$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D8F26B76BDD011EA9702FC12C4F9AE02.roa File: D8F26B76BDD011EA9702FC12C4F9AE02.roa (raw, json) Hash identifier: b8/mWZHQB5AffZpHxFPmbW216fcca5KXoRCfrACxL7o= Subject key identifier: 0D:8C:2D:B7:68:9D:25:63:6E:01:A3:2A:AB:FB:4C:62:A2:93:29:49 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8C75 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D8F26B76BDD011EA9702FC12C4F9AE02.roa Signing time: Thu 30 May 2024 16:11:25 +0000 ROA not before: Thu 30 May 2024 16:11:25 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 139500 IP address blocks: 103.145.89.0/24 maxlen: 24 2001:df2:480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35957 (0x8c75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: May 30 16:11:25 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a52d-f674 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:36:94:e6:bf:91:3e:62:e2:f7:79:2f:cf:65: 04:0d:93:d0:a2:5d:b8:db:a8:d4:f7:9c:38:50:6c: d4:a5:86:f6:16:00:29:bc:74:ae:d2:5d:d6:bb:33: a3:c0:47:c2:60:4f:5e:70:8c:ff:73:7a:be:07:c3: 34:e6:c4:6c:d1:0a:5d:d4:68:f7:9f:94:b8:f1:a1: d4:2c:af:ba:be:f9:87:d4:6e:ed:08:9d:4a:77:94: a3:47:63:9d:16:cb:30:9d:c0:ea:46:54:d3:5a:a3: 73:6b:05:59:1c:08:ba:40:09:93:99:3d:67:95:da: ef:04:a4:42:13:66:9e:88:e1:0e:8a:16:62:1f:46: 67:1a:1b:11:52:ef:da:2e:8c:04:31:a3:19:03:1d: 37:02:78:9e:57:04:29:9b:f5:3c:ba:9b:c1:47:7c: c2:49:a9:87:2d:45:4b:93:bf:4e:d0:23:71:8f:7c: 6e:d7:7f:4b:2d:42:2f:16:8e:fd:5b:14:06:f1:1e: 48:9b:59:6e:8b:2e:34:56:a5:49:6c:44:13:44:ca: 0e:ab:dc:1f:0d:f7:89:9e:8f:e1:d7:8b:28:ac:28: 1e:28:20:8b:7a:0e:7d:10:11:d6:10:e3:d2:4f:01: ff:c0:49:45:f3:91:9d:ce:80:32:cd:a0:23:90:c1: d9:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:8C:2D:B7:68:9D:25:63:6E:01:A3:2A:AB:FB:4C:62:A2:93:29:49 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D8F26B76BDD011EA9702FC12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.89.0/24 IPv6: 2001:df2:480::/48 Signature Algorithm: sha256WithRSAEncryption 1d:64:f8:fa:a3:d7:16:56:b3:14:69:df:5a:c4:54:89:85:da: 0b:90:39:57:57:c2:61:19:40:fd:6a:f9:72:b8:ca:f5:25:97: 07:21:20:22:b1:03:6e:5a:6d:ab:03:9f:8b:f0:ee:0d:f9:8f: fe:76:33:9e:1a:85:aa:b7:ca:25:d0:bf:15:6e:53:03:7e:b2: 3b:83:73:ac:9a:7f:33:e0:44:23:5e:5b:47:e1:72:3e:ce:c1: 86:67:22:38:11:f3:39:12:09:6b:82:d1:e1:56:a2:76:7b:d7: 66:8d:cf:b9:d4:b0:99:d8:e7:45:17:30:2a:5b:c3:25:e3:f3: 8c:e0:fa:39:7b:d8:3c:c3:dd:10:df:23:c5:5a:8b:f4:92:16: d8:5e:91:b3:c0:6c:fb:d2:26:82:81:1d:89:cd:a2:97:98:12: 17:99:89:2f:00:9c:43:60:94:4b:8f:35:77:67:19:fa:2a:c4: 52:09:da:59:89:9f:89:d5:05:73:7f:24:e4:90:2f:85:99:eb: c8:0c:f8:df:4d:da:a6:8d:97:37:8a:bb:c3:46:f8:b5:97:2a: 85:05:43:f8:96:82:26:9b:79:24:ae:8e:3d:a2:16:7b:4c:12: c7:97:29:c0:80:d8:1d:9c:f6:e4:9c:61:06:82:3b:56:1a:9c: 89:13:67:76 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDAIx1MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MTEyNVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE1MmQtZjY3NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMk2lOa/kT5i4vd5L89lBA2T0KJduNuo1PecOFBs1KWG9hYAKbx0rtJd1rsz o8BHwmBPXnCM/3N6vgfDNObEbNEKXdRo95+UuPGh1Cyvur75h9Ru7QidSneUo0dj nRbLMJ3A6kZU01qjc2sFWRwIukAJk5k9Z5Xa7wSkQhNmnojhDooWYh9GZxobEVLv 2i6MBDGjGQMdNwJ4nlcEKZv1PLqbwUd8wkmphy1FS5O/TtAjcY98btd/Sy1CLxaO /VsUBvEeSJtZbosuNFalSWxEE0TKDqvcHw33iZ6P4deLKKwoHiggi3oOfRAR1hDj 0k8B/8BJRfORnc6AMs2gI5DB2a8CAwEAAaOCAqYwggKiMB0GA1UdDgQWBBQNjC23 aJ0lY24Boyqr+0xiopMpSTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0Q4RjI2Qjc2 QkREMDExRUE5NzAyRkMxMkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQAZ5FZMA8EAgACMAkDBwAgAQ3yBIAwDQYJKoZIhvcNAQEL BQADggEBAB1k+Pqj1xZWsxRp31rEVImF2guQOVdXwmEZQP1q+XK4yvUllwchICKx A25abasDn4vw7g35j/52M54ahaq3yiXQvxVuUwN+sjuDc6yafzPgRCNeW0fhcj7O wYZnIjgR8zkSCWuC0eFWonZ712aNz7nUsJnY50UXMCpbwyXj84zg+jl72DzD3RDf I8Vai/SSFthekbPAbPvSJoKBHYnNopeYEheZiS8AnENglEuPNXdnGfoqxFIJ2lmJ n4nVBXN/JOSQL4WZ68gM+N9N2qaNlzeKu8NG+LWXKoUFQ/iWgiabeSSujj2iFntM EseXKcCA2B2c9uScYQaCO1YanIkTZ3Y= -----END CERTIFICATE-----Generated at Sun Feb 16 20:23:34 2025 by rpki-client