$ rpki-client -vvf rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/EA7A8118DCCC11ECAFD2715CC4F9AE02.roa File: EA7A8118DCCC11ECAFD2715CC4F9AE02.roa (raw, json) Hash identifier: jYfYvo6c9Uctow0tEjbRvX1Vhcvx4MlD93YOip7bp2g= Subject key identifier: 01:B6:68:90:52:E6:1D:19:58:5E:87:86:89:2D:9E:A1:E9:1A:B7:15 Certificate issuer: /CN=A91166FC/serialNumber=69408F6B1CA02816683CCE4C08E00493251944B2 Certificate serial: 094B Authority key identifier: 69:40:8F:6B:1C:A0:28:16:68:3C:CE:4C:08:E0:04:93:25:19:44:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/EA7A8118DCCC11ECAFD2715CC4F9AE02.roa Signing time: Thu 22 Feb 2024 20:59:09 +0000 ROA not before: Thu 22 Feb 2024 20:59:09 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 137425 IP address blocks: 103.108.60.0/22 maxlen: 22 103.108.60.0/23 maxlen: 23 103.108.60.0/24 maxlen: 24 103.108.61.0/24 maxlen: 24 103.108.62.0/23 maxlen: 23 103.108.62.0/24 maxlen: 24 103.108.63.0/24 maxlen: 24 2406:ebc0::/32 maxlen: 32 2406:ebc0::/48 maxlen: 48 2406:ebc0:1::/48 maxlen: 48 2406:ebc0:2::/48 maxlen: 48 2406:ebc0:3::/48 maxlen: 48 2406:ebc0:4::/48 maxlen: 48 2406:ebc0:5::/48 maxlen: 48 2406:ebc0:6::/48 maxlen: 48 2406:ebc0:7::/48 maxlen: 48 2406:ebc0:8::/48 maxlen: 48 2406:ebc0:9::/48 maxlen: 48 2406:ebc0:a::/48 maxlen: 48 2406:ebc0:b::/48 maxlen: 48 2406:ebc0:c::/48 maxlen: 48 2406:ebc0:d::/48 maxlen: 48 2406:ebc0:e::/48 maxlen: 48 2406:ebc0:f::/48 maxlen: 48 2406:ebc0:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.crl rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:45:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2379 (0x94b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91166FC/serialNumber=69408F6B1CA02816683CCE4C08E00493251944B2 Validity Not Before: Feb 22 20:59:09 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65d7b59d-a32c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:65:c5:29:c0:d3:e3:f9:9b:4b:05:cd:07:85: b5:a7:6f:6f:6f:b0:8e:49:d6:7f:f1:40:52:ee:fe: e6:7f:10:03:90:97:c7:ff:fb:12:56:90:43:dd:35: 8d:06:9a:4b:ec:b8:8c:53:a2:bc:7d:da:11:7e:4d: f0:36:66:27:b4:45:21:26:02:22:16:63:1b:37:7d: 8b:34:41:1f:c5:37:96:a7:75:b9:4e:5e:f5:6b:ab: 22:cb:83:ac:28:4c:4a:cb:cf:ff:58:c9:74:fe:ea: 76:5b:99:80:72:fd:54:9c:42:3c:88:60:74:ff:f4: 48:e1:70:74:00:87:39:0a:23:93:5f:a9:cc:ae:c4: bb:9f:cf:b3:cf:b2:ae:20:8e:0a:e8:80:2a:86:90: a8:6a:b2:0b:04:df:a0:01:99:a6:f5:bd:5c:e3:53: 85:3f:fc:69:32:7a:a3:23:a0:f1:f0:25:c0:e3:a7: e6:36:09:b4:44:cc:16:03:a3:04:ee:92:59:b8:72: 92:1d:b7:ba:20:dd:5e:7e:85:da:f4:7f:81:11:0a: ac:ac:05:3b:2a:0e:07:f2:f9:b4:56:0d:93:b4:4d: e8:98:65:bd:72:be:34:01:56:03:c6:5d:94:81:9e: e0:a5:90:8e:f5:16:8b:6a:15:d0:46:62:26:fe:f1: 40:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:B6:68:90:52:E6:1D:19:58:5E:87:86:89:2D:9E:A1:E9:1A:B7:15 