$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E4372CA499E511ECADCC401BC4F9AE02.roa File: E4372CA499E511ECADCC401BC4F9AE02.roa (raw, json) Hash identifier: nEFKaYFIcHzuee0lbXD55Pt49UwLjx5UdPIoRlRLQDU= Subject key identifier: E0:B3:23:46:67:1D:DF:B0:63:F9:9F:96:7F:72:49:BB:EB:71:94:FE Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8C15 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E4372CA499E511ECADCC401BC4F9AE02.roa Signing time: Thu 30 May 2024 16:09:49 +0000 ROA not before: Thu 30 May 2024 16:09:49 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 138287 IP address blocks: 103.182.70.0/23 maxlen: 24 2001:df0:7640::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35861 (0x8c15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: May 30 16:09:49 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a4cd-3ef7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:19:d3:d8:bb:71:ed:40:b5:15:51:5d:96:77: c0:b7:76:2c:c1:45:a1:48:d3:2c:c3:5c:89:57:19: 35:be:c7:9b:a3:74:7f:a2:84:5c:ff:87:5b:1d:b9: ae:bd:81:f4:be:be:d9:4a:12:f0:c0:77:34:bd:7f: 4e:87:af:52:29:02:57:ad:a1:dd:bb:85:c0:e6:b8: 88:ff:24:c7:1e:e6:da:6a:b9:3a:73:6e:f6:94:58: b4:68:96:22:da:79:ca:8c:1e:00:36:de:98:61:67: c1:07:91:db:c3:e8:b5:11:cd:c0:54:d4:ba:4d:42: 1d:6a:32:a5:5e:69:ad:b8:b4:e5:0b:75:6c:97:ce: 1d:59:bd:73:b2:ca:fd:c6:e2:94:fd:2c:26:2f:30: e5:62:78:26:c4:69:e9:eb:26:3b:39:24:1e:79:a7: 13:62:58:88:e4:74:68:97:86:a5:3d:53:79:68:df: ef:9d:f3:93:13:dc:92:b4:14:1a:61:72:a7:fa:fe: c4:8c:e8:ac:77:64:eb:36:ef:eb:e6:01:8a:6d:b2: d2:39:0d:75:96:af:0b:8b:cb:bf:df:0b:69:99:d2: b3:2f:91:b0:28:63:84:98:70:e3:71:9a:0b:68:6d: d5:f5:af:87:e4:0f:ed:b5:f1:4d:66:61:c0:bd:19: 49:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:B3:23:46:67:1D:DF:B0:63:F9:9F:96:7F:72:49:BB:EB:71:94:FE X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E4372CA499E511ECADCC401BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.182.70.0/23 IPv6: 2001:df0:7640::/48 Signature Algorithm: sha256WithRSAEncryption 2d:dd:ae:0a:ae:a9:c5:a2:02:b2:fa:08:9a:f7:c2:df:42:c0: 37:40:1e:1b:bb:48:f6:17:cd:6c:4b:f3:44:34:c9:cb:df:af: b7:51:c7:a9:82:04:70:7c:c2:bd:0b:f6:18:08:46:c7:1d:ca: 48:4c:1f:7a:6d:74:c6:86:dd:64:d8:b9:c4:19:f8:ef:e3:98: 71:6a:cc:38:8a:0b:e3:d6:7f:76:f0:dd:8f:64:df:55:78:b5: 1b:b7:24:40:6a:53:ce:9a:6d:2d:e6:18:21:25:03:a1:63:a6: 93:41:ee:de:f2:92:65:c0:2d:26:1c:ba:c1:55:dd:2c:91:1b: 7e:7b:bc:59:83:5f:06:a6:65:b6:92:f6:e3:1c:ce:93:b5:00: 91:9b:60:0a:47:1c:9b:39:8b:e4:80:71:bd:5f:66:b6:fd:9e: 30:26:ca:f5:4b:41:2e:0e:90:35:27:38:86:0a:23:da:91:ae: 5f:40:0e:ad:3d:b9:f6:b7:2f:b2:18:b0:f9:83:2c:bf:1a:e7: cb:8a:e3:c5:93:79:ff:f8:f2:e3:4b:7e:53:a2:6f:cb:8c:d2: c6:94:0e:1d:a3:ae:7e:91:ba:75:69:89:0b:3b:7d:70:db:06: 36:43:27:6a:c1:98:5c:3e:73:b5:bb:13:6d:dd:86:f2:3d:c8: 3c:67:1d:f6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDAIwVMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MDk0OVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE0Y2QtM2VmNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANkZ09i7ce1AtRVRXZZ3wLd2LMFFoUjTLMNciVcZNb7Hm6N0f6KEXP+HWx25 rr2B9L6+2UoS8MB3NL1/ToevUikCV62h3buFwOa4iP8kxx7m2mq5OnNu9pRYtGiW Itp5yoweADbemGFnwQeR28PotRHNwFTUuk1CHWoypV5prbi05Qt1bJfOHVm9c7LK /cbilP0sJi8w5WJ4JsRp6esmOzkkHnmnE2JYiOR0aJeGpT1TeWjf753zkxPckrQU GmFyp/r+xIzorHdk6zbv6+YBim2y0jkNdZavC4vLv98LaZnSsy+RsChjhJhw43Ga C2ht1fWvh+QP7bXxTWZhwL0ZSZcCAwEAAaOCAqYwggKiMB0GA1UdDgQWBBTgsyNG Zx3fsGP5n5Z/ckm763GU/jAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0U0MzcyQ0E0 OTlFNTExRUNBRENDNDAxQkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQBZ7ZGMA8EAgACMAkDBwAgAQ3wdkAwDQYJKoZIhvcNAQEL BQADggEBAC3drgquqcWiArL6CJr3wt9CwDdAHhu7SPYXzWxL80Q0ycvfr7dRx6mC BHB8wr0L9hgIRscdykhMH3ptdMaG3WTYucQZ+O/jmHFqzDiKC+PWf3bw3Y9k31V4 tRu3JEBqU86abS3mGCElA6FjppNB7t7ykmXALSYcusFV3SyRG357vFmDXwamZbaS 9uMczpO1AJGbYApHHJs5i+SAcb1fZrb9njAmyvVLQS4OkDUnOIYKI9qRrl9ADq09 ufa3L7IYsPmDLL8a58uK48WTef/48uNLflOib8uM0saUDh2jrn6RunVpiQs7fXDb BjZDJ2rBmFw+c7W7E23dhvI9yDxnHfY= -----END CERTIFICATE-----Generated at Sun Feb 16 20:23:02 2025 by rpki-client