$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D419127E7F8F11EE8E122B28C4F9AE02.roa File: D419127E7F8F11EE8E122B28C4F9AE02.roa (raw, json) Hash identifier: FTmObDCzlamJ9IQ/vnubGURNLSP/8Vai2NFCdt/m3lY= Subject key identifier: 35:E8:66:DD:0A:B0:A3:7D:C6:76:C0:97:E1:2E:80:32:78:8C:DF:55 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8C63 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D419127E7F8F11EE8E122B28C4F9AE02.roa Signing time: Thu 30 May 2024 16:11:08 +0000 ROA not before: Thu 30 May 2024 16:11:08 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 138798 IP address blocks: 103.79.100.0/24 maxlen: 24 103.79.102.0/24 maxlen: 24 103.117.219.0/24 maxlen: 24 103.135.201.0/24 maxlen: 24 103.135.202.0/24 maxlen: 24 103.135.203.0/24 maxlen: 24 103.141.116.0/23 maxlen: 24 103.160.237.0/24 maxlen: 24 103.174.140.0/23 maxlen: 24 103.181.92.0/24 maxlen: 24 2001:df6:5280::/48 maxlen: 48 2407:35c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35939 (0x8c63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: May 30 16:11:08 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a51b-d5aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:72:e7:7c:0c:75:f0:72:3a:ac:38:86:e2:fd: 89:ca:d6:96:6d:3a:b5:f5:37:d5:02:c8:8e:21:3e: cc:2e:10:4f:75:c3:b2:03:10:c3:e5:32:3a:79:f4: ab:fc:14:24:57:e2:6a:3a:64:bc:a1:ef:86:6b:14: 79:03:4a:42:45:c4:a0:61:1d:71:74:4e:1c:85:e7: 3a:58:f9:ac:58:ae:bb:1d:78:55:7e:09:dd:de:be: 56:a3:d2:29:21:c5:86:e6:da:6c:11:8f:30:c1:37: 0c:84:9d:80:0e:a4:7c:48:31:f7:3f:6c:19:89:c0: 3e:02:dc:16:c4:96:4e:0f:40:9f:3b:9a:4d:77:1d: e7:94:27:ab:9e:89:5a:9c:8e:3b:67:4b:be:2b:d9: 31:07:17:4e:de:91:7b:a1:82:31:35:f9:82:3f:18: 6a:ed:7c:6a:16:18:c3:3e:66:69:04:ab:6c:eb:0f: 5c:9c:f7:9f:8b:65:2c:fd:59:bd:60:1f:6b:0c:a4: 18:d8:6d:83:b8:de:03:7d:fc:8c:07:9c:ab:c9:2d: 66:ea:ec:7d:c0:e9:5b:65:e7:b2:93:a0:3b:e5:67: 37:72:da:b8:58:5f:47:eb:73:65:20:09:ad:4b:51: 90:08:13:e3:42:7c:81:53:c1:a8:79:58:eb:12:fc: 65:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:E8:66:DD:0A:B0:A3:7D:C6:76:C0:97:E1:2E:80:32:78:8C:DF:55 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D419127E7F8F11EE8E122B28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.79.100.0/24 103.79.102.0/24 103.117.219.0/24 103.135.201.0-103.135.203.255 103.141.116.0/23 103.160.237.0/24 103.174.140.0/23 103.181.92.0/24 IPv6: 2001:df6:5280::/48 2407:35c0::/32 Signature Algorithm: sha256WithRSAEncryption 8d:85:fd:e6:ab:92:5f:f7:7d:bb:30:29:f0:da:6a:69:46:c3: 3e:94:bb:ee:5a:d1:b4:15:9b:d1:3b:7e:77:17:b8:98:52:09: 22:6b:10:ca:69:72:3c:e3:cb:42:bf:2d:34:b8:13:e6:a6:21: 68:d3:86:5a:ba:66:99:88:e1:8c:4f:33:af:a8:ed:db:d1:76: 93:30:41:fb:3f:54:a7:ed:56:9a:02:67:86:b6:a0:b3:93:db: 22:04:26:3b:cd:70:d6:f5:f4:a5:49:34:43:82:1a:54:9f:ab: 71:1b:9d:b3:27:aa:bc:b4:ac:cd:a1:64:59:48:91:4d:bd:82: 10:a3:b2:d0:0c:73:52:19:d8:8c:d8:5a:b7:d2:c9:4a:53:81: e2:ff:42:ab:47:0b:e1:b1:cd:ce:d9:85:1e:7f:73:58:a1:7f: 1f:e5:1f:00:91:a6:be:d8:d3:dc:8b:14:d5:ea:df:09:f8:ed: 21:1c:cc:05:e4:03:ac:df:ab:74:54:ac:9f:36:59:1f:10:85: 14:e0:ee:70:49:b3:0a:dd:99:8a:4b:e6:c7:3a:a9:03:98:5e: 88:f8:7d:dd:21:d7:db:ce:af:91:b6:e1:76:13:b2:f8:f0:ac: 3a:7c:d4:c2:78:0b:38:53:2f:a2:54:94:0d:cd:f4:c4:e0:0d: 1c:c4:de:04 -----BEGIN CERTIFICATE----- MIIFvDCCBKSgAwIBAgIDAIxjMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MTEwOFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE1MWItZDVhYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO9y53wMdfByOqw4huL9icrWlm06tfU31QLIjiE+zC4QT3XDsgMQw+UyOnn0 q/wUJFfiajpkvKHvhmsUeQNKQkXEoGEdcXROHIXnOlj5rFiuux14VX4J3d6+VqPS KSHFhubabBGPMME3DISdgA6kfEgx9z9sGYnAPgLcFsSWTg9AnzuaTXcd55Qnq56J WpyOO2dLvivZMQcXTt6Re6GCMTX5gj8Yau18ahYYwz5maQSrbOsPXJz3n4tlLP1Z vWAfawykGNhtg7jeA338jAecq8ktZursfcDpW2XnspOgO+VnN3LauFhfR+tzZSAJ rUtRkAgT40J8gVPBqHlY6xL8ZfECAwEAAaOCAt8wggLbMB0GA1UdDgQWBBQ16Gbd CrCjfcZ2wJfhLoAyeIzfVTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0Q0MTkxMjdF N0Y4RjExRUU4RTEyMkIyOEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMGkGCCsGAQUFBwEHAQH/ BFowWDA+BAIAATA4AwQAZ09kAwQAZ09mAwQAZ3XbMAwDBABnh8kDBAJnh8gDBAFn jXQDBABnoO0DBAFnrowDBABntVwwFgQCAAIwEAMHACABDfZSgAMFACQHNcAwDQYJ KoZIhvcNAQELBQADggEBAI2F/earkl/3fbswKfDaamlGwz6Uu+5a0bQVm9E7fncX uJhSCSJrEMppcjzjy0K/LTS4E+amIWjThlq6ZpmI4YxPM6+o7dvRdpMwQfs/VKft VpoCZ4a2oLOT2yIEJjvNcNb19KVJNEOCGlSfq3EbnbMnqry0rM2hZFlIkU29ghCj stAMc1IZ2IzYWrfSyUpTgeL/QqtHC+Gxzc7ZhR5/c1ihfx/lHwCRpr7Y09yLFNXq 3wn47SEczAXkA6zfq3RUrJ82WR8QhRTg7nBJswrdmYpL5sc6qQOYXoj4fd0h19vO r5G24XYTsvjwrDp81MJ4CzhTL6JUlA3N9MTgDRzE3gQ= -----END CERTIFICATE-----Generated at Sun Feb 16 20:15:00 2025 by rpki-client