X509v3 Authority Key Identifier: keyid:69:40:8F:6B:1C:A0:28:16:68:3C:CE:4C:08:E0:04:93:25:19:44:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/EA7A8118DCCC11ECAFD2715CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.108.60.0/22 IPv6: 2406:ebc0::/32 Signature Algorithm: sha256WithRSAEncryption a7:b9:86:25:c5:67:91:08:13:16:60:44:d3:42:12:8e:27:11: 62:6d:ac:3d:a2:68:f8:5a:a4:92:bc:56:42:65:fb:38:7f:ba: 54:f3:4f:3e:a6:a2:37:80:7e:90:ba:35:40:ed:4b:0e:cf:64: 20:5d:97:cb:a6:9c:ee:88:dd:ba:51:c7:74:26:59:bd:1e:ca: e0:9c:f9:57:c7:e8:88:71:eb:04:67:14:43:77:76:4d:b0:62: c9:03:f8:88:26:2f:27:2d:27:cf:79:83:d9:75:22:6a:d3:68: 32:74:7b:57:ea:01:fa:3c:0c:f5:30:35:ac:5a:98:e0:66:53: 5c:51:3a:fd:5f:41:d3:8b:4e:85:fb:d7:91:2d:65:b2:78:7f: b0:9b:07:b3:4b:f6:3a:ce:92:74:b2:6d:47:5a:11:44:fd:a9: 81:fd:55:26:fc:e9:9c:4e:0f:04:54:79:37:9c:69:9d:90:a0: 47:3b:68:4b:b2:d7:1f:2f:2c:13:6f:bb:f9:7b:b4:1a:27:ea: 07:e3:b8:1b:a4:ff:ba:eb:24:06:7c:3a:bf:d9:91:9c:0f:f8: ef:de:c9:93:4d:9a:9f:86:e4:11:c0:19:3a:21:d6:55:b5:02: 0e:1c:ec:cc:0a:7e:b5:cd:09:fd:9c:61:69:7d:71:2f:3c:6a: e0:0a:e3:47 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY2RkMxMTAvBgNVBAUTKDY5NDA4RjZCMUNBMDI4MTY2ODNDQ0U0QzA4RTAwNDkz MjUxOTQ0QjIwHhcNMjQwMjIyMjA1OTA5WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ3YjU5ZC1hMzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoGXFKcDT4/mbSwXNB4W1p29vb7COSdZ/8UBS7v7mfxADkJfH//sSVpBD3TWN BppL7LiMU6K8fdoRfk3wNmYntEUhJgIiFmMbN32LNEEfxTeWp3W5Tl71a6siy4Os KExKy8//WMl0/up2W5mAcv1UnEI8iGB0//RI4XB0AIc5CiOTX6nMrsS7n8+zz7Ku II4K6IAqhpCoarILBN+gAZmm9b1c41OFP/xpMnqjI6Dx8CXA46fmNgm0RMwWA6ME 7pJZuHKSHbe6IN1efoXa9H+BEQqsrAU7Kg4H8vm0Vg2TtE3omGW9cr40AVYDxl2U gZ7gpZCO9RaLahXQRmIm/vFAlwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAG2aJBS 5h0ZWF6HhoktnqHpGrcVMB8GA1UdIwQYMBaAFGlAj2scoCgWaDzOTAjgBJMlGUSy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjZGQy9BQjFGNEVDQTcy OUExMUVBQUJCRjkxNDFDNEY5QUUwMi9hVUNQYXh5Z0tCWm9QTTVNQ09BRWt5VVpS TEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FVQ1BheHlnS0Jab1BNNU1DT0FFa3lVWlJMSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTY2RkMvQUIxRjRFQ0E3MjlBMTFFQUFCQkY5MTQxQzRGOUFFMDIvRUE3QTgxMThE Q0NDMTFFQ0FGRDI3MTVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnbDwwDQQCAAIwBwMFACQG68AwDQYJKoZIhvcNAQELBQAD ggEBAKe5hiXFZ5EIExZgRNNCEo4nEWJtrD2iaPhapJK8VkJl+zh/ulTzTz6mojeA fpC6NUDtSw7PZCBdl8umnO6I3bpRx3QmWb0eyuCc+VfH6Ihx6wRnFEN3dk2wYskD +IgmLyctJ895g9l1ImrTaDJ0e1fqAfo8DPUwNaxamOBmU1xROv1fQdOLToX715Et ZbJ4f7CbB7NL9jrOknSybUdaEUT9qYH9VSb86ZxODwRUeTecaZ2QoEc7aEuy1x8v LBNvu/l7tBon6gfjuBuk/7rrJAZ8Or/ZkZwP+O/eyZNNmp+G5BHAGToh1lW1Ag4c 7MwKfrXNCf2cYWl9cS88auAK40c= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:21 2024 by rpki-client on console-ams.rpki-client.org