$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EB4B9B488D1B11EFA692C81DC4F9AE02.roa File: EB4B9B488D1B11EFA692C81DC4F9AE02.roa (raw, json) Hash identifier: BfhRF+Rf/+wdX1iVJDVBYU1DI5kQ4R2haGrnNfdswHs= Subject key identifier: 2A:73:8F:7B:DF:4E:CD:AF:26:24:ED:A3:5E:72:B6:A8:C1:9C:04:D5 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 9C74 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EB4B9B488D1B11EFA692C81DC4F9AE02.roa Signing time: Tue 05 Nov 2024 07:29:41 +0000 ROA not before: Tue 05 Nov 2024 07:29:41 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 134922 IP address blocks: 103.116.136.0/23 maxlen: 24 103.121.204.0/23 maxlen: 24 103.160.72.0/23 maxlen: 24 103.171.168.0/23 maxlen: 24 103.180.42.0/23 maxlen: 24 103.210.28.0/22 maxlen: 24 103.224.48.0/24 maxlen: 24 103.224.54.0/24 maxlen: 24 2401:fbc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 10:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40052 (0x9c74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Nov 5 07:29:41 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6729c965-89c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a7:80:1b:d4:d8:c8:b3:a4:bb:90:d6:cd:13: 68:b7:b2:d0:ed:44:4d:57:a2:17:c4:3c:d4:ba:34: ac:e6:3a:7c:f6:7d:a7:dd:ba:f1:1c:09:f3:6a:f6: 87:02:b8:ff:8e:16:dc:72:96:7e:e3:8b:f1:ac:f5: 8a:1e:07:55:63:26:78:ae:1d:e2:01:8c:fb:5c:de: c2:71:c7:f2:03:d2:40:a0:93:26:6e:4b:c0:d5:f2: 69:93:fc:b5:2a:bc:4e:c6:6d:31:92:8a:ca:2c:3a: ce:67:43:ca:f5:df:f0:59:75:1f:1e:ba:fb:7a:a3: 03:fc:f7:d2:d7:e6:6e:95:de:60:2b:d0:68:9b:c9: ad:b5:b3:9d:99:3c:d6:79:07:ea:bf:f4:31:1a:77: b7:d8:7f:d3:b5:fa:20:a9:ab:50:de:60:27:06:72: be:7e:8f:f0:f0:76:c0:47:cc:33:09:c7:70:2b:02: 42:cb:5c:51:fb:f3:bf:7e:ef:77:8e:5e:e0:56:58: 92:27:ed:1d:d5:06:3f:00:9d:a4:6c:9f:89:f1:c9: 5b:7b:c3:f4:4e:d2:07:ae:60:72:1d:91:ed:75:95: 81:82:ef:ba:2b:55:5e:01:46:98:73:20:0c:0d:48: df:1f:4c:3b:63:73:07:7e:8e:1c:33:9a:95:ac:b3: 39:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:73:8F:7B:DF:4E:CD:AF:26:24:ED:A3:5E:72:B6:A8:C1:9C:04:D5 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EB4B9B488D1B11EFA692C81DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.136.0/23 103.121.204.0/23 103.160.72.0/23 103.171.168.0/23 103.180.42.0/23 103.210.28.0/22 103.224.48.0/24 103.224.54.0/24 IPv6: 2401:fbc0::/32 Signature Algorithm: sha256WithRSAEncryption 33:45:f1:e4:92:a0:bb:7c:49:fc:54:a4:a5:c2:39:25:35:ed: b5:11:fe:bb:27:df:49:23:bb:96:4f:6a:c1:5e:bc:df:78:e7: c2:93:a8:60:e4:86:41:5f:66:2e:b9:42:81:0d:6d:1b:92:a0: 90:81:7f:47:68:b7:2c:5d:87:cd:88:59:f9:e1:de:a6:b6:3c: 64:de:4b:88:ef:5d:8e:3d:3f:49:23:bf:99:a0:93:f6:5d:7a: d2:ad:30:18:74:f2:41:0d:a7:9c:5a:52:b1:94:be:02:35:67: 59:be:58:58:cd:fe:59:6f:43:ae:90:af:ae:a1:f2:ce:a0:f9: 81:d0:2e:56:7d:77:c4:d9:d3:bd:a6:c5:38:99:2d:36:82:81: b9:57:5b:33:f0:49:e3:ff:73:8f:4d:c6:99:27:c1:da:69:6b: 63:86:14:d0:fd:b3:d3:b0:53:ed:7a:fe:51:4d:90:88:b6:e4: 70:e0:aa:33:b5:9d:c7:7b:cb:86:9c:7e:e6:cd:e6:50:8c:bb: b1:ea:d1:42:8b:c5:87:c8:f6:23:28:ac:c8:0c:34:d2:0e:5f: 4e:9e:c5:06:0a:69:67:d5:d1:38:f6:74:9d:95:d5:5a:56:88: 85:24:e9:09:f2:71:48:65:2d:91:83:17:af:a5:8b:ba:02:df: 6c:62:7a:fa -----BEGIN CERTIFICATE----- MIIFqzCCBJOgAwIBAgIDAJx0MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MTEwNTA3Mjk0MVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjcyOWM5NjUtODljNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKOngBvU2MizpLuQ1s0TaLey0O1ETVeiF8Q81Lo0rOY6fPZ9p9268RwJ82r2 hwK4/44W3HKWfuOL8az1ih4HVWMmeK4d4gGM+1zewnHH8gPSQKCTJm5LwNXyaZP8 tSq8TsZtMZKKyiw6zmdDyvXf8Fl1Hx66+3qjA/z30tfmbpXeYCvQaJvJrbWznZk8 1nkH6r/0MRp3t9h/07X6IKmrUN5gJwZyvn6P8PB2wEfMMwnHcCsCQstcUfvzv37v d45e4FZYkiftHdUGPwCdpGyfifHJW3vD9E7SB65gch2R7XWVgYLvuitVXgFGmHMg DA1I3x9MO2NzB36OHDOalayzOc8CAwEAAaOCAs4wggLKMB0GA1UdDgQWBBQqc497 307NryYk7aNecraowZwE1TAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0VCNEI5QjQ4 OEQxQjExRUZBNjkyQzgxREM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMFgGCCsGAQUFBwEHAQH/ BEkwRzA2BAIAATAwAwQBZ3SIAwQBZ3nMAwQBZ6BIAwQBZ6uoAwQBZ7QqAwQCZ9Ic AwQAZ+AwAwQAZ+A2MA0EAgACMAcDBQAkAfvAMA0GCSqGSIb3DQEBCwUAA4IBAQAz RfHkkqC7fEn8VKSlwjklNe21Ef67J99JI7uWT2rBXrzfeOfCk6hg5IZBX2YuuUKB DW0bkqCQgX9HaLcsXYfNiFn54d6mtjxk3kuI712OPT9JI7+ZoJP2XXrSrTAYdPJB DaecWlKxlL4CNWdZvlhYzf5Zb0OukK+uofLOoPmB0C5WfXfE2dO9psU4mS02goG5 V1sz8Enj/3OPTcaZJ8HaaWtjhhTQ/bPTsFPtev5RTZCItuRw4KoztZ3He8uGnH7m zeZQjLux6tFCi8WHyPYjKKzIDDTSDl9OnsUGCmln1dE49nSdldVaVoiFJOkJ8nFI ZS2RgxevpYu6At9sYnr6 -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:12 2024 by rpki-client on console-fra.rpki-client.org