$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4EB6E16C10BB11EEBFA25219C4F9AE02.roa File: 4EB6E16C10BB11EEBFA25219C4F9AE02.roa (raw, json) Hash identifier: Ux3+fn9yMVq0UQI3o2e8JVjOgmqmelBe3Y0Xh/7+3HM= Subject key identifier: B9:A1:6E:15:1C:B0:89:E6:D1:D2:1B:C3:30:E8:56:C7:95:4F:2C:4E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 90B9 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4EB6E16C10BB11EEBFA25219C4F9AE02.roa Signing time: Thu 30 May 2024 16:29:10 +0000 ROA not before: Thu 30 May 2024 16:29:10 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 23470 IP address blocks: 103.106.66.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 10:41:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37049 (0x90b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:29:10 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a956-706b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c2:51:1b:09:0d:20:58:22:ae:89:5a:43:b0: b3:1b:12:f3:90:30:bd:18:ff:a3:15:f7:23:51:e1: e2:f3:44:7f:a6:a6:d1:aa:65:08:1d:36:35:ce:25: 01:d2:d9:81:7b:99:b3:c1:d1:ac:ff:c7:7d:6c:a5: 17:0d:ca:73:f2:b2:f6:c4:cf:10:b7:dc:d6:99:d6: bf:67:19:e7:ea:12:70:42:90:d8:ba:b5:56:0e:47: 00:71:8a:8b:6f:9e:2a:78:ec:6f:2b:03:6f:23:02: 76:e5:a8:bd:32:88:73:63:98:33:77:6d:9b:d6:0b: 36:d5:cf:a5:96:87:8e:14:21:b3:e8:17:8e:78:7b: 15:d2:b0:f2:d1:b7:f6:40:62:b6:ec:ce:00:89:80: 05:1f:e7:c9:26:d8:9f:1d:a0:1f:34:5e:32:da:af: 20:60:cb:a7:30:4a:aa:22:34:f4:65:30:ec:ed:82: a7:40:c7:da:c7:76:76:3e:08:85:35:fd:85:9f:a9: c6:6a:d1:9e:4d:55:b7:19:77:fb:93:d9:6b:53:42: 52:88:4e:b3:7f:df:03:c0:38:8f:87:24:dd:bd:32: b7:35:90:22:dc:c4:f8:ac:6b:a7:4a:f5:d0:70:c0: 9a:c0:95:01:04:34:77:b4:fd:ad:1f:2b:ae:7d:68: b1:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:A1:6E:15:1C:B0:89:E6:D1:D2:1B:C3:30:E8:56:C7:95:4F:2C:4E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4EB6E16C10BB11EEBFA25219C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.106.66.0/23 Signature Algorithm: sha256WithRSAEncryption 14:cf:bd:b3:91:f1:0f:18:7a:e2:5c:96:58:e0:bb:b4:9b:82: 7e:95:f7:31:e5:85:77:e9:c1:7e:1b:46:ab:b5:e8:22:80:a6: 15:18:35:0b:4c:ab:90:05:e5:f0:bd:be:f4:71:7e:b8:07:43: d2:29:c1:a2:c3:e8:6c:98:cb:72:39:7a:32:dc:36:68:0b:4f: 27:ed:66:a1:f0:6a:6a:f0:98:5b:59:e9:fe:e6:a2:bb:38:a2: 7a:51:31:ff:a5:f2:11:67:1c:af:3c:2c:c6:7f:d7:f4:be:7d: 48:57:cb:c1:40:3f:e5:1b:1c:84:e2:b6:71:2b:9e:58:26:9c: 2d:6c:ac:7f:0d:d7:57:01:ad:39:df:86:24:86:44:d0:19:5c: 8f:52:f5:37:88:d4:19:8d:64:45:31:09:5c:9f:d1:41:87:5c: f9:56:32:84:01:e3:12:1c:13:13:0a:c5:12:91:1a:ee:68:54: bb:88:45:a2:03:48:5c:75:fa:46:c2:c7:8e:0d:63:c7:6b:01: e6:57:e9:be:d6:f6:ba:1e:d3:6c:54:53:cb:f6:50:f6:c7:81: 6f:0f:d6:b5:a9:39:8d:24:a7:d7:07:21:fb:2a:c6:6e:eb:bd: 59:81:a1:ee:f5:7a:a3:89:2a:e5:e4:c4:02:da:ba:d6:e5:78: 67:48:a5:44 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAJC5MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MjkxMFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE5NTYtNzA2YjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKHCURsJDSBYIq6JWkOwsxsS85AwvRj/oxX3I1Hh4vNEf6am0aplCB02Nc4l AdLZgXuZs8HRrP/HfWylFw3Kc/Ky9sTPELfc1pnWv2cZ5+oScEKQ2Lq1Vg5HAHGK i2+eKnjsbysDbyMCduWovTKIc2OYM3dtm9YLNtXPpZaHjhQhs+gXjnh7FdKw8tG3 9kBituzOAImABR/nySbYnx2gHzReMtqvIGDLpzBKqiI09GUw7O2Cp0DH2sd2dj4I hTX9hZ+pxmrRnk1Vtxl3+5PZa1NCUohOs3/fA8A4j4ck3b0ytzWQItzE+Kxrp0r1 0HDAmsCVAQQ0d7T9rR8rrn1osS0CAwEAAaOCApUwggKRMB0GA1UdDgQWBBS5oW4V HLCJ5tHSG8Mw6FbHlU8sTjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzRFQjZFMTZD MTBCQjExRUVCRkEyNTIxOUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ2pCMA0GCSqGSIb3DQEBCwUAA4IBAQAUz72zkfEPGHri XJZY4Lu0m4J+lfcx5YV36cF+G0artegigKYVGDULTKuQBeXwvb70cX64B0PSKcGi w+hsmMtyOXoy3DZoC08n7Wah8Gpq8JhbWen+5qK7OKJ6UTH/pfIRZxyvPCzGf9f0 vn1IV8vBQD/lGxyE4rZxK55YJpwtbKx/DddXAa0534YkhkTQGVyPUvU3iNQZjWRF MQlcn9FBh1z5VjKEAeMSHBMTCsUSkRruaFS7iEWiA0hcdfpGwseODWPHawHmV+m+ 1va6HtNsVFPL9lD2x4FvD9a1qTmNJKfXByH7KsZu671ZgaHu9XqjiSrl5MQC2rrW 5XhnSKVE -----END CERTIFICATE-----Generated at Thu Nov 21 13:18:57 2024 by rpki-client on console-fra.rpki-client.org