$ rpki-client -vvf rpki.apnic.net/member_repository/A919D8FC/3465A0769C8011EA98010976C4F9AE02/DCCFE098162E11EEB79F703CC4F9AE02.roa File: DCCFE098162E11EEB79F703CC4F9AE02.roa (raw, json) Hash identifier: ILgqvMNzXlWGP4m69+QKeWojGVwoGRsOtHn3LLQ3jU8= Subject key identifier: A1:A1:25:95:21:86:20:19:71:5F:99:FC:16:90:99:D1:68:FE:1A:75 Certificate issuer: /CN=A919D8FC/serialNumber=418849CA4829BD5AEC6592CC93AFA3753589715F Certificate serial: 22 Authority key identifier: 41:88:49:CA:48:29:BD:5A:EC:65:92:CC:93:AF:A3:75:35:89:71:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QYhJykgpvVrsZZLMk6-jdTWJcV8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D8FC/3465A0769C8011EA98010976C4F9AE02/DCCFE098162E11EEB79F703CC4F9AE02.roa Signing time: Fri 18 Aug 2023 21:18:32 +0000 ROA not before: Fri 18 Aug 2023 21:18:32 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 140667 IP address blocks: 103.151.132.0/23 maxlen: 23 103.151.132.0/24 maxlen: 24 103.151.133.0/24 maxlen: 24 2001:df3:c280::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D8FC/3465A0769C8011EA98010976C4F9AE02/QYhJykgpvVrsZZLMk6-jdTWJcV8.crl rsync://rpki.apnic.net/member_repository/A919D8FC/3465A0769C8011EA98010976C4F9AE02/QYhJykgpvVrsZZLMk6-jdTWJcV8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QYhJykgpvVrsZZLMk6-jdTWJcV8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Feb 2024 08:48:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D8FC/serialNumber=418849CA4829BD5AEC6592CC93AFA3753589715F Validity Not Before: Aug 18 21:18:32 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64dfe028-a2b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9c:f8:dd:b2:3c:05:9a:55:6f:dd:86:b6:c6: 97:47:06:48:39:f7:01:75:b0:4e:1c:33:fa:bb:c1: 32:47:09:8c:81:b3:8c:3f:47:b8:ad:3b:f0:55:4d: 49:89:d1:7b:13:b8:e1:93:33:6a:60:95:b8:7e:13: 1b:5a:73:01:86:74:c2:b0:34:23:48:6b:ca:61:1a: 67:0f:05:c7:9b:ed:7d:31:fb:1c:7a:83:0a:c7:96: b5:97:55:fe:f8:99:29:aa:4b:f8:23:ad:5b:6e:e0: 2d:e1:5f:0a:f2:53:19:c1:8f:e5:7c:fb:3e:3f:79: 65:57:c5:c4:97:b6:66:6e:b2:d2:15:5e:8a:c1:bd: 67:f6:89:36:4a:e7:88:6a:f4:d0:f9:2e:0e:8f:6f: af:6b:2a:e5:63:23:9a:ed:0c:e5:2b:d7:f2:13:f4: 9f:9d:9d:2b:ff:c4:45:b6:d0:8c:8f:19:f5:96:e8: 8e:46:e6:70:d4:4e:8c:aa:30:8c:11:cd:2b:d5:ce: 18:42:b9:51:e5:02:5e:5a:14:b4:e6:69:78:5a:a7: e6:48:1e:ee:52:79:f9:d2:ae:0a:f4:16:93:cc:29: 95:89:e8:c2:85:6d:7f:d8:49:ac:e4:c9:c9:27:31: 53:41:b9:6f:ac:c7:eb:14:a8:6d:60:f6:a5:d8:2f: 4a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:A1:25:95:21:86:20:19:71:5F:99:FC:16:90:99:D1:68:FE:1A:75 X509v3 Authority Key Identifier: