$ rpki-client -vvf rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/74EAEAC41ED211EFA618AB5EC4F9AE02.roa File: 74EAEAC41ED211EFA618AB5EC4F9AE02.roa (raw, json) Hash identifier: vnbrqa7E206MxmHKcbo0VSVDXN14AuDGN0RIUwWvHVI= Subject key identifier: E4:A2:1C:64:E1:06:EB:CA:B3:24:E2:C9:E7:B1:9E:67:FF:45:E7:B4 Certificate issuer: /CN=A916879A/serialNumber=399A5E17D9CA43B6C33AC330206DCBDD935E7871 Certificate serial: 05 Authority key identifier: 39:9A:5E:17:D9:CA:43:B6:C3:3A:C3:30:20:6D:CB:DD:93:5E:78:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OZpeF9nKQ7bDOsMwIG3L3ZNeeHE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/74EAEAC41ED211EFA618AB5EC4F9AE02.roa Signing time: Thu 30 May 2024 22:17:53 +0000 ROA not before: Thu 30 May 2024 22:17:53 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 148968 IP address blocks: 103.118.161.0/24 maxlen: 24 2001:df5:d500::/48 maxlen: 48 2001:df5:d501::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/OZpeF9nKQ7bDOsMwIG3L3ZNeeHE.crl rsync://rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/OZpeF9nKQ7bDOsMwIG3L3ZNeeHE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OZpeF9nKQ7bDOsMwIG3L3ZNeeHE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 02 Jul 2024 07:45:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916879A/serialNumber=399A5E17D9CA43B6C33AC330206DCBDD935E7871 Validity Not Before: May 30 22:17:53 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=6658fb10-ee5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:aa:67:2b:d8:02:4d:de:11:a2:b5:3c:f9:b2: c4:9f:f1:c0:96:02:2c:37:80:38:2f:f1:f0:7c:a8: df:12:19:f4:09:ac:d7:90:c2:92:40:f4:a0:ae:db: 85:96:f4:f9:da:94:f7:d5:0f:36:54:00:89:4f:76: c3:7e:3e:e0:f6:80:c0:8f:16:59:79:02:36:65:31: b4:3b:fd:c6:78:c6:89:be:47:b1:70:2e:f5:5b:0a: 55:79:09:a7:d4:b5:30:a9:a4:9f:38:03:68:8c:b1: dd:83:60:3e:27:ff:cb:75:ef:c4:4d:a3:fb:ca:b6: ec:9b:80:11:30:5f:cc:1a:44:69:6d:03:49:ed:fa: 3a:e9:9f:2e:16:67:e0:bb:5d:04:bf:85:fc:a6:e4: 43:d7:e6:4e:e6:d7:e2:f0:ff:17:60:af:00:60:38: 36:46:4a:de:69:ce:63:92:fb:31:84:6a:52:42:ca: b0:32:02:7f:f0:c7:3e:69:37:3b:8d:9a:36:6f:19: c8:23:f2:ff:35:b7:24:3f:67:87:e2:41:6a:e6:eb: 79:01:d3:3e:f6:a1:ee:60:55:18:02:1f:32:a4:d1: 68:10:d5:11:a6:d0:a8:47:77:eb:f7:30:84:a2:34: d0:76:81:d8:f8:08:5a:75:50:16:0b:96:be:a4:cd: a6:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:A2:1C:64:E1:06:EB:CA:B3:24:E2:C9:E7:B1:9E:67:FF:45:E7:B4 X509v3 Authority Key Identifier: keyid:39:9A:5E:17:D9:CA:43:B6:C3:3A:C3:30:20:6D:CB:DD:93:5E:78:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/OZpeF9nKQ7bDOsMwIG3L3ZNeeHE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OZpeF9nKQ7bDOsMwIG3L3ZNeeHE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/74EAEAC41ED211EFA618AB5EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.118.161.0/24 