$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CE3B92003C2311EEA8267557C4F9AE02.roa File: CE3B92003C2311EEA8267557C4F9AE02.roa (raw, json) Hash identifier: dkhYIi1bcPnRk2hVvTcIXM3IqGzgp9nvGu/PBKxXjcA= Subject key identifier: 16:A3:20:DD:98:E3:DE:E2:B9:39:45:57:2A:D0:12:27:FF:45:0D:39 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8E66 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CE3B92003C2311EEA8267557C4F9AE02.roa Signing time: Thu 30 May 2024 16:19:32 +0000 ROA not before: Thu 30 May 2024 16:19:32 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 146922 IP address blocks: 103.171.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36454 (0x8e66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:19:32 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a713-9fff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:09:5d:b2:65:c7:f0:9d:8f:65:9f:e4:0b:b1: 27:8e:fb:3e:40:3c:ad:75:28:cf:b8:f8:95:e5:3f: f1:e2:a9:82:d0:b8:d6:d0:2c:06:a4:9c:ab:dd:9c: 55:7a:30:40:d3:73:80:7d:dc:47:e0:88:a9:e7:87: 2c:22:09:cd:f9:af:12:4e:87:56:5f:32:37:60:26: 53:3f:e2:ba:20:1f:55:0b:14:f6:0f:f7:23:32:c8: 87:7e:cb:f4:de:07:f8:45:ee:df:80:bf:06:a4:d8: c6:4e:69:86:19:bb:99:5a:19:e0:27:c4:7c:ce:da: 30:16:79:b0:6a:40:c0:a4:c3:80:5d:fe:01:df:b0: 95:46:7c:d8:a5:48:d6:34:18:91:64:e5:42:81:6f: c9:b2:af:15:4a:b7:fa:34:fb:ff:9b:33:5d:26:98: c3:42:08:67:f9:60:89:19:dc:aa:a4:19:6c:75:fe: cf:b1:57:1d:ad:73:20:1a:4e:67:63:c7:8a:05:af: 95:4a:ee:c3:c6:d9:2b:3a:0f:1b:ff:d5:70:b7:0a: 93:60:b3:e3:f4:34:a8:9c:f5:ee:68:cd:cc:d7:50: b1:c1:44:88:08:21:72:34:5e:e7:ed:38:29:d8:ac: 5f:c3:37:b0:94:b7:ba:1a:3e:ba:af:0f:42:0e:b0: 00:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:A3:20:DD:98:E3:DE:E2:B9:39:45:57:2A:D0:12:27:FF:45:0D:39 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CE3B92003C2311EEA8267557C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.171.172.0/24 Signature Algorithm: sha256WithRSAEncryption ab:99:83:fa:e0:0c:ab:e1:11:ac:94:52:87:07:ff:cc:18:ee: 95:3d:2e:a1:38:61:79:e0:94:a0:fe:e2:0e:37:39:89:8d:f5: 6d:a0:a0:82:27:7f:5b:89:d1:78:d3:c8:d3:2c:18:57:95:93: 90:e3:13:95:ed:31:75:f3:24:4c:c0:62:7a:a7:c3:ab:2f:01: 3b:9f:11:5d:13:5f:35:b0:3b:52:c8:06:6f:3a:a4:62:b7:96: 29:7f:c4:96:93:7a:91:07:47:cd:38:5b:83:a5:25:cb:81:07: 90:67:48:c9:c6:51:b8:98:a0:80:48:f6:ff:b5:17:7d:27:0c: b7:5f:ce:f2:77:5b:1e:bf:9d:2c:e0:26:60:2b:e4:81:7a:0f: a0:3d:5b:94:e4:99:18:8a:9a:d2:9e:04:a0:12:1b:0d:3e:ca: ad:ee:83:b7:d7:00:88:35:ad:a7:0b:51:24:11:b8:ef:c4:3c: 60:ad:fb:ff:ad:28:29:53:87:90:a9:e4:fa:18:69:5d:9d:ee: 09:be:01:a6:c1:cc:4d:71:4f:b9:cb:57:2d:1e:72:15:4a:17: 7a:75:e0:6d:ba:cf:f6:85:1e:bc:0c:19:58:f8:fe:04:f8:ad: e0:37:97:41:08:aa:b9:56:df:8b:ea:29:6e:e3:a4:cd:19:22: aa:46:3b:b6 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAI5mMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MTkzMloXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE3MTMtOWZmZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM8JXbJlx/Cdj2Wf5AuxJ477PkA8rXUoz7j4leU/8eKpgtC41tAsBqScq92c VXowQNNzgH3cR+CIqeeHLCIJzfmvEk6HVl8yN2AmUz/iuiAfVQsU9g/3IzLIh37L 9N4H+EXu34C/BqTYxk5phhm7mVoZ4CfEfM7aMBZ5sGpAwKTDgF3+Ad+wlUZ82KVI 1jQYkWTlQoFvybKvFUq3+jT7/5szXSaYw0IIZ/lgiRncqqQZbHX+z7FXHa1zIBpO Z2PHigWvlUruw8bZKzoPG//VcLcKk2Cz4/Q0qJz17mjNzNdQscFEiAghcjRe5+04 KdisX8M3sJS3uho+uq8PQg6wADECAwEAAaOCApUwggKRMB0GA1UdDgQWBBQWoyDd mOPe4rk5RVcq0BIn/0UNOTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0NFM0I5MjAw M0MyMzExRUVBODI2NzU1N0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ6usMA0GCSqGSIb3DQEBCwUAA4IBAQCrmYP64Ayr4RGs lFKHB//MGO6VPS6hOGF54JSg/uIONzmJjfVtoKCCJ39bidF408jTLBhXlZOQ4xOV 7TF18yRMwGJ6p8OrLwE7nxFdE181sDtSyAZvOqRit5Ypf8SWk3qRB0fNOFuDpSXL gQeQZ0jJxlG4mKCASPb/tRd9Jwy3X87yd1sev50s4CZgK+SBeg+gPVuU5JkYiprS ngSgEhsNPsqt7oO31wCINa2nC1EkEbjvxDxgrfv/rSgpU4eQqeT6GGldne4JvgGm wcxNcU+5y1ctHnIVShd6deBtus/2hR68DBlY+P4E+K3gN5dBCKq5Vt+L6ilu46TN GSKqRju2 -----END CERTIFICATE-----Generated at Fri Nov 22 11:48:02 2024 by rpki-client on console-ams.rpki-client.org