$ rpki-client -vvf rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/4E76D152B51411ECB8632A19C4F9AE02.roa File: 4E76D152B51411ECB8632A19C4F9AE02.roa (raw, json) Hash identifier: 1i7UxTnulhgfx5uDmMgAJe3uQF6zSaEiBPRv7jQZNEU= Subject key identifier: 37:53:AD:AD:0C:5D:68:4C:8D:B3:94:60:8A:41:F0:38:F5:A9:25:EC Certificate issuer: /CN=A9131067/serialNumber=B2C47C2E3D4FC7EDC99AE20E46B174B10A0375F6 Certificate serial: 0586 Authority key identifier: B2:C4:7C:2E:3D:4F:C7:ED:C9:9A:E2:0E:46:B1:74:B1:0A:03:75:F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ssR8Lj1Px-3JmuIORrF0sQoDdfY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/4E76D152B51411ECB8632A19C4F9AE02.roa Signing time: Wed 29 May 2024 01:36:36 +0000 ROA not before: Wed 29 May 2024 01:36:36 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 142063 IP address blocks: 103.166.102.0/24 maxlen: 24 103.166.103.0/24 maxlen: 24 2001:df1:b340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/ssR8Lj1Px-3JmuIORrF0sQoDdfY.crl rsync://rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/ssR8Lj1Px-3JmuIORrF0sQoDdfY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ssR8Lj1Px-3JmuIORrF0sQoDdfY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 01:48:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1414 (0x586) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131067/serialNumber=B2C47C2E3D4FC7EDC99AE20E46B174B10A0375F6 Validity Not Before: May 29 01:36:36 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=665686a4-807d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:4d:4f:74:f5:74:fc:3a:47:59:61:87:fe:90: e1:2e:a1:b3:8c:92:81:ea:9e:25:35:62:8d:b6:69: 42:f0:92:d1:42:64:93:42:fe:d4:d4:24:13:99:86: f6:b0:5d:44:98:0e:d7:92:0f:61:3a:b3:97:9d:00: 47:36:00:44:1d:37:23:ec:e0:3b:fb:92:55:98:15: 97:f7:18:0b:25:b6:1c:a4:16:95:8e:12:e1:4d:64: 9f:26:47:4c:12:23:0c:f0:39:cb:5e:57:ae:4b:ef: c0:9f:83:cc:0e:90:dc:e7:ff:48:4a:04:f5:4c:ae: 34:fb:e9:28:24:b0:7e:d6:41:8f:17:5f:db:f2:9a: fa:76:f9:23:30:23:71:14:ab:5b:d2:42:34:2a:c8: 27:cc:1f:90:e8:7d:22:74:4a:1d:76:09:ff:cc:09: d2:5b:93:b1:80:9d:7f:0f:54:3f:c4:0d:7e:40:48: 08:ee:d9:c1:bd:45:b6:54:a7:16:be:c1:1d:5c:bf: 08:6e:d6:71:87:5d:84:2c:92:ba:47:5b:75:19:45: a1:08:7f:eb:8f:22:39:cd:ec:ca:75:ff:ce:b2:fd: c3:20:01:d5:dc:df:62:9e:00:1e:c8:83:1b:38:e6: 8f:6d:79:f9:7c:f5:cf:55:83:ef:b2:4b:d0:e6:ed: d1:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:53:AD:AD:0C:5D:68:4C:8D:B3:94:60:8A:41:F0:38:F5:A9:25:EC X509v3 Authority Key Identifier: keyid:B2:C4:7C:2E:3D:4F:C7:ED:C9:9A:E2:0E:46:B1:74:B1:0A:03:75:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/ssR8Lj1Px-3JmuIORrF0sQoDdfY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ssR8Lj1Px-3JmuIORrF0sQoDdfY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/4E76D152B51411ECB8632A19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.102.0/23 