$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FAFA3BBC50DD11ECAF915233C4F9AE02.roa File: FAFA3BBC50DD11ECAF915233C4F9AE02.roa (raw, json) Hash identifier: OGZr9qHygjoBTX3dUpWV2bRfzjXcsFDUFd301W+mLXI= Subject key identifier: 02:58:DF:A7:E2:02:47:A2:54:64:41:0F:1B:0A:53:89:F3:CD:D0:BE Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8E8F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FAFA3BBC50DD11ECAF915233C4F9AE02.roa Signing time: Thu 30 May 2024 16:20:11 +0000 ROA not before: Thu 30 May 2024 16:20:11 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 147222 IP address blocks: 103.176.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 10:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36495 (0x8e8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:20:11 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a73b-0c5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b3:c8:20:47:3f:95:3f:bf:65:d5:11:59:7a: 13:e1:2f:7c:0a:44:77:d4:3b:ca:0f:70:56:5e:bc: 4d:d6:99:47:28:66:81:c6:b5:9d:46:e9:0b:85:1d: 56:54:38:af:c6:55:27:30:65:6b:9c:93:37:57:5b: 3e:57:4d:aa:5f:b8:6a:c3:27:ec:a1:74:bf:16:e7: 25:32:a6:74:78:0a:9e:93:06:a0:a5:bb:42:1a:5c: a7:f9:bb:71:34:0b:01:64:47:ab:bc:91:b8:cc:a7: 2c:95:6b:9f:5b:8d:ea:30:b4:21:26:dd:d0:fd:11: 59:6a:3a:55:99:ef:69:32:19:76:05:bc:0f:9f:77: 7d:6b:d5:08:5e:e3:4f:29:28:17:d6:16:a3:61:fb: 3c:6b:0e:ec:26:2d:04:77:f1:e8:1c:67:a3:a8:4d: 37:98:dd:a7:13:3f:4b:67:f5:ba:bd:ad:2e:8c:76: 20:cd:57:fb:bd:ef:9e:fa:aa:c8:46:21:1f:2c:35: 40:9d:26:7b:40:31:ed:0a:94:1d:1b:8e:ea:b2:d2: 0f:a6:aa:53:89:9e:be:38:79:50:2e:ea:1f:2a:be: b0:51:7b:3e:2a:04:7a:20:69:fa:b3:61:84:0e:d5: 05:b7:77:fc:8c:9d:ce:d8:9e:6e:b4:42:42:3c:67: 0c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:58:DF:A7:E2:02:47:A2:54:64:41:0F:1B:0A:53:89:F3:CD:D0:BE X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FAFA3BBC50DD11ECAF915233C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.176.232.0/23 Signature Algorithm: sha256WithRSAEncryption a3:2d:f4:0e:c5:c6:92:6b:10:2f:a2:51:34:f3:e9:18:99:a8: 32:e0:98:f7:7b:51:ce:b7:50:e5:8b:09:1f:20:d0:35:23:12: 72:96:6a:54:b9:eb:4f:dc:9f:d8:95:76:41:c4:fb:70:c0:c6: 76:82:7f:01:17:f0:10:28:89:cd:17:91:4d:21:3d:eb:20:4d: 57:62:53:5a:0b:68:c4:06:3a:19:5c:97:27:64:97:b6:c6:03: 67:c8:f6:a3:48:63:bc:8a:17:ac:73:fc:2a:40:ed:0e:6d:fc: f8:f5:83:80:c4:b1:d2:1e:c3:a1:b6:61:9a:86:58:8b:d1:4c: ae:b6:fd:4a:d8:db:f5:2f:38:d8:c7:1f:f9:72:58:49:7e:b4: 44:50:c6:1e:b4:5e:22:35:0c:de:c3:0e:26:6f:fc:98:e5:8c: 9c:2f:a9:ff:fd:97:3d:06:4f:f1:ae:c6:a9:30:b0:dc:2f:84: 89:d6:a9:32:89:a7:01:67:ab:ba:77:eb:93:ef:cd:be:d3:fe: 27:6a:bb:b0:c3:d2:75:ca:11:5e:92:15:e1:e8:06:c0:e2:73: 5f:eb:f1:8a:09:2c:60:b1:7c:53:7d:75:49:93:aa:49:8d:f2: 72:78:86:ed:aa:62:23:df:26:fd:5d:1d:cd:08:7a:0d:b4:6b: 9b:26:a2:2d -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAI6PMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MjAxMVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE3M2ItMGM1ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKezyCBHP5U/v2XVEVl6E+EvfApEd9Q7yg9wVl68TdaZRyhmgca1nUbpC4Ud VlQ4r8ZVJzBla5yTN1dbPldNql+4asMn7KF0vxbnJTKmdHgKnpMGoKW7Qhpcp/m7 cTQLAWRHq7yRuMynLJVrn1uN6jC0ISbd0P0RWWo6VZnvaTIZdgW8D593fWvVCF7j TykoF9YWo2H7PGsO7CYtBHfx6Bxno6hNN5jdpxM/S2f1ur2tLox2IM1X+73vnvqq yEYhHyw1QJ0me0Ax7QqUHRuO6rLSD6aqU4mevjh5UC7qHyq+sFF7PioEeiBp+rNh hA7VBbd3/IydztiebrRCQjxnDJ8CAwEAAaOCApUwggKRMB0GA1UdDgQWBBQCWN+n 4gJHolRkQQ8bClOJ883QvjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0ZBRkEzQkJD NTBERDExRUNBRjkxNTIzM0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ7DoMA0GCSqGSIb3DQEBCwUAA4IBAQCjLfQOxcaSaxAv olE08+kYmagy4Jj3e1HOt1DliwkfINA1IxJylmpUuetP3J/YlXZBxPtwwMZ2gn8B F/AQKInNF5FNIT3rIE1XYlNaC2jEBjoZXJcnZJe2xgNnyPajSGO8ihesc/wqQO0O bfz49YOAxLHSHsOhtmGahliL0Uyutv1K2Nv1LzjYxx/5clhJfrREUMYetF4iNQze ww4mb/yY5YycL6n//Zc9Bk/xrsapMLDcL4SJ1qkyiacBZ6u6d+uT782+0/4naruw w9J1yhFekhXh6AbA4nNf6/GKCSxgsXxTfXVJk6pJjfJyeIbtqmIj3yb9XR3NCHoN tGubJqIt -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:13 2024 by rpki-client on console-fra.rpki-client.org