$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D64AFEB2433511EFB90D0F46C4F9AE02.roa File: D64AFEB2433511EFB90D0F46C4F9AE02.roa (raw, json) Hash identifier: nNBPwtfYpHBiKMeIQU0GzETs5zSa3rlfhFnBdvbZUu0= Subject key identifier: 29:E4:98:19:A8:BB:23:CA:EE:5C:06:1F:04:F0:B6:65:57:93:96:BA Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 94A1 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D64AFEB2433511EFB90D0F46C4F9AE02.roa Signing time: Tue 16 Jul 2024 05:39:58 +0000 ROA not before: Tue 16 Jul 2024 05:39:58 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 137123 IP address blocks: 103.185.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38049 (0x94a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Jul 16 05:39:58 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=669607ae-534e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:5d:94:3b:64:90:9d:a7:25:02:30:61:76:7f: da:fa:a2:8d:7e:36:58:70:2e:98:73:65:3f:ba:31: 97:00:ab:c5:d2:28:dd:2d:a8:c2:8a:06:03:5d:d3: a9:4e:2a:4c:0a:de:94:9f:69:df:a2:c9:50:69:d8: 95:6c:e8:96:a6:f1:cb:97:c4:3a:c5:6c:79:02:9e: e3:e7:51:10:e5:41:3a:08:16:59:7d:53:57:5a:ad: b5:61:2a:9d:e3:a7:15:30:ff:37:53:bb:32:f8:d8: 8b:1f:2b:07:dd:65:b3:29:bf:6b:1f:d5:28:ab:31: 15:01:11:a5:7f:86:82:48:a3:90:3f:f9:18:38:4d: 31:0f:08:93:a7:07:b3:d5:f0:c9:d4:fe:2f:7e:0a: 03:12:c0:b5:3f:94:40:2c:b2:0f:9c:88:4b:b6:a9: f6:6c:5a:0a:1d:bf:d4:2d:31:c8:48:65:2f:0b:fb: 9d:1c:d1:f5:85:84:f5:bc:5e:40:51:b0:bc:a6:10: 74:d9:c0:e7:af:91:4b:82:4b:04:bd:78:67:09:8b: 68:be:57:bd:60:d2:9f:5b:cb:f6:03:53:ca:4a:3c: 39:dd:7d:60:25:dd:03:78:02:e8:d9:bd:99:b2:d3: c9:41:7a:30:7e:b0:5e:0b:69:01:40:f1:05:31:13: 32:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:E4:98:19:A8:BB:23:CA:EE:5C:06:1F:04:F0:B6:65:57:93:96:BA X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D64AFEB2433511EFB90D0F46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.185.178.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:18:1d:c7:4b:76:c7:0c:04:76:4a:fb:eb:b7:7a:42:79:c3: 44:5c:c3:b5:1f:47:99:96:28:7d:b5:8d:e2:9c:b1:18:93:e7: 4f:0d:46:09:50:41:a8:33:b9:78:fa:a2:7c:09:3a:4b:0f:c3: 19:51:0e:8c:fe:97:bd:a2:5f:27:04:29:95:82:5b:09:90:78: bd:d3:28:d2:b8:3b:4a:e1:8e:11:58:aa:72:a4:c2:b2:30:21: 00:74:a4:68:29:29:5f:62:49:2a:1d:d9:0b:30:35:e0:86:98: da:50:e2:2b:4d:6f:bc:57:82:39:fb:cc:7c:26:d0:1c:54:84: 21:ec:a3:3a:7d:b1:d1:db:e0:59:37:8f:dd:a6:e5:4a:cd:d7: 2e:f7:7a:fe:8f:7f:1a:87:49:b8:e3:46:24:7b:14:22:41:c0: 4f:b5:58:e6:cf:99:1e:ca:7b:0a:a9:53:7c:74:14:fc:da:10: 9a:db:62:c4:da:ae:ef:5b:36:c0:2b:8c:2b:b9:22:af:45:2b: 66:e3:b7:6b:d0:88:cc:d1:11:06:df:4b:89:fd:b0:8b:06:5e: 57:16:66:cf:d5:2a:85:5d:92:de:77:5f:20:b3:c7:30:3c:b3: cc:f6:2b:d0:e8:ef:7a:c5:5e:ed:72:cb:13:0b:a4:98:9f:e9: 21:9b:7b:30 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAJShMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDcxNjA1Mzk1OFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY5NjA3YWUtNTM0ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANpdlDtkkJ2nJQIwYXZ/2vqijX42WHAumHNlP7oxlwCrxdIo3S2owooGA13T qU4qTArelJ9p36LJUGnYlWzolqbxy5fEOsVseQKe4+dREOVBOggWWX1TV1qttWEq neOnFTD/N1O7MvjYix8rB91lsym/ax/VKKsxFQERpX+GgkijkD/5GDhNMQ8Ik6cH s9XwydT+L34KAxLAtT+UQCyyD5yIS7ap9mxaCh2/1C0xyEhlLwv7nRzR9YWE9bxe QFGwvKYQdNnA56+RS4JLBL14ZwmLaL5XvWDSn1vL9gNTyko8Od19YCXdA3gC6Nm9 mbLTyUF6MH6wXgtpAUDxBTETMiUCAwEAAaOCApUwggKRMB0GA1UdDgQWBBQp5JgZ qLsjyu5cBh8E8LZlV5OWujAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0Q2NEFGRUIy NDMzNTExRUZCOTBEMEY0NkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ7myMA0GCSqGSIb3DQEBCwUAA4IBAQB9GB3HS3bHDAR2 Svvrt3pCecNEXMO1H0eZlih9tY3inLEYk+dPDUYJUEGoM7l4+qJ8CTpLD8MZUQ6M /pe9ol8nBCmVglsJkHi90yjSuDtK4Y4RWKpypMKyMCEAdKRoKSlfYkkqHdkLMDXg hpjaUOIrTW+8V4I5+8x8JtAcVIQh7KM6fbHR2+BZN4/dpuVKzdcu93r+j38ah0m4 40YkexQiQcBPtVjmz5keynsKqVN8dBT82hCa22LE2q7vWzbAK4wruSKvRStm47dr 0IjM0REG30uJ/bCLBl5XFmbP1SqFXZLed18gs8cwPLPM9ivQ6O96xV7tcssTC6SY n+khm3sw -----END CERTIFICATE-----Generated at Sun Feb 16 20:30:06 2025 by rpki-client