$ rpki-client -vvf rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/C6AB3818EDD211EEB5875527C4F9AE02.roa File: C6AB3818EDD211EEB5875527C4F9AE02.roa (raw, json) Hash identifier: ep499XAd0xhquZYHJ7hrdqlfy3mjRDZyaBePZMzaPa8= Subject key identifier: 1C:FE:5C:7A:C8:64:11:0A:73:BC:AA:30:D4:4B:0B:63:C3:21:C5:0E Certificate issuer: /CN=A917A66F/serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5 Certificate serial: 7C Authority key identifier: B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/C6AB3818EDD211EEB5875527C4F9AE02.roa Signing time: Sun 11 Aug 2024 06:17:25 +0000 ROA not before: Sun 11 Aug 2024 06:17:25 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 976 IP address blocks: 103.118.40.0/22 maxlen: 22 103.118.40.0/23 maxlen: 23 103.118.40.0/24 maxlen: 24 103.118.41.0/24 maxlen: 24 103.118.42.0/23 maxlen: 23 103.118.42.0/24 maxlen: 24 103.118.43.0/24 maxlen: 24 2403:27c0:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Oct 2024 04:42:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A66F/serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5 Validity Not Before: Aug 11 06:17:25 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66b85775-44cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:4d:12:f0:74:94:6d:b0:77:b7:b8:e2:09:dd: b4:68:07:00:ee:83:f7:70:ad:74:5e:be:ce:61:65: ac:f3:a1:6e:c4:43:14:ee:04:73:c8:aa:25:5a:5e: 3f:fc:65:eb:af:d9:79:cc:1c:e3:cd:4b:25:39:81: 59:d8:70:f5:85:1b:e6:b8:ce:4d:7e:4f:72:87:88: 0e:62:5e:21:9a:63:14:62:12:12:85:8e:bc:69:21: 34:22:6c:21:31:ff:0d:76:41:cb:e2:83:0d:fc:3a: f0:c5:e7:a2:ea:c5:ed:52:1c:70:fd:de:9f:fa:19: 6d:01:f8:c1:73:0f:ae:fe:e0:f7:b9:08:6c:50:a5: 42:e8:7b:07:33:49:d7:a7:8c:50:6d:f7:ed:30:7f: 33:9f:8d:b8:f5:d4:1e:65:e5:b4:91:52:bf:d9:48: bc:6e:66:d1:79:7e:b1:01:3c:c7:c0:63:48:51:d6: 69:83:e0:61:26:23:a3:b5:0c:2e:15:4d:4d:b4:75: d2:b3:b3:fb:11:d5:91:a9:6a:21:d8:d3:43:95:61: 17:ca:9c:ba:af:64:bc:06:cd:0e:e0:f6:7f:5f:b3: 85:39:89:8c:8c:7c:00:83:f9:e9:ae:34:b9:03:0a: 4e:9a:59:0b:c4:50:27:5b:03:cf:c2:70:cf:c8:79: 14:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:FE:5C:7A:C8:64:11:0A:73:BC:AA:30:D4:4B:0B:63:C3:21:C5:0E X509v3 Authority Key Identifier: keyid:B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/C6AB3818EDD211EEB5875527C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.118.40.0/22 IPv6: 2403:27c0:1000::/48 Signature Algorithm: sha256WithRSAEncryption 00:3f:c7:70:2c:4d:0f:2a:1a:d8:e3:32:a8:ec:d6:f1:22:3b: 