$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D8B11E00602B11EDA938E34DC4F9AE02.roa File: D8B11E00602B11EDA938E34DC4F9AE02.roa (raw, json) Hash identifier: mcYGhfOeqGqXOU27Ungs0z1E+6bjIx1mZI/gkbzRuso= Subject key identifier: A7:B1:B1:39:E5:17:4D:17:49:DA:77:78:AC:90:1E:98:43:4B:E6:D0 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8B31 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D8B11E00602B11EDA938E34DC4F9AE02.roa Signing time: Thu 30 May 2024 16:06:10 +0000 ROA not before: Thu 30 May 2024 16:06:10 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 136674 IP address blocks: 103.117.152.0/24 maxlen: 24 103.117.153.0/24 maxlen: 24 103.117.154.0/24 maxlen: 24 103.117.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35633 (0x8b31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: May 30 16:06:10 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a3f2-2376 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:72:10:83:dc:59:f3:f4:90:19:32:a9:f4:ec: d5:24:25:8d:57:1e:54:06:de:61:02:82:de:2b:2d: 62:f4:50:d8:34:36:3b:7b:04:56:b7:be:e7:5a:df: e2:b1:8f:5e:de:8f:d7:a5:2f:02:5e:c4:e0:0e:54: 7e:d1:e5:c3:4f:95:f8:40:ef:65:00:ae:42:90:27: d8:44:e0:de:2e:0e:11:9d:62:52:46:15:f5:22:0f: 5d:45:fa:26:7d:20:70:0b:f3:17:7c:a4:71:0f:d3: 90:b4:e7:48:4f:c8:a6:9c:be:6d:44:59:76:1e:33: cf:db:d2:c3:51:b8:66:7e:5a:9a:00:6e:cb:df:6c: e2:13:3a:aa:26:6b:66:3f:b6:27:1c:ae:a7:d4:4d: d8:a6:72:55:fe:c6:c1:f1:f0:d6:b4:55:1e:93:03: a9:55:bb:19:37:f6:a4:c9:ea:e4:75:2c:af:49:79: bf:06:14:d4:c7:e6:bc:64:41:d3:74:4a:e8:d6:85: 81:66:33:47:05:69:b2:f7:62:f6:69:38:96:be:a0: 3f:ce:c7:07:c0:66:88:ba:b3:38:99:07:fc:84:0b: f0:ae:ee:ed:dd:d9:d9:5e:05:ce:c4:3b:aa:7a:d8: 55:a6:a2:43:9b:d2:ce:a7:ef:0d:ea:5a:f5:c9:0b: b4:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:B1:B1:39:E5:17:4D:17:49:DA:77:78:AC:90:1E:98:43:4B:E6:D0 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D8B11E00602B11EDA938E34DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.152.0/22 Signature Algorithm: sha256WithRSAEncryption 75:29:0f:d0:09:02:50:9c:a7:8b:ec:b4:17:04:9e:ef:0e:cc: 30:eb:05:ff:b4:fb:8e:39:14:61:6c:90:9b:fd:dc:d0:48:e3: 74:6e:61:27:c4:dc:f4:b1:b9:7e:dd:6c:6e:1c:b9:57:33:22: a4:6c:15:b6:1d:6a:78:09:58:5c:02:e4:61:d7:c7:d9:d4:4c: 46:66:b0:7f:34:ec:b0:1f:25:3c:b4:fc:cd:a9:92:f4:3a:85: 3e:62:aa:4c:41:3c:38:4a:16:90:9d:ac:18:6e:c9:eb:3a:7e: 96:e0:d1:bc:80:ee:91:b0:98:f5:86:8d:a9:61:e2:43:41:83: 1b:2a:ef:4a:94:fd:23:f0:b4:e7:34:58:66:94:63:40:f3:e2: de:fb:2d:29:4e:a9:89:27:ba:ae:b8:91:f7:82:99:59:b9:74: 3c:11:58:02:52:4c:72:84:31:91:b3:2b:37:82:39:1b:99:45: 59:9a:b7:69:83:86:84:4d:ae:5f:2c:98:ff:8f:aa:1b:b0:18: 16:ea:70:70:2d:c5:6e:97:9a:73:ac:3f:4e:d8:fe:ca:3b:6d: 4e:17:41:bd:bf:4b:38:b6:1d:bf:31:eb:ad:66:48:41:66:5d: 14:46:db:16:89:8b:06:b1:1f:02:de:41:f5:9a:f1:91:78:4e: 66:2e:b2:56 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAIsxMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MDYxMFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGEzZjItMjM3NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKFyEIPcWfP0kBkyqfTs1SQljVceVAbeYQKC3istYvRQ2DQ2O3sEVre+51rf 4rGPXt6P16UvAl7E4A5UftHlw0+V+EDvZQCuQpAn2ETg3i4OEZ1iUkYV9SIPXUX6 Jn0gcAvzF3ykcQ/TkLTnSE/Ippy+bURZdh4zz9vSw1G4Zn5amgBuy99s4hM6qiZr Zj+2Jxyup9RN2KZyVf7GwfHw1rRVHpMDqVW7GTf2pMnq5HUsr0l5vwYU1MfmvGRB 03RK6NaFgWYzRwVpsvdi9mk4lr6gP87HB8BmiLqzOJkH/IQL8K7u7d3Z2V4FzsQ7 qnrYVaaiQ5vSzqfvDepa9ckLtO8CAwEAAaOCApUwggKRMB0GA1UdDgQWBBSnsbE5 5RdNF0nad3iskB6YQ0vm0DAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0Q4QjExRTAw NjAyQjExRURBOTM4RTM0REM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQCZ3WYMA0GCSqGSIb3DQEBCwUAA4IBAQB1KQ/QCQJQnKeL 7LQXBJ7vDsww6wX/tPuOORRhbJCb/dzQSON0bmEnxNz0sbl+3WxuHLlXMyKkbBW2 HWp4CVhcAuRh18fZ1ExGZrB/NOywHyU8tPzNqZL0OoU+YqpMQTw4ShaQnawYbsnr On6W4NG8gO6RsJj1ho2pYeJDQYMbKu9KlP0j8LTnNFhmlGNA8+Le+y0pTqmJJ7qu uJH3gplZuXQ8EVgCUkxyhDGRsys3gjkbmUVZmrdpg4aETa5fLJj/j6obsBgW6nBw LcVul5pzrD9O2P7KO21OF0G9v0s4th2/MeutZkhBZl0URtsWiYsGsR8C3kH1mvGR eE5mLrJW -----END CERTIFICATE-----Generated at Sun Feb 16 20:20:24 2025 by rpki-client