$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EF8ED86ACBD611EA85A5A24AC4F9AE02.roa File: EF8ED86ACBD611EA85A5A24AC4F9AE02.roa (raw, json) Hash identifier: 86ono/HrVIRzEj23RHhE23Oywg+arXy8Ggyl+6sVmy8= Subject key identifier: CA:5E:8E:35:EF:31:B3:8E:9F:23:AA:C3:C4:02:5D:53:A4:77:3A:28 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8C5F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EF8ED86ACBD611EA85A5A24AC4F9AE02.roa Signing time: Thu 30 May 2024 16:11:02 +0000 ROA not before: Thu 30 May 2024 16:11:02 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 138792 IP address blocks: 103.141.87.0/24 maxlen: 24 103.153.142.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35935 (0x8c5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: May 30 16:11:02 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a516-9299 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d5:42:a7:78:e7:af:14:f7:e8:29:f8:ac:ef: 88:67:8c:79:bd:eb:44:0b:2e:a8:04:fe:2f:72:6e: 58:08:62:c0:0a:4e:e0:36:07:7e:0b:a4:da:3a:66: 53:ea:e2:d6:bc:5f:a2:0d:08:55:3a:7b:16:20:cc: ac:6d:f3:b1:3d:67:f6:07:6e:7b:50:07:2f:bc:b1: de:33:12:41:bb:4a:8f:9e:e3:ab:2a:ac:e3:8f:3b: 97:3f:75:5d:35:dd:f9:9e:67:96:8c:60:7e:04:93: 10:d2:73:9e:e1:89:a9:7d:b7:ea:0b:b0:5f:13:f4: 60:e0:c6:c9:e2:03:0c:cf:72:24:04:67:7a:30:fa: 14:e9:0a:d5:a2:ed:6b:72:0b:fa:cd:88:a5:4c:df: 02:ae:f0:d4:fd:4c:2e:b3:7d:bc:11:f7:32:63:c8: cd:3e:90:80:8f:04:5c:e3:03:02:5b:d9:e1:90:24: 55:b5:45:24:fd:c2:a8:4b:77:b9:88:6f:93:cf:71: c5:0b:13:af:03:76:3f:0a:4e:dd:6a:2c:63:44:9c: af:82:38:c1:0f:57:be:d0:8c:d9:70:63:4c:09:be: c9:67:c3:6d:c5:50:69:69:7e:ff:57:96:6b:da:9c: 0a:4f:dc:9c:f8:ba:41:f6:79:5c:30:38:bb:44:61: 2e:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:5E:8E:35:EF:31:B3:8E:9F:23:AA:C3:C4:02:5D:53:A4:77:3A:28 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EF8ED86ACBD611EA85A5A24AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.87.0/24 103.153.142.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:93:a0:4a:e1:cf:9d:a6:86:a4:42:8c:0e:94:0d:bc:fe:fe: 6d:29:b6:eb:32:f9:4d:2a:9d:75:87:40:ef:41:b8:05:ad:d6: da:a2:0a:b9:db:fa:d4:68:f3:8c:ec:cc:fe:96:4a:62:b9:e7: b9:ff:85:b6:af:93:e6:30:6d:2b:d0:9e:ae:c1:17:a5:34:d8: dc:52:fb:93:2a:39:18:3f:9d:cb:3d:1b:91:93:bc:a5:d6:1a: b8:b0:12:6c:07:ee:ac:99:55:7e:dc:b3:97:71:91:0a:03:e4: f4:9d:f1:c0:92:c3:37:e4:2d:85:3d:51:fe:44:2c:01:7c:99: 28:70:3c:0e:e2:d1:73:39:a7:8f:44:58:33:a9:b6:3a:86:30: 7d:17:e1:0f:19:44:9d:9d:0c:92:36:dc:ed:ee:32:6b:9e:de: 19:9b:5e:d6:a5:4c:53:ce:e9:71:21:ce:e8:10:c6:dc:4b:3c: 42:0a:d5:1c:8e:37:cc:4c:79:37:97:76:03:11:95:ca:5a:07: fd:02:40:d3:2b:7b:43:9a:ba:9a:64:74:ca:f1:90:a8:42:07: ef:50:4b:a2:9e:30:ca:79:c9:b8:af:0f:71:96:c8:d8:f5:35: b9:07:a4:cf:60:7b:1d:dc:9f:fc:c9:0a:e4:f7:9a:b7:55:46: b2:e6:ed:b6 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIDAIxfMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MTEwMloXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE1MTYtOTI5OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALbVQqd4568U9+gp+KzviGeMeb3rRAsuqAT+L3JuWAhiwApO4DYHfguk2jpm U+ri1rxfog0IVTp7FiDMrG3zsT1n9gdue1AHL7yx3jMSQbtKj57jqyqs4487lz91 XTXd+Z5nloxgfgSTENJznuGJqX236guwXxP0YODGyeIDDM9yJARnejD6FOkK1aLt a3IL+s2IpUzfAq7w1P1MLrN9vBH3MmPIzT6QgI8EXOMDAlvZ4ZAkVbVFJP3CqEt3 uYhvk89xxQsTrwN2PwpO3WosY0Scr4I4wQ9XvtCM2XBjTAm+yWfDbcVQaWl+/1eW a9qcCk/cnPi6QfZ5XDA4u0RhLssCAwEAAaOCApswggKXMB0GA1UdDgQWBBTKXo41 7zGzjp8jqsPEAl1TpHc6KDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0VGOEVEODZB Q0JENjExRUE4NUE1QTI0QUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCUGCCsGAQUFBwEHAQH/ BBYwFDASBAIAATAMAwQAZ41XAwQBZ5mOMA0GCSqGSIb3DQEBCwUAA4IBAQCLk6BK 4c+dpoakQowOlA28/v5tKbbrMvlNKp11h0DvQbgFrdbaogq52/rUaPOM7Mz+lkpi uee5/4W2r5PmMG0r0J6uwRelNNjcUvuTKjkYP53LPRuRk7yl1hq4sBJsB+6smVV+ 3LOXcZEKA+T0nfHAksM35C2FPVH+RCwBfJkocDwO4tFzOaePRFgzqbY6hjB9F+EP GUSdnQySNtzt7jJrnt4Zm17WpUxTzulxIc7oEMbcSzxCCtUcjjfMTHk3l3YDEZXK Wgf9AkDTK3tDmrqaZHTK8ZCoQgfvUEuinjDKecm4rw9xlsjY9TW5B6TPYHsd3J/8 yQrk95q3VUay5u22 -----END CERTIFICATE-----Generated at Sun Feb 16 20:28:54 2025 by rpki-client