$ rpki-client -vvf rpki.apnic.net/member_repository/A918054D/6E0823B0198C11EBAFCB9459C4F9AE02/0CACB5AC198E11EBBDF60275C4F9AE02.roa File: 0CACB5AC198E11EBBDF60275C4F9AE02.roa (raw, json) Hash identifier: hVGpRvhX5Ju9BqJwvLilMW82myywekIMm4EdIHToKkQ= Subject key identifier: 20:D1:EA:DE:5C:4A:63:3A:07:4B:83:BF:8B:B2:96:2E:69:66:EC:B2 Certificate issuer: /CN=A918054D/serialNumber=CD827BF96458361F6098B22F758548D7EAEFA168 Certificate serial: 06FD Authority key identifier: CD:82:7B:F9:64:58:36:1F:60:98:B2:2F:75:85:48:D7:EA:EF:A1:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zYJ7-WRYNh9gmLIvdYVI1-rvoWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918054D/6E0823B0198C11EBAFCB9459C4F9AE02/0CACB5AC198E11EBBDF60275C4F9AE02.roa Signing time: Fri 13 Sep 2024 00:01:15 +0000 ROA not before: Fri 13 Sep 2024 00:01:15 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 141158 IP address blocks: 103.155.132.0/23 maxlen: 23 103.155.132.0/24 maxlen: 24 103.155.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918054D/6E0823B0198C11EBAFCB9459C4F9AE02/zYJ7-WRYNh9gmLIvdYVI1-rvoWg.crl rsync://rpki.apnic.net/member_repository/A918054D/6E0823B0198C11EBAFCB9459C4F9AE02/zYJ7-WRYNh9gmLIvdYVI1-rvoWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zYJ7-WRYNh9gmLIvdYVI1-rvoWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1789 (0x6fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918054D Validity Not Before: Sep 13 00:01:15 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e380ca-6c62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:75:e3:6a:1c:90:b2:e3:11:66:a0:ce:03:13: 42:fc:2d:21:61:d8:a9:ca:e4:1d:bb:23:6e:59:d7: 2e:8c:2f:9d:21:48:35:5d:7b:c1:f9:7d:80:d5:99: 31:15:0b:cc:8e:6d:3f:50:6d:58:6c:41:78:cc:b3: d5:14:9a:0f:2b:dd:b7:d3:c5:58:82:74:a1:34:48: 85:79:1c:c0:ec:88:2c:35:d7:85:fa:4e:cb:57:2a: e5:25:08:0f:4b:29:c4:b2:61:bd:47:c2:30:34:15: b7:e9:02:eb:8c:66:90:74:2a:78:69:a0:60:d9:a2: 0b:44:19:f3:43:f9:fd:03:0f:f8:c1:73:af:6b:f2: 59:28:fd:06:97:81:0c:da:fc:52:5b:c1:f0:9e:ce: 2d:15:67:5a:f9:69:af:1e:64:e7:b6:ad:69:a1:9f: a8:2f:27:b5:ba:e2:d3:ce:5e:54:0d:29:c6:01:8f: 3f:f4:79:ef:12:d6:56:b8:66:ec:78:ce:c9:a8:7a: c3:07:92:f8:f6:3d:5f:3b:9a:79:29:65:8c:ab:32: b9:5d:cf:23:6d:ff:0c:6d:81:3f:8d:a0:84:91:14: e9:6f:89:c3:e6:64:0d:32:ac:ca:bc:77:f1:0f:fa: bd:a4:63:87:a9:40:c3:65:a2:13:17:7f:e1:a4:fb: 97:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:D1:EA:DE:5C:4A:63:3A:07:4B:83:BF:8B:B2:96:2E:69:66:EC:B2 X509v3 Authority Key Identifier: