$ rpki-client -vvf rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/CBB9F6766CE211EEA9499734C4F9AE02.roa File: CBB9F6766CE211EEA9499734C4F9AE02.roa (raw, json) Hash identifier: bTBIulT5DOVNDlGpqruh0biVPZ8saRMpFENxpI9tQtQ= Subject key identifier: 3D:8D:0B:12:EF:BE:2B:B7:76:6E:BA:89:84:22:31:E3:32:83:53:3A Certificate issuer: /CN=A917E151/serialNumber=0CD64E4BD6FAD397C7471118A2803B87DD2C1D53 Certificate serial: 0439 Authority key identifier: 0C:D6:4E:4B:D6:FA:D3:97:C7:47:11:18:A2:80:3B:87:DD:2C:1D:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNZOS9b605fHRxEYooA7h90sHVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/CBB9F6766CE211EEA9499734C4F9AE02.roa Signing time: Tue 12 Dec 2023 04:43:33 +0000 ROA not before: Tue 12 Dec 2023 04:43:33 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 137845 IP address blocks: 103.115.168.0/22 maxlen: 22 103.115.168.0/24 maxlen: 24 103.115.169.0/24 maxlen: 24 2403:1840::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.crl rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNZOS9b605fHRxEYooA7h90sHVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:38:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1081 (0x439) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E151/serialNumber=0CD64E4BD6FAD397C7471118A2803B87DD2C1D53 Validity Not Before: Dec 12 04:43:33 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6577e4f4-4be6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:83:bb:b5:db:e4:31:e4:5a:3f:33:f0:2d:9a: 1f:f7:25:51:d7:c7:f2:a9:f2:cd:5c:70:83:a7:e8: bf:a0:2f:c9:9f:0d:8d:27:d8:55:ab:39:d7:d8:ff: 13:b7:03:cc:ae:ee:e9:09:b5:fc:c5:0b:b3:d4:37: 6e:b2:c9:3d:eb:6e:7b:d4:c8:51:c8:f5:00:2e:e9: 18:ae:df:52:7e:51:3f:14:ba:60:25:b2:bb:56:8c: a1:e0:a9:9f:40:78:13:51:a3:4b:0a:1d:be:f3:65: 31:6c:03:aa:4f:2c:a5:6a:01:61:c4:0c:25:df:1d: 7d:dd:45:53:94:ef:e1:cb:3d:de:5d:8b:c9:60:09: 4a:a4:de:b2:28:88:27:39:53:4e:f1:4a:08:a3:6a: 5f:78:33:eb:87:ae:6c:57:5c:4a:8e:0a:19:7d:e2: e3:d4:d9:0c:a8:c7:07:f2:1f:34:70:63:57:01:0f: 3c:5f:99:4b:85:f4:c2:4a:58:a2:44:26:4e:43:a1: 41:46:72:6f:f1:54:33:9c:63:53:ed:08:aa:5b:18: 70:29:bc:82:55:24:0f:27:02:52:f4:69:22:1d:5b: 87:e9:ab:c1:be:e2:9d:f4:fb:96:2d:63:90:b7:f0: 77:33:51:b3:38:31:e6:db:ac:8a:c4:04:69:44:2b: f1:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:8D:0B:12:EF:BE:2B:B7:76:6E:BA:89:84:22:31:E3:32:83:53:3A X509v3 Authority Key Identifier: keyid:0C:D6:4E:4B:D6:FA:D3:97:C7:47:11:18:A2:80:3B:87:DD:2C:1D:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/DNZOS9b605fHRxEYooA7h90sHVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNZOS9b605fHRxEYooA7h90sHVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E151/12ACD6BAF4DC11EB8F7DB949C4F9AE02/CBB9F6766CE211EEA9499734C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.115.168.0/22 