$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F8A63EF0CF8C11ECBC56CF13C4F9AE02.roa File: F8A63EF0CF8C11ECBC56CF13C4F9AE02.roa (raw, json) Hash identifier: yrhOcPZN73G9TzM3Zu3CHvEXjPMU8yWbSlTAUc9f8H0= Subject key identifier: F4:D2:0F:99:24:2A:6A:12:77:6C:2F:55:1E:49:73:C0:18:E7:69:BF Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8D1B Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F8A63EF0CF8C11ECBC56CF13C4F9AE02.roa Signing time: Thu 30 May 2024 16:14:15 +0000 ROA not before: Thu 30 May 2024 16:14:15 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 141282 IP address blocks: 103.158.174.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36123 (0x8d1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: May 30 16:14:15 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a5d7-cec7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:67:94:e1:c9:d2:36:92:1c:25:29:cd:44:b3: 63:a2:9e:c4:2f:f3:b9:47:89:e6:68:7a:a1:e9:1e: 25:05:e1:cb:72:eb:73:74:4c:29:3e:d1:ad:c9:c7: 38:df:96:bf:a9:82:ba:55:eb:ad:27:82:be:41:7d: 80:3a:57:65:6a:07:ee:51:bf:f7:ed:30:84:dd:a3: d2:aa:ca:a8:47:98:c0:04:26:80:e5:7c:87:db:d6: d9:88:fd:45:ba:92:45:85:ba:9a:63:d2:4a:4f:04: 9f:5e:58:d4:1a:45:fe:ef:5e:8b:12:54:e0:aa:f4: 46:7e:0f:1d:20:de:0d:9b:27:1b:dd:c2:42:59:bb: 7f:68:37:c8:47:2e:74:23:d4:6e:5f:91:1b:be:48: 28:83:71:27:13:c9:81:72:c1:f0:f1:d3:85:43:fc: bb:b7:21:bf:3d:f5:a6:d3:eb:f3:5e:c0:5b:38:ce: 49:46:7f:72:b3:0d:a1:7b:6f:4c:d8:05:a8:5d:8b: 1d:b4:e1:cb:98:31:02:21:18:4f:21:70:e5:eb:18: 58:15:59:62:36:3c:4e:0f:ac:f3:7c:9f:8a:a2:5b: 62:ca:08:ea:57:d6:f6:c2:bb:5f:50:1e:aa:b6:e5: 14:8b:39:ec:34:45:d7:50:2e:dc:66:d5:6f:1a:1e: 6b:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:D2:0F:99:24:2A:6A:12:77:6C:2F:55:1E:49:73:C0:18:E7:69:BF X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F8A63EF0CF8C11ECBC56CF13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.174.0/23 Signature Algorithm: sha256WithRSAEncryption 70:8b:e3:45:8e:0e:7b:79:60:ac:ba:7b:3b:4e:ac:c6:5a:d7: 9c:e1:cc:11:dc:d9:e7:3b:af:22:39:bc:f3:2d:da:06:7c:5e: 39:01:65:b7:05:77:a0:2b:fb:d7:a7:8f:f2:64:60:ef:60:2f: 57:b8:37:ca:ea:60:59:e2:4d:7d:22:0a:75:11:b7:dd:54:f7: 70:be:46:48:48:d8:e7:74:a6:d4:ac:ed:1a:8d:e1:08:a5:0b: 73:11:5c:70:bd:db:83:63:a9:9a:a0:e5:a1:17:43:8d:67:83: 5e:f1:6f:93:97:cd:cd:7a:5a:c5:7b:57:4e:a2:43:22:8a:f4: 46:bd:16:e5:6d:b9:07:b9:93:98:3d:63:45:1f:6e:30:41:27: 37:1f:8e:f4:7a:92:aa:b1:29:f7:14:f6:73:b8:2f:4f:55:8c: 01:a1:e1:a9:66:0d:36:bd:9d:63:05:24:f3:79:e2:86:3b:8f: dd:c0:ed:dc:d7:8c:93:67:54:11:19:69:e5:57:d9:f7:b6:22: 15:20:81:9a:0e:cd:31:26:1a:f6:d3:c0:c9:0c:1a:c1:a7:86: d0:5f:b7:3d:2d:07:81:99:b5:3a:f5:9a:7f:39:f2:7d:30:c9: ce:ae:33:b3:b1:c6:9d:da:15:e6:bd:2d:52:8e:eb:24:fb:b6: c3:1f:ee:f2 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAI0bMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MTQxNVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE1ZDctY2VjNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOlnlOHJ0jaSHCUpzUSzY6KexC/zuUeJ5mh6oekeJQXhy3Lrc3RMKT7RrcnH ON+Wv6mCulXrrSeCvkF9gDpXZWoH7lG/9+0whN2j0qrKqEeYwAQmgOV8h9vW2Yj9 RbqSRYW6mmPSSk8En15Y1BpF/u9eixJU4Kr0Rn4PHSDeDZsnG93CQlm7f2g3yEcu dCPUbl+RG75IKINxJxPJgXLB8PHThUP8u7chvz31ptPr817AWzjOSUZ/crMNoXtv TNgFqF2LHbThy5gxAiEYTyFw5esYWBVZYjY8Tg+s83yfiqJbYsoI6lfW9sK7X1Ae qrblFIs57DRF11Au3GbVbxoea6MCAwEAAaOCApUwggKRMB0GA1UdDgQWBBT00g+Z JCpqEndsL1UeSXPAGOdpvzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0Y4QTYzRUYw Q0Y4QzExRUNCQzU2Q0YxM0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ56uMA0GCSqGSIb3DQEBCwUAA4IBAQBwi+NFjg57eWCs uns7TqzGWtec4cwR3NnnO68iObzzLdoGfF45AWW3BXegK/vXp4/yZGDvYC9XuDfK 6mBZ4k19Igp1EbfdVPdwvkZISNjndKbUrO0ajeEIpQtzEVxwvduDY6maoOWhF0ON Z4Ne8W+Tl83NelrFe1dOokMiivRGvRblbbkHuZOYPWNFH24wQSc3H470epKqsSn3 FPZzuC9PVYwBoeGpZg02vZ1jBSTzeeKGO4/dwO3c14yTZ1QRGWnlV9n3tiIVIIGa Ds0xJhr208DJDBrBp4bQX7c9LQeBmbU69Zp/OfJ9MMnOrjOzscad2hXmvS1Sjusk +7bDH+7y -----END CERTIFICATE-----Generated at Sun Feb 16 20:18:43 2025 by rpki-client