2c:a2:4a:3a:39:dc:cf:32:1e:96:62:27:ce:60:1d:73:3d:ac: f0:47:1d:fd:be:e8:04:fc:31:9f:12:28:6f:18:53:d3:de:50: 4f:e8:4f:37:51:61:b9:63:c1:08:be:3f:56:0e:df:7b:b2:b0: 3a:36:ac:cc:ba:e2:3f:c9:15:84:39:ed:e8:36:57:e5:d5:41: 6d:cf:48:a0:a3:bd:3e:bc:1d:f1:9a:c9:87:5b:2a:96:09:a5: c5:25:f6:0a:6b:aa:d3:2a:3d:32:3a:c2:9c:9b:69:e3:2c:05: 07:0c:00:0a:03:55:48:33:7f:06:6c:69:b0:de:65:b1:2e:55: 81:d8:d4:97:cd:39:c1:1a:cf:f6:13:4d:75:30:7b:9d:8c:f3: 98:59:7d:1d:8e:06:e3:de:7c:b8:a5:da:b0:0e:47:e3:bc:1c: c8:7b:dc:09:fe:c0:b8:cf:ad:47:5f:9f:74:e2:5c:37:65:9d: 48:ae:45:50:b5:53:3c:c3:5f:da:5c:2a:c1:9c:de:cb:f0:e4: a5:b8:81:6d:44:65:ca:6d:6f:d7:03:63:b3:ff:9b:03:cd:27: d8:ab:6a:81:63:d5:2d:dd:27:e1:49:07:bb:3b:e7:d7:9b:4a: 70:e1:0d:68 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QTY2RjExMC8GA1UEBRMoQjIyQzNEMEFCQ0QzOTE5NDg2QTNFNjFFOEQ3ODg5MjM5 MjJCRjZBNTAeFw0yNDA4MTEwNjE3MjVaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2Yjg1Nzc1LTQ0Y2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD0TRLwdJRtsHe3uOIJ3bRoBwDug/dwrXRevs5hZazzoW7EQxTuBHPIqiVaXj/8 Zeuv2XnMHOPNSyU5gVnYcPWFG+a4zk1+T3KHiA5iXiGaYxRiEhKFjrxpITQibCEx /w12Qcvigw38OvDF56Lqxe1SHHD93p/6GW0B+MFzD67+4Pe5CGxQpULoewczSden jFBt9+0wfzOfjbj11B5l5bSRUr/ZSLxuZtF5frEBPMfAY0hR1mmD4GEmI6O1DC4V TU20ddKzs/sR1ZGpaiHY00OVYRfKnLqvZLwGzQ7g9n9fs4U5iYyMfACD+emuNLkD Ck6aWQvEUCdbA8/CcM/IeRSvAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUHP5ceshk EQpzvKow1EsLY8MhxQ4wHwYDVR0jBBgwFoAUsiw9CrzTkZSGo+YejXiJI5Ir9qUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdBNjZGLzhGQ0M5RDI4QzZG OTExRUU5N0U2RkIxREM0RjlBRTAyL3NpdzlDcnpUa1pTR28tWWVqWGlKSTVJcjlx VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc2l3OUNyelRrWlNHby1ZZWpYaUpJNUlyOXFVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTY2Ri84RkNDOUQyOEM2RjkxMUVFOTdFNkZCMURDNEY5QUUwMi9DNkFCMzgxOEVE RDIxMUVFQjU4NzU1MjdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAmd2KDAPBAIAAjAJAwcAJAMnwBAAMA0GCSqGSIb3DQEBCwUA A4IBAQAAP8dwLE0PKhrY4zKo7NbxIjssoko6OdzPMh6WYifOYB1zPazwRx39vugE /DGfEihvGFPT3lBP6E83UWG5Y8EIvj9WDt97srA6NqzMuuI/yRWEOe3oNlfl1UFt z0igo70+vB3xmsmHWyqWCaXFJfYKa6rTKj0yOsKcm2njLAUHDAAKA1VIM38GbGmw 3mWxLlWB2NSXzTnBGs/2E011MHudjPOYWX0djgbj3ny4pdqwDkfjvBzIe9wJ/sC4 z61HX5904lw3ZZ1IrkVQtVM8w1/aXCrBnN7L8OSluIFtRGXKbW/XA2Oz/5sDzSfY q2qBY9Ut3SfhSQe7O+fXm0pw4Q1o -----END CERTIFICATE-----Generated at Fri Sep 27 06:08:40 2024 by rpki-client on console-fra.rpki-client.org