$ rpki-client -vvf rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/8C2774CA0F3511EF93020023C4F9AE02.roa File: 8C2774CA0F3511EF93020023C4F9AE02.roa (raw, json) Hash identifier: Ve2H+p3YmRSExg1fnQMWU+9OXZhKqHmcgsuqGT2Dvjs= Subject key identifier: 7C:E0:E2:0C:25:D2:AC:D8:71:D1:58:B5:CD:20:B9:2B:6C:57:14:32 Certificate issuer: /CN=A919D64D/serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Certificate serial: 33E2 Authority key identifier: C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/8C2774CA0F3511EF93020023C4F9AE02.roa Signing time: Sat 11 May 2024 01:26:53 +0000 ROA not before: Sat 11 May 2024 01:26:53 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 9937 IP address blocks: 103.255.148.0/22 maxlen: 22 103.255.148.0/24 maxlen: 24 103.255.149.0/24 maxlen: 24 180.149.208.0/20 maxlen: 20 180.149.208.0/24 maxlen: 24 180.149.209.0/24 maxlen: 24 180.149.210.0/24 maxlen: 24 180.149.211.0/24 maxlen: 24 180.149.212.0/24 maxlen: 24 180.149.213.0/24 maxlen: 24 180.149.223.0/24 maxlen: 24 182.255.50.0/24 maxlen: 24 182.255.51.0/24 maxlen: 24 2402:7c00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Jun 2024 14:06:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13282 (0x33e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D64D/serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Validity Not Before: May 11 01:26:53 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=663ec95d-7532 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:40:00:da:35:00:dc:20:f4:48:0b:ce:d9:01: 8d:b0:fd:53:13:d5:0f:a4:f8:9c:f1:71:1d:be:3d: 1a:c5:83:1e:d5:16:08:9d:8e:fb:53:51:c1:56:c6: 8a:ad:3c:f3:9d:1f:fb:24:e7:6b:42:c7:fa:6e:a7: 83:22:df:9f:28:aa:21:1a:40:b5:95:47:b9:43:c0: 15:c3:95:e5:3d:fe:89:28:6a:7c:7d:9e:95:32:cf: a3:83:6b:96:c8:b2:05:9d:b8:82:38:ff:4e:50:eb: b4:e4:f3:f8:29:c6:a6:15:5f:8f:a5:11:a6:48:dd: a8:9b:a7:e8:97:b1:3b:84:96:2a:b9:2f:c5:50:2c: c3:a5:ce:df:28:55:a9:1c:7b:39:95:c6:6e:d8:88: 47:88:e5:fd:70:2d:ac:94:31:08:12:38:34:69:f0: af:33:83:35:c2:a0:04:bc:61:98:35:9c:ae:54:85: 20:c8:53:c8:0b:0f:1f:4e:ef:fc:b4:72:a4:36:df: d3:78:c2:5e:05:61:35:b9:70:15:af:93:5a:83:98: 04:bc:a3:ce:d8:1c:ef:e2:41:25:ed:3c:ae:85:19: 24:f6:21:db:aa:17:34:1e:66:c4:81:ac:a1:01:03: d4:a0:b5:96:ab:f1:b3:30:9f:69:3b:c2:b4:b4:fa: 38:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:E0:E2:0C:25:D2:AC:D8:71:D1:58:B5:CD:20:B9:2B:6C:57:14:32 X509v3 Authority Key Identifier: keyid:C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/8C2774CA0F3511EF93020023C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.148.0/22 180.149.208.0/20 182.255.50.0/23 IPv6: 