$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D897887EF5EB11EBABB4386BC4F9AE02.roa File: D897887EF5EB11EBABB4386BC4F9AE02.roa (raw, json) Hash identifier: ZjXC7QdXxHlWr18rcEj4sj2kg0wDLINmmzj1/Djyndk= Subject key identifier: 4D:D5:3D:06:16:09:10:D8:0D:54:23:FA:05:10:12:09:59:90:B7:05 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 886E Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D897887EF5EB11EBABB4386BC4F9AE02.roa Signing time: Thu 30 May 2024 15:54:30 +0000 ROA not before: Thu 30 May 2024 15:54:30 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 132570 IP address blocks: 103.123.76.0/22 maxlen: 24 2001:df1:f3c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34926 (0x886e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 15:54:30 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a136-9e0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f6:90:27:0b:b0:22:9d:c4:46:50:70:14:13: a8:db:ac:be:27:9d:50:b1:fc:80:b0:51:6b:1c:20: 70:2b:6b:56:9e:57:33:ba:10:7c:b6:d7:6a:52:58: 93:53:b8:0f:5c:b6:37:43:a2:eb:ba:25:9f:ee:fb: c8:e5:cf:bf:67:5d:bb:b8:e2:00:fa:b8:98:5d:22: f4:64:f9:d5:37:f6:b7:a1:0f:8b:29:52:bb:b7:d5: 83:1c:bd:64:1b:b0:92:d8:ba:5b:ea:c5:94:67:6b: 39:5d:29:77:ed:98:16:5e:73:55:d9:6e:06:9e:9d: 7a:56:26:45:d5:3b:93:f7:d8:af:99:52:7d:00:f4: 7c:12:ea:47:99:3b:1c:a0:6e:fb:b8:34:46:78:6b: b6:36:31:82:5f:cc:1b:fa:b5:12:2e:fe:41:0a:8d: d6:71:0e:4d:34:08:c2:d0:e3:89:73:1c:2e:84:90: fe:11:39:7f:66:e7:10:fb:de:71:0f:58:b1:0f:e8: b6:28:cb:ac:c0:6f:a1:49:93:6a:27:1a:d3:f5:83: 38:22:21:69:55:1f:01:4c:e5:8a:3c:a1:4f:da:59: 25:4b:61:64:d1:37:4c:87:f6:65:b2:a1:e2:5a:27: 2f:30:5f:42:fd:67:2d:05:b9:a3:fc:b1:20:70:51: d4:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:D5:3D:06:16:09:10:D8:0D:54:23:FA:05:10:12:09:59:90:B7:05 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D897887EF5EB11EBABB4386BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.123.76.0/22 IPv6: 2001:df1:f3c0::/48 Signature Algorithm: sha256WithRSAEncryption a9:92:45:ee:37:a2:04:f6:b8:57:89:4c:4a:4a:15:b8:e7:13: 2a:ca:28:30:ed:aa:f5:ba:fe:5e:df:10:fb:32:67:3a:08:4d: 63:bc:0f:01:46:c0:4c:94:e9:32:4e:9d:0c:df:79:94:9a:b3: 68:07:17:00:82:9f:f6:66:f2:7a:8f:ae:04:a7:c8:76:b6:e1: 0f:aa:59:10:6f:76:25:1c:53:fd:5f:f3:b1:cd:bb:91:94:5b: f2:40:b4:2f:2e:b7:45:9f:99:0e:7b:bc:cf:92:ea:1b:bc:ec: d8:a9:23:11:a5:e4:71:81:44:35:d8:ea:7b:a8:86:15:25:4d: 0f:e6:a6:9f:f2:6b:5e:06:92:42:28:fd:ca:ea:d4:e0:01:06: 1b:e9:da:c4:9f:e4:ae:32:2b:38:30:e1:5d:e8:57:96:a0:f0: 9a:ed:61:d0:8e:03:84:3e:dd:bc:96:bd:a1:92:6c:c7:07:55: 9d:8a:97:20:07:20:0f:48:19:32:90:c0:17:d1:81:b9:df:ea: 37:12:14:d4:25:20:ca:4e:30:df:45:5d:55:9e:b5:c1:1d:d7: 02:80:d4:94:40:7a:ba:2e:89:89:a7:c0:cc:83:d2:1c:9b:e2: 1d:eb:a8:a9:75:be:74:93:6d:89:ac:e0:60:d6:b5:0d:01:06: d4:2b:eb:b9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDAIhuMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE1NTQzMFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGExMzYtOWUwZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMP2kCcLsCKdxEZQcBQTqNusviedULH8gLBRaxwgcCtrVp5XM7oQfLbXalJY k1O4D1y2N0Oi67oln+77yOXPv2ddu7jiAPq4mF0i9GT51Tf2t6EPiylSu7fVgxy9 ZBuwkti6W+rFlGdrOV0pd+2YFl5zVdluBp6delYmRdU7k/fYr5lSfQD0fBLqR5k7 HKBu+7g0RnhrtjYxgl/MG/q1Ei7+QQqN1nEOTTQIwtDjiXMcLoSQ/hE5f2bnEPve cQ9YsQ/otijLrMBvoUmTaica0/WDOCIhaVUfAUzlijyhT9pZJUthZNE3TIf2ZbKh 4lonLzBfQv1nLQW5o/yxIHBR1KcCAwEAAaOCAqYwggKiMB0GA1UdDgQWBBRN1T0G FgkQ2A1UI/oFEBIJWZC3BTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0Q4OTc4ODdF RjVFQjExRUJBQkI0Mzg2QkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQCZ3tMMA8EAgACMAkDBwAgAQ3x88AwDQYJKoZIhvcNAQEL BQADggEBAKmSRe43ogT2uFeJTEpKFbjnEyrKKDDtqvW6/l7fEPsyZzoITWO8DwFG wEyU6TJOnQzfeZSas2gHFwCCn/Zm8nqPrgSnyHa24Q+qWRBvdiUcU/1f87HNu5GU W/JAtC8ut0WfmQ57vM+S6hu87NipIxGl5HGBRDXY6nuohhUlTQ/mpp/ya14GkkIo /crq1OABBhvp2sSf5K4yKzgw4V3oV5ag8JrtYdCOA4Q+3byWvaGSbMcHVZ2KlyAH IA9IGTKQwBfRgbnf6jcSFNQlIMpOMN9FXVWetcEd1wKA1JRAerouiYmnwMyD0hyb 4h3rqKl1vnSTbYms4GDWtQ0BBtQr67k= -----END CERTIFICATE-----Generated at Fri Nov 22 11:17:53 2024 by rpki-client on console-fra.rpki-client.org