IPv6: 2001:df1:b340::/48 Signature Algorithm: sha256WithRSAEncryption 7b:e4:cb:24:ff:c6:da:49:f5:30:00:3b:7d:0e:4e:90:6e:6b: 28:3d:02:5a:5e:7c:f8:52:c5:1b:47:87:fc:cf:0a:d6:12:a1: 2c:1a:77:e8:27:a0:72:7b:69:c6:d0:93:93:7f:87:92:80:fd: 2b:83:8c:b3:f8:ba:11:9d:1f:6a:67:3b:cb:e0:69:66:99:10: 72:79:07:02:02:2e:3f:ba:a3:f6:60:a2:64:da:65:bc:54:a7: 9d:24:70:54:2a:56:f6:f2:16:9b:5d:8a:96:37:17:f8:4b:73: 75:da:17:60:f8:9c:dc:1a:36:7a:6e:a9:f8:f0:d5:62:b0:5a: 48:26:57:3a:47:fc:c2:ff:c3:d2:e9:7e:7b:86:6d:69:b0:55: b4:31:9c:0d:96:a7:32:01:eb:13:c2:aa:c1:d8:ee:f6:32:15: 7a:f5:22:f9:b5:31:9b:66:3a:ad:15:78:59:89:bb:74:e1:07: 55:cc:1b:78:3a:84:48:e4:7d:af:c4:20:0b:7f:7b:f1:3a:fa: da:2b:d2:80:6f:1c:9a:88:58:6f:05:c4:f9:3c:7f:0f:92:f5: 9a:87:35:0a:3c:dc:e5:c8:9c:9a:b1:c8:f0:ab:47:b8:9a:b9: b6:19:21:ae:18:21:53:55:cb:0f:84:fc:d8:96:63:a3:97:70: 49:08:bb:46 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzEwNjcxMTAvBgNVBAUTKEIyQzQ3QzJFM0Q0RkM3RURDOTlBRTIwRTQ2QjE3NEIx MEEwMzc1RjYwHhcNMjQwNTI5MDEzNjM2WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU2ODZhNC04MDdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3k1PdPV0/DpHWWGH/pDhLqGzjJKB6p4lNWKNtmlC8JLRQmSTQv7U1CQTmYb2 sF1EmA7Xkg9hOrOXnQBHNgBEHTcj7OA7+5JVmBWX9xgLJbYcpBaVjhLhTWSfJkdM EiMM8DnLXleuS+/An4PMDpDc5/9ISgT1TK40++koJLB+1kGPF1/b8pr6dvkjMCNx FKtb0kI0KsgnzB+Q6H0idEoddgn/zAnSW5OxgJ1/D1Q/xA1+QEgI7tnBvUW2VKcW vsEdXL8IbtZxh12ELJK6R1t1GUWhCH/rjyI5zezKdf/Osv3DIAHV3N9ingAeyIMb OOaPbXn5fPXPVYPvskvQ5u3RtwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDdTra0M XWhMjbOUYIpB8Dj1qSXsMB8GA1UdIwQYMBaAFLLEfC49T8ftyZriDkaxdLEKA3X2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTA2Ny84REQwMEY1NkE2 QUQxMUVCODI3RkMxMUNDNEY5QUUwMi9zc1I4TGoxUHgtM0ptdUlPUnJGMHNRb0Rk ZlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NzUjhMajFQeC0zSm11SU9SckYwc1FvRGRmWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzEwNjcvOEREMDBGNTZBNkFEMTFFQjgyN0ZDMTFDQzRGOUFFMDIvNEU3NkQxNTJC NTE0MTFFQ0I4NjMyQTE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnpmYwDwQCAAIwCQMHACABDfGzQDANBgkqhkiG9w0BAQsF AAOCAQEAe+TLJP/G2kn1MAA7fQ5OkG5rKD0CWl58+FLFG0eH/M8K1hKhLBp36Ceg cntpxtCTk3+HkoD9K4OMs/i6EZ0famc7y+BpZpkQcnkHAgIuP7qj9mCiZNplvFSn nSRwVCpW9vIWm12KljcX+EtzddoXYPic3Bo2em6p+PDVYrBaSCZXOkf8wv/D0ul+ e4ZtabBVtDGcDZanMgHrE8Kqwdju9jIVevUi+bUxm2Y6rRV4WYm7dOEHVcwbeDqE SOR9r8QgC3978Tr62ivSgG8cmohYbwXE+Tx/D5L1moc1Cjzc5cicmrHI8KtHuJq5 thkhrhghU1XLD4T82JZjo5dwSQi7Rg== -----END CERTIFICATE-----Generated at Sat Jun 1 04:07:22 2024 by rpki-client on console-ams.rpki-client.org