$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F341CE2A430E11ED8A923F1CC4F9AE02.roa File: F341CE2A430E11ED8A923F1CC4F9AE02.roa (raw, json) Hash identifier: M2ryVUwKKTiWZZNgzyWyWt9yRqJ33x2m6l0KBnWLJik= Subject key identifier: 77:95:AF:93:B7:7B:49:04:D3:1D:BF:97:CF:53:6C:8B:8D:F5:A0:B6 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8BDA Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F341CE2A430E11ED8A923F1CC4F9AE02.roa Signing time: Thu 30 May 2024 16:08:54 +0000 ROA not before: Thu 30 May 2024 16:08:54 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 137665 IP address blocks: 103.117.176.0/24 maxlen: 24 103.117.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35802 (0x8bda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:08:54 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a496-4522 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8a:fc:c9:c6:1c:c7:2c:ae:95:6c:b0:6f:a7: 2f:63:66:86:88:f1:db:32:c7:1c:8b:2e:c1:41:3f: 93:2d:c9:80:45:a4:c1:05:e2:1a:62:70:15:01:61: 60:46:65:dd:6e:3b:eb:bc:40:ac:c8:3f:16:16:32: dc:f1:17:4d:30:f4:3c:a0:2d:e2:2d:16:c3:8f:e1: 12:2f:42:3b:af:93:fa:95:55:3c:fe:2f:49:83:9f: c1:e6:a0:ba:b3:04:8d:3b:4b:a5:ef:df:c3:84:4b: f2:f0:51:1c:fc:50:e2:ca:af:78:be:ea:9b:45:f9: 79:b0:8d:2d:2b:12:cf:3a:40:76:53:ee:d0:8a:c5: 86:3d:80:f6:d3:d5:2a:46:3b:99:92:c3:51:a3:6c: 52:d4:e5:31:70:ac:10:65:98:3e:e3:68:4b:16:cc: 11:ca:c0:32:23:90:03:da:e1:a0:1f:fb:4c:31:fb: 80:72:35:3c:a4:a8:2c:89:41:4a:b2:76:34:d1:63: ef:94:5d:24:92:da:c6:cf:8b:d9:fd:2c:9f:d2:0a: 1c:b6:7c:08:09:57:73:ec:96:a4:a0:cb:11:2d:95: 25:4b:6f:b1:1e:ac:5d:a7:17:c6:e6:4c:1e:1f:86: b6:e6:70:8e:4d:f6:7f:24:79:08:99:c0:88:f7:8a: 28:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:95:AF:93:B7:7B:49:04:D3:1D:BF:97:CF:53:6C:8B:8D:F5:A0:B6 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F341CE2A430E11ED8A923F1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.176.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:94:cf:79:94:fa:89:85:17:ea:ae:7c:3d:50:8b:95:58:29: 92:08:4b:cd:2c:2b:55:5d:be:b3:c2:82:45:b7:0d:de:2a:c7: 34:89:66:cf:28:86:c5:d9:a9:4f:87:95:8b:70:ba:fe:b6:1e: aa:71:87:ec:c2:aa:54:af:e9:6a:85:31:7b:80:63:43:b8:43: ba:80:77:26:5d:dd:05:70:9c:4b:01:92:90:4d:eb:19:45:df: 16:a4:e2:f4:4f:c7:c9:f4:d4:09:53:fd:46:de:59:31:48:16: 24:ee:ea:85:0f:62:0f:7d:86:29:fc:a4:b3:64:bf:1e:df:73: c6:08:82:97:79:d0:33:67:bd:0c:2c:cc:71:fa:6d:00:a2:03: 76:47:67:7f:75:02:23:a0:cf:55:bb:2d:df:fb:41:5d:01:03: 68:fc:c1:ca:dd:2c:7d:6f:a3:b7:7e:bf:78:c7:2c:3d:12:9c: 0c:20:20:69:76:fc:bd:04:45:3e:82:26:8b:c4:31:eb:1e:cc: 55:c7:d9:54:a0:11:80:16:22:7f:5e:5c:d4:ee:ef:21:f2:8f: 6f:ce:48:12:0f:11:3d:d8:a1:ce:90:3e:cf:1d:73:9b:5f:40: 3a:ca:0b:8d:cc:af:32:e3:49:f9:09:0c:c9:d1:5c:9e:cf:01: 29:f3:39:96 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAIvaMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MDg1NFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE0OTYtNDUyMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALyK/MnGHMcsrpVssG+nL2Nmhojx2zLHHIsuwUE/ky3JgEWkwQXiGmJwFQFh YEZl3W4767xArMg/FhYy3PEXTTD0PKAt4i0Ww4/hEi9CO6+T+pVVPP4vSYOfweag urMEjTtLpe/fw4RL8vBRHPxQ4sqveL7qm0X5ebCNLSsSzzpAdlPu0IrFhj2A9tPV KkY7mZLDUaNsUtTlMXCsEGWYPuNoSxbMEcrAMiOQA9rhoB/7TDH7gHI1PKSoLIlB SrJ2NNFj75RdJJLaxs+L2f0sn9IKHLZ8CAlXc+yWpKDLES2VJUtvsR6sXacXxuZM Hh+GtuZwjk32fyR5CJnAiPeKKE0CAwEAAaOCApUwggKRMB0GA1UdDgQWBBR3la+T t3tJBNMdv5fPU2yLjfWgtjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0YzNDFDRTJB NDMwRTExRUQ4QTkyM0YxQ0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ3WwMA0GCSqGSIb3DQEBCwUAA4IBAQALlM95lPqJhRfq rnw9UIuVWCmSCEvNLCtVXb6zwoJFtw3eKsc0iWbPKIbF2alPh5WLcLr+th6qcYfs wqpUr+lqhTF7gGNDuEO6gHcmXd0FcJxLAZKQTesZRd8WpOL0T8fJ9NQJU/1G3lkx SBYk7uqFD2IPfYYp/KSzZL8e33PGCIKXedAzZ70MLMxx+m0AogN2R2d/dQIjoM9V uy3f+0FdAQNo/MHK3Sx9b6O3fr94xyw9EpwMICBpdvy9BEU+giaLxDHrHsxVx9lU oBGAFiJ/XlzU7u8h8o9vzkgSDxE92KHOkD7PHXObX0A6yguNzK8y40n5CQzJ0Vye zwEp8zmW -----END CERTIFICATE-----Generated at Fri Nov 22 11:48:06 2024 by rpki-client on console-ams.rpki-client.org