$ rpki-client -vvf rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/C6AB3818EDD211EEB5875527C4F9AE02.roa File: C6AB3818EDD211EEB5875527C4F9AE02.roa (raw, json) Hash identifier: ipxX0A0AqMRvU0fJrFh0g6G8uT5n8RdD5QE/sY59kx0= Subject key identifier: 1A:E6:9C:F4:9A:2D:0C:8F:8B:AA:53:45:8F:FF:68:CA:7E:8F:70:21 Certificate issuer: /CN=A917A66F/serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5 Certificate serial: 4C Authority key identifier: B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/C6AB3818EDD211EEB5875527C4F9AE02.roa Signing time: Sat 08 Jun 2024 12:34:24 +0000 ROA not before: Sat 08 Jun 2024 12:34:24 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 976 IP address blocks: 103.118.40.0/22 maxlen: 22 103.118.40.0/24 maxlen: 24 103.118.41.0/24 maxlen: 24 103.118.42.0/24 maxlen: 24 103.118.43.0/24 maxlen: 24 2403:27c0:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 08:47:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A66F/serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5 Validity Not Before: Jun 8 12:34:24 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=66644fd0-88a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:1e:55:b1:42:0e:9a:34:7d:e6:fa:5d:c9:f0: 57:49:15:5a:fe:c2:aa:6e:3d:9c:94:63:05:eb:d4: 63:41:d1:a7:f4:3f:1b:ce:9b:c1:13:5c:de:c3:f5: 0a:b2:e5:28:67:e0:3d:a2:c2:b0:f4:1c:2f:30:b2: b7:9d:52:13:4e:22:4f:af:c8:c9:e4:e0:85:30:20: b1:03:65:63:88:00:5f:eb:7b:e5:58:f5:af:73:1c: a9:43:64:b9:56:95:cb:dd:72:7e:2d:07:8e:df:06: 4b:54:f3:d0:7a:6e:93:7e:de:f4:fa:57:11:e6:f3: 3f:1d:d0:9a:76:f7:8e:1d:49:8e:c3:ac:03:71:c7: c6:24:6f:63:e3:97:b5:80:51:f4:ca:83:f9:ce:bf: 2a:de:9c:dd:00:2e:73:b0:9c:49:a7:d8:42:1e:60: 29:50:da:30:b7:70:3a:15:a2:b8:fc:75:2d:99:c7: d5:42:39:a3:9f:18:5f:62:19:87:26:c7:d9:3b:81: 9b:06:0a:8c:e9:d7:fe:b5:b7:a2:c2:2e:c3:3d:9a: 9e:62:83:4a:1e:ab:d6:f7:d7:68:ad:8a:1e:87:b1: cd:56:53:11:e3:54:25:a9:80:e5:b2:be:57:f3:1d: 52:5a:c5:a1:8c:cb:8f:dd:d3:2a:94:d3:02:0a:ea: be:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:E6:9C:F4:9A:2D:0C:8F:8B:AA:53:45:8F:FF:68:CA:7E:8F:70:21 X509v3 Authority Key Identifier: keyid:B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/C6AB3818EDD211EEB5875527C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.118.40.0/22 IPv6: 2403:27c0:1000::/48 Signature Algorithm: sha256WithRSAEncryption 11:11:4e:a2:b0:0a:a2:dd:12:fb:92:ce:79:c0:b2:23:f4:71: 