$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C953B940FB5E11EC8099D90CC4F9AE02.roa File: C953B940FB5E11EC8099D90CC4F9AE02.roa (raw, json) Hash identifier: zp8K9dEugVyTcdIVEJgCgxyJM92xzvxrRTl+b0P02Xw= Subject key identifier: 0E:F7:A1:79:4D:64:5C:B2:3D:3D:B8:C1:1F:0B:A3:45:99:48:8C:A5 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8A44 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C953B940FB5E11EC8099D90CC4F9AE02.roa Signing time: Thu 30 May 2024 16:02:17 +0000 ROA not before: Thu 30 May 2024 16:02:17 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 135684 IP address blocks: 103.180.220.0/24 maxlen: 24 103.180.221.0/24 maxlen: 24 2001:df0:fa40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 10:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35396 (0x8a44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:02:17 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a309-e46e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:4a:45:e6:a6:b2:aa:46:64:a0:97:5d:c4:7b: 9b:cc:0e:62:90:78:15:8d:8f:e2:7e:cc:bf:e4:ef: 33:6f:61:0e:cc:77:ce:21:60:c5:89:f1:27:b4:70: 0a:6b:fb:ed:df:53:89:0b:5c:af:86:13:5f:75:21: a6:44:20:ec:23:4f:f9:f2:82:cb:c8:b8:b7:ce:54: 1f:a7:3b:29:e2:ce:cf:04:a8:dc:24:54:15:3b:67: 5e:50:f5:d8:6a:59:fd:09:67:a7:ef:c5:c1:b8:2b: 87:c3:05:55:8f:f0:87:00:8f:61:b4:4b:51:03:cd: b1:ca:9f:a9:dd:f8:fb:e8:60:fd:c3:38:35:9b:d6: a4:7e:9b:ec:57:74:3b:f7:5b:57:e6:c4:9d:11:b3: 3a:2b:e9:fc:8f:3a:13:1c:e7:e4:7f:72:6c:a4:f2: cd:62:04:97:3a:e3:91:17:12:16:0a:82:a7:eb:b5: 3c:e8:17:a1:b0:53:c1:12:db:c6:24:35:e8:59:a0: cd:e5:c2:4f:c6:05:b8:7e:86:e5:f5:ca:d0:80:b3: 50:57:cb:77:d7:0f:09:28:b1:1c:c9:70:68:f3:f1: 6c:88:01:9c:01:8d:9c:ff:05:02:a4:28:f3:dc:8e: 1f:65:cd:61:8b:52:2d:ba:8f:bf:10:74:ff:ff:74: 77:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:F7:A1:79:4D:64:5C:B2:3D:3D:B8:C1:1F:0B:A3:45:99:48:8C:A5 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C953B940FB5E11EC8099D90CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.180.220.0/23 IPv6: 2001:df0:fa40::/48 Signature Algorithm: sha256WithRSAEncryption ad:ff:36:1d:8c:ed:6a:64:75:de:ac:9b:ae:b6:0a:3a:7b:f9: 83:e8:bd:3f:6c:31:bb:1f:76:93:fe:db:2d:ea:07:28:c6:0c: 66:06:21:c8:93:9c:13:2d:b6:da:f6:94:79:e1:82:1e:37:07: 99:7e:1f:71:c3:5e:3e:64:6c:ec:17:5f:ab:ec:bc:ae:e9:6d: 56:44:05:2c:bc:39:d8:59:ac:72:2c:81:61:35:78:65:00:57: 3a:c8:91:e6:26:37:0b:9b:15:ae:bb:25:06:09:a7:1e:56:63: 6a:06:9f:e0:e6:6c:bf:2c:93:d7:0a:e9:93:47:e8:c9:e3:77: 94:4f:83:17:75:c2:31:7b:3c:f7:bd:ac:52:a3:2c:50:7c:95: 0c:fb:a0:03:18:35:68:d1:94:4e:e0:74:c1:1a:85:c7:ee:d6: 85:bf:28:ee:89:fd:9f:7e:1f:df:96:fb:25:00:d0:a0:4a:b9: 63:64:81:2f:3e:1e:90:b3:1c:b8:63:f0:83:34:79:8c:b4:66: 77:a6:dc:eb:f7:05:e5:7d:93:c7:b3:c8:57:ed:91:7a:8d:47: 3f:1b:35:02:31:01:40:56:f8:be:7c:67:7d:a6:0c:e1:09:2c: f6:48:d3:77:a2:f3:15:fa:0b:e0:fd:d2:3f:d4:2f:ce:d4:49: ff:b9:14:42 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDAIpEMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MDIxN1oXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGEzMDktZTQ2ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOBKReamsqpGZKCXXcR7m8wOYpB4FY2P4n7Mv+TvM29hDsx3ziFgxYnxJ7Rw Cmv77d9TiQtcr4YTX3UhpkQg7CNP+fKCy8i4t85UH6c7KeLOzwSo3CRUFTtnXlD1 2GpZ/Qlnp+/Fwbgrh8MFVY/whwCPYbRLUQPNscqfqd34++hg/cM4NZvWpH6b7Fd0 O/dbV+bEnRGzOivp/I86Exzn5H9ybKTyzWIElzrjkRcSFgqCp+u1POgXobBTwRLb xiQ16FmgzeXCT8YFuH6G5fXK0ICzUFfLd9cPCSixHMlwaPPxbIgBnAGNnP8FAqQo 89yOH2XNYYtSLbqPvxB0//90d4kCAwEAAaOCAqYwggKiMB0GA1UdDgQWBBQO96F5 TWRcsj09uMEfC6NFmUiMpTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0M5NTNCOTQw RkI1RTExRUM4MDk5RDkwQ0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQBZ7TcMA8EAgACMAkDBwAgAQ3w+kAwDQYJKoZIhvcNAQEL BQADggEBAK3/Nh2M7Wpkdd6sm662Cjp7+YPovT9sMbsfdpP+2y3qByjGDGYGIciT nBMtttr2lHnhgh43B5l+H3HDXj5kbOwXX6vsvK7pbVZEBSy8OdhZrHIsgWE1eGUA VzrIkeYmNwubFa67JQYJpx5WY2oGn+DmbL8sk9cK6ZNH6Mnjd5RPgxd1wjF7PPe9 rFKjLFB8lQz7oAMYNWjRlE7gdMEahcfu1oW/KO6J/Z9+H9+W+yUA0KBKuWNkgS8+ HpCzHLhj8IM0eYy0Znem3Ov3BeV9k8ezyFftkXqNRz8bNQIxAUBW+L58Z32mDOEJ LPZI03ei8xX6C+D90j/UL87USf+5FEI= -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:26 2024 by rpki-client on console-ams.rpki-client.org