$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D2A832E47C7E11EE9857995DC4F9AE02.roa File: D2A832E47C7E11EE9857995DC4F9AE02.roa (raw, json) Hash identifier: beaQJvvoPZQyhbeWLQ76TRL5VM1dRnX//HzOb/04ahg= Subject key identifier: 62:34:DD:35:57:4C:42:01:1B:48:50:21:85:6D:EE:D0:7F:BB:BD:95 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8BAE Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D2A832E47C7E11EE9857995DC4F9AE02.roa Signing time: Thu 30 May 2024 16:08:14 +0000 ROA not before: Thu 30 May 2024 16:08:14 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 137599 IP address blocks: 103.115.200.0/22 maxlen: 24 2001:df3:a040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 12:05:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35758 (0x8bae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:08:14 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a46d-3a82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8e:a3:8e:f2:31:32:0c:28:25:28:5e:64:1b: b8:af:bf:d8:af:7d:ce:fa:b4:ba:cb:8f:eb:7f:87: df:31:53:f6:4d:9a:4d:c6:da:6e:e4:8f:f7:34:0e: 82:91:6e:9e:1b:10:21:ac:a8:db:04:ae:bd:21:d5: 18:e1:5d:e1:be:29:82:30:59:f3:f6:ea:c9:c9:d4: ad:a2:5f:0f:6a:70:73:bf:80:33:0b:88:16:88:a2: cb:04:64:08:b6:30:a6:89:92:e6:fe:46:72:d0:33: 66:d2:76:b5:3c:a6:b9:44:bb:21:2f:2c:25:b2:e3: 62:57:8b:17:a9:9a:b5:38:f1:34:18:07:ff:50:39: 6f:00:37:cf:9d:8f:a9:b4:33:65:88:d6:e1:4c:9d: 74:80:76:69:f8:dc:d2:f7:d6:2d:66:2b:a2:2e:f6: e6:24:61:84:91:08:ad:ea:fc:35:e0:c3:a0:a0:ec: ca:01:83:40:58:f0:f2:3d:2f:3d:fb:39:d5:e0:cc: f4:ea:84:55:36:0d:e8:da:09:43:75:d0:76:71:9d: 17:6d:8e:7c:e6:66:ee:d7:7a:cc:f6:d0:79:cf:b2: ae:f2:82:86:87:5b:7e:7a:cb:95:c2:95:8f:45:1e: d6:26:a1:1a:98:77:e9:00:2d:86:c3:fb:84:10:35: 4b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:34:DD:35:57:4C:42:01:1B:48:50:21:85:6D:EE:D0:7F:BB:BD:95 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D2A832E47C7E11EE9857995DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.115.200.0/22 IPv6: 2001:df3:a040::/48 Signature Algorithm: sha256WithRSAEncryption 09:64:b9:d1:8b:2a:69:5a:cc:99:c4:21:fd:fe:48:d9:a2:cb: 5f:92:5f:e4:54:49:ec:55:fd:c7:e3:b1:69:f6:70:80:fa:61: aa:0b:bf:55:f5:96:99:1f:16:7c:6c:dd:24:c0:75:ce:78:8a: b7:32:09:0e:11:d5:87:61:23:bb:27:e4:f6:73:b5:43:fa:e2: f8:20:02:7b:de:eb:9e:8c:e6:61:ab:61:92:ba:fa:ba:79:0b: 56:34:ad:d4:f1:17:03:e2:02:4b:86:0a:0a:eb:f2:94:4d:53: bb:06:66:c0:e9:83:48:5b:52:05:7b:52:2d:b0:65:7c:88:f8: a2:35:35:e3:a3:bb:66:51:e2:3f:48:54:6e:7d:a6:59:15:f4: a4:32:0c:b1:12:94:cb:9f:d2:f6:e2:08:01:b8:e9:51:7e:f3: d9:f8:7b:18:a8:a8:78:dd:e7:12:0b:de:54:f6:b8:02:84:4e: 98:93:5e:60:cb:23:67:88:20:42:26:b8:00:2d:9d:af:2d:50: a5:51:1d:e8:fe:db:99:3d:f9:28:fd:ae:3e:9c:40:95:d6:bb: b9:28:d0:de:70:4f:38:0e:a4:4a:45:9b:ce:fc:2e:de:cc:08: 31:27:1f:70:e6:c7:7e:09:f3:0b:56:f7:0a:03:82:83:b3:b6: a1:2e:63:8d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDAIuuMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MDgxNFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE0NmQtM2E4MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMCOo47yMTIMKCUoXmQbuK+/2K99zvq0usuP63+H3zFT9k2aTcbabuSP9zQO gpFunhsQIayo2wSuvSHVGOFd4b4pgjBZ8/bqycnUraJfD2pwc7+AMwuIFoiiywRk CLYwpomS5v5GctAzZtJ2tTymuUS7IS8sJbLjYleLF6matTjxNBgH/1A5bwA3z52P qbQzZYjW4UyddIB2afjc0vfWLWYroi725iRhhJEIrer8NeDDoKDsygGDQFjw8j0v Pfs51eDM9OqEVTYN6NoJQ3XQdnGdF22OfOZm7td6zPbQec+yrvKChodbfnrLlcKV j0Ue1iahGph36QAthsP7hBA1S9cCAwEAAaOCAqYwggKiMB0GA1UdDgQWBBRiNN01 V0xCARtIUCGFbe7Qf7u9lTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0QyQTgzMkU0 N0M3RTExRUU5ODU3OTk1REM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQCZ3PIMA8EAgACMAkDBwAgAQ3zoEAwDQYJKoZIhvcNAQEL BQADggEBAAlkudGLKmlazJnEIf3+SNmiy1+SX+RUSexV/cfjsWn2cID6YaoLv1X1 lpkfFnxs3STAdc54ircyCQ4R1YdhI7sn5PZztUP64vggAnve656M5mGrYZK6+rp5 C1Y0rdTxFwPiAkuGCgrr8pRNU7sGZsDpg0hbUgV7Ui2wZXyI+KI1NeOju2ZR4j9I VG59plkV9KQyDLESlMuf0vbiCAG46VF+89n4exioqHjd5xIL3lT2uAKETpiTXmDL I2eIIEImuAAtna8tUKVRHej+25k9+Sj9rj6cQJXWu7ko0N5wTzgOpEpFm878Lt7M CDEnH3Dmx34J8wtW9woDgoOztqEuY40= -----END CERTIFICATE-----Generated at Fri Nov 22 13:35:16 2024 by rpki-client on console-fra.rpki-client.org