11:67:46:c5:9b:2f:d4:90:36:76:41:33:b1:72:db:e1:4f:ac: 01:5a:85:87:6b:3f:58:f0:e0:3e:ca:7c:0b:02:15:b0:5a:99: ce:93:8b:37:2a:04:60:4d:88:f5:c8:f9:f7:6f:5a:76:94:aa: d0:bb:ad:ee:2c:38:b2:a3:29:2c:a3:02:c0:31:8e:89:74:a6: bb:4c:80:be:d7:81:86:55:6d:56:f8:c7:d2:a3:2e:5c:0f:fe: 20:f1:e0:65:db:93:2f:9a:f3:b1:67:af:9c:e2:e8:e6:44:a7: 7a:7f:c8:d4:65:f8:ce:ac:09:e4:19:f1:5c:61:6b:bc:d9:32: 9d:df:7a:e1:3d:fe:49:f8:ad:0f:38:42:36:81:db:6e:68:cf: 4e:84:47:74:5e:f6:64:21:09:c0:35:2a:f1:2f:73:9a:ab:b2: 4c:be:3c:0e:4b:62:f2:f7:72:db:e4:a9:df:03:ac:97:b6:92: f9:85:03:e4:36:b1:88:e0:a5:90:58:34:05:71:e7:b4:d7:4f: 7f:4c:85:25:30:9e:47:5f:8a:43:35:c5:11:a4:be:35:38:9b: 15:61:48:89:40:47:4c:c3:40:e9:59:9c:53:55:1a:6f:c1:e9: 08:e0:16:c8 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QTY2RjExMC8GA1UEBRMoQjIyQzNEMEFCQ0QzOTE5NDg2QTNFNjFFOEQ3ODg5MjM5 MjJCRjZBNTAeFw0yNDA2MDgxMjM0MjRaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NjQ0ZmQwLTg4YTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwHlWxQg6aNH3m+l3J8FdJFVr+wqpuPZyUYwXr1GNB0af0PxvOm8ETXN7D9Qqy 5Shn4D2iwrD0HC8wsredUhNOIk+vyMnk4IUwILEDZWOIAF/re+VY9a9zHKlDZLlW lcvdcn4tB47fBktU89B6bpN+3vT6VxHm8z8d0Jp2944dSY7DrANxx8Ykb2Pjl7WA UfTKg/nOvyrenN0ALnOwnEmn2EIeYClQ2jC3cDoVorj8dS2Zx9VCOaOfGF9iGYcm x9k7gZsGCozp1/61t6LCLsM9mp5ig0oeq9b312itih6Hsc1WUxHjVCWpgOWyvlfz HVJaxaGMy4/d0yqU0wIK6r4NAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUGuac9Jot DI+LqlNFj/9oyn6PcCEwHwYDVR0jBBgwFoAUsiw9CrzTkZSGo+YejXiJI5Ir9qUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdBNjZGLzhGQ0M5RDI4QzZG OTExRUU5N0U2RkIxREM0RjlBRTAyL3NpdzlDcnpUa1pTR28tWWVqWGlKSTVJcjlx VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc2l3OUNyelRrWlNHby1ZZWpYaUpJNUlyOXFVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTY2Ri84RkNDOUQyOEM2RjkxMUVFOTdFNkZCMURDNEY5QUUwMi9DNkFCMzgxOEVE RDIxMUVFQjU4NzU1MjdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAmd2KDAPBAIAAjAJAwcAJAMnwBAAMA0GCSqGSIb3DQEBCwUA A4IBAQAREU6isAqi3RL7ks55wLIj9HERZ0bFmy/UkDZ2QTOxctvhT6wBWoWHaz9Y 8OA+ynwLAhWwWpnOk4s3KgRgTYj1yPn3b1p2lKrQu63uLDiyoyksowLAMY6JdKa7 TIC+14GGVW1W+MfSoy5cD/4g8eBl25MvmvOxZ6+c4ujmRKd6f8jUZfjOrAnkGfFc YWu82TKd33rhPf5J+K0POEI2gdtuaM9OhEd0XvZkIQnANSrxL3Oaq7JMvjwOS2Ly 93Lb5KnfA6yXtpL5hQPkNrGI4KWQWDQFcee0109/TIUlMJ5HX4pDNcURpL41OJsV YUiJQEdMw0DpWZxTVRpvwekI4BbI -----END CERTIFICATE-----Generated at Mon Jun 17 11:41:57 2024 by rpki-client on console-ams.rpki-client.org