$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CB44DFA0404711EBB1E6D24DC4F9AE02.roa File: CB44DFA0404711EBB1E6D24DC4F9AE02.roa (raw, json) Hash identifier: Y8cBPfylb7AR9C/u0C14GucdnlvYOZrwtM/beIH8uN4= Subject key identifier: 39:40:E2:75:9A:32:BC:2C:4D:BF:1C:22:AD:B3:C8:85:21:27:40:09 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8B69 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CB44DFA0404711EBB1E6D24DC4F9AE02.roa Signing time: Thu 30 May 2024 16:07:06 +0000 ROA not before: Thu 30 May 2024 16:07:06 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 137101 IP address blocks: 103.160.102.0/23 maxlen: 24 103.212.212.0/24 maxlen: 24 103.212.213.0/24 maxlen: 24 103.212.214.0/24 maxlen: 24 103.212.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35689 (0x8b69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: May 30 16:07:06 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a42a-a8b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:66:49:bf:9f:6e:35:fd:7a:30:63:37:16:5e: c1:0f:2b:00:85:a5:fe:4c:92:36:51:72:17:ee:a4: 4b:0d:2e:60:57:cd:d1:8a:e9:ee:f4:5c:3f:e0:9c: f9:69:b2:d6:53:68:48:d3:0d:cc:25:f1:97:bb:e1: 77:69:02:d0:c6:13:97:ba:0e:80:71:21:01:76:e4: ed:d3:c4:80:98:a4:00:01:0c:42:cd:cf:79:b7:1c: b6:ed:a3:25:6d:25:e1:53:70:bb:18:6c:2a:da:36: 87:1b:1e:dd:22:9d:fa:c0:a9:33:f5:bc:ff:4b:b3: 68:99:b4:01:22:5e:67:8a:24:9f:79:e8:a9:97:80: 87:ea:28:18:5c:53:13:f9:1a:15:84:be:e1:b9:29: 68:73:2d:11:99:60:d0:db:9b:b4:87:47:e2:cf:9c: 51:3b:bd:08:b3:54:95:6b:db:c1:a0:cd:03:f3:cf: c1:1a:df:c8:86:4a:3d:7f:a1:dd:9b:fe:a8:3e:cd: 49:09:69:66:f4:93:c8:2e:5c:f6:cc:83:65:51:23: 35:95:e3:31:fc:79:fd:cf:3f:b7:e5:73:a2:26:63: 07:78:b5:2e:b1:c4:b0:23:1e:02:c0:7c:e3:c7:f7: c5:14:fe:27:2b:d3:e0:00:b0:5a:55:3a:15:7c:9b: e2:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:40:E2:75:9A:32:BC:2C:4D:BF:1C:22:AD:B3:C8:85:21:27:40:09 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CB44DFA0404711EBB1E6D24DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.102.0/23 103.212.212.0/22 Signature Algorithm: sha256WithRSAEncryption 46:cb:12:e5:d3:1e:99:6e:20:f4:24:9a:47:f5:74:cf:50:f9: c3:20:7f:25:cd:bd:11:45:aa:af:68:bd:84:58:4a:cd:d8:13: e5:18:7e:e7:4f:97:71:76:3f:2e:2b:a8:ac:52:4b:e2:ca:c3: ac:96:d8:ba:fa:6e:bb:b1:05:07:de:00:af:f9:6d:a5:ce:b2: fe:4f:d2:db:39:6f:52:94:7c:16:8c:45:b8:88:ac:07:2d:e3: 12:f5:67:41:aa:f8:43:16:00:ff:e0:79:2e:c3:64:1f:d0:fe: 66:cf:0e:c8:05:3b:51:db:71:3d:b9:67:e0:2d:18:85:7c:ce: f9:dd:53:24:e3:79:a1:e8:a2:70:75:22:03:b4:7a:97:d9:98: d0:90:32:24:50:13:7c:ba:94:af:c4:df:32:a7:63:60:1b:9d: d6:f2:be:c3:1d:f1:8b:e9:42:a1:e9:b4:cb:74:9d:cd:f1:14: 71:b9:3a:79:b8:1b:26:52:df:e9:84:af:79:14:a2:00:d2:1d: fa:1c:55:f5:a5:eb:ac:e9:5a:8e:72:7c:90:14:4e:d4:d3:c1: 27:24:1e:78:d1:d5:f9:78:4f:66:4e:31:43:88:ef:a6:50:a7: 41:0a:3e:30:82:ef:00:7a:18:90:0f:d9:3f:40:6b:3d:94:f0: 51:ac:62:9f -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIDAItpMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MDcwNloXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE0MmEtYThiNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMlmSb+fbjX9ejBjNxZewQ8rAIWl/kySNlFyF+6kSw0uYFfN0Yrp7vRcP+Cc +Wmy1lNoSNMNzCXxl7vhd2kC0MYTl7oOgHEhAXbk7dPEgJikAAEMQs3Pebcctu2j JW0l4VNwuxhsKto2hxse3SKd+sCpM/W8/0uzaJm0ASJeZ4okn3noqZeAh+ooGFxT E/kaFYS+4bkpaHMtEZlg0NubtIdH4s+cUTu9CLNUlWvbwaDNA/PPwRrfyIZKPX+h 3Zv+qD7NSQlpZvSTyC5c9syDZVEjNZXjMfx5/c8/t+VzoiZjB3i1LrHEsCMeAsB8 48f3xRT+JyvT4ACwWlU6FXyb4ikCAwEAAaOCApswggKXMB0GA1UdDgQWBBQ5QOJ1 mjK8LE2/HCKts8iFISdACTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0NCNDRERkEw NDA0NzExRUJCMUU2RDI0REM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCUGCCsGAQUFBwEHAQH/ BBYwFDASBAIAATAMAwQBZ6BmAwQCZ9TUMA0GCSqGSIb3DQEBCwUAA4IBAQBGyxLl 0x6ZbiD0JJpH9XTPUPnDIH8lzb0RRaqvaL2EWErN2BPlGH7nT5dxdj8uK6isUkvi ysOslti6+m67sQUH3gCv+W2lzrL+T9LbOW9SlHwWjEW4iKwHLeMS9WdBqvhDFgD/ 4Hkuw2Qf0P5mzw7IBTtR23E9uWfgLRiFfM753VMk43mh6KJwdSIDtHqX2ZjQkDIk UBN8upSvxN8yp2NgG53W8r7DHfGL6UKh6bTLdJ3N8RRxuTp5uBsmUt/phK95FKIA 0h36HFX1peus6VqOcnyQFE7U08EnJB540dX5eE9mTjFDiO+mUKdBCj4wgu8AehiQ D9k/QGs9lPBRrGKf -----END CERTIFICATE-----Generated at Sun Feb 16 20:22:53 2025 by rpki-client