$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FC08A8BEABCD11EBA750695CC4F9AE02.roa File: FC08A8BEABCD11EBA750695CC4F9AE02.roa (raw, json) Hash identifier: k6812h0loN7Pk8iokMifRAVBJ4diAJ2OXEN05Ln08f4= Subject key identifier: B3:41:8C:9D:E8:5A:7D:5A:7D:19:CB:7F:C6:46:2D:9C:6A:AE:1B:10 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8DB3 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FC08A8BEABCD11EBA750695CC4F9AE02.roa Signing time: Thu 30 May 2024 16:16:41 +0000 ROA not before: Thu 30 May 2024 16:16:41 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 141814 IP address blocks: 103.165.30.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 10:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36275 (0x8db3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:16:41 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a669-7531 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:46:5c:d8:44:d0:c4:3b:00:da:f8:a5:4e:00: dd:ff:ed:d7:34:3f:56:ae:a3:61:20:dc:ec:7a:68: d5:f2:a0:f4:1b:f3:1f:45:f1:d4:39:0c:cf:05:f6: e9:f2:55:34:e2:60:3b:c9:0e:f1:91:32:ea:44:f4: ed:5a:8d:d0:3b:3e:5f:d9:eb:ec:1e:db:c1:fe:eb: 21:77:e5:1b:4c:77:57:71:ab:4d:0e:e7:99:70:20: 00:54:2b:05:bd:ac:86:22:64:af:de:a7:fc:ee:49: 0b:b1:d4:bf:1b:68:57:44:2b:91:af:26:85:5a:9d: 71:e2:fe:be:19:ed:09:1c:6b:0a:74:9e:7a:aa:4e: 00:7a:56:00:d2:c7:df:94:5e:2b:21:93:11:42:c0: 59:d4:9e:3a:29:b1:9a:65:ea:40:33:50:8b:88:fb: 66:9f:75:4c:97:68:d8:79:32:ec:e2:e1:e6:07:5b: 42:a7:ec:30:f6:1b:7c:97:62:7e:72:06:a1:50:7d: 78:f5:24:03:d1:9f:48:a1:da:3f:6f:65:ea:9c:a2: 94:5b:bd:be:60:63:71:13:50:d6:3c:ba:11:af:8d: 3a:6b:bf:5d:60:fd:75:cb:c7:30:4d:12:48:66:ee: 4b:64:09:44:20:50:e0:9c:36:39:3a:a4:78:92:b8: 57:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:41:8C:9D:E8:5A:7D:5A:7D:19:CB:7F:C6:46:2D:9C:6A:AE:1B:10 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FC08A8BEABCD11EBA750695CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.165.30.0/23 Signature Algorithm: sha256WithRSAEncryption 36:32:e6:7c:dc:e1:3a:cf:28:35:f1:d3:e8:62:f2:05:95:77: 56:a3:91:06:6e:8c:de:d7:0a:2e:20:2d:67:3d:c2:a2:d1:31: c5:9b:67:3d:66:90:ee:86:4f:1b:b0:19:13:b7:22:af:c8:4f: c6:94:f1:1b:53:63:47:4d:3d:58:8f:df:30:90:70:92:17:5d: 8a:d7:db:0f:58:37:d3:5d:0e:c8:a0:82:90:45:7a:22:d7:db: 10:75:3a:36:30:77:83:61:16:09:32:4b:d6:e2:27:39:d1:03: bd:5b:2e:08:34:62:11:3f:c7:ba:c4:93:19:f0:31:06:c4:be: 11:65:58:ca:d2:48:42:57:f6:e5:70:8f:b8:81:77:24:87:95: f7:10:08:c5:03:f0:3f:06:bd:69:6e:52:91:51:fc:61:f4:cc: 6a:e6:28:87:5b:51:f4:ce:2b:af:40:fc:15:0d:24:52:32:b3: 8e:2b:0c:3b:2b:a4:0e:fe:52:91:4e:85:4e:3e:7a:6b:10:0c: ba:0f:7d:ac:d9:37:a2:03:1e:f1:16:bb:9c:f2:ef:cd:7c:f1: 6e:34:15:2a:e0:e2:8a:66:51:f6:fa:97:a9:43:26:b5:c7:bc: a9:ef:f1:57:52:4b:fb:4f:98:53:ec:7c:3a:67:4d:91:9c:78: 13:49:98:88 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAI2zMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MTY0MVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE2NjktNzUzMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOdGXNhE0MQ7ANr4pU4A3f/t1zQ/Vq6jYSDc7Hpo1fKg9BvzH0Xx1DkMzwX2 6fJVNOJgO8kO8ZEy6kT07VqN0Ds+X9nr7B7bwf7rIXflG0x3V3GrTQ7nmXAgAFQr Bb2shiJkr96n/O5JC7HUvxtoV0Qrka8mhVqdceL+vhntCRxrCnSeeqpOAHpWANLH 35ReKyGTEULAWdSeOimxmmXqQDNQi4j7Zp91TJdo2Hky7OLh5gdbQqfsMPYbfJdi fnIGoVB9ePUkA9GfSKHaP29l6pyilFu9vmBjcRNQ1jy6Ea+NOmu/XWD9dcvHME0S SGbuS2QJRCBQ4Jw2OTqkeJK4VzUCAwEAAaOCApUwggKRMB0GA1UdDgQWBBSzQYyd 6Fp9Wn0Zy3/GRi2caq4bEDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0ZDMDhBOEJF QUJDRDExRUJBNzUwNjk1Q0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ6UeMA0GCSqGSIb3DQEBCwUAA4IBAQA2MuZ83OE6zyg1 8dPoYvIFlXdWo5EGboze1wouIC1nPcKi0THFm2c9ZpDuhk8bsBkTtyKvyE/GlPEb U2NHTT1Yj98wkHCSF12K19sPWDfTXQ7IoIKQRXoi19sQdTo2MHeDYRYJMkvW4ic5 0QO9Wy4INGIRP8e6xJMZ8DEGxL4RZVjK0khCV/blcI+4gXckh5X3EAjFA/A/Br1p blKRUfxh9Mxq5iiHW1H0ziuvQPwVDSRSMrOOKww7K6QO/lKRToVOPnprEAy6D32s 2TeiAx7xFruc8u/NfPFuNBUq4OKKZlH2+pepQya1x7yp7/FXUkv7T5hT7Hw6Z02R nHgTSZiI -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:13 2024 by rpki-client on console-fra.rpki-client.org