$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FB1CEEA4511E11EDB9A4DC87C4F9AE02.roa File: FB1CEEA4511E11EDB9A4DC87C4F9AE02.roa (raw, json) Hash identifier: OC/MR1oAl8SZ56L/VlOnWbqiEvaABlUhlc1Yz4Tn3Ps= Subject key identifier: 9F:0E:10:D3:A6:B1:B7:08:2E:F5:0A:05:D2:F1:8C:B3:02:33:67:A5 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8DA4 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FB1CEEA4511E11EDB9A4DC87C4F9AE02.roa Signing time: Thu 30 May 2024 16:16:26 +0000 ROA not before: Thu 30 May 2024 16:16:26 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 141793 IP address blocks: 103.164.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36260 (0x8da4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: May 30 16:16:26 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a659-71f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:59:a6:6b:80:80:04:01:bb:c3:96:75:09:27: 21:5c:d7:b3:3a:20:ce:63:f7:61:82:25:41:04:7a: ad:08:52:82:4e:05:50:9a:98:15:f1:ef:65:15:db: 22:0c:5d:59:df:8a:ee:6f:b5:f2:4e:d7:cc:d5:2d: 0a:b1:23:1e:2d:52:b7:fe:5a:c7:b2:a5:18:1f:86: e5:fd:4c:3d:3a:79:bf:1f:76:17:d8:e8:96:9e:de: 96:02:51:1d:28:23:89:33:b1:11:20:a4:48:d2:0c: d5:4e:08:6b:a9:53:b9:eb:65:53:d9:c6:ed:06:d6: c1:0d:85:b5:d7:59:b9:7e:e1:f4:aa:6d:9d:43:6d: 12:e5:b6:b1:58:39:57:fc:89:35:eb:24:c1:76:70: 18:d7:e9:49:89:1d:da:b5:80:15:89:c9:be:23:30: 77:c3:bb:58:0b:fb:fe:52:f3:f4:a8:de:d5:50:4d: 31:17:38:b2:36:18:4b:6d:85:1d:0a:74:b9:c5:e8: 6a:55:bf:a7:df:0e:16:fd:a9:ec:c2:90:54:a5:ad: d8:0d:8f:3a:87:44:fa:87:57:15:a9:0f:89:1a:c5: 62:05:bd:ae:2e:92:b5:13:77:91:6e:60:80:a1:50: 91:e0:2c:41:5a:1e:23:2d:6c:5f:34:55:89:37:8c: 30:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:0E:10:D3:A6:B1:B7:08:2E:F5:0A:05:D2:F1:8C:B3:02:33:67:A5 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FB1CEEA4511E11EDB9A4DC87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.164.202.0/24 Signature Algorithm: sha256WithRSAEncryption bb:4b:d4:12:98:a6:8b:4f:79:a4:72:76:2e:e0:0c:d3:f2:b1: b4:d9:1a:79:be:a5:e9:85:8d:f4:88:70:80:cf:84:c4:4d:d2: ac:32:24:f3:80:5a:69:44:f1:d9:c2:5e:13:04:22:5f:c9:77: 5b:bc:d9:4b:42:ea:82:c2:e7:69:89:d2:0e:21:68:77:9b:22: 22:0b:5d:77:ee:b0:26:7c:d0:71:8d:ae:db:98:c1:77:6b:f2: d2:bb:f9:f4:20:7c:53:db:db:e3:8c:68:4c:23:6b:a5:f1:e6: 2d:c0:e1:58:d3:42:33:b9:0a:f3:e1:ac:94:75:50:f2:e3:96: 9d:07:ac:ad:3b:65:25:0a:c3:2b:ab:b4:04:1e:5b:ac:9c:69: 3e:b9:97:80:2c:55:5f:ec:69:90:9b:45:56:a3:30:f0:8e:51: 76:60:b2:36:f6:d7:2f:2e:a4:90:8c:a3:24:53:ff:da:5d:db: 64:95:1f:db:74:c8:fc:fb:64:cc:a1:60:b1:6d:eb:2a:b8:e0: c4:9c:65:7d:e5:d6:a0:eb:ca:fe:0c:2c:50:75:8d:44:6c:f7: 93:3e:5f:e4:cb:d3:4f:5f:e5:b6:bf:f8:cb:5e:31:27:1a:53: 5f:26:49:7d:46:9c:09:0e:3a:2f:89:89:c1:21:3e:d6:ba:f1: ee:43:5c:3e -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAI2kMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MTYyNloXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE2NTktNzFmNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANVZpmuAgAQBu8OWdQknIVzXszogzmP3YYIlQQR6rQhSgk4FUJqYFfHvZRXb IgxdWd+K7m+18k7XzNUtCrEjHi1St/5ax7KlGB+G5f1MPTp5vx92F9jolp7elgJR HSgjiTOxESCkSNIM1U4Ia6lTuetlU9nG7QbWwQ2FtddZuX7h9KptnUNtEuW2sVg5 V/yJNeskwXZwGNfpSYkd2rWAFYnJviMwd8O7WAv7/lLz9Kje1VBNMRc4sjYYS22F HQp0ucXoalW/p98OFv2p7MKQVKWt2A2POodE+odXFakPiRrFYgW9ri6StRN3kW5g gKFQkeAsQVoeIy1sXzRViTeMMN0CAwEAAaOCApUwggKRMB0GA1UdDgQWBBSfDhDT prG3CC71CgXS8YyzAjNnpTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0ZCMUNFRUE0 NTExRTExRURCOUE0REM4N0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ6TKMA0GCSqGSIb3DQEBCwUAA4IBAQC7S9QSmKaLT3mk cnYu4AzT8rG02Rp5vqXphY30iHCAz4TETdKsMiTzgFppRPHZwl4TBCJfyXdbvNlL QuqCwudpidIOIWh3myIiC1137rAmfNBxja7bmMF3a/LSu/n0IHxT29vjjGhMI2ul 8eYtwOFY00IzuQrz4ayUdVDy45adB6ytO2UlCsMrq7QEHlusnGk+uZeALFVf7GmQ m0VWozDwjlF2YLI29tcvLqSQjKMkU//aXdtklR/bdMj8+2TMoWCxbesquODEnGV9 5dag68r+DCxQdY1EbPeTPl/ky9NPX+W2v/jLXjEnGlNfJkl9RpwJDjoviYnBIT7W uvHuQ1w+ -----END CERTIFICATE-----Generated at Sun Feb 16 20:21:51 2025 by rpki-client