$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D575220A607C11EB842ADF86C4F9AE02.roa File: D575220A607C11EB842ADF86C4F9AE02.roa (raw, json) Hash identifier: S5qYLIMXVUgEzxyxjx3zeGOR6AfY/+NqtwxxYUtseR0= Subject key identifier: FF:68:F1:40:0F:E3:AF:53:BA:03:A1:4F:2D:34:4D:AC:2B:28:AB:4F Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8B3A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D575220A607C11EB842ADF86C4F9AE02.roa Signing time: Thu 30 May 2024 16:06:18 +0000 ROA not before: Thu 30 May 2024 16:06:18 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 136687 IP address blocks: 103.107.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35642 (0x8b3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:06:18 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a3fa-bb58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:1f:74:a4:03:05:fc:6e:13:dc:46:b8:3a:80: 49:f5:a2:f9:b9:73:f5:f7:c8:39:47:47:7c:cb:a8: f2:57:d3:69:14:56:9d:86:a9:ff:20:90:f2:a0:de: 27:12:c0:4f:5c:14:1f:1d:ff:1d:58:03:c5:8d:66: 65:32:f9:04:28:e4:c2:f4:2c:1f:da:39:17:ac:63: e0:8d:df:aa:19:f5:e4:9e:8d:6e:1c:d6:53:77:54: f1:9d:14:e6:31:5d:9e:74:62:b8:41:60:d1:2f:38: f6:6e:65:c3:56:0b:a1:12:55:a2:31:ca:4a:f9:b7: c9:af:64:81:43:89:84:2f:53:3c:f7:ff:08:96:b8: 96:3e:61:90:60:34:4c:ef:7a:62:b9:bc:5a:b9:ba: 31:92:21:1c:96:8a:1f:4e:81:36:7d:1c:7b:bb:ec: 9b:43:41:5e:9d:f4:18:02:79:2b:e5:96:04:e3:16: db:14:c3:41:7d:c1:4e:97:5a:ea:56:65:f1:97:5c: 94:dc:35:de:55:ff:76:7e:4d:a7:a6:9c:c2:3e:96: a3:f1:fc:34:e5:01:ca:c0:08:58:7b:5b:56:6d:dc: 9b:ef:9c:1f:61:92:57:53:7a:95:8e:2c:2d:7a:0f: f0:d2:9d:25:f2:78:a6:c4:5d:89:e7:d0:81:9d:b1: f4:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:68:F1:40:0F:E3:AF:53:BA:03:A1:4F:2D:34:4D:AC:2B:28:AB:4F X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D575220A607C11EB842ADF86C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.107.59.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:9f:4e:a7:38:df:1d:be:c1:67:ae:7e:df:08:36:53:02:aa: 05:41:c2:6b:2d:ef:08:5b:37:da:57:34:18:51:e8:20:a7:85: 3d:aa:de:d3:df:95:11:ef:ef:c4:2f:ef:f5:2a:47:9d:6d:a7: aa:b2:66:28:ee:96:7f:b6:8b:97:9f:fd:2b:49:2e:dc:61:1f: 28:4e:4c:6c:9b:0e:20:d1:33:bb:9a:24:96:dc:12:07:f5:71: 9c:64:2f:52:6a:1e:d0:33:d5:19:bf:58:d6:f3:41:6f:09:70: c1:21:dd:57:56:aa:2f:38:15:37:3f:1d:a5:29:a3:9a:85:f5: db:c1:f5:64:0f:39:8d:6d:ab:f8:dd:a1:33:69:65:1d:81:36: 9b:d7:50:af:d6:6c:c3:d5:4b:db:49:62:9a:ef:ad:b7:ca:d9: 99:d7:59:3f:16:0b:3f:fd:8e:99:b1:6f:96:25:29:b6:e7:33: 82:7d:33:e0:2c:18:cf:fe:12:50:85:46:07:cb:02:00:39:63: a1:f9:d2:b6:bf:56:d2:62:b2:84:72:97:06:24:8a:8a:10:e1: c5:e0:c4:99:dc:e9:86:b5:e8:38:5c:00:29:f5:37:41:46:07: 5b:75:41:11:cb:9c:40:86:73:ab:82:e3:68:aa:35:44:4f:1c: dd:88:ce:22 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAIs6MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MDYxOFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGEzZmEtYmI1ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ8fdKQDBfxuE9xGuDqASfWi+blz9ffIOUdHfMuo8lfTaRRWnYap/yCQ8qDe JxLAT1wUHx3/HVgDxY1mZTL5BCjkwvQsH9o5F6xj4I3fqhn15J6NbhzWU3dU8Z0U 5jFdnnRiuEFg0S849m5lw1YLoRJVojHKSvm3ya9kgUOJhC9TPPf/CJa4lj5hkGA0 TO96Yrm8Wrm6MZIhHJaKH06BNn0ce7vsm0NBXp30GAJ5K+WWBOMW2xTDQX3BTpda 6lZl8ZdclNw13lX/dn5Np6acwj6Wo/H8NOUBysAIWHtbVm3cm++cH2GSV1N6lY4s LXoP8NKdJfJ4psRdiefQgZ2x9GkCAwEAAaOCApUwggKRMB0GA1UdDgQWBBT/aPFA D+OvU7oDoU8tNE2sKyirTzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0Q1NzUyMjBB NjA3QzExRUI4NDJBREY4NkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ2s7MA0GCSqGSIb3DQEBCwUAA4IBAQBrn06nON8dvsFn rn7fCDZTAqoFQcJrLe8IWzfaVzQYUeggp4U9qt7T35UR7+/EL+/1KkedbaeqsmYo 7pZ/touXn/0rSS7cYR8oTkxsmw4g0TO7miSW3BIH9XGcZC9Sah7QM9UZv1jW80Fv CXDBId1XVqovOBU3Px2lKaOahfXbwfVkDzmNbav43aEzaWUdgTab11Cv1mzD1Uvb SWKa7623ytmZ11k/Fgs//Y6ZsW+WJSm25zOCfTPgLBjP/hJQhUYHywIAOWOh+dK2 v1bSYrKEcpcGJIqKEOHF4MSZ3OmGteg4XAAp9TdBRgdbdUERy5xAhnOrguNoqjVE TxzdiM4i -----END CERTIFICATE-----Generated at Fri Nov 22 11:48:03 2024 by rpki-client on console-ams.rpki-client.org