap2XtP/n4gs7L2+uAsgicxBjJRVSEkB4Vfhc Y+htLXCXovR1WiEtK16Yk726Sr8jztNrhdQANcWD6S0LllPgYFarpZTJXYwkbMOU fu2fTLYlEDGiE6UDz5iAGEGLcEJ0vRNPxgdjN+abtGYjl/elafKjt9Ut3BnNVhZx vg92m0TyLoOrQhlbln4ry8lpoO8FSvGT6bgH3Nhm3IYIO+hiBPvMhvvnIVbM1874 efgbJxNqIktSFAkZhGzJecvRbmjHHHIqGiKsEGHftJy7wDANOtuFpfL8bzK0k7DL BmMTBBDz5xc6Y2u6 -----END CERTIFICATE-----Generated at Fri Nov 22 11:48:02 2024 by rpki-client on console-ams.rpki-client.org