$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DD54B77A1F2C11EFB10CBA33C4F9AE02.roa File: DD54B77A1F2C11EFB10CBA33C4F9AE02.roa (raw, json) Hash identifier: Syhi9VnPDgGJF3Mtk2f+s4c1SeNaN2WkFt/FjlKLXDQ= Subject key identifier: F4:C1:71:4A:B7:2D:50:CF:61:54:11:E5:6D:B2:30:CD:15:4A:CD:EB Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 9167 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DD54B77A1F2C11EFB10CBA33C4F9AE02.roa Signing time: Fri 31 May 2024 09:05:03 +0000 ROA not before: Fri 31 May 2024 09:05:03 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 133965 IP address blocks: 103.54.146.0/23 maxlen: 24 2001:df0:ef40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 10:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37223 (0x9167) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 09:05:03 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=665992be-b20e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:02:38:65:4e:57:f3:5b:30:85:55:e2:b7:04: 0e:2e:b4:e1:bb:1a:6a:82:8e:dd:21:13:6e:0f:62: 17:77:35:ed:04:ed:36:24:27:8e:dd:a5:f9:79:dd: 17:53:01:a3:64:56:5b:86:f8:56:16:6a:91:6b:a7: 03:e5:78:25:ae:9b:00:e3:f6:f7:47:c1:fc:9e:55: 20:ac:40:81:4e:01:31:99:b8:cb:de:c9:e2:27:07: 9d:d4:00:a9:7e:fd:3b:6c:92:d2:04:53:8f:ea:44: 8e:b7:fa:75:84:f1:c5:b1:e0:36:75:74:09:10:6d: 2f:39:9d:cb:f3:4a:90:9e:6b:8e:5b:a1:e3:e1:17: ae:50:e7:9b:9c:cb:b8:c8:e2:84:08:6c:c0:8b:79: 92:78:23:d2:33:71:fb:b6:7f:e6:18:d5:f9:29:72: 11:d1:5e:2d:70:52:84:53:24:5f:c7:91:fd:9d:fc: 3b:e3:4e:60:2e:a4:7c:c1:f0:cb:65:5b:a2:7a:d9: ae:b7:04:ce:1b:9d:27:fd:ec:e7:fa:ed:d3:f1:23: a7:1c:fc:d9:33:4d:f4:8c:0a:4a:9b:ac:ee:1e:c2: d5:e6:63:5e:28:cd:01:06:e9:16:3c:29:4c:dc:0d: d0:88:f5:e9:68:3d:18:d8:2d:a2:f0:cc:2b:26:93: 5e:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:C1:71:4A:B7:2D:50:CF:61:54:11:E5:6D:B2:30:CD:15:4A:CD:EB X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DD54B77A1F2C11EFB10CBA33C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.54.146.0/23 IPv6: 2001:df0:ef40::/48 Signature Algorithm: sha256WithRSAEncryption 2a:32:60:a3:6b:7d:9a:52:d9:31:31:48:01:10:dc:a5:a1:fc: 7c:93:d5:f8:70:6d:72:87:d1:10:7f:1f:e3:2b:77:53:5e:ac: c1:72:9f:15:66:e8:51:af:6a:f9:02:15:3b:f9:7d:52:a8:e3: e0:2b:19:e6:35:e8:e3:1a:94:f2:7a:04:e8:50:e7:8f:3e:39: b3:1d:e2:1f:16:2d:c5:ce:92:24:14:76:ee:ac:f3:3e:e9:12: e6:44:06:31:ba:55:37:a7:74:eb:23:d3:12:d1:e7:e4:64:82: ee:51:6d:a8:63:c6:bd:a4:e4:7c:c1:4f:1d:f3:5c:40:1c:4e: dd:51:52:54:9d:16:77:21:a6:b2:38:6b:a0:55:1f:32:ad:8d: 2a:b3:b5:5b:39:5b:af:3b:45:af:60:ce:e0:85:38:8a:ab:17: 21:c2:d0:20:d7:ea:aa:c4:0e:93:43:26:2a:68:aa:2d:1a:e4: a1:d5:ec:db:2f:41:86:97:ba:04:50:f4:a0:03:61:b0:b6:54: 8d:c6:74:40:ab:6a:3d:24:76:2f:4d:c5:64:06:ae:b9:7b:42: f0:72:f2:b0:88:a5:cf:e2:03:3f:02:92:97:54:2c:73:86:24: f6:e4:8a:e2:06:9c:cf:04:ec:56:e2:03:67:59:db:da:f3:72: 6e:ef:a9:22 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDAJFnMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMTA5MDUwM1oXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OTkyYmUtYjIwZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN4COGVOV/NbMIVV4rcEDi604bsaaoKO3SETbg9iF3c17QTtNiQnjt2l+Xnd F1MBo2RWW4b4VhZqkWunA+V4Ja6bAOP290fB/J5VIKxAgU4BMZm4y97J4icHndQA qX79O2yS0gRTj+pEjrf6dYTxxbHgNnV0CRBtLzmdy/NKkJ5rjluh4+EXrlDnm5zL uMjihAhswIt5kngj0jNx+7Z/5hjV+SlyEdFeLXBShFMkX8eR/Z38O+NOYC6kfMHw y2VbonrZrrcEzhudJ/3s5/rt0/Ejpxz82TNN9IwKSpus7h7C1eZjXijNAQbpFjwp TNwN0Ij16Wg9GNgtovDMKyaTXtcCAwEAAaOCAqYwggKiMB0GA1UdDgQWBBT0wXFK ty1Qz2FUEeVtsjDNFUrN6zAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0RENTRCNzdB MUYyQzExRUZCMTBDQkEzM0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQBZzaSMA8EAgACMAkDBwAgAQ3w70AwDQYJKoZIhvcNAQEL BQADggEBACoyYKNrfZpS2TExSAEQ3KWh/HyT1fhwbXKH0RB/H+Mrd1NerMFynxVm 6FGvavkCFTv5fVKo4+ArGeY16OMalPJ6BOhQ548+ObMd4h8WLcXOkiQUdu6s8z7p EuZEBjG6VTendOsj0xLR5+Rkgu5Rbahjxr2k5HzBTx3zXEAcTt1RUlSdFnchprI4 a6BVHzKtjSqztVs5W687Ra9gzuCFOIqrFyHC0CDX6qrEDpNDJipoqi0a5KHV7Nsv QYaXugRQ9KADYbC2VI3GdECraj0kdi9NxWQGrrl7QvBy8rCIpc/iAz8CkpdULHOG JPbkiuIGnM8E7FbiA2dZ29rzcm7vqSI= -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:10 2024 by rpki-client on console-fra.rpki-client.org