$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/1ED4125C50C111EFA64C2437C4F9AE02.roa File: 1ED4125C50C111EFA64C2437C4F9AE02.roa (raw, json) Hash identifier: M9HaGHa7pI3ilHdh1OGWp/+WvUY2NRFrgXm0KqnYXRc= Subject key identifier: F8:4F:AB:5B:3A:63:74:10:9B:3D:5F:40:27:C3:BE:57:C3:51:44:CE Certificate issuer: /CN=A918E4B7/serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Certificate serial: 048F Authority key identifier: 0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/1ED4125C50C111EFA64C2437C4F9AE02.roa Signing time: Wed 18 Sep 2024 10:55:47 +0000 ROA not before: Wed 18 Sep 2024 10:55:47 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 36007 IP address blocks: 103.6.168.0/24 maxlen: 24 103.6.169.0/24 maxlen: 24 103.6.170.0/24 maxlen: 24 103.6.171.0/24 maxlen: 24 103.102.46.0/24 maxlen: 24 103.125.216.0/24 maxlen: 24 103.125.217.0/24 maxlen: 24 103.125.218.0/24 maxlen: 24 103.125.219.0/24 maxlen: 24 2401:df40:2::/48 maxlen: 48 2403:fa40:1::/48 maxlen: 48 2403:fa40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1167 (0x48f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7 Validity Not Before: Sep 18 10:55:47 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66eab1b3-c64e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:32:85:af:3f:2a:8b:12:d0:4e:11:03:a0:5b: e1:2f:6d:e4:f2:f9:1e:e2:79:6b:29:23:4c:6a:9f: 57:6e:28:42:3f:80:65:5d:ac:14:51:a4:2d:96:b9: 95:58:8e:a3:3d:b2:e4:00:1e:46:3c:4b:72:df:38: c2:b8:3f:b8:ed:4e:c2:c4:33:56:8b:33:08:fa:57: 96:96:3f:ec:d9:db:a5:da:f5:71:a3:a4:c8:3b:9f: 6b:2e:e9:24:76:d8:38:32:f0:1c:75:58:e2:96:f0: 0e:75:3c:7e:2d:46:c9:12:85:40:4c:d9:80:03:3b: 1d:3e:7b:90:da:ce:4f:51:74:c1:3c:45:d9:65:4c: e5:3d:76:fa:01:69:2d:69:09:56:2e:13:33:af:e9: 5a:52:0b:0f:8f:0b:6f:b0:73:f3:c8:87:3f:cb:5a: 12:82:9c:0e:56:04:1b:9c:94:3b:be:54:2b:ef:bd: b7:41:31:ab:0d:f9:52:27:19:61:71:94:ce:14:1e: a1:a9:4b:78:04:b5:d8:e1:35:a2:43:25:5f:33:85: 13:0b:37:67:2d:fe:29:7c:70:a4:11:ed:99:55:43: 81:88:4a:61:cf:84:ed:56:16:65:63:0e:c6:ab:93: 55:73:2e:2e:e2:2f:7d:8c:70:d6:ce:e6:b6:fd:60: d8:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:4F:AB:5B:3A:63:74:10:9B:3D:5F:40:27:C3:BE:57:C3:51:44:CE X509v3 Authority Key Identifier: keyid:0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/1ED4125C50C111EFA64C2437C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.6.168.0/22 103.102.46.0/24 103.125.216.0/22 IPv6: 2401:df40:2::/48 2403:fa40:1::-2403:fa40:2:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 