$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CCCC35E46EDB11EC9178D238C4F9AE02.roa File: CCCC35E46EDB11EC9178D238C4F9AE02.roa (raw, json) Hash identifier: 6gjuwgLuxqJgzO5bAAcRd90zpe96aabMF2vuS4Z9TzU= Subject key identifier: A1:48:BE:79:59:1B:0A:08:A8:E2:4C:D5:B5:1A:A7:63:8A:E4:63:C0 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8ED4 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CCCC35E46EDB11EC9178D238C4F9AE02.roa Signing time: Thu 30 May 2024 16:21:19 +0000 ROA not before: Thu 30 May 2024 16:21:19 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 149204 IP address blocks: 103.178.244.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36564 (0x8ed4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: May 30 16:21:19 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a77f-a7b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:94:ba:cf:cd:ed:0b:6e:16:d1:68:dd:0c:4e: 2a:7e:c2:fd:84:74:41:b4:91:c4:11:4c:60:6e:60: 27:ad:23:93:b9:8c:58:3e:7b:29:a4:84:df:6a:58: be:87:a8:26:38:2b:d5:d8:6e:e8:93:2e:17:c1:c7: ae:30:94:80:af:c3:0c:2a:5c:9d:a8:a3:59:f0:d1: 31:64:5b:d5:b2:46:26:b3:84:e3:82:52:3e:70:dd: f6:81:0f:9d:d7:28:1d:7e:7f:55:61:e3:d3:74:1d: 03:21:a3:6c:ac:6c:2b:c5:70:03:87:79:dc:ea:d4: b5:ba:35:78:79:70:90:f0:4d:22:6c:e1:fe:cc:09: eb:cd:e3:5f:0c:12:26:5f:15:4f:19:2d:c0:56:92: 2f:68:52:f0:8b:fa:ad:63:f6:7f:ab:68:e2:57:30: 56:ab:76:2b:58:ae:b9:88:1e:73:3e:64:a4:3d:c8: 5b:0d:33:44:00:3b:68:89:a0:ba:26:0d:75:8d:b3: 9e:4f:64:01:e8:ea:01:32:18:79:44:2b:6e:75:0e: 83:d3:e0:6d:07:ca:3e:be:42:0e:39:df:93:04:f8: ad:8e:e8:b5:43:f0:bf:20:be:52:88:8e:eb:02:07: 5d:6e:f0:3a:e7:13:6f:23:2a:a2:69:8c:42:b5:86: f9:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:48:BE:79:59:1B:0A:08:A8:E2:4C:D5:B5:1A:A7:63:8A:E4:63:C0 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CCCC35E46EDB11EC9178D238C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.178.244.0/23 Signature Algorithm: sha256WithRSAEncryption a2:a1:a7:2f:43:f7:76:7a:3e:8f:d3:17:3c:33:bf:90:85:70: 20:1f:80:cd:bb:1b:1b:07:5a:dd:71:fa:4e:14:14:ab:4c:17: 4c:6f:fb:72:49:80:9d:57:98:23:d7:03:4b:08:37:f5:04:50: c9:06:06:b2:7e:cb:a1:ca:58:2b:f6:55:0d:11:20:ad:b7:1a: be:53:e1:b3:5f:e0:17:aa:37:4d:5b:34:64:33:ee:82:ee:a0: 7e:8e:45:83:04:3e:93:0f:2e:4f:d1:68:01:6d:76:ba:6b:6f: 7a:42:0c:59:50:5d:27:45:8a:24:88:a8:b3:11:52:1e:7f:18: 8d:b8:83:3c:87:3b:90:f8:90:54:3f:ab:2b:2e:30:52:17:bc: 37:58:e6:b4:2a:57:f2:88:3c:90:92:08:85:0a:54:73:08:00: a1:6e:24:6a:86:33:ba:cb:4b:64:9b:2e:88:e4:d5:d0:f5:fc: 70:f3:f9:9b:ee:4a:a0:cf:7f:4c:cc:f1:fd:86:57:1c:a1:70: d4:a1:45:aa:42:f2:43:d0:69:d6:7b:ae:f3:88:ea:b7:c0:f5: 86:60:d8:47:32:36:ec:9f:e0:43:66:03:17:32:b4:8e:d7:3a: 52:ac:3c:c7:ae:ac:5c:9c:3c:6f:a7:5f:29:1d:81:06:b8:49: e0:03:17:f7 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAI7UMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MjExOVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE3N2YtYTdiNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMyUus/N7QtuFtFo3QxOKn7C/YR0QbSRxBFMYG5gJ60jk7mMWD57KaSE32pY voeoJjgr1dhu6JMuF8HHrjCUgK/DDCpcnaijWfDRMWRb1bJGJrOE44JSPnDd9oEP ndcoHX5/VWHj03QdAyGjbKxsK8VwA4d53OrUtbo1eHlwkPBNImzh/swJ683jXwwS Jl8VTxktwFaSL2hS8Iv6rWP2f6to4lcwVqt2K1iuuYgecz5kpD3IWw0zRAA7aImg uiYNdY2znk9kAejqATIYeUQrbnUOg9PgbQfKPr5CDjnfkwT4rY7otUPwvyC+UoiO 6wIHXW7wOucTbyMqommMQrWG+dUCAwEAAaOCApUwggKRMB0GA1UdDgQWBBShSL55 WRsKCKjiTNW1GqdjiuRjwDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0NDQ0MzNUU0 NkVEQjExRUM5MTc4RDIzOEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ7L0MA0GCSqGSIb3DQEBCwUAA4IBAQCioacvQ/d2ej6P 0xc8M7+QhXAgH4DNuxsbB1rdcfpOFBSrTBdMb/tySYCdV5gj1wNLCDf1BFDJBgay fsuhylgr9lUNESCttxq+U+GzX+AXqjdNWzRkM+6C7qB+jkWDBD6TDy5P0WgBbXa6 a296QgxZUF0nRYokiKizEVIefxiNuIM8hzuQ+JBUP6srLjBSF7w3WOa0KlfyiDyQ kgiFClRzCAChbiRqhjO6y0tkmy6I5NXQ9fxw8/mb7kqgz39MzPH9hlccoXDUoUWq QvJD0GnWe67ziOq3wPWGYNhHMjbsn+BDZgMXMrSO1zpSrDzHrqxcnDxvp18pHYEG uEngAxf3 -----END CERTIFICATE-----Generated at Sun Feb 16 20:21:19 2025 by rpki-client