$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FDC70680FE3311EEBBCB8E1BC4F9AE02.roa File: FDC70680FE3311EEBBCB8E1BC4F9AE02.roa (raw, json) Hash identifier: sLaogNtgrYkMN1vMsvZYJAshZ5idAS+pOn56mf/+hGQ= Subject key identifier: FE:5B:80:55:EB:CB:72:40:B9:E3:49:E0:BA:0E:6A:50:37:33:77:5B Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 9001 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FDC70680FE3311EEBBCB8E1BC4F9AE02.roa Signing time: Thu 30 May 2024 16:26:10 +0000 ROA not before: Thu 30 May 2024 16:26:10 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 151089 IP address blocks: 103.135.66.0/23 maxlen: 24 2001:df2:6440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 12:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36865 (0x9001) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:26:10 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a8a1-4c56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:54:7a:58:94:d5:99:44:65:2f:8e:80:6c:f5: b9:c4:53:94:76:5e:7c:66:00:95:69:fc:0d:cd:f0: 27:fa:c8:4f:16:28:62:8f:be:ec:18:09:ac:a9:9e: f6:70:c2:85:41:b8:ef:75:af:73:65:3d:81:d6:55: 1a:2f:03:44:a0:8c:50:57:e9:eb:7d:ce:f6:5e:f3: 1e:f6:9c:1d:4c:fa:b1:1a:c2:01:a0:0b:ca:28:cf: 81:68:6c:c1:9a:4e:d9:54:9e:d9:c3:7a:80:26:43: eb:21:17:34:3f:75:79:1f:a8:a6:31:58:6a:36:1c: f6:25:9c:bd:08:aa:41:27:ec:3b:ca:e3:a2:17:42: 54:7d:55:39:6a:dd:d4:10:e4:8e:93:6e:f4:07:3f: 50:2f:71:5f:8e:dc:dd:dd:eb:26:05:d7:74:20:e9: cc:fc:f3:7b:bc:02:e2:6f:c5:0d:7c:3e:fa:1c:ff: 28:d1:d5:26:da:02:40:06:01:ff:59:03:40:64:15: de:e1:61:e2:00:8f:53:1c:17:0c:2e:68:6a:15:7d: 25:83:bd:73:f3:ca:64:61:3e:0d:f3:19:85:8c:46: 94:05:55:b3:8b:33:6d:97:09:65:57:b6:82:a4:86: 32:5a:6c:40:60:e7:70:e4:08:ec:77:2b:2b:6d:78: 45:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:5B:80:55:EB:CB:72:40:B9:E3:49:E0:BA:0E:6A:50:37:33:77:5B X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FDC70680FE3311EEBBCB8E1BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.135.66.0/23 IPv6: 2001:df2:6440::/48 Signature Algorithm: sha256WithRSAEncryption a2:c0:a0:e6:90:82:e6:ff:23:09:1b:31:72:39:b8:50:1a:7f: ca:32:4a:94:c3:b4:47:69:22:c6:19:bc:b8:b9:f0:f5:9c:d7: 0a:30:9f:bd:a2:32:72:31:aa:0b:39:bf:57:9e:d4:d3:73:03: 2a:de:63:78:7a:60:4f:ae:af:13:96:80:87:e5:2b:b5:11:2c: e7:69:f9:f4:a2:c2:33:af:8f:0d:a9:db:c9:e2:c2:7b:45:e6: c8:10:e7:b3:36:df:2e:97:13:e5:52:9c:e6:55:cb:fe:14:e4: 76:46:7e:99:80:7c:dd:f2:df:c0:4f:a1:63:36:ff:eb:48:df: 14:c0:db:e7:a6:0d:bb:36:b5:1a:ba:30:74:03:a1:3c:21:71: 24:a0:8c:75:eb:5d:b8:55:b4:4e:bd:4a:b8:d0:93:76:8f:46: cd:73:41:d4:d4:ff:d1:b9:6e:18:f3:a9:01:73:64:94:fa:e7: 52:b4:f6:2b:2f:ac:22:dd:8e:2c:5b:05:3e:46:e5:ad:af:9b: 76:3a:f7:ec:93:46:7c:7e:e5:d7:46:ae:b0:01:38:4b:02:f1: 6d:18:c7:b0:31:7c:e4:76:b2:bf:88:d0:e0:28:28:a3:52:75: 14:4f:a6:c8:62:a3:f0:93:cf:19:e0:7f:50:51:41:68:6c:e1: a6:20:1e:4c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDAJABMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MjYxMFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE4YTEtNGM1NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMNUeliU1ZlEZS+OgGz1ucRTlHZefGYAlWn8Dc3wJ/rITxYoYo++7BgJrKme 9nDChUG473Wvc2U9gdZVGi8DRKCMUFfp633O9l7zHvacHUz6sRrCAaALyijPgWhs wZpO2VSe2cN6gCZD6yEXND91eR+opjFYajYc9iWcvQiqQSfsO8rjohdCVH1VOWrd 1BDkjpNu9Ac/UC9xX47c3d3rJgXXdCDpzPzze7wC4m/FDXw++hz/KNHVJtoCQAYB /1kDQGQV3uFh4gCPUxwXDC5oahV9JYO9c/PKZGE+DfMZhYxGlAVVs4szbZcJZVe2 gqSGMlpsQGDncOQI7HcrK214RSkCAwEAAaOCAqYwggKiMB0GA1UdDgQWBBT+W4BV 68tyQLnjSeC6DmpQNzN3WzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0ZEQzcwNjgw RkUzMzExRUVCQkNCOEUxQkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQBZ4dCMA8EAgACMAkDBwAgAQ3yZEAwDQYJKoZIhvcNAQEL BQADggEBAKLAoOaQgub/IwkbMXI5uFAaf8oySpTDtEdpIsYZvLi58PWc1wown72i MnIxqgs5v1ee1NNzAyreY3h6YE+urxOWgIflK7URLOdp+fSiwjOvjw2p28niwntF 5sgQ57M23y6XE+VSnOZVy/4U5HZGfpmAfN3y38BPoWM2/+tI3xTA2+emDbs2tRq6 MHQDoTwhcSSgjHXrXbhVtE69SrjQk3aPRs1zQdTU/9G5bhjzqQFzZJT651K09isv rCLdjixbBT5G5a2vm3Y69+yTRnx+5ddGrrABOEsC8W0Yx7AxfOR2sr+I0OAoKKNS dRRPpshio/CTzxngf1BRQWhs4aYgHkw= -----END CERTIFICATE-----Generated at Fri Jun 7 15:26:44 2024 by rpki-client on console-fra.rpki-client.org