25:5d:6c:11:ae:47:87:b1:3f:c8:e2:4a:4f:cc:4d:33:d0:c7: c6:55:29:7a:1d:2c:c6:49:6c:a9:c6:ab:e4:f9:a0:2a:0f:a8: 99:da:77:bc:71:1b:d2:3c:1d:8f:b2:d0:bc:de:28:c1:35:87: 1c:76:46:70:0c:da:fe:ce:4f:4c:db:ff:ca:7e:f1:1e:bc:f1: cc:87:74:4d:f0:4d:fa:ae:ad:5c:9d:e6:d1:9b:4c:7a:fe:44: 25:9f:4f:c6:82:d9:43:07:35:61:bc:b5:70:f0:f8:d6:3d:94: d0:a3:f0:e8:94:8f:d0:8c:f9:6b:5a:2f:43:4e:b1:fe:8c:15: a8:7a:b9:54:42:21:14:3e:e9:e5:aa:0c:15:f4:2f:a5:06:79: 39:93:64:15:76:e6:79:19:25:51:92:d3:ba:c6:5f:df:0f:dd: ad:9a:87:b9:a2:13:c7:91:13:98:21:56:69:a6:c8:99:ab:01: 0b:e4:67:31:46:f3:dc:03:22:b1:5e:12:fa:b9:37:05:51:4c: 8a:62:d6:82:e2:6c:7b:63:a7:51:9c:37:20:f8:ea:7f:27:a4: 96:62:2b:25:04:2f:68:f3:f8:19:58:d0:61:4b:24:46:8f:04: c2:b6:5d:ab:bc:11:5d:f5:05:75:e2:8c:78:fc:7e:05:8d:2e: 74:94:b8:d1 -----BEGIN CERTIFICATE----- MIIFojCCBIqgAwIBAgICBI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKDBBQjZERDI2NTE1QzUzRUNDNUIwNDYyQjRDNDc1RDVB N0U1QTU1MzcwHhcNMjQwOTE4MTA1NTQ3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmVhYjFiMy1jNjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApDKFrz8qixLQThEDoFvhL23k8vke4nlrKSNMap9XbihCP4BlXawUUaQtlrmV WI6jPbLkAB5GPEty3zjCuD+47U7CxDNWizMI+leWlj/s2dul2vVxo6TIO59rLukk dtg4MvAcdVjilvAOdTx+LUbJEoVATNmAAzsdPnuQ2s5PUXTBPEXZZUzlPXb6AWkt aQlWLhMzr+laUgsPjwtvsHPzyIc/y1oSgpwOVgQbnJQ7vlQr7723QTGrDflSJxlh cZTOFB6hqUt4BLXY4TWiQyVfM4UTCzdnLf4pfHCkEe2ZVUOBiEphz4TtVhZlYw7G q5NVcy4u4i99jHDWzua2/WDYnQIDAQABo4ICxjCCAsIwHQYDVR0OBBYEFPhPq1s6 Y3QQmz1fQCfDvlfDUUTOMB8GA1UdIwQYMBaAFAq23SZRXFPsxbBGK0xHXVp+WlU3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy9FQjMxMkYwMjFF QUExMUVDQjc1NkJGMzBDNEY5QUUwMi9DcmJkSmxGY1UtekZzRVlyVEVkZFduNWFW VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NyYmRKbEZjVS16RnNFWXJURWRkV241YVZUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU0QjcvRUIzMTJGMDIxRUFBMTFFQ0I3NTZCRjMwQzRGOUFFMDIvMUVENDEyNUM1 MEMxMTFFRkE2NEMyNDM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUAYIKwYBBQUHAQcBAf8E QTA/MBgEAgABMBIDBAJnBqgDBABnZi4DBAJnfdgwIwQCAAIwHQMHACQB30AAAjAS AwcAJAP6QAABAwcAJAP6QAACMA0GCSqGSIb3DQEBCwUAA4IBAQAlXWwRrkeHsT/I 4kpPzE0z0MfGVSl6HSzGSWypxqvk+aAqD6iZ2ne8cRvSPB2PstC83ijBNYccdkZw DNr+zk9M2//KfvEevPHMh3RN8E36rq1cnebRm0x6/kQln0/GgtlDBzVhvLVw8PjW PZTQo/DolI/QjPlrWi9DTrH+jBWoerlUQiEUPunlqgwV9C+lBnk5k2QVduZ5GSVR ktO6xl/fD92tmoe5ohPHkROYIVZppsiZqwEL5GcxRvPcAyKxXhL6uTcFUUyKYtaC 4mx7Y6dRnDcg+Op/J6SWYislBC9o8/gZWNBhSyRGjwTCtl2rvBFd9QV14ox4/H4F jS50lLjR -----END CERTIFICATE-----Generated at Sun Feb 16 21:59:23 2025 by rpki-client