2402:7c00::/32 Signature Algorithm: sha256WithRSAEncryption c3:1e:31:9c:60:2c:de:e4:4f:81:1e:e3:ff:d8:02:75:a5:c1: 89:5a:f7:eb:48:a7:00:ba:bc:16:a0:6e:86:d4:b2:90:9c:e3: 5b:f4:58:42:0e:95:59:8b:0f:78:b4:64:50:13:0c:63:a0:76: 5b:72:06:b9:17:88:a6:07:2a:b4:34:6b:5f:e4:55:ec:60:0b: d4:52:5d:c7:c9:bc:7e:9b:fc:27:c2:68:cb:46:2f:4c:03:40: a3:8f:ab:05:75:db:16:73:d5:7f:ea:a6:1f:9b:a6:12:26:a3: 9e:6e:7d:24:7a:a8:6f:e3:d0:5d:ff:0d:e1:75:3a:d1:0f:ec: 23:df:88:74:b4:f9:db:e5:c0:9a:f2:c6:1b:11:d8:b4:c0:d9: 60:f3:1a:70:44:5d:6c:d5:e4:ab:5a:cf:22:f0:99:af:34:58: 78:ba:b2:a2:ad:2d:62:e9:53:11:0a:e3:b8:95:6c:1f:1d:ea: 9a:92:ce:f5:79:03:07:57:4b:86:0b:71:42:03:63:08:f3:8d: ae:6d:f1:d2:1b:5d:c9:91:40:ee:4b:3f:4b:c9:ea:4a:d4:8c: 5c:a5:15:e6:33:4a:95:88:ef:ba:e9:e0:2e:5f:78:0f:31:f5: 85:cb:fa:07:95:90:ef:ee:99:1f:0d:ab:7d:19:e0:99:94:c5: 72:5d:8f:89 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICM+IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2NEQxMTAvBgNVBAUTKEM0MjIwRjUwMzU1NjQ3QjdDODBCMkNFOEJDNzEyNkFB QzJFMjJEMzcwHhcNMjQwNTExMDEyNjUzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNlYzk1ZC03NTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUAA2jUA3CD0SAvO2QGNsP1TE9UPpPic8XEdvj0axYMe1RYInY77U1HBVsaK rTzznR/7JOdrQsf6bqeDIt+fKKohGkC1lUe5Q8AVw5XlPf6JKGp8fZ6VMs+jg2uW yLIFnbiCOP9OUOu05PP4KcamFV+PpRGmSN2om6fol7E7hJYquS/FUCzDpc7fKFWp HHs5lcZu2IhHiOX9cC2slDEIEjg0afCvM4M1wqAEvGGYNZyuVIUgyFPICw8fTu/8 tHKkNt/TeMJeBWE1uXAVr5Nag5gEvKPO2Bzv4kEl7TyuhRkk9iHbqhc0HmbEgayh AQPUoLWWq/GzMJ9pO8K0tPo45QIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFHzg4gwl 0qzYcdFYtc0guStsVxQyMB8GA1UdIwQYMBaAFMQiD1A1Vke3yAss6LxxJqrC4i03 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDY0RC9EOTMzM0ZFNDFE NkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3ZklDeXpvdkhFbXFzTGlM VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hDSVBVRFZXUjdmSUN5em92SEVtcXNMaUxUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUQ2NEQvRDkzMzNGRTQxRDZFMTFFMkE4NTA4MEIwMDhCMDJDRDIvOEMyNzc0Q0Ew RjM1MTFFRjkzMDIwMDIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJn/5QDBAS0ldADBAG2/zIwDQQCAAIwBwMFACQCfAAwDQYJ KoZIhvcNAQELBQADggEBAMMeMZxgLN7kT4Ee4//YAnWlwYla9+tIpwC6vBagbobU spCc41v0WEIOlVmLD3i0ZFATDGOgdltyBrkXiKYHKrQ0a1/kVexgC9RSXcfJvH6b /CfCaMtGL0wDQKOPqwV12xZz1X/qph+bphImo55ufSR6qG/j0F3/DeF1OtEP7CPf iHS0+dvlwJryxhsR2LTA2WDzGnBEXWzV5KtazyLwma80WHi6sqKtLWLpUxEK47iV bB8d6pqSzvV5AwdXS4YLcUIDYwjzja5t8dIbXcmRQO5LP0vJ6krUjFylFeYzSpWI 77rp4C5feA8x9YXL+geVkO/umR8Nq30Z4JmUxXJdj4k= -----END CERTIFICATE-----Generated at Fri Jun 14 15:17:04 2024 by rpki-client on console-ams.rpki-client.org