$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E3B04D68FA9B11EB9A2DF42FC4F9AE02.roa File: E3B04D68FA9B11EB9A2DF42FC4F9AE02.roa (raw, json) Hash identifier: s6PIWU+x7LUdKlJaW6f28CEK9SuzFp5lFcnuHoA+e8U= Subject key identifier: 9F:1B:E1:F8:E6:71:BA:E7:9D:C0:CA:EA:E4:65:4C:A7:49:73:0A:C8 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 9134 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E3B04D68FA9B11EB9A2DF42FC4F9AE02.roa Signing time: Thu 30 May 2024 16:31:11 +0000 ROA not before: Thu 30 May 2024 16:31:11 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 59189 IP address blocks: 103.203.136.0/24 maxlen: 24 103.203.137.0/24 maxlen: 24 103.203.138.0/24 maxlen: 24 103.203.139.0/24 maxlen: 24 2403:c380::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37172 (0x9134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:31:11 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a9cf-374d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ce:87:06:19:46:7a:0d:35:89:ab:45:31:50: d5:a1:ea:08:9d:9b:33:cd:8c:9a:ca:49:c8:18:8c: f0:76:5a:dc:e8:06:1f:5f:be:24:b5:bf:aa:8c:53: d1:40:ef:81:f6:ea:f7:c3:8f:3a:9c:eb:45:cf:d9: 89:ac:ee:93:f3:ec:69:6e:16:2e:87:51:9c:e9:a0: b5:4f:1f:d8:bf:89:06:e1:1e:30:14:8b:2d:cf:39: 3a:49:83:64:39:86:ef:b0:18:7d:c6:e7:a2:41:c5: e2:49:fb:99:70:b5:13:bf:92:d1:f0:ff:4d:31:8d: 7c:59:a0:1d:48:31:2d:51:35:0d:91:b9:38:78:57: f2:76:cf:a3:ea:0a:56:fd:1a:c0:c6:12:ac:38:29: d4:f6:eb:a0:bd:bd:fd:29:89:6f:77:35:3b:cd:06: 6a:b6:c2:82:48:66:49:48:5d:56:1f:02:cf:9f:7c: 36:2a:f8:52:e9:60:fc:9c:e4:57:4b:03:79:3c:b4: 09:d6:08:86:23:71:ff:7b:6d:98:17:68:ab:62:dd: 31:58:99:9c:69:c0:c4:92:ed:fd:83:e0:80:7a:cd: 82:c3:c0:3f:b6:93:7d:47:3c:10:ca:16:d6:55:7e: 0a:cc:39:77:dc:fc:49:12:0e:1f:2c:c8:f6:46:f3: a9:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:1B:E1:F8:E6:71:BA:E7:9D:C0:CA:EA:E4:65:4C:A7:49:73:0A:C8 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E3B04D68FA9B11EB9A2DF42FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.203.136.0/22 IPv6: 2403:c380::/32 Signature Algorithm: sha256WithRSAEncryption 91:01:1e:65:a0:5a:8d:f4:6e:1f:fd:da:99:99:36:5f:28:64: 30:1b:db:b7:22:95:f0:18:17:23:79:c5:24:3f:c5:d5:0a:b9: ff:66:d1:3c:58:c3:af:4d:4d:1e:ed:89:ed:f0:45:ee:a1:dc: 7c:9e:44:bf:d6:cf:bf:d3:9b:11:0d:d7:dc:1a:ec:cf:cf:ec: 12:fe:d8:d4:e4:46:1d:eb:28:c1:dd:ba:25:d3:35:2a:e0:73: 2b:60:94:e7:d4:3b:54:26:c1:12:ce:07:0e:19:ea:0f:bf:c8: a0:f0:e7:75:f0:24:c1:fd:4a:47:88:a5:13:45:b1:1a:ac:bb: d2:82:bd:f2:21:61:99:4a:ed:dd:18:3c:6a:2a:4c:22:27:15: 63:73:b8:3e:d5:31:0f:6f:3d:81:ac:13:9e:79:fe:12:2f:52: dc:88:48:4d:36:67:2d:de:b6:40:d8:bb:0d:bb:d7:78:cf:a2: be:5d:c2:ab:45:8d:e5:18:8d:9c:cb:0d:6c:cc:6c:fa:88:b3: 6c:48:23:cd:df:74:a8:5d:d7:77:1f:ce:59:23:6e:6d:df:ff: 91:59:ba:d8:0f:07:d3:42:ce:3e:1a:bb:ce:9b:bc:73:13:36: 04:ce:7d:17:9f:41:f8:14:f4:cc:29:bf:39:ab:75:7e:e2:4a: 08:b7:93:b2 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIDAJE0MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MzExMVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE5Y2YtMzc0ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMjOhwYZRnoNNYmrRTFQ1aHqCJ2bM82MmspJyBiM8HZa3OgGH1++JLW/qoxT 0UDvgfbq98OPOpzrRc/Ziazuk/PsaW4WLodRnOmgtU8f2L+JBuEeMBSLLc85OkmD ZDmG77AYfcbnokHF4kn7mXC1E7+S0fD/TTGNfFmgHUgxLVE1DZG5OHhX8nbPo+oK Vv0awMYSrDgp1PbroL29/SmJb3c1O80GarbCgkhmSUhdVh8Cz598Nir4Uulg/Jzk V0sDeTy0CdYIhiNx/3ttmBdoq2LdMViZnGnAxJLt/YPggHrNgsPAP7aTfUc8EMoW 1lV+Csw5d9z8SRIOHyzI9kbzqXECAwEAAaOCAqQwggKgMB0GA1UdDgQWBBSfG+H4 5nG6553AyurkZUynSXMKyDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0UzQjA0RDY4 RkE5QjExRUI5QTJERjQyRkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMC4GCCsGAQUFBwEHAQH/ BB8wHTAMBAIAATAGAwQCZ8uIMA0EAgACMAcDBQAkA8OAMA0GCSqGSIb3DQEBCwUA A4IBAQCRAR5loFqN9G4f/dqZmTZfKGQwG9u3IpXwGBcjecUkP8XVCrn/ZtE8WMOv TU0e7Ynt8EXuodx8nkS/1s+/05sRDdfcGuzPz+wS/tjU5EYd6yjB3bol0zUq4HMr YJTn1DtUJsESzgcOGeoPv8ig8Od18CTB/UpHiKUTRbEarLvSgr3yIWGZSu3dGDxq KkwiJxVjc7g+1TEPbz2BrBOeef4SL1LciEhNNmct3rZA2LsNu9d4z6K+XcKrRY3l GI2cyw1szGz6iLNsSCPN33SoXdd3H85ZI25t3/+RWbrYDwfTQs4+GrvOm7xzEzYE zn0Xn0H4FPTMKb85q3V+4koIt5Oy -----END CERTIFICATE-----Generated at Fri Nov 22 11:17:54 2024 by rpki-client on console-fra.rpki-client.org