keyid:CD:82:7B:F9:64:58:36:1F:60:98:B2:2F:75:85:48:D7:EA:EF:A1:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918054D/6E0823B0198C11EBAFCB9459C4F9AE02/zYJ7-WRYNh9gmLIvdYVI1-rvoWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zYJ7-WRYNh9gmLIvdYVI1-rvoWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918054D/6E0823B0198C11EBAFCB9459C4F9AE02/0CACB5AC198E11EBBDF60275C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.132.0/23 Signature Algorithm: sha256WithRSAEncryption c0:1a:57:d3:70:d3:64:b4:e8:9d:f6:f3:0b:7e:09:0b:06:17: 1c:30:6d:79:33:28:6a:35:5e:46:1e:1e:25:b3:a5:44:85:0e: d6:8a:01:20:49:46:80:22:47:93:f9:5a:4c:3d:8f:12:48:56: 52:54:19:62:ee:b5:e3:d9:be:0f:21:1c:dc:93:33:97:f5:58: 5a:2d:c5:ee:6d:d5:42:07:62:72:91:7b:bc:af:bf:04:af:60: 83:50:57:18:ba:1b:d8:a6:50:b4:6a:40:1b:d8:b3:41:22:d7: b5:ab:58:d5:de:35:f2:53:93:91:b3:8d:a6:90:6c:53:ab:ca: a9:34:82:d4:96:6c:c0:8f:fa:b4:2b:1f:4a:3f:f2:c6:47:9f: 1f:b6:2f:0b:5e:40:86:73:47:05:9c:21:b5:fa:13:74:f1:96: 47:85:7c:0a:31:e0:1b:0c:82:74:e0:c0:bd:f7:a1:b6:d4:83: e8:e0:d3:63:73:ae:7c:f7:75:f8:20:d8:48:73:f5:d7:53:82: 89:ba:c1:81:9b:3e:e0:9a:bc:44:d1:d8:a2:9f:bc:9a:b0:27: 99:a4:5e:ba:c4:ab:ab:4b:7c:90:28:c0:76:52:ee:56:80:92: 25:f2:c4:f0:a0:56:ef:36:7c:f9:2a:a4:b8:9d:ca:28:5d:00: 8c:fa:86:53 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA1NEQxMTAvBgNVBAUTKENEODI3QkY5NjQ1ODM2MUY2MDk4QjIyRjc1ODU0OEQ3 RUFFRkExNjgwHhcNMjQwOTEzMDAwMTE1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUzODBjYS02YzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA13XjahyQsuMRZqDOAxNC/C0hYdipyuQduyNuWdcujC+dIUg1XXvB+X2A1Zkx FQvMjm0/UG1YbEF4zLPVFJoPK92308VYgnShNEiFeRzA7IgsNdeF+k7LVyrlJQgP SynEsmG9R8IwNBW36QLrjGaQdCp4aaBg2aILRBnzQ/n9Aw/4wXOva/JZKP0Gl4EM 2vxSW8Hwns4tFWda+WmvHmTntq1poZ+oLye1uuLTzl5UDSnGAY8/9HnvEtZWuGbs eM7JqHrDB5L49j1fO5p5KWWMqzK5Xc8jbf8MbYE/jaCEkRTpb4nD5mQNMqzKvHfx D/q9pGOHqUDDZaITF3/hpPuXuQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCDR6t5c SmM6B0uDv4uyli5pZuyyMB8GA1UdIwQYMBaAFM2Ce/lkWDYfYJiyL3WFSNfq76Fo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDU0RC82RTA4MjNCMDE5 OEMxMUVCQUZDQjk0NTlDNEY5QUUwMi96WUo3LVdSWU5oOWdtTEl2ZFlWSTEtcnZv V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pZSjctV1JZTmg5Z21MSXZkWVZJMS1ydm9XZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODA1NEQvNkUwODIzQjAxOThDMTFFQkFGQ0I5NDU5QzRGOUFFMDIvMENBQ0I1QUMx OThFMTFFQkJERjYwMjc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnm4QwDQYJKoZIhvcNAQELBQADggEBAMAaV9Nw02S06J32 8wt+CQsGFxwwbXkzKGo1XkYeHiWzpUSFDtaKASBJRoAiR5P5Wkw9jxJIVlJUGWLu tePZvg8hHNyTM5f1WFotxe5t1UIHYnKRe7yvvwSvYINQVxi6G9imULRqQBvYs0Ei 17WrWNXeNfJTk5GzjaaQbFOryqk0gtSWbMCP+rQrH0o/8sZHnx+2LwteQIZzRwWc IbX6E3TxlkeFfAox4BsMgnTgwL33obbUg+jg02Nzrnz3dfgg2Ehz9ddTgom6wYGb PuCavETR2KKfvJqwJ5mkXrrEq6tLfJAowHZS7laAkiXyxPCgVu82fPkqpLidyihd AIz6hlM= -----END CERTIFICATE-----Generated at Sun Feb 16 22:25:43 2025 by rpki-client