IPv6: 2403:1840::/32 Signature Algorithm: sha256WithRSAEncryption 47:e0:d2:b2:49:d2:24:41:2a:b8:ca:c9:4e:d5:15:84:4c:d3: f3:7f:a3:1d:11:82:a0:81:bc:c3:36:20:bf:77:d4:1e:09:9b: bb:6a:70:dd:32:73:24:68:a7:6c:c1:aa:5a:78:f6:41:25:59: a3:48:f1:db:1d:2f:26:96:49:cb:ea:bb:cf:a6:6c:8e:6e:1e: ce:15:9d:7e:6a:8d:e7:63:11:d3:13:de:6f:6e:54:df:3d:96: c2:52:b8:a6:7d:98:52:95:99:e0:d0:d5:63:c6:fe:88:2e:e5: a5:8d:d6:89:60:66:ce:88:ce:72:72:54:ae:68:57:bf:94:42: ca:ba:de:57:e9:6c:61:f3:13:5d:2d:a3:4b:a1:bd:4d:f2:21: 8a:7d:a9:56:27:83:ce:53:c3:aa:b3:de:45:7a:b4:3e:8f:e7: 4e:b5:67:f5:4c:f1:ac:ac:6c:3e:00:10:16:b3:d7:22:67:d6: c8:61:80:b7:28:24:3f:91:2f:d1:7e:be:d5:45:50:6c:84:b0: 48:47:17:dd:5e:48:d5:10:ac:03:89:b5:92:5a:e6:51:9c:0a: 54:9e:87:1c:72:17:12:2e:24:01:6e:ad:38:e1:fc:f1:71:ca: 04:ec:3b:77:58:09:db:51:a7:de:0c:3a:21:82:e3:87:d9:24: 80:b2:63:ea -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBDkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UxNTExMTAvBgNVBAUTKDBDRDY0RTRCRDZGQUQzOTdDNzQ3MTExOEEyODAzQjg3 REQyQzFENTMwHhcNMjMxMjEyMDQ0MzMzWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTc3ZTRmNC00YmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4YO7tdvkMeRaPzPwLZof9yVR18fyqfLNXHCDp+i/oC/Jnw2NJ9hVqznX2P8T twPMru7pCbX8xQuz1Ddussk962571MhRyPUALukYrt9SflE/FLpgJbK7Voyh4Kmf QHgTUaNLCh2+82UxbAOqTyylagFhxAwl3x193UVTlO/hyz3eXYvJYAlKpN6yKIgn OVNO8UoIo2pfeDPrh65sV1xKjgoZfeLj1NkMqMcH8h80cGNXAQ88X5lLhfTCSlii RCZOQ6FBRnJv8VQznGNT7QiqWxhwKbyCVSQPJwJS9GkiHVuH6avBvuKd9PuWLWOQ t/B3M1GzODHm26yKxARpRCvxiwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFD2NCxLv viu3dm66iYQiMeMyg1M6MB8GA1UdIwQYMBaAFAzWTkvW+tOXx0cRGKKAO4fdLB1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTE1MS8xMkFDRDZCQUY0 REMxMUVCOEY3REI5NDlDNEY5QUUwMi9ETlpPUzliNjA1ZkhSeEVZb29BN2g5MHNI Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ROWk9TOWI2MDVmSFJ4RVlvb0E3aDkwc0hWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UxNTEvMTJBQ0Q2QkFGNERDMTFFQjhGN0RCOTQ5QzRGOUFFMDIvQ0JCOUY2NzY2 Q0UyMTFFRUE5NDk5NzM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnc6gwDQQCAAIwBwMFACQDGEAwDQYJKoZIhvcNAQELBQAD ggEBAEfg0rJJ0iRBKrjKyU7VFYRM0/N/ox0RgqCBvMM2IL931B4Jm7tqcN0ycyRo p2zBqlp49kElWaNI8dsdLyaWScvqu8+mbI5uHs4VnX5qjedjEdMT3m9uVN89lsJS uKZ9mFKVmeDQ1WPG/ogu5aWN1olgZs6IznJyVK5oV7+UQsq63lfpbGHzE10to0uh vU3yIYp9qVYng85Tw6qz3kV6tD6P5061Z/VM8aysbD4AEBaz1yJn1shhgLcoJD+R L9F+vtVFUGyEsEhHF91eSNUQrAOJtZJa5lGcClSehxxyFxIuJAFurTjh/PFxygTs O3dYCdtRp94MOiGC44fZJICyY+o= -----END CERTIFICATE-----Generated at Sat Jun 1 04:59:03 2024 by rpki-client on console-fra.rpki-client.org