IPv6: 2001:df5:d500::/47 Signature Algorithm: sha256WithRSAEncryption 04:96:f6:37:c4:99:97:50:1e:6d:d6:db:d9:05:42:e4:a6:e3: c4:22:1d:f8:c3:cb:33:e6:ab:17:81:98:e3:5a:c0:48:4c:84: 64:41:91:60:84:97:7e:e9:b9:5d:90:46:40:39:fe:5e:b9:d0: 6d:e2:72:c3:a2:ff:2d:3d:d2:44:e0:5e:ee:b5:67:66:6a:fc: 80:11:81:b9:15:8e:c4:15:9d:76:0e:e7:f7:f3:8c:33:c5:1e: 4b:31:3e:9b:a2:55:02:bf:3d:49:0d:de:10:cc:be:75:de:8a: c2:b0:7a:a6:7c:90:aa:2c:bd:ca:f0:42:10:7e:2e:6f:41:06: db:86:65:21:00:9e:bb:a8:e6:7d:87:71:02:15:49:63:44:d4: af:37:f6:ed:20:ff:ee:ba:8f:3c:ca:a3:d7:de:8f:33:87:89: 95:d2:81:84:88:b9:45:e4:f0:f3:1b:fd:20:35:ee:a8:c8:06: 72:41:f5:6a:dd:f6:dc:1f:57:e6:55:e6:de:80:68:4f:79:e3: ab:f5:f0:f7:1b:0e:01:cf:36:b0:de:03:e7:47:3c:14:35:24: b0:5b:fe:18:0f:e4:91:f4:62:91:d1:dc:4c:23:ef:5d:95:a3: ac:92:fc:03:bb:0e:ba:1b:5d:21:65:60:aa:48:ad:57:36:a1: 96:71:06:28 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 ODc5QTExMC8GA1UEBRMoMzk5QTVFMTdEOUNBNDNCNkMzM0FDMzMwMjA2RENCREQ5 MzVFNzg3MTAeFw0yNDA1MzAyMjE3NTNaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NThmYjEwLWVlNWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyqmcr2AJN3hGitTz5ssSf8cCWAiw3gDgv8fB8qN8SGfQJrNeQwpJA9KCu24WW 9PnalPfVDzZUAIlPdsN+PuD2gMCPFll5AjZlMbQ7/cZ4xom+R7FwLvVbClV5CafU tTCppJ84A2iMsd2DYD4n/8t178RNo/vKtuybgBEwX8waRGltA0nt+jrpny4WZ+C7 XQS/hfym5EPX5k7m1+Lw/xdgrwBgODZGSt5pzmOS+zGEalJCyrAyAn/wxz5pNzuN mjZvGcgj8v81tyQ/Z4fiQWrm63kB0z72oe5gVRgCHzKk0WgQ1RGm0KhHd+v3MISi NNB2gdj4CFp1UBYLlr6kzab9AgMBAAGjggKmMIICojAdBgNVHQ4EFgQU5KIcZOEG 68qzJOLJ57GeZ/9F57QwHwYDVR0jBBgwFoAUOZpeF9nKQ7bDOsMwIG3L3ZNeeHEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4NzlBL0I2NzAxNzNDMUM5 QjExRUY4RjQ1Q0M3REM0RjlBRTAyL09acGVGOW5LUTdiRE9zTXdJRzNMM1pOZWVI RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT1pwZUY5bktRN2JET3NNd0lHM0wzWk5lZUhFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODc5QS9CNjcwMTczQzFDOUIxMUVGOEY0NUNDN0RDNEY5QUUwMi83NEVBRUFDNDFF RDIxMUVGQTYxOEFCNUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGd2oTAPBAIAAjAJAwcBIAEN9dUAMA0GCSqGSIb3DQEBCwUA A4IBAQAElvY3xJmXUB5t1tvZBULkpuPEIh34w8sz5qsXgZjjWsBITIRkQZFghJd+ 6bldkEZAOf5eudBt4nLDov8tPdJE4F7utWdmavyAEYG5FY7EFZ12Duf384wzxR5L MT6bolUCvz1JDd4QzL513orCsHqmfJCqLL3K8EIQfi5vQQbbhmUhAJ67qOZ9h3EC FUljRNSvN/btIP/uuo88yqPX3o8zh4mV0oGEiLlF5PDzG/0gNe6oyAZyQfVq3fbc H1fmVebegGhPeeOr9fD3Gw4Bzzaw3gPnRzwUNSSwW/4YD+SR9GKR0dxMI+9dlaOs kvwDuw66G10hZWCqSK1XNqGWcQYo -----END CERTIFICATE-----Generated at Tue Jun 25 10:01:20 2024 by rpki-client on console-fra.rpki-client.org