$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D3B9F3D8146311EBB558DE47C4F9AE02.roa File: D3B9F3D8146311EBB558DE47C4F9AE02.roa (raw, json) Hash identifier: l9hkAf+6IKaYsrm19XYTRm9dqIYAoIWdvAGTZjJEE0I= Subject key identifier: D6:20:5B:2C:89:16:EF:81:1D:A5:CB:EE:C2:3C:83:55:21:B2:B4:9D Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 89B6 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D3B9F3D8146311EBB558DE47C4F9AE02.roa Signing time: Thu 30 May 2024 15:59:57 +0000 ROA not before: Thu 30 May 2024 15:59:57 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 134345 IP address blocks: 103.76.56.0/22 maxlen: 24 103.157.130.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 10:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35254 (0x89b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 15:59:57 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a27d-9bf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:b9:75:02:40:31:d0:1f:fb:7b:ed:2b:f9:ed: 70:e7:29:c7:70:1d:ea:aa:2a:57:c5:e8:3c:67:66: df:11:88:b2:9b:cb:7d:2e:0b:fe:ab:9c:9e:ec:df: 1d:fa:4e:ad:b5:b2:63:fd:f4:ef:87:d8:c4:c7:e4: f5:4a:eb:06:c3:7a:de:e3:fa:6a:c8:70:02:52:0d: 2d:e0:eb:84:83:83:6c:5c:1d:5a:52:44:35:a2:2b: 36:b4:9a:00:4d:bb:5b:d0:66:0f:92:34:fd:a5:6f: eb:e1:32:1e:f3:2e:94:7d:76:2a:b0:47:cd:70:23: ae:b5:9e:1f:e0:11:14:6d:86:48:e5:c9:ed:32:9f: 15:88:ff:70:eb:da:b0:b3:28:88:c2:86:50:4a:02: d7:3b:0a:a2:9e:96:87:11:18:1f:b3:1a:b8:b2:18: ca:8f:8f:61:3a:eb:d7:39:23:fb:08:3c:99:1b:e5: 21:17:28:f3:c9:89:e7:bc:81:8a:55:f8:e5:b2:90: e3:07:60:94:0e:6b:b1:81:ad:8e:e9:c6:33:eb:8d: 93:33:af:cf:e2:6c:ca:97:2d:d3:4c:b9:0b:4c:45: 3a:99:77:44:2b:91:62:bf:88:57:dc:41:80:e0:f9: 7f:eb:5f:e7:22:f9:2d:68:e7:d4:10:61:05:e7:dc: 1a:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:20:5B:2C:89:16:EF:81:1D:A5:CB:EE:C2:3C:83:55:21:B2:B4:9D X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D3B9F3D8146311EBB558DE47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.76.56.0/22 103.157.130.0/23 Signature Algorithm: sha256WithRSAEncryption 1e:21:cb:e9:e1:df:71:b3:ba:70:6a:05:4c:2d:7f:dc:af:7a: 28:86:82:6d:6f:9f:cf:d6:76:77:4f:bd:7f:64:e0:54:d6:ce: 7d:02:7a:31:df:fa:71:02:b1:a9:32:ad:45:8c:ad:3a:a5:75: 43:f7:dd:b3:e4:e1:e8:4f:99:ef:55:ce:f1:b5:2d:5f:f9:f1: e0:82:65:30:1f:fe:a6:3f:e5:f6:1a:38:93:6c:9c:29:24:ac: 77:0a:4a:7c:7d:c5:3e:c3:ed:d4:92:41:65:b5:b7:e8:5b:27: c0:ce:4b:1c:07:68:b6:a5:4b:50:a6:27:fb:9a:c8:02:16:ae: 8d:45:4a:20:9f:b9:0b:75:8c:b7:78:7a:0f:09:57:41:fc:8d: 19:71:e4:83:4d:33:fe:31:71:a1:18:0d:a1:e9:8f:04:37:9f: a3:d3:27:c8:19:aa:83:d5:f5:2a:4a:2d:36:67:51:b7:31:5a: 85:15:54:b3:50:f4:b3:9e:da:5a:ad:03:82:92:ca:88:98:72: c1:4b:48:2f:e5:1d:e3:00:de:ad:ee:8a:19:64:4d:75:cd:63: cb:66:39:cc:23:e0:fc:29:b4:62:70:02:a6:33:25:90:cb:18: f7:ed:f6:f6:a7:5d:6c:23:e6:f7:aa:a5:3e:10:da:2b:cb:59: da:e2:fc:0a -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIDAIm2MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE1NTk1N1oXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGEyN2QtOWJmOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOC5dQJAMdAf+3vtK/ntcOcpx3Ad6qoqV8XoPGdm3xGIspvLfS4L/qucnuzf HfpOrbWyY/3074fYxMfk9UrrBsN63uP6ashwAlINLeDrhIODbFwdWlJENaIrNrSa AE27W9BmD5I0/aVv6+EyHvMulH12KrBHzXAjrrWeH+ARFG2GSOXJ7TKfFYj/cOva sLMoiMKGUEoC1zsKop6WhxEYH7MauLIYyo+PYTrr1zkj+wg8mRvlIRco88mJ57yB ilX45bKQ4wdglA5rsYGtjunGM+uNkzOvz+Jsypct00y5C0xFOpl3RCuRYr+IV9xB gOD5f+tf5yL5LWjn1BBhBefcGssCAwEAAaOCApswggKXMB0GA1UdDgQWBBTWIFss iRbvgR2ly+7CPINVIbK0nTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0QzQjlGM0Q4 MTQ2MzExRUJCNTU4REU0N0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCUGCCsGAQUFBwEHAQH/ BBYwFDASBAIAATAMAwQCZ0w4AwQBZ52CMA0GCSqGSIb3DQEBCwUAA4IBAQAeIcvp 4d9xs7pwagVMLX/cr3oohoJtb5/P1nZ3T71/ZOBU1s59Anox3/pxArGpMq1FjK06 pXVD992z5OHoT5nvVc7xtS1f+fHggmUwH/6mP+X2GjiTbJwpJKx3Ckp8fcU+w+3U kkFltbfoWyfAzkscB2i2pUtQpif7msgCFq6NRUogn7kLdYy3eHoPCVdB/I0ZceSD TTP+MXGhGA2h6Y8EN5+j0yfIGaqD1fUqSi02Z1G3MVqFFVSzUPSzntparQOCksqI mHLBS0gv5R3jAN6t7ooZZE11zWPLZjnMI+D8KbRicAKmMyWQyxj37fb2p11sI+b3 qqU+ENory1na4vwK -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:27 2024 by rpki-client on console-ams.rpki-client.org