keyid:41:88:49:CA:48:29:BD:5A:EC:65:92:CC:93:AF:A3:75:35:89:71:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D8FC/3465A0769C8011EA98010976C4F9AE02/QYhJykgpvVrsZZLMk6-jdTWJcV8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QYhJykgpvVrsZZLMk6-jdTWJcV8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D8FC/3465A0769C8011EA98010976C4F9AE02/DCCFE098162E11EEB79F703CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.132.0/23 IPv6: 2001:df3:c280::/48 Signature Algorithm: sha256WithRSAEncryption bf:77:cb:9e:17:a3:f5:37:c0:51:ed:ef:7a:8b:a5:f0:db:f0: 6e:54:06:8f:42:d3:99:6e:de:83:f9:33:05:98:ed:aa:86:e5: e6:38:7e:38:11:01:6c:f0:e7:fb:87:f5:19:56:9f:a1:92:bd: 81:c4:fa:26:52:83:87:80:15:07:8c:44:8c:84:01:4c:6e:00: 72:2a:f8:34:5a:f7:3c:d8:46:58:f1:2f:12:f8:0f:7c:49:34: 81:11:8e:2c:26:c9:0f:e8:53:92:5a:3c:55:0e:29:c3:5a:f2: 01:49:7c:63:8a:4f:c2:d1:85:35:18:81:56:cc:3e:1f:5f:7a: b7:f0:16:e2:f0:5d:b3:3f:93:fc:c6:da:b5:2f:b1:c9:81:67: af:80:e6:b6:e2:15:6d:92:5c:6c:aa:e5:ae:20:bf:8a:99:06: b2:48:2d:1f:4c:a4:66:86:60:13:12:d5:bf:cb:b6:c0:57:27: 99:9d:99:6d:52:80:7d:09:b3:6a:83:19:f2:f5:f4:58:ca:4d: 9f:f2:c6:e0:ee:9e:6f:16:2b:7f:38:c3:34:7b:71:be:cd:e1: 4e:73:23:49:9e:89:1d:4d:d2:37:38:87:0a:7b:4a:9b:98:75: 5c:c0:6a:e9:f3:e6:24:47:49:68:23:05:2c:38:5d:6f:b1:ba: 02:d3:5f:03 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RDhGQzExMC8GA1UEBRMoNDE4ODQ5Q0E0ODI5QkQ1QUVDNjU5MkNDOTNBRkEzNzUz NTg5NzE1RjAeFw0yMzA4MTgyMTE4MzJaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZGZlMDI4LWEyYjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/nPjdsjwFmlVv3Ya2xpdHBkg59wF1sE4cM/q7wTJHCYyBs4w/R7itO/BVTUmJ 0XsTuOGTM2pglbh+ExtacwGGdMKwNCNIa8phGmcPBceb7X0x+xx6gwrHlrWXVf74 mSmqS/gjrVtu4C3hXwryUxnBj+V8+z4/eWVXxcSXtmZustIVXorBvWf2iTZK54hq 9ND5Lg6Pb69rKuVjI5rtDOUr1/IT9J+dnSv/xEW20IyPGfWW6I5G5nDUToyqMIwR zSvVzhhCuVHlAl5aFLTmaXhap+ZIHu5SefnSrgr0FpPMKZWJ6MKFbX/YSazkyckn MVNBuW+sx+sUqG1g9qXYL0qvAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUoaEllSGG IBlxX5n8FpCZ0Wj+GnUwHwYDVR0jBBgwFoAUQYhJykgpvVrsZZLMk6+jdTWJcV8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlEOEZDLzM0NjVBMDc2OUM4 MDExRUE5ODAxMDk3NkM0RjlBRTAyL1FZaEp5a2dwdlZyc1paTE1rNi1qZFRXSmNW OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUVloSnlrZ3B2VnJzWlpMTWs2LWpkVFdKY1Y4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDhGQy8zNDY1QTA3NjlDODAxMUVBOTgwMTA5NzZDNEY5QUUwMi9EQ0NGRTA5ODE2 MkUxMUVFQjc5RjcwM0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWeXhDAPBAIAAjAJAwcAIAEN88KAMA0GCSqGSIb3DQEBCwUA A4IBAQC/d8ueF6P1N8BR7e96i6Xw2/BuVAaPQtOZbt6D+TMFmO2qhuXmOH44EQFs 8Of7h/UZVp+hkr2BxPomUoOHgBUHjESMhAFMbgByKvg0Wvc82EZY8S8S+A98STSB EY4sJskP6FOSWjxVDinDWvIBSXxjik/C0YU1GIFWzD4fX3q38Bbi8F2zP5P8xtq1 L7HJgWevgOa24hVtklxsquWuIL+KmQaySC0fTKRmhmATEtW/y7bAVyeZnZltUoB9 CbNqgxny9fRYyk2f8sbg7p5vFit/OMM0e3G+zeFOcyNJnokdTdI3OIcKe0qbmHVc wGrp8+YkR0loIwUsOF1vsboC018D -----END CERTIFICATE-----Generated at Mon Feb 19 12:41:44 2024 by rpki-client on console-